HTTP Headers Analysis for https://oreilly.com
Analyzed on November 02, 2025 at 19:11 UTC
URL: https://oreilly.com | Status: 200
15 Headers
Total Found
HTTP Security Headers
Status
Strict-Transport-Security
Good
max-age=31536000; includeSubDomains
Content-Security-Policy
Basic
default-src
X-Frame-Options
Good
SAMEORIGIN
X-Content-Type-Options
Good
nosniff
Referrer-Policy
Good
strict-origin
Permissions-Policy
Missing
Not configured
Recommendations
- • Consider adding 'preload' to HSTS for maximum security
- • Improve CSP by adding more specific directives and removing 'unsafe-inline'
- • Consider adding Permissions-Policy to control browser features
Performance Headers
2 headers
Connection
Performance
Transfer-Encoding
Transfer-Encoding
Performance
chunked
Caching Headers
3 headers
Cache-Control
Caching
max-age=14092
Expires
Caching
Sun, 02 Nov 2025 23:06:19 GMT
Last-Modified
Caching
Sun, 02 Nov 2025 09:56:11 GMT
Content Headers
1 headers
Content-Type
Content
text/html
Server Headers
1 headers
Server
Server
Apache
CORS Headers
0 headers
No CORS headers found
Cookies Headers
1 headers
Set-Cookie
Cookies
bm_sz=814F6EBE2B29D84D08539E7F886DA9E3~YAAQFqTAFyTCui6aAQAAn0r7RR1GYnN8tm3Ckp8sm0YQbCBR7mW4kQs86ZlBc2DHEl+se29Syus324UBzbota6ZfPeh04VWeLAGuQlsOg4NA8y3S5KcHUcaZZ2g2U2gT0ociRGp5hZuFumxVkzxvanha1BjHfn1M1cWXyWjJUZPeV3xAtlvNnwYa3sgx7l2vCrInDnhzxERN0gQSVt36em+5wF9rdLSFwZpSHBOnJ6clJ6YSSu/jDPnKw9Z6mge37ezDoBITXpuxGRQd1PeCRxUWABDZ88dmcYz2atJzh3FQMetgPJzJ9BRFKF7jjVNr/gZD2g+kRSMNcTJxvXcr8PJuW83Cx0ST7Ycn/TZgwg==~4535366~3682886; Domain=.oreilly.com; Path=/; Expires=Sun, 02 Nov 2025 23:11:27 GMT; Max-Age=14400
Other Headers
2 headers
Date
Other
Sun, 02 Nov 2025 19:11:27 GMT
X-Akamai-Transformed
Other
0 - 0 -
Recommendations
Enable compression (gzip/brotli) to improve performance
Analysis completed in 1ms