DNS Gurus
Cached · just now
27 Headers

HTTP Security Headers

Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Excellent
DENY
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
  • Add Strict-Transport-Security header with max-age of at least 1 year
  • Add Content-Security-Policy header to prevent XSS attacks
  • Add X-Content-Type-Options: nosniff
  • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
  • Consider adding Permissions-Policy to control browser features

Performance Headers

2 headers
Connection
Performance
Transfer-Encoding
Transfer-Encoding
Performance
chunked

Caching Headers

3 headers
Cache-Control
Caching
max-age=0, no-cache, no-store
Expires
Caching
Tue, 27 Jan 2026 08:15:09 GMT
Pragma
Caching
no-cache

Content Headers

1 headers
Content-Type
Content
text/html; charset=utf-8

Server Headers

0 headers
No server headers found

CORS Headers

0 headers
No CORS headers found

Cookies Headers

1 headers
Set-Cookie
Cookies
bm_sz=A72890B1325A1B20AC45F7CDEB43B5BE~YAAQBmrcF6Yswd2bAQAAU1OF/h7TjPJAYfHHNQtHYRx7FwEf5ftsqlOOTrjHIRMvErZ0G8IDlnBj+IAfr9qAfyDxChEQJrie95ctVKaCuQXa5kpWzlQOPQ71lH+/+D0akWqtKBiQm9gLTxMaq7HQEF8+KuEP3LVNNoEHBbk35V96vepGBuefJZO4IEki4C2i6IgcVHseD5C7KLJ7nVKSQ6BTGR3UpaqhOytJMFL5iIBqPRhuuPQZ8KMKav3fnwaHxg40tFQgmQWmujxNLfuybPnlmL9ndb41PKfJGRlHNXCnO22Nw4SwefL+oYE0wfGJx8qzrfp6alT4SvOZARdbc0EAgddEyQ02v8LeROWB7A==~3158322~3617846; Domain=.groupon.com; Path=/; Expires=Tue, 27 Jan 2026 12:15:08 GMT; Max-Age=14399

Other Headers

19 headers
Date
Other
Tue, 27 Jan 2026 08:15:09 GMT
Server-Timing
Other
rReq;dur=400, rCon;dur=4, rHdr;dur=400, hbi;dur=380
X-Akamai-Transformed
Other
0 - 0 -
X-Application
Other
Pull-Itier
X-B-Cookie
Other
e1f481d5-4035-4f20-b481-d540356f2092
X-B3-Traceid
Other
9c98d2fc128f4953ae70d5bebba58813
X-Destination
Other
tls_conveyor_pull_itier
X-Envoy-Upstream-Service-Time
Other
401
X-External-Request-Id
Other
true
X-Forwarded-Proto
Other
https
X-Mtls-Upstream-Time
Other
380
X-Original-Request-Id
Other
9c98d2fc-128f-4953-ae70-d5bebba58813
X-Page-Id
Other
8e8e08ec-69bf-40bf-8e08-ec69bf60bfaf-1769501708654-TH0
X-Request-Id
Other
9c98d2fc-128f-4953-ae70-d5bebba58813,9c98d2fc-128f-4953-ae70-d5bebba58813
X-Request-Originated-From
Other
envoy-tls-side-car--ingress-https
X-Response-Served-From
Other
routing-service--public--us-central1--default--conveyor-gcp-production2
X-S-Cookie
Other
8e8e08ec-69bf-40bf-8e08-ec69bf60bfaf
X-Signifyd-Cookie
Other
f765cc1d-ea36-4eb7-a5cc-1dea36aeb7da
X-Ua-Compatible
Other
IE=edge,chrome=1

Recommendations

Enable compression (gzip/brotli) to improve performance