HTTP Headers Analysis for https://dev-www.ooma.ca

Detected Technologies from Headers

See all in URL Inspect 5

Apache

GTranslate

Imperva Active incidents

OpenSSL

PHP

HTTP Security Headers

Status

Strict-Transport-Security

Present

max-age=31536000; includeSubdomains; preload

Content-Security-Policy

Weak

frame-ancestors Analyze

Content-Security-Policy-Report-Only

Missing

Not configured Analyze

X-Frame-Options

Missing

Not configured

X-Content-Type-Options

Good

nosniff

Referrer-Policy

Good

strict-origin-when-cross-origin

Permissions-Policy

Missing

Not configured

Recommendations

• Increase HSTS max-age to at least 1 year and add includeSubDomains
• Significantly strengthen CSP directives
• Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
• Consider adding Permissions-Policy to control browser features

Performance Headers

Connection

Performance

close

Transfer-Encoding

Performance

chunked

Vary

Performance

Accept-Encoding,Origin

connection: close
transfer-encoding: chunked
vary: Accept-Encoding,Origin

Caching Headers

Cache-Control

Caching

max-age=2592000, public

Expires

Caching

Thu, 19 Nov 1981 08:52:00 GMT

Pragma

Caching

no-cache

cache-control: max-age=2592000, public
expires: Thu, 19 Nov 1981 08:52:00 GMT
pragma: no-cache

Content Headers

Content-Type

Content

text/html; charset=UTF-8

content-type: text/html; charset=UTF-8

Server Headers

Server

Apache/2.4.37 (AlmaLinux) OpenSSL/1.1.1k

server: Apache/2.4.37 (AlmaLinux) OpenSSL/1.1.1k

CORS Headers

No CORS headers found

Cookies Headers

Set-Cookie

Cookies

set-cookie: ooma_geo_country=ca; expires=Wed, 24-Nov-2106 00:00:00 GMT; Max-Age=2541913507; path=/; domain=ooma.ca
PHPSESSID=9bb2eae26958eedaefcc488ea750e900; path=/; secure; HttpOnly
ooma_geo_state=qc; expires=Tue, 29-Mar-2163 16:54:53 GMT; Max-Age=4320000000; path=/; domain=ooma.ca
mx_state=Quebec; expires=Tue, 29-Mar-2163 16:54:53 GMT; Max-Age=4320000000; path=/; domain=ooma.ca
visid_incap_3312937=Nr3B1iQ4Q3iDWhZU3w5xrVNy+2kAAAAAQUIPAAAAAACG324VJgUn7QoaWqa8xsyq; expires=Thu, 06 May 2027 06:56:07 GMT; HttpOnly; path=/; Domain=.ooma.ca; Secure; SameSite=None
incap_ses_1545_3312937=eGTsXvaK/34/LDTAYPFwFVxy+2kAAAAABoBFnKByMEiNRk+S3LN9VQ==; path=/; Domain=.ooma.ca; Secure; SameSite=None

Other Headers

Date

Other

Wed, 06 May 2026 16:54:52 GMT

Link

Other

URL

https://cdn.gtranslate.net/

rel=dns-prefetch

URL https://dev-www.ooma.ca/

rel=shortlink

X-Cdn

Other

Imperva

X-Iinfo

Other

13-14848535-14848564 NNNN CT(9 8953 0) RT(1778086483831 7) q(0 2 91 143) r(91 93) U12

X-Robots-Tag

Other

noindex, nofollow

date: Wed, 06 May 2026 16:54:52 GMT
link: <https://cdn.gtranslate.net/>; rel=dns-prefetch, <https://dev-www.ooma.ca/>; rel=shortlink
x-cdn: Imperva
x-iinfo: 13-14848535-14848564 NNNN CT(9 8953 0) RT(1778086483831 7) q(0 2 91 143) r(91 93) U12
x-robots-tag: noindex, nofollow

Recommendations

Enable compression (gzip/brotli) to improve performance