DNS Gurus
Cached · just now
19 Headers

HTTP Security Headers

Status
Strict-Transport-Security
Present
max-age=31536000
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Good
SAMEORIGIN
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
  • Increase HSTS max-age to at least 1 year and add includeSubDomains
  • Add Content-Security-Policy header to prevent XSS attacks
  • Add X-Content-Type-Options: nosniff
  • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
  • Consider adding Permissions-Policy to control browser features

Performance Headers

2 headers
Connection
Performance
Transfer-Encoding
Transfer-Encoding
Performance
chunked

Caching Headers

0 headers
No caching headers found

Content Headers

1 headers
Content-Type
Content
text/html;charset=utf-8

Server Headers

1 headers
Server
Server
istio-envoy

CORS Headers

0 headers
No CORS headers found

Cookies Headers

1 headers
Set-Cookie
Cookies
bm_sz=B1BBFF41DDE71F4B1C06B2C1B0DEA62E~YAAQ8cgwF5JE+BKcAQAAoJHGFx6SJhmm2txNPHiis9E/Jlm5Z/5a+M5yQ0Yn8nKHsxZwyuSunW7ewCkSXUSILTEgbOkrMxb8S7u5U2bCTWZodzCpPTIua8i3m2VxPOlw+3JH5FMJVwHndbHNUxl/lhd1fiTtxpD6qWtuhDkHGpFgEnQC66/d2GMwFS1jdRl0R41G8DFHrKLaT++UowIptbUs5bf7SIfnbWensWZ3fzqkGq6FY/NdgiCf+y8maRsc/Mgm7wZDzc/0rWA8dwZL8xMSD5YKkeLth0+HYrQI2pmcviEzp/m2vPGO2yDGgD4RNQFeOyKGxWaYhHg0hfNKkeTY4bZUMvO//6iTBy6AH2LM~4535096~4539447; Domain=.mailchimp.com; Path=/; Expires=Sun, 01 Feb 2026 09:56:54 GMT; Max-Age=14399; SameSite=None; Secure

Other Headers

12 headers
Date
Other
Sun, 01 Feb 2026 05:56:55 GMT
Intuit_tid
Other
1-697eeb26-4af724b14f6f224c460886a1
X-Akamai-Transformed
Other
0 - 0 -
X-Amzn-Trace-Id
Other
Root=1-697eeb26-4af724b14f6f224c460886a1
X-Edgeconnect-Midmile-Rtt
Other
0
X-Edgeconnect-Origin-Mex-Latency
Other
422
X-Envoy-Decorator-Operation
Other
http-interposer-desired-service.mailchimp-cloud-httpinterposer-use2-prd-m2.svc.cluster.local:8090/*
X-Envoy-Upstream-Service-Time
Other
396
X-Plums-Vary
Other
Accept-Encoding, Accept-Language, Cookie
X-Request-Id
Other
1-697eeb26-4af724b14f6f224c460886a1
X-Spanid
Other
0c1b732b-dbf2-f6e4-6fa1-363d66d222a7
X-Ua-Compatible
Other
IE=edge,chrome=1

Recommendations

Enable compression (gzip/brotli) to improve performance

Add Cache-Control header to optimize caching