DNS Gurus
Cached · 2h ago
21 Headers

HTTP Security Headers

Status
Strict-Transport-Security
Present
max-age=631138519
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Good
sameorigin
X-Content-Type-Options
Good
nosniff
Referrer-Policy
Good
strict-origin-when-cross-origin
Permissions-Policy
Present
accelerometer=(), autoplay=(self), camera=(), encrypted-media=(self), fullscreen=(self), geolocation=(self), gyroscope=(), magnetometer=(), microphone=(), midi=(), payment=(self), usb=()
Recommendations
  • Increase HSTS max-age to at least 1 year and add includeSubDomains
  • Add Content-Security-Policy header to prevent XSS attacks

Performance Headers

3 headers
Connection
Performance
close
Transfer-Encoding
Performance
chunked
Vary
Performance
Accept-Encoding, Origin

Caching Headers

2 headers
Cache-Control
Caching
max-age=0, private, must-revalidate
Etag
Caching
W/"600e21bde4973ea37c83445a94a2dcea"

Content Headers

1 headers
Content-Type
Content
text/html; charset=utf-8

Server Headers

1 headers
X-Runtime
Server
0.421439

CORS Headers

0 headers
No CORS headers found

Cookies Headers

1 headers
Set-Cookie
Cookies
_hss_prod_20231101=b065577cc4efdca3ae7fbccb7092594c; domain=healthsherpa.com; path=/; expires=Sun, 22 Feb 2026 14:00:59 GMT; secure; HttpOnly; SameSite=None

Other Headers

7 headers
Date
Other
Fri, 23 Jan 2026 14:00:59 GMT
Link
Other
<https://d1mm04003omuon.cloudfront.net/assets/lib/jquery-3.6.4.min-dad6fdf250e31dfafe7a2f31ac1ecb0d1a29482a12ef65d66139e9aa6f564ecf.js>; rel=preload; as=script; nopush,<https://d1mm04003omuon.cloudfront.net/assets/lib/underscore-min-e88131166313879f41de7a05f1cebfc92b4e260f0fd376ac2a7e1447814eb06e.js>; rel=preload; as=script; nopush,<https://d1mm04003omuon.cloudfront.net/assets/app/namespaces-84a2aa7bd1d9454b1cf85215eca8327dd9a0457ddd5955285c262b017899221d.js>; rel=preload; as=script; nopush,<https://d1mm04003omuon.cloudfront.net/assets/app/utility/browser-bf10cba13d8214efe8ddf4408c5d56d893bede486b9a2a3cd615df5a3754170d.js>; rel=preload; as=script; nopush,<https://d1mm04003omuon.cloudfront.net/assets/app/utility/agent_attribution-45ebbf3a24d439fe44ee4ea885ce4df0f017219c6afd84ee36e9e5a92f068d33.js>; rel=preload; as=script; nopush,<https://d1mm04003omuon.cloudfront.net/assets/analytics-ee3c2fc9ebb9f2ee81a5cad2b342ace65a5cf7736d2382035f3677058308b208.js>; rel=preload; as=script; nopush
P3p
Other
policyref="/w3c/p3p.xml", CP="CAO DSP COR CUR ADM DEV CONo OUR IND PHY ONL GOV STA DEM COM NAV"
Via
Other
1.1 spaces-router (878c4b46ede4)
X-Download-Options
Other
noopen
X-Permitted-Cross-Domain-Policies
Other
none
X-Request-Id
Other
0c322d92-e5bf-f9b3-6b7b-9963407fc036

Recommendations

Enable compression (gzip/brotli) to improve performance