~/d/sfr.fr

// sfr.fr

Live audit across 8 checks. Cached 24h · generated less than a minute ago.

domain_grade
A
strong
85
/ 100 · across 8 checks
// points lost on:
security headers −12 dnssec −3
[ save & monitor ]
SSL Certificate
[ OK ]
Valid for 304 more days.
Issued by Thawte TLS RSA CA G1 · 304 days left · TLSv1.3
→ open SSL Certificate tool
DMARC Policy
[ OK ]
Strict DMARC policy enforced. Spoofed mail is rejected.
v=DMARC1;p=reject;rua=mailto:[email protected],mailto:[email protected];ruf=mailto:[email protected],mailto:[email protected];fo=1;...
→ open DMARC Policy tool
SPF Record
[ OK ]
Strict SPF (-all). Unauthorized senders are rejected.
1 lookups · all=-all
→ open SPF Record tool
MX Records
[ OK ]
MX configured (1 record(s)).
10 smtp-in.sfr.fr
→ open MX Records tool
Name Servers
[ OK ]
2 authoritative nameservers
ns1pub.sfr.fr · ns2pub.sfr.fr
WHOIS
[ OK ]
Valid for 211 more days.
Registrar: SFR · expires 2026-11-18
→ open WHOIS tool
Security Headers
[ CRIT ]
Weak security posture (17/100) — missing: CSP, X-Frame-Options, X-Content-Type-Options, Referrer-Policy, Permissions-Policy
Score 17/100
→ open Security Headers tool
DNSSEC
[ WARN ]
No DNSSEC — domain is not signed.
Not signed
→ open DNSSEC tool
[ embed_grade_badge ]
grade badge
Domain grade: A — strong
markdown (github readme)
[![DomBrains grade](https://dombrains.com/badge/sfr.fr/grade.svg)](https://dombrains.com/d/sfr.fr)
html (any webpage)
<a href="https://dombrains.com/d/sfr.fr"><img src="https://dombrains.com/badge/sfr.fr/grade.svg" alt="DomBrains grade: A"></a>
// re-queries our scoring engine · cached 1h at the edge · backlinks to this profile page
[ per_check_badges ]
ssl badge <img src="https://dombrains.com/badge/sfr.fr/ssl">
dmarc badge <img src="https://dombrains.com/badge/sfr.fr/dmarc">
spf badge <img src="https://dombrains.com/badge/sfr.fr/spf">
mx badge <img src="https://dombrains.com/badge/sfr.fr/mx">
dnssec badge <img src="https://dombrains.com/badge/sfr.fr/dnssec">
security_headers badge <img src="https://dombrains.com/badge/sfr.fr/security_headers">
// Snapshot freshness: this page is cached 24h. To force a re-scan, run any tool above with the same domain — that always queries live.