HTTP Headers Analysis for https://dev-www.ooma.com

Detected Technologies from Headers

See all in URL Inspect 5

Apache

GTranslate

Imperva Active incidents

OpenSSL

PHP

HTTP Security Headers

Status

Strict-Transport-Security

Present

max-age=31536000; includeSubdomains; preload

Content-Security-Policy

Weak

frame-ancestors Analyze

Content-Security-Policy-Report-Only

Missing

Not configured Analyze

X-Frame-Options

Missing

Not configured

X-Content-Type-Options

Good

nosniff

Referrer-Policy

Good

strict-origin-when-cross-origin

Permissions-Policy

Missing

Not configured

Recommendations

• Increase HSTS max-age to at least 1 year and add includeSubDomains
• Significantly strengthen CSP directives
• Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
• Consider adding Permissions-Policy to control browser features

Performance Headers

Connection

Performance

close

Transfer-Encoding

Performance

chunked

Vary

Performance

Accept-Encoding,Origin

connection: close
transfer-encoding: chunked
vary: Accept-Encoding,Origin

Caching Headers

Cache-Control

Caching

max-age=2592000, public

Expires

Caching

Thu, 19 Nov 1981 08:52:00 GMT

Pragma

Caching

no-cache

cache-control: max-age=2592000, public
expires: Thu, 19 Nov 1981 08:52:00 GMT
pragma: no-cache

Content Headers

Content-Type

Content

text/html; charset=UTF-8

content-type: text/html; charset=UTF-8

Server Headers

Server

Apache/2.4.37 (AlmaLinux) OpenSSL/1.1.1k

server: Apache/2.4.37 (AlmaLinux) OpenSSL/1.1.1k

CORS Headers

No CORS headers found

Cookies Headers

Set-Cookie

Cookies

set-cookie: ooma_geo_country=us; expires=Wed, 24-Nov-2106 00:00:00 GMT; Max-Age=2542339486; path=/; domain=ooma.com
PHPSESSID=4a2b7d616a321a6b4364c1b364470673; path=/; secure; HttpOnly
ooma_geo_state=il; expires=Thu, 24-Mar-2163 18:35:14 GMT; Max-Age=4320000000; path=/; domain=ooma.com
mx_state=Illinois; expires=Thu, 24-Mar-2163 18:35:14 GMT; Max-Age=4320000000; path=/; domain=ooma.com
visid_incap_3312937=b2ro3hSVQ52Q4xgByQgNVGLy9GkAAAAAQUIPAAAAAADN9B/c7YiWvc71x9i3ssTa; expires=Sat, 01 May 2027 07:10:49 GMT; HttpOnly; path=/; Domain=.ooma.com; Secure; SameSite=None
incap_ses_1841_3312937=NvaZAdl6bQB4jjQFdYyMGWLy9GkAAAAAFyjD6DY+ofMLI0KYbvFCsA==; path=/; Domain=.ooma.com; Secure; SameSite=None

Other Headers

Date

Other

Fri, 01 May 2026 18:35:14 GMT

Link

Other

URL

https://cdn.gtranslate.net/

rel=dns-prefetch

URL https://dev-www.ooma.com/

rel=shortlink

X-Cdn

Other

Imperva

X-Iinfo

Other

46-116884414-116884416 NNNN CT(2 3 0) RT(1777660514565 10) q(0 0 0 0) r(0 2) U12

X-Robots-Tag

Other

noindex, nofollow

date: Fri, 01 May 2026 18:35:14 GMT
link: <https://cdn.gtranslate.net/>; rel=dns-prefetch, <https://dev-www.ooma.com/>; rel=shortlink
x-cdn: Imperva
x-iinfo: 46-116884414-116884416 NNNN CT(2 3 0) RT(1777660514565 10) q(0 0 0 0) r(0 2) U12
x-robots-tag: noindex, nofollow

Recommendations

Enable compression (gzip/brotli) to improve performance