HTTP Headers Analysis for https://eklos.com.ar

HTTP Security Headers

Status

Strict-Transport-Security

Present

max-age=31536000

Content-Security-Policy

Weak

upgrade-insecure-requests; frame-ancestors

X-Frame-Options

Good

SameOrigin

X-Content-Type-Options

Good

nosniff

Referrer-Policy

Present

origin

Permissions-Policy

Missing

Not configured

Recommendations

• Increase HSTS max-age to at least 1 year and add includeSubDomains
• Significantly strengthen CSP directives
• Consider adding Permissions-Policy to control browser features

Performance Headers

4 headers

Accept-Ranges

Performance

none

Connection

Performance

close

Transfer-Encoding

Performance

chunked

Vary

Performance

Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site,Accept-Encoding

Caching Headers

3 headers

Cache-Control

Caching

no-cache, no-store, max-age=0, must-revalidate

Expires

Caching

Mon, 01 Jan 1990 00:00:00 GMT

Pragma

Caching

no-cache

Content Headers

1 headers

Content-Type

Content

text/html; charset=utf-8

Server Headers

0 headers

No server headers found

CORS Headers

0 headers

No CORS headers found

Cookies Headers

1 headers

Set-Cookie

Cookies

incap_ses_158_2670928=5emvBlx3IHgWQOgjpVQxAnLoc2kAAAAAOK8mPID/2l7ATddibWvopQ==; path=/; Domain=.eklos.com.ar; Secure; SameSite=None

Other Headers

5 headers

Date

Other

Fri, 23 Jan 2026 21:30:27 GMT

Document-Policy

Other

include-js-call-stacks-in-crash-reports

Reporting-Endpoints

Other

default="/web-reports?jobset=prod&wcrumsspbp=false&bl=editors.sites-viewer-frontend_20260114.02_p1&app=25&clss=1&context=eJwN0GtYVAUCxvHTmXNeiksTA8hICuOZcgcVGykTBQJ2ZIbVli2tZlb3URJREAHj6qUUHjUvz9aau167YIjJgpiKJWa5Llh5yYTKjMJLgiOXgZmBAQYs6f3w-_C-H_--B9TlD1uFWj-r8EKwVXiJAndYhQn0YK9VeHSfVZAqrEIwmU5YBestq7CcGh1W4XtaNNYm5JJnvE2Qwm1C0RM2YTOlJ9uEAiqhLTRr8nXhAWHKdSGcEu70iRYylg6IMeQsGxCHaE32kFhGF-O8YjN9Hu8Vz9Nghld8QIe3e8WPacmlYXEFpWtGxGzKFUbFYvKOGxWF8aOiZ_Wo-Bs9PV-liqWEMpXKQvPuqlQLaLVzllRK4t44yZdOH4mT_k8pMfHSC-SekyQN0y_r_iy1UR5MUgntWmWS3qf0YpOUTeIxk-RLMz81SUk0NDlZGqWYFclSIj35WrIURZvsydI_yTbdLKXRxU_MUgv9522LVElVVE_3hiySkyqyU6RqatP8ReqmVp85UjuVzC-XN1B3ZrncTz-dKpdvU3P_AbmFdH-rkA30autBOYvecB6UN9OZzEq5kapXVson6FJbpfwdaY8fknV0JfUj-RoFbD4sh9DYiCp5Ahn-XiUbaV5XtbyA1tFG-m9qjXycvqiqkb-k_PSj8lrqyjkq95G6pEsOpf21XXIFXbjQLTeRLcEhp9HCBoecTtdsPfINUr_bI4eS6q4__OiYOgD1NLE-AFPp-vlHcYuKo9VYT38tV-Nlsh96DL1U0xGIOsrsCsQq8jFqoKbPjmrQQA8pQXiE6mYE4QwlxgQhhepe5aboG8GYRcWaEKwnv9QQBNHOtSHYT_feDIGTNlSMwRb6U-sYPEW-K0OhoZHcUPjmhWKbTot3aPl0LToztHDTyVotPifvRS2ES1q8_uFYbKIfKsailUq2h2EDjTjDILrC8P5QGA5R-47H4aBdSeOwnxbOGYc0ulYTjgs_h-MKtbWGo4MMznAY6WV3OBbQpwsjcHpZBM5S18kI9NFcHx3mU90MHRvo8GuWDr31OgzSuoMTsJFmOyfgeVr5lIJCetaiIJZCihSMp_ubFajeVHBmq4JGyj6goIC-uKKggfy_VRBIQ_Qbma8qmEtVVEuBTQrG0FsPFOyiiml6VNPvcXrI8XocS9CjnhxZenjItUaPAVrwgx5LaI51IuZRm20iuukIDDhJfQEGjJA60IBgOk1nSZliwCT6usKAq_Sj3YCbVK-OxDlqD4yEg1qCIvEr3Q-OhCokEs1CLC7XxOJ7Wno8Fll0-UQsmqgmNQ51NCrEw-eheMT6xWMurdodj9W0UPsc0ql153NoJ98nE6Ch1imJaKdzpkQ0kf58IiZTjikJRdSyNwmdTUlwU1lXErbRO2YT9pF7pQnD5NNugj_NcJiQQE7VbIxSwD9mI4Ru9s6GnW6sS8ZdCko3Q0vLS83II32lGZPpg8NmfEQzL5iRRD2FFgyQcsSCSdRXa8EIld62YCv9e2oK3qXGWym4TDe334GdFnfcwVLSvNiOMPqarpLvcDs0tCfKjvcov9SOtaRrsMNA3yTcQzPZcjuQRjmVHSgio38nYuhftzuxh9YMdqKMmh1daKETq7vxGZWfcuAwFTc4sJ7SI3qQSbszevAB9cT1YoAmnuqFZqsTr8W7oCxyYRLV5LtQR9UbXbDtcGFPqws9t10wPuNG2EtuRFDaMjcyqeOAG5s-cWMf_fJ8H75Z0Yego33Q0vzgftgX9yN1ST_-l-hBzjIPiuiVtR729-DFRg9KKLnbgxSKvDiAKBrOGUTnT4PopQ8XDWH68iF85e_F4-O9SFS88LnvhZqm_zyMmaTxe7i_6eplPFbfdl0XJr2SlVGiTMlYmlWYl18wtSCrMKMgqphfRn7Usvy83MKM3KWLo43RzxqnTXtmqjF68appfwBy_Oet&build-label=editors.sites-viewer-frontend_20260114.02_p1&imp-sid=CL7klu3NopIDFYhJqwIdhx4l6A&is-cached-offline=false"

X-Cdn

Other

Imperva

X-Iinfo

Other

16-77106949-77106956 NNNN CT(1 23 0) RT(1769203826883 25) q(0 0 0 3) r(2 2) U12

Recommendations

Enable compression (gzip/brotli) to improve performance