HTTP Headers Analysis for https://blog.postmaster.verizonmedia.com

HTTP Security Headers

Status

Strict-Transport-Security

Present

max-age=15552001

Content-Security-Policy

Missing

Not configured

X-Frame-Options

Missing

Not configured

X-Content-Type-Options

Good

nosniff

Referrer-Policy

Missing

Not configured

Permissions-Policy

Missing

Not configured

Recommendations

• Increase HSTS max-age to at least 1 year and add includeSubDomains
• Add Content-Security-Policy header to prevent XSS attacks
• Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
• Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
• Consider adding Permissions-Policy to control browser features

Performance Headers

3 headers

Accept-Ranges

Performance

bytes

Connection

Performance

keep-alive

Vary

Performance

X-UA-Device, Accept

Caching Headers

0 headers

No caching headers found

Content Headers

2 headers

Content-Length

Content

167251

Content-Type

Content

text/html; charset=utf-8

Server Headers

1 headers

Server

nginx

CORS Headers

0 headers

No CORS headers found

Cookies Headers

0 headers

No cookies headers found

Other Headers

11 headers

Date

Other

Thu, 13 Nov 2025 09:14:41 GMT

Link

Other

<https://64.media.tumblr.com/6b0202dff68c42604e68488a13f1e425/62789e92264fd692-4d/s128x128u_c1/8a183b8f986e0a870f4fd63c2b552c2e2747a160.pnj>; rel=icon

X-Nc

Other

MISS

X-Rid

Other

ce19597f077dd1ddc3a28a772e75a1fb

X-Tumblr-Pixel

Other

3

X-Tumblr-Pixel-0

Other

https://px.srvcs.tumblr.com/impixu?T=1763025281&J=eyJ0eXBlIjoidXJsIiwidXJsIjoiaHR0cDovL2Jsb2cucG9zdG1hc3Rlci55YWhvb2luYy5jb20vIiwicmVxdHlwZSI6MCwicm91dGUiOiIvIn0=&U=NOJGFPGDKD&K=6b86146c9fccb9cb93bbe00a383d97cd37468c12f52785ad79c720710b8d53ac--https://px.srvcs.tumblr.com/impixu?T=1763025281&J=eyJ0eXBlIjoicG9zdCIsInVybCI6Imh0dHA6Ly9ibG9nLnBvc3RtYXN0ZXIueWFob29pbmMuY29tLyIsInJlcXR5cGUiOjAsInJvdXRlIjoiLyIsInBvc3RzIjpbeyJwb3N0aWQiOiI3OTg1OTAyNTgyMDc5MTYwMzIiLCJibG9naWQiOjQwMzIyNjQzOSwic291

X-Tumblr-Pixel-1

Other

cmNlIjozM30seyJwb3N0aWQiOiI3ODcyNTgwNDIwNzcxMTg0NjQiLCJibG9naWQiOjQwMzIyNjQzOSwic291cmNlIjozM30seyJwb3N0aWQiOiI3NjE1NDEwMTM3Njk3MTU3MTIiLCJibG9naWQiOjQwMzIyNjQzOSwic291cmNlIjozM30seyJwb3N0aWQiOiI3NTgzNTc0OTQ5ODg5NjM4NDAiLCJibG9naWQiOjQwMzIyNjQzOSwic291cmNlIjozM30seyJwb3N0aWQiOiI3NTgxOTIyNzgzMjUwNjc3NzYiLCJibG9naWQiOjQwMzIyNjQzOSwic291cmNlIjozM30seyJwb3N0aWQiOiI3NTA2NTg5MDAwNTA3MDY0MzIiLCJibG9naWQiOjQwMzIyNjQzOSwic291cmNlIjozM30seyJwb3N0aWQiOiI3MzkyNjI5NzI3Mzc3NjUzNzciLCJibG9naWQiOjQwMz

X-Tumblr-Pixel-2

Other

IyNjQzOSwic291cmNlIjozM30seyJwb3N0aWQiOiI3MzcyNjgxMDgxNzMyMzAwODAiLCJibG9naWQiOjQwMzIyNjQzOSwic291cmNlIjozM30seyJwb3N0aWQiOiI3MzAxNzIxNjc0OTQ0ODM5NjgiLCJibG9naWQiOjQwMzIyNjQzOSwic291cmNlIjozM30seyJwb3N0aWQiOiI2OTk3NDI5ODk4MzAwMjkzMTIiLCJibG9naWQiOjQwMzIyNjQzOSwic291cmNlIjozM31dfQ==&U=FMDKJALEEK&K=0727a6d72a0aea245cf605c1cf319ff9b091367c9f45080322fbcda25a2aa4f5

X-Tumblr-User

Other

yahoo-postmaster

X-Ua-Compatible

Other

IE=Edge,chrome=1

X-Ua-Device

Other

desktop

Recommendations

Enable compression (gzip/brotli) to improve performance

Add Cache-Control header to optimize caching