HTTP Headers Analysis for https://all-about.nz

HTTP Security Headers

Status

Strict-Transport-Security

Missing

Not configured

Content-Security-Policy

Basic

base-uri; object-src; report-uri; +3 more

X-Frame-Options

Excellent

DENY

X-Content-Type-Options

Good

nosniff

Referrer-Policy

Present

origin

Permissions-Policy

Missing

Not configured

Recommendations

• Add Strict-Transport-Security header with max-age of at least 1 year
• Improve CSP by adding more specific directives and removing 'unsafe-inline'
• Consider adding Permissions-Policy to control browser features

Performance Headers

3 headers

Accept-Ranges

Performance

none

Transfer-Encoding

Performance

chunked

Vary

Performance

Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site,Accept-Encoding

Caching Headers

3 headers

Cache-Control

Caching

no-cache, no-store, max-age=0, must-revalidate

Expires

Caching

Mon, 01 Jan 1990 00:00:00 GMT

Pragma

Caching

no-cache

Content Headers

1 headers

Content-Type

Content

text/html; charset=utf-8

Server Headers

1 headers

Server

ESF

CORS Headers

0 headers

No CORS headers found

Cookies Headers

0 headers

No cookies headers found

Other Headers

3 headers

Date

Other

Sat, 15 Nov 2025 16:26:36 GMT

Document-Policy

Other

include-js-call-stacks-in-crash-reports

Reporting-Endpoints

Other

default="/web-reports?jobset=prod&wcrumsspbp=false&bl=editors.sites-viewer-frontend_20251110.02_p0&app=25&clss=1&context=eJwNz3lQlAUABfDPb7_vYShyy4LKsYsGqQg0pnLEsbAQlJlmu2ETJK6IIBAgeCaMF16NlpZHiq4YyIp3iQM2eDSDOpaKI1EoCgjKtUgghwa9P34z773_nmWJVeFonVA2RifMc9AJn5Ltbp3gQcP7dcK4AzpBMuoEB9Kc1wm6Bp2QRNc7dEINfemsF9Kod5JekFz1wkpPvbCZEiP1Qhbl0lYKmForDBOm1QquFNLYI0aRb16fOJvM-X1iP61O6Rfz6WbQgHiPKoMHxBv0yjAgDlPx9gHxDC2-NSgupzRhRMyhgYkjojBpROxdNSK-oXcXKBSBFJKvUETR_GcKRRytMgdIeTSjL1CaReL-IMmSLp8Kkq5S9OxgaR5l60KldfQyJkwapI2dYdIO-mdtuNRE5aZwqYqCy8KlSNqXoZEOU2KORkoh8axGsqST5zXSOZrzq0YKozSPCCmH-qdGSiM0e3mkFEqTv46UptOmlkhpJ-lnaqUEuvmLVqqjvd9GSUVUQuVkTImWSqnJ7gOpneotYqRmyl1QKG-ge6ZC-Sn9dalQfkL3_j0q11H4BKMcQ-4fG2Uv-qr-uJxM683H5c1UsaxIvk6lqUXyebrVVCTfJ-W5E7I7Wawtlq3JanOx7EjObiWyB3l9XiL70vy2UjmO_GJN8hw6Odckn6OnS0zyC7pSYpJ_p1lTy-QQuldVJtdRZuJpeQ21rTgt99DBsjbZSNXV7fJd0od0yAm06FqHnEi39Z1yDVkf6pSdSPFsLMbQWWsrlNOUciv4UO2NcWigHH9rfEMfFVpjIbWcsEEXmZ7b4gIta7NFBln42sGaRqns8RZdmGWPCgqdbY9o8n_kgABq3eIIM20wjsdWert-PGbQT4lOKCLLVCfY0VAac7oTtrkrsYeSZirxwqDES7pYpkQlDdxUQrilxLpjzthED4zOqKfc7S7YQENmF4jdLjjc74IT1Lx7AjpoX9hEHKRFMRORQA0mV1T_7Yo79KLeFV3kZXaFLy186Yo4qlzkhstL3fAbtV10Qw_FWrhjAV2Y5c6v7mhPdkdXuTte0drjHthIEWYPfEipM1TIpveiVAgkx5UqTKLXm1VQbFGhokCF65RyVIUsunJHhWs09g8VbKmf3pD2TxViqYTKaNewCvvI6KdGKf0XpIYcrMbZEDXKqSNZjV7qXq1GH2WuUSOX4h6osZimnPaED8Wf8UQSxeimYD416aegnXqsvDBE1rZecKDHR7zQRA9bmKnc2htV1GzrjQ6qs_fGU3rt4A2Fozd-fBiAYrovBOK2KRA1NGgThGEyzQ3CBRoRgmExKhiBY4IRSxk_BGMV1X_3PprJoAjBcrKcHAI7qp8Wimaq0oTiLqlvhGIqrdCEYSXV7Q9DflsYttFGZw120B6tBgdovEEDJb1M1WCQbPLZyayIwAhZfREBR3rcFYEW6j0biTdkn6iFko6t1yIpT4t0OlKsxc80p1qLMOrMjkIfqU5F4R3qKYvCEH3vE41DdLkhGlfp8fZGtFD880YsIbtPmuFCefHNKCDLwWbYUWZeC9ZQm1Mreqi0oxX6tOdIoMOP2nCCWne1Y6ehE3vJ81IXUGCGvdGM7PRunNrYjc4n3bAbO7qyprEaNgUVtZWii_RZsiFXNc2wJDk7PTPLJys525A1PYebIXP60sz0tGxD2pJ4f1__mX5-fr4-vv7xGb7_A7rYbos&build-label=editors.sites-viewer-frontend_20251110.02_p0&imp-sid=CP_u65_J9JADFQbdzgAdkfofxg&is-cached-offline=false"

Recommendations

Enable compression (gzip/brotli) to improve performance