HTTP Headers Analysis for https://community.databox.com

Detected Technologies from Headers

See all in URL Inspect 1

Cloudflare CDN

HTTP Security Headers

Status

Strict-Transport-Security

Weak

max-age=0; includeSubDomains

Content-Security-Policy

Weak

object-src; font-src; img-src; +2 more Analyze

Content-Security-Policy-Report-Only

Missing

Not configured Analyze

X-Frame-Options

Missing

Not configured

X-Content-Type-Options

Good

nosniff

Referrer-Policy

Good

strict-origin-when-cross-origin

Permissions-Policy

Present

geolocation=(self)

Recommendations

• Increase HSTS max-age to at least 1 year and add includeSubDomains
• Significantly strengthen CSP directives
• Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking

Performance Headers

Connection

Performance

close

Transfer-Encoding

Performance

chunked

Vary

Performance

Sec-CH-Prefers-Color-Scheme, Accept-Encoding

connection: close
transfer-encoding: chunked
vary: Sec-CH-Prefers-Color-Scheme, Accept-Encoding

Caching Headers

Cache-Control

Caching

max-age=0, private, must-revalidate

cache-control: max-age=0, private, must-revalidate

Content Headers

Content-Type

Content

text/html

content-type: text/html

Server Headers

Server

cloudflare

server: cloudflare

CORS Headers

No CORS headers found

Cookies Headers

Set-Cookie

Cookies

set-cookie: c_access_token=eyJhbGciOiJIUzUxMiIsInR5cCI6IkpXVCIsImtpZCI6ImZLR0cifQ.eyJpZCI6IkdVRVNUX3F6aTJwNXUwUUxUcXZociIsIm5ldHdvcmtJZCI6ImNvVnNWRzIzMWYiLCJuZXR3b3JrRG9tYWluIjoiY29tbXVuaXR5LmRhdGFib3guY29tIiwidG9rZW5UeXBlIjoiR1VFU1QiLCJlbnRpdHlJZCI6bnVsbCwicGVybWlzc2lvbkNvbnRleHQiOm51bGwsInBlcm1pc3Npb25zIjpudWxsLCJpYXQiOjE3NzgwNDY3NzQsImV4cCI6MTc3ODA2MTE3NH0.bbHHWP9-Bwf-NQ2OItPKcjX1QsbepHnLSz3zcCP-MLeW_lB9n_xBPwP0auZUg0-zQwTVb6M5DMHrRMrwKmGWyQ; Max-Age=604800; Path=/; secure; Expires=Wed, 13 May 2026 05:52:54 GMT; HttpOnly; Secure; Priority=High; SameSite=None
_cfuvid=LyeGzXDoPctDieZysEVKfcVPUohDacVWjlixeF0idf8-1778046773.944446-1.0.1.1-Acof3tVar9mBn7jM7Ws5gD6jCFS6nyzb7DCHSg1l.bM; HttpOnly; SameSite=None; Secure; Path=/; Domain=community.databox.com

Other Headers

Accept-Ch

Other

Sec-CH-Prefers-Color-Scheme

Cf-Cache-Status

Other

DYNAMIC

Cf-Ray

Other

9f75b8b12eb9d6bc-IAD

Critical-Ch

Other

Sec-CH-Prefers-Color-Scheme

Date

Other

Wed, 06 May 2026 05:52:54 GMT

Server-Timing

Other

cfCacheStatus;desc="DYNAMIC", cfEdge;dur=14,cfOrigin;dur=585

Via

Other

2.0 Caddy

X-Bettermode-Ui-Version

Other

4.142.12-16041

X-From-Bm

Other

true

X-Request-Uuid

Other

zm-HeKpBeQ3NfNjn32S3E

accept-ch: Sec-CH-Prefers-Color-Scheme
cf-cache-status: DYNAMIC
cf-ray: 9f75b8b12eb9d6bc-IAD
critical-ch: Sec-CH-Prefers-Color-Scheme
date: Wed, 06 May 2026 05:52:54 GMT
server-timing: cfCacheStatus;desc="DYNAMIC", cfEdge;dur=14,cfOrigin;dur=585
via: 2.0 Caddy
x-bettermode-ui-version: 4.142.12-16041
x-from-bm: true
x-request-uuid: zm-HeKpBeQ3NfNjn32S3E

Recommendations

Enable compression (gzip/brotli) to improve performance