HTTP Headers Analysis for https://blog.doink.com

HTTP Security Headers

Status

Strict-Transport-Security

Present

max-age=15552001

Content-Security-Policy

Missing

Not configured

X-Frame-Options

Missing

Not configured

X-Content-Type-Options

Good

nosniff

Referrer-Policy

Missing

Not configured

Permissions-Policy

Missing

Not configured

Recommendations

• Increase HSTS max-age to at least 1 year and add includeSubDomains
• Add Content-Security-Policy header to prevent XSS attacks
• Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
• Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
• Consider adding Permissions-Policy to control browser features

Performance Headers

3 headers

Accept-Ranges

Performance

bytes

Connection

Performance

close

Vary

Performance

X-UA-Device, Accept

Caching Headers

0 headers

No caching headers found

Content Headers

2 headers

Content-Length

Content

51821

Content-Type

Content

text/html; charset=utf-8

Server Headers

1 headers

Server

nginx

CORS Headers

0 headers

No CORS headers found

Cookies Headers

0 headers

No cookies headers found

Other Headers

11 headers

Date

Other

Mon, 29 Dec 2025 10:01:00 GMT

Link

Other

<https://64.media.tumblr.com/avatar_07dec115ac74_128.pnj>; rel=icon

X-Nc

Other

MISS

X-Rid

Other

52267b63dc34970c7bef8b5d7bef7db3

X-Tumblr-Pixel

Other

3

X-Tumblr-Pixel-0

Other

https://px.srvcs.tumblr.com/impixu?T=1767002460&J=eyJ0eXBlIjoidXJsIiwidXJsIjoiaHR0cDovL2Jsb2cuZG9pbmsuY29tLyIsInJlcXR5cGUiOjAsInJvdXRlIjoiLyJ9&U=JJJBFFKNBC&K=fc6ac6ebbbd96945d0da4d7951dc4adcc7d65a3c448ae51f81b84d2f5819e102--https://px.srvcs.tumblr.com/impixu?T=1767002460&J=eyJ0eXBlIjoicG9zdCIsInVybCI6Imh0dHA6Ly9ibG9nLmRvaW5rLmNvbS8iLCJyZXF0eXBlIjowLCJyb3V0ZSI6Ii8iLCJwb3N0cyI6W3sicG9zdGlkIjoiNzcwMzIwNDQzNDA1MTIzNTg0IiwiYmxvZ2lkIjoxNDkxNTMsInNvdXJjZSI6MzN9LHsicG9zdGlkIjoiNzY5MDQ4MzIwOTI4

X-Tumblr-Pixel-1

Other

ODA4OTYwIiwiYmxvZ2lkIjoxNDkxNTMsInNvdXJjZSI6MzN9LHsicG9zdGlkIjoiNzUwNzY2NTk5OTYyODUzMzc2IiwiYmxvZ2lkIjoxNDkxNTMsInNvdXJjZSI6MzN9LHsicG9zdGlkIjoiNzUwMDQxODI3NTU3NzM2NDQ4IiwiYmxvZ2lkIjoxNDkxNTMsInNvdXJjZSI6MzN9LHsicG9zdGlkIjoiNzQ5NDA3NjczMjY1NjY4MDk2IiwiYmxvZ2lkIjoxNDkxNTMsInNvdXJjZSI6MzN9LHsicG9zdGlkIjoiNzQ4NzczNDcyMjg1NzIwNTc2IiwiYmxvZ2lkIjoxNDkxNTMsInNvdXJjZSI6MzN9LHsicG9zdGlkIjoiNzQ4MTQxMTk2NDg5MjI4Mjg5IiwiYmxvZ2lkIjoxNDkxNTMsInNvdXJjZSI6MzN9LHsicG9zdGlkIjoiNzQ3NTA1MTA5MjM0MjcwMjA4Ii

X-Tumblr-Pixel-2

Other

wiYmxvZ2lkIjoxNDkxNTMsInNvdXJjZSI6MzN9LHsicG9zdGlkIjoiNzQ2ODcwOTMyNzcxMTQzNjgwIiwiYmxvZ2lkIjoxNDkxNTMsInNvdXJjZSI6MzN9LHsicG9zdGlkIjoiNzQ2MjM2NzQ4ODcwMzIwMTI5IiwiYmxvZ2lkIjoxNDkxNTMsInNvdXJjZSI6MzN9XX0=&U=IGLFHKIEHO&K=6cdaee36607c30211b3bdfac07a787a71c8f5c061efd9a83e8073175754b2884

X-Tumblr-User

Other

doink

X-Ua-Compatible

Other

IE=Edge,chrome=1

X-Ua-Device

Other

desktop

Recommendations

Enable compression (gzip/brotli) to improve performance

Add Cache-Control header to optimize caching