DNS Gurus
Cached · just now
24 Headers

HTTP Security Headers

Status
Strict-Transport-Security
Excellent
max-age=106384710; includeSubDomains; preload
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Good
nosniff
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
  • Add Content-Security-Policy header to prevent XSS attacks
  • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
  • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
  • Consider adding Permissions-Policy to control browser features

Performance Headers

3 headers
Accept-Ranges
Performance
bytes
Connection
Performance
close
Vary
Performance
Accept-Encoding,X-Subdomain,Cookie,Authorization,User-Agent

Caching Headers

3 headers
Age
Caching
22235
Cache-Control
Caching
private, s-maxage=0, max-age=0, must-revalidate, no-transform
Last-Modified
Caching
Mon, 19 Jan 2026 15:37:49 GMT

Content Headers

3 headers
Content-Language
Content
en
Content-Length
Content
101112
Content-Type
Content
text/html; charset=UTF-8

Server Headers

1 headers
Server
Server
mw-web.eqiad.main-7c8985cb76-c8zd7

CORS Headers

0 headers
No CORS headers found

Cookies Headers

1 headers
Set-Cookie
Cookies
WMF-Uniq=9nFL2ldx-174NJNTN2fPrALwAAAAAFvdNhqtARAeNsaKirjG3udQbwCCwhyVVndg;Domain=.wikipedia.org;Path=/;HttpOnly;secure;SameSite=None;Expires=Fri, 22 Jan 2027 00:00:00 GMT

Other Headers

11 headers
Accept-Ch
Other
Content-Security-Policy-Report-Only
Other
script-src 'unsafe-eval' blob: 'self' meta.wikimedia.org *.wikimedia.org *.wikipedia.org *.wikinews.org *.wiktionary.org *.wikibooks.org *.wikiversity.org *.wikisource.org wikisource.org *.wikiquote.org *.wikidata.org *.wikifunctions.org *.wikivoyage.org *.mediawiki.org 'unsafe-inline' auth.wikimedia.org; default-src 'self' data: blob: upload.wikimedia.org https://commons.wikimedia.org meta.wikimedia.org *.wikimedia.org *.wikipedia.org *.wikinews.org *.wiktionary.org *.wikibooks.org *.wikiversity.org *.wikisource.org wikisource.org *.wikiquote.org *.wikidata.org *.wikifunctions.org *.wikivoyage.org *.mediawiki.org wikimedia.org en.wikibooks.org en.wikinews.org en.wikiquote.org en.wikisource.org en.wikiversity.org en.wikivoyage.org en.wiktionary.org www.mediawiki.org api.wikimedia.org commons.wikimedia.org foundation.wikimedia.org incubator.wikimedia.org species.wikimedia.org wikimania.wikimedia.org www.wikidata.org www.wikifunctions.org auth.wikimedia.org; style-src 'self' data: blob: upload.wikimedia.org https://commons.wikimedia.org meta.wikimedia.org *.wikimedia.org *.wikipedia.org *.wikinews.org *.wiktionary.org *.wikibooks.org *.wikiversity.org *.wikisource.org wikisource.org *.wikiquote.org *.wikidata.org *.wikifunctions.org *.wikivoyage.org *.mediawiki.org wikimedia.org 'unsafe-inline'; object-src 'none'; report-uri /w/api.php?action=cspreport&format=json&reportonly=1
Date
Other
Thu, 22 Jan 2026 17:48:09 GMT
Nel
Other
{ "report_to": "wm_nel", "max_age": 604800, "failure_fraction": 0.05, "success_fraction": 0.0}
Report-To
Other
{ "group": "wm_nel", "max_age": 604800, "endpoints": [{ "url": "https://intake-logging.wikimedia.org/v1/events?stream=w3c.reportingapi.network_error&schema_uri=/w3c/reportingapi/network_error/1.0.0" }] }
Server-Timing
Other
cache;desc="hit-front", host;desc="cp1108"
X-Analytics
Other
X-Cache
Other
cp1108 hit, cp1108 hit/6
X-Cache-Status
Other
hit-front
X-Client-Ip
Other
216.246.40.87
X-Request-Id
Other
3d39cdde-a045-4844-8f73-04b94aec88ed

Recommendations

Enable compression (gzip/brotli) to improve performance