HTTP Headers Analysis for https://blog.smrtsystems.com

HTTP Security Headers

Status

Strict-Transport-Security

Present

max-age=15552001

Content-Security-Policy

Missing

Not configured

X-Frame-Options

Missing

Not configured

X-Content-Type-Options

Good

nosniff

Referrer-Policy

Missing

Not configured

Permissions-Policy

Missing

Not configured

Recommendations

• Increase HSTS max-age to at least 1 year and add includeSubDomains
• Add Content-Security-Policy header to prevent XSS attacks
• Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
• Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
• Consider adding Permissions-Policy to control browser features

Performance Headers

3 headers

Accept-Ranges

Performance

bytes

Connection

Performance

keep-alive

Vary

Performance

X-UA-Device, Accept

Caching Headers

0 headers

No caching headers found

Content Headers

2 headers

Content-Length

Content

146334

Content-Type

Content

text/html; charset=utf-8

Server Headers

1 headers

Server

nginx

CORS Headers

0 headers

No CORS headers found

Cookies Headers

0 headers

No cookies headers found

Other Headers

11 headers

Date

Other

Wed, 12 Nov 2025 05:28:16 GMT

Link

Other

<https://64.media.tumblr.com/e7306a672a6bff4561e1e17e0988314e/6702e5b74b6a9f13-c1/s128x128u_c1/2e4041314ec7f08d6b92f60bd9b1cdd74f31b766.pnj>; rel=icon

X-Nc

Other

MISS

X-Rid

Other

559addfed9ad82e9d0781b9165883464

X-Tumblr-Pixel

Other

3

X-Tumblr-Pixel-0

Other

https://px.srvcs.tumblr.com/impixu?T=1762925296&J=eyJ0eXBlIjoidXJsIiwidXJsIjoiaHR0cDovL2Jsb2cuc21ydHN5c3RlbXMuY29tLyIsInJlcXR5cGUiOjAsInJvdXRlIjoiLyJ9&U=FONMPGEHPD&K=c5cde6287596d44a6c1abbb82f99c14945fdc08c94b9a346b80d4ef89df834d8--https://px.srvcs.tumblr.com/impixu?T=1762925296&J=eyJ0eXBlIjoicG9zdCIsInVybCI6Imh0dHA6Ly9ibG9nLnNtcnRzeXN0ZW1zLmNvbS8iLCJyZXF0eXBlIjowLCJyb3V0ZSI6Ii8iLCJwb3N0cyI6W3sicG9zdGlkIjoiNjY2MDIwNjYzOTI4MTYwMjU2IiwiYmxvZ2lkIjoyNjA4MDE5NDEsInNvdXJjZSI6MzN9LHsicG9zdGlk

X-Tumblr-Pixel-1

Other

IjoiNjYxNjk4MTg1MTMwMDQ5NTM2IiwiYmxvZ2lkIjoyNjA4MDE5NDEsInNvdXJjZSI6MzN9LHsicG9zdGlkIjoiNjU4NDA2Nzk5NzUzNTEwOTEyIiwiYmxvZ2lkIjoyNjA4MDE5NDEsInNvdXJjZSI6MzN9LHsicG9zdGlkIjoiNjQ3ODQwODUxNTk4NDQyNDk2IiwiYmxvZ2lkIjoyNjA4MDE5NDEsInNvdXJjZSI6MzN9LHsicG9zdGlkIjoiNjQ3MTk3NTQ3OTQwNzA4MzUyIiwiYmxvZ2lkIjoyNjA4MDE5NDEsInNvdXJjZSI6MzN9LHsicG9zdGlkIjoiNjIwNTc0MDEwNTY5Mjc3NDQwIiwiYmxvZ2lkIjoyNjA4MDE5NDEsInNvdXJjZSI6MzN9LHsicG9zdGlkIjoiNjE1MzA0NzYwNDcwNTE5ODA4IiwiYmxvZ2lkIjoyNjA4MDE5NDEsInNvdXJjZSI6Mz

X-Tumblr-Pixel-2

Other

N9LHsicG9zdGlkIjoiNjEzMDM2MDM4ODEyNzc4NDk2IiwiYmxvZ2lkIjoyNjA4MDE5NDEsInNvdXJjZSI6MzN9LHsicG9zdGlkIjoiNjEzMDM1Njg2OTg2MjM1OTA0IiwiYmxvZ2lkIjoyNjA4MDE5NDEsInNvdXJjZSI6MzN9LHsicG9zdGlkIjoiNjEzMDM1NTk3MDMyOTgwNDgxIiwiYmxvZ2lkIjoyNjA4MDE5NDEsInNvdXJjZSI6MzN9XX0=&U=EAHMFFFIKB&K=f0f1b307d428c41a825cb061a92a3cbc864dce6679b7d7b17e42753cde16ea13

X-Tumblr-User

Other

smrt-systems

X-Ua-Compatible

Other

IE=Edge,chrome=1

X-Ua-Device

Other

desktop

Recommendations

Enable compression (gzip/brotli) to improve performance

Add Cache-Control header to optimize caching