HTTP Headers Analysis for https://msn.dk

HTTP Security Headers

Status

Strict-Transport-Security

Present

max-age=1209600; includeSubDomains; preload

Content-Security-Policy

Basic

block-all-mixed-content; connect-src; default-src; +5 more

X-Frame-Options

Good

sameorigin

X-Content-Type-Options

Good

nosniff

Referrer-Policy

Missing

Not configured

Permissions-Policy

Missing

Not configured

Recommendations

• Increase HSTS max-age to at least 1 year and add includeSubDomains
• Improve CSP by adding more specific directives and removing 'unsafe-inline'
• Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
• Consider adding Permissions-Policy to control browser features

Performance Headers

2 headers

Connection

Performance

close

Vary

Performance

Origin

Caching Headers

2 headers

Cache-Control

Caching

no-store,no-cache

Pragma

Caching

no-cache

Content Headers

2 headers

Content-Length

Content

50413

Content-Type

Content

text/html; charset=utf-8

Server Headers

1 headers

Server

Kestrel

CORS Headers

1 headers

Access-Control-Allow-Methods

Cors

HEAD,GET,OPTIONS

Cookies Headers

1 headers

Set-Cookie

Cookies

_EDGE_V=1; expires=Fri, 05 Feb 2027 22:51:04 GMT; domain=.msn.com; path=/; httponly

Other Headers

14 headers

Akamai-Cache-Status

Other

NotCacheable from child

Akamai-Grn

Other

0.d90c0317.1768171864.501c9b6e

Akamai-Request-Bc

Other

[a=23.3.12.217,b=1344052078,c=g,n=US_VA_STERLING,o=20940],[c=c,n=US_VA_ASHBURN,o=20940],[a=192,c=o]

Akamai-Request-Id

Other

501c9b6e

Akamai-Server-Ip

Other

23.3.12.217

Date

Other

Sun, 11 Jan 2026 22:51:04 GMT

Nel

Other

{"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}

Nel-And-Csp-Report-To

Other

{"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://deff.nelreports.net/api/report?cat=msn"}]},{"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://deff.nelreports.net/api/report"}]}

Server-Timing

Other

clientrtt; dur=2, clienttt; dur=150, origin; dur=98, cdntime; dur=52, wpo;dur=0,1s;dur=0

Timing-Allow-Origin

Other

*

X-Cdn-Ref

Other

501c9b6e | 696429588f394acb8f4aeb1db3b8a42f|AFD:696429588f394acb8f4aeb1db3b8a42f|2026-01-11T22:51:04.668Z | 2026-01-11T22:51:04

X-Ceto-Ref

Other

696429588f394acb8f4aeb1db3b8a42f|AFD:696429588f394acb8f4aeb1db3b8a42f|2026-01-11T22:51:04.668Z

X-Msedge-Ref

Other

501c9b6e | 696429588f394acb8f4aeb1db3b8a42f|AFD:696429588f394acb8f4aeb1db3b8a42f|2026-01-11T22:51:04.668Z | 2026-01-11T22:51:04

X-Ua-Compatible

Other

IE=Edge;chrome=1

Recommendations

Enable compression (gzip/brotli) to improve performance