HTTP Headers Analysis for https://lwscomsit3.lowes.com

HTTP Security Headers

Status

Strict-Transport-Security

Present

max-age=31536000

Content-Security-Policy

Weak

frame-ancestors; upgrade-insecure-requests

X-Frame-Options

Missing

Not configured

X-Content-Type-Options

Missing

Not configured

Referrer-Policy

Missing

Not configured

Permissions-Policy

Missing

Not configured

Recommendations

• Increase HSTS max-age to at least 1 year and add includeSubDomains
• Significantly strengthen CSP directives
• Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
• Add X-Content-Type-Options: nosniff
• Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
• Consider adding Permissions-Policy to control browser features

Performance Headers

1 headers

Connection

Performance

close

Caching Headers

3 headers

Cache-Control

Caching

max-age=0, no-cache

Expires

Caching

Thu, 05 Feb 2026 10:05:02 GMT

Pragma

Caching

no-cache

Content Headers

2 headers

Content-Length

Content

5079

Content-Type

Content

text/html

Server Headers

1 headers

Server

AkamaiGHost

CORS Headers

0 headers

No CORS headers found

Cookies Headers

1 headers

Set-Cookie

Cookies

bm_sz=3BC7386CB5541A8378CB02E774FF7E5B~YAAQasgwF2+DvSecAQAAnylDLR6Lpd9a7SE9w1XvMBWhsvIWgKoRFNJVbaBq+hmJEkHMWYzBnYoA1IxCPzxQZcoIHfOzMnM7KddiYRnok3HkWUA5FrEF0ktcqWuu1DGXNbu/gW4X/bpmdPIaj3cvJSw3TSXAWLHVhnPFtcbQ+115O760RSprr6LxQJpDgbVd4H1h5R2yExLSafAwM+4/H0NjQciH7AI6Ouv6MDt55nxUuzX13x0Vn6adSgqt66wnMdGLCD4sNh94yOIvr22JIiZcTHqs7XVJFcDhg5hy/G/JTnwGuqUXxG38xJ9luJdikcPfWjrXzBW4Je6g5wEN6E903qQ3DTmZP1y8ZjA=~4276784~4272439; Domain=.lowes.com; Path=/; Expires=Thu, 05 Feb 2026 14:05:02 GMT; Max-Age=14400; SameSite=None; Secure

Other Headers

7 headers

Akamai-Grn

Other

0.6ac83017.1770285902.45f4d833

Date

Other

Thu, 05 Feb 2026 10:05:02 GMT

Mime-Version

Other

1.0

Server-Timing

Other

ak_p; desc="1770285901848_389073002_1173674035_17_220580_35_165_-";dur=1

X-Akamai-Transformed

Other

9 374 0 pmb=mRUM,2

X-Con-Network-Quality

Other

Excellent

X-Network-Quality

Other

Excellent

Recommendations

Enable compression (gzip/brotli) to improve performance