HTTP Headers Analysis for https://edgeservices.bing.com

HTTP Security Headers

Status

Strict-Transport-Security

Excellent

max-age=31536000; includeSubDomains; preload

Content-Security-Policy

Basic

script-src; base-uri Analyze

Content-Security-Policy-Report-Only

Missing

Not configured Analyze

X-Frame-Options

Good

SAMEORIGIN

X-Content-Type-Options

Missing

Not configured

Referrer-Policy

Missing

Not configured

Permissions-Policy

Present

unload=()

Recommendations

• Improve CSP by adding more specific directives and removing 'unsafe-inline'
• Add X-Content-Type-Options: nosniff
• Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)

Performance Headers

Connection

Performance

close, Transfer-Encoding

Transfer-Encoding

Performance

chunked

connection: close, Transfer-Encoding
transfer-encoding: chunked

Caching Headers

Cache-Control

Caching

private

cache-control: private

Content Headers

Content-Type

Content

text/html; charset=utf-8

content-type: text/html; charset=utf-8

Server Headers

No server headers found

CORS Headers

No CORS headers found

Cookies Headers

Set-Cookie

Cookies

set-cookie: MUID=1D3FAD0F9D026157389DBA239CF66038; domain=.bing.com; expires=Sat, 24-Apr-2027 03:31:49 GMT; path=/; secure; SameSite=None
MUIDB=1D3FAD0F9D026157389DBA239CF66038; expires=Sat, 24-Apr-2027 03:31:49 GMT; path=/; HttpOnly
_EDGE_S=F=1&SID=0670AABE507D60643878BD925189618A; domain=.bing.com; path=/; HttpOnly
_EDGE_V=1; domain=.bing.com; expires=Sat, 24-Apr-2027 03:31:49 GMT; path=/; HttpOnly
__Host-XY=CfDJ8IykvUS-IVVNrph3fqYz1xJTMG0up_kIPRrifAbRV7wMQRBvmfBMDOJsxnZt6YbYU90F3fIwHeKze_iN_avaYG173qYYigHXPjBhgbPXncx0bmbNT6PeJ1Bzw1OGSgycK3KSpYsyKPcXriCXY5at4DFWKF7aiZYpIdfXqYrk7R1ZAr2oSRHbbYf9a328aFO8f29_Y96-_ClJSUyVW975lBRxqTv6aRhQtbc-jDGQGMP8aAtEOOpcaiPrFFNoTBexPGoT7xwzjIKXzxUmvoMPutQ; expires=Mon, 13-Apr-2026 10:31:49 GMT; path=/; secure; HttpOnly; SameSite=Lax
SRCHD=AF=NOFORM; domain=.bing.com; expires=Thu, 30-Mar-2028 03:31:49 GMT; path=/
SRCHUID=V=2&GUID=F34AA8E23D564FACADE682FB57F35B70&dmnchg=1; domain=.bing.com; expires=Thu, 30-Mar-2028 03:31:49 GMT; path=/
SRCHUSR=DOB=20260330; domain=.bing.com; expires=Thu, 30-Mar-2028 03:31:49 GMT; path=/
SRCHHPGUSR=SRCHLANG=en&IG=D7CFB2AD7F3F4F248298EA48E0A02045; domain=.bing.com; expires=Thu, 30-Mar-2028 03:31:50 GMT; path=/
_SS=SID=0670AABE507D60643878BD925189618A; domain=.bing.com; path=/
ULC=; domain=.bing.com; expires=Sun, 29-Mar-2026 03:31:50 GMT; path=/
_HPVN=CS=eyJQbiI6eyJDbiI6MSwiU3QiOjAsIlFzIjowLCJQcm9kIjoiUCJ9LCJTYyI6eyJDbiI6MSwiU3QiOjAsIlFzIjowLCJQcm9kIjoiSCJ9LCJReiI6eyJDbiI6MSwiU3QiOjAsIlFzIjowLCJQcm9kIjoiVCJ9LCJBcCI6dHJ1ZSwiTXV0ZSI6dHJ1ZSwiTGFkIjoiMjAyNi0wMy0zMFQwMDowMDowMFoiLCJJb3RkIjowLCJHd2IiOjAsIlRucyI6MCwiRGZ0IjpudWxsLCJNdnMiOjAsIkZsdCI6MCwiSW1wIjoxLCJUb2JuIjowfQ==; domain=.bing.com; expires=Thu, 30-Mar-2028 03:31:50 GMT; path=/

Other Headers

Date

Other

Mon, 30 Mar 2026 03:31:50 GMT

P3p

Other

CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"

Useragentreductionoptout

Other

A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=

X-Cdn-Traceid

Other

0.0c4e4e68.1774841509.56b503d1

X-Eventid

Other

69c9eea5082c483686b5c6c21bb2c225

date: Mon, 30 Mar 2026 03:31:50 GMT
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
x-cdn-traceid: 0.0c4e4e68.1774841509.56b503d1
x-eventid: 69c9eea5082c483686b5c6c21bb2c225

Recommendations

Enable compression (gzip/brotli) to improve performance