DNS Gurus
Cached · just now
17 Headers

HTTP Security Headers

Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Good
default-src; frame-src; script-src; +5 more
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
  • Add Strict-Transport-Security header with max-age of at least 1 year
  • Strengthen CSP by removing 'unsafe-eval'
  • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
  • Add X-Content-Type-Options: nosniff
  • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
  • Consider adding Permissions-Policy to control browser features

Performance Headers

1 headers
Connection
Performance
close

Caching Headers

2 headers
Cache-Control
Caching
max-age-31536000
Etag
Caching
W/"7c64-D5gMTafDYZ76/ds+OAZHya9XxIw"

Content Headers

2 headers
Content-Length
Content
31844
Content-Type
Content
text/html; charset=utf-8

Server Headers

2 headers
Server
Server
CloudFront
X-Powered-By
Server
Express

CORS Headers

0 headers
No CORS headers found

Cookies Headers

0 headers
No cookies headers found

Other Headers

9 headers
Date
Other
Sun, 01 Feb 2026 07:15:15 GMT
Via
Other
1.1 d0b1b17498c1678f6186279daddd31d2.cloudfront.net (CloudFront)
X-Amz-Cf-Id
Other
mrYIQTr-K9ihIv2fDsfNj-MCRpKF9on4cwtDHZmTRAICHeuhy-ND8Q==
X-Amz-Cf-Pop
Other
IAD61-P10
X-Amzn-Remapped-Content-Length
Other
31844
X-Amzn-Requestid
Other
823caa1f-89c9-442f-9109-752f4d16e71e
X-Amzn-Trace-Id
Other
Root=1-697efd81-545e9594706ae26c7b1e1dc5;Sampled=1;Lineage=1:59cbb6df:0
X-Cache
Other
Miss from cloudfront
X-Files-Bucket-Domain-Name
Other
chimo-files-dev.s3.amazonaws.com

Recommendations

Enable compression (gzip/brotli) to improve performance

Consider removing X-Powered-By header to hide server technology