Infrastructure
· 9 checks — DNS, redirects, IPv6, crawlability, URL variants, and domain intelligence rolled into one auditable list.DCDN & DeliveryActionNo CDN detectedFIX
Consider using a CDN to improve global delivery speed and reduce origin load.
CIPv6 ReadinessActionNo IPv6 supportREVIEW
IPv6 support is increasingly important for global accessibility. About 40% of internet users have IPv6 connectivity.
No AAAA records — same impact as 'no IPv6 (AAAA) records'; IPv6-preferring clients pay extra latency falling back to IPv4.
Source: Google IPv6 stats
CCrawlabilityActionrobots.txt present, sitemap with 100 URLsREVIEW
Disallow: / for all user-agents prevents search engines from indexing any page. This will remove the site from search results.
Disallow: / in robots.txt blocks every search crawler — the site becomes invisible in organic search.
Learn more ▾ ▴
Common deployment mistake: a staging robots.txt with `User-agent: * / Disallow: /` ships to prod. The site falls out of search results within days. Verify your robots.txt is the production-intended version. If this is intentional (private site), no action needed.
Source: Google Search Central
# ------------------------------------------------------------------
# Conformément à l'article L 342-1 du CPI, tout crawling, scraping ou usurpation de User-Agent est strictement interdit sans licence préalable ; merci de nous contacter pour tout usage commercial.
# White-list configuration
# ------------------------------------------------------------------
# --- Group 1: Authorized Bots (SEO, Social, Ads, Tools) ---
User-agent: Googlebot
User-agent: Googlebot-News
User-agent: Googlebot-Image
User-agent: Googlebot-Video
User-agent: bingbot
User-agent: Slurp
User-agent: Qwantify
User-agent: Qwantbot-news
User-agent: DuckDuckBot
User-agent: Google-Read-Aloud
User-agent: Applebot
# Advertising & Brand Safety
User-agent: Mediapartners-Google
User-agent: AdsBot-Google-Mobile
User-agent: Amazonbot
User-agent: Amazon AdBot
User-agent: proximic
User-agent: CriteoBot
User-agent: TTD-Content
User-agent: AudigentAdBot
User-agent: teadsbot
User-agent: Taboolabot
User-agent: SirdataBot
User-agent: uipbot
User-agent: ExteContextCrawl
User-agent: AdsTxtValidator
# Social Media Previews
User-agent: Twitterbot
User-agent: facebookexternalhit
User-agent: LinkedInBot
User-agent: Pinterest
User-agent: Slackbot-LinkExpanding
User-agent: WhatsApp
User-agent: TikTokSpider
# Monitoring & Partners
User-agent: OnCrawl
User-agent: AhrefsBot
User-agent: EchoboxBot
User-agent: UptimeRobot
User-agent: FlipboardProxy
User-agent: FlipboardRSS
User-agent: bnf.fr_bot
User-agent: archive.org_bot
# --- Rules for Authorized Bots ---
Disallow: /pf/resources/dist/fonts/
Disallow: /pf/api/
Disallow: /pf/resources/dist/images/
Disallow: /pf/resources/plugins/
Disallow: /composer-preview/
Disallow: /recherche/
Disallow: /*?m_bt=*
Disallow: /*?M_BT=*
Disallow: /*advertising_script.js
Allow: /
# ------------------------------------------------------------------
# --- Group 2: Default Block (All other bots) ---
User-agent: *
Allow: /services/
Allow: /stories/
Disallow: /
# ------------------------------------------------------------------
Sitemap: https://www.lepoint.fr/arc/outboundfeeds/sitemap-news.xml
- https://www.lepoint.fr/art-de-vivre/watches-and-wonders-2026-ce-quil-faut-retenir-du-jour-3-BIHSTBTWUJEBXKRQNCEUX22TIA/
- https://www.lepoint.fr/resizer/v2/OQPAJCOXMRL3ZCGS6VAWKFVPKM.jpg?auth=830faa88f10f8533057c0156c968216373a98e7bcf9724c77a784d1acc24f7b6&smart=true&width=3000&height=2144
- https://www.lepoint.fr/afrique/en-france-derriere-lunanimite-sur-la-restitution-des-oeuvres-pillees-de-profondes-divisions-4OFSHXETZRDIFNYRALDB7CQ64A/
- https://www.lepoint.fr/resizer/v2/DCTTOQVV2FG6XJP5V4DVZSG7PQ.jpg?auth=56a53ba4fb406c0b3e259d3c4f87fa6115bbe3787b587a03d2e65a4894945db6&smart=true&width=7737&height=5117
- https://www.lepoint.fr/monde/liban-la-france-confond-le-symptome-et-la-maladie-EXBVFN24VZEYJDVCGMDRK6OQQQ/
BURL Variantswww/non-www, trailing slash, HTTP→HTTPSREVIEW
www / non-www
Inconsistent — duplicate content risk
HTTP → HTTPS
Consistent
BTLS Certificate Expiry & Recommendations262 days until leaf cert expires — 3 issues to addressREVIEW
Certificate validity
Recommended actions
- Prefer TLS 1.3 — TLS 1.2 is acceptable but TLS 1.3 removes RSA key exchange and improves latency
- Enable HSTS: Strict-Transport-Security: max-age=31536000; includeSubDomains
- Enable OCSP stapling on your TLS server to remove a CA roundtrip and protect user privacy
A+DNS Records2 A records, 45 ms lookupPASS
| A | 15.197.218.225, 166.117.176.2 |
| AAAA | — |
| CNAME | — |
| NS | ulla.ns.cloudflare.com, kai.ns.cloudflare.com |
| MX | 5 de-smtp-inbound-1.mimecast.com 5 de-smtp-inbound-2.mimecast.com |
| TXT | google-site-verification=cOksNB7kX2nHwNpaOec3DCV14F4pRcxPs4wY_Cq_rG0 Sendinblue-code:3aa8a96c7aec31bb49e13e862b2b69ca atlassian-domain-verification=JifItDIpYxYLpWkOIUyliilCp/sSP8BAGYCASZirufA4aI5Hfa... google-site-verification=oB_xOOkxBG3XxpAzY_5dhLb0I2K1eS-jsXWTX2UR_58 slack-domain-verification=pDtDgkHRxvQPas6isOrODy3cDbhw59MpU1lEUD4Y bulldoz_lepoint-fr_dzqxpdhj0qboynypkzv7wnfroc google-site-verification=T4U0cB1EZOPBPh-K3jrLmZck6GC8ADcXD4-XlQzuqF0 riot-domain-verification=a900b0c79dcd31e007f250c57153f481acf43e0f2daacf83c81e3be... google-site-verification=RvpN7_lZZ3GJDTgx3er0c1vGItUErm9jzTutXgamYE8 dattak-defense-verification=0c8fe0a0-a97b-45d4-b5c7-fa213f2d466f adobe-idp-site-verification=d67e3658f8e46ad1a943b441db4a24474340a12b9bfdd7fb8546... jumpdesktop=315a210b405e174a138c9193c7927456c57f632a3659d3d36dfd6dd22355 SPF v=spf1 ip4:46.226.109.132 ip4:5.144.137.193/27 include:_spf.google.com include:s... MS=7B6141688291974E6FFA4874AB77B0863DF37B2C |
| CAA | Lookup not available with standard resolver |
CAA record lookup requires a specialized DNS resolver. This check will be available in a future update.
Informational: CAA (Certification Authority Authorization) records weren't checked in this scan.
ARedirect Chain1 redirect(s), 224 ms totalPASS
https://lepoint.fr
117 ms · HTTP/1.1
https://www.lepoint.fr:443/
106 ms · HTTP/1.1 FINAL
| # | URL | Status | Time | Protocol | Server |
|---|---|---|---|---|---|
| 1 | https://lepoint.fr | 301 | 117 ms | HTTP/1.1 | awselb/2.0 |
| 2 | https://www.lepoint.fr:443/ | 200 | 106 ms | HTTP/1.1 | openresty |
See the visual redirect chain in the HTTP Probe tab →
A+Domain Intelligencelepoint.fr — via GANDI, 26 years, 11 months old, hosted on AWSPASS
2828 days
April 10, 2034
262 days
Issued by Amazon
26 years, 11 months
Registered September 28, 1999
Enabled
Protects against DNS spoofing
AWS
ASN AS16509
166.117.176.2
GANDI
Expiry timeline
Recommended actions
- Enable registrar lock (clientTransferProhibited) to block unauthorized domain transfers
The domain can be transferred without an unlock step. Enable registrar lock (clientTransferProhibited) in your registrar's control panel to protect against unauthorized or accidental transfers.
Without registrar lock, an attacker who phishes your registrar credentials can transfer the domain in minutes — total brand hijack.
Learn more ▾ ▴
Registrar lock (clientTransferProhibited, clientUpdateProhibited, clientDeleteProhibited) requires extra verification before any transfer/update/delete. Every major registrar offers it free. Combined with 2FA on your registrar account, it's the strongest defense against domain hijacking.
Source: ICANN / domain-security best practice