Open
Cached
·
just now
22
Headers
Detected Technologies from Headers
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Good
SAMEORIGIN
X-Content-Type-Options
Good
nosniff
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Significantly strengthen CSP directives
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
Performance Headers
Connection
close
Vary
Cookie,Origin,Accept-Encoding
connection: close vary: Cookie,Origin,Accept-Encoding
Caching Headers
Cache-Control
max-age=900, public
Etag
"1777023970"
Expires
Sun, 19 Nov 1978 05:00:00 GMT
Last-Modified
Fri, 24 Apr 2026 09:46:10 GMT
cache-control: max-age=900, public etag: "1777023970" expires: Sun, 19 Nov 1978 05:00:00 GMT last-modified: Fri, 24 Apr 2026 09:46:10 GMT
Content Headers
Content-Language
en
Content-Length
9791
Content-Type
text/html; charset=UTF-8
content-language: en content-length: 9791 content-type: text/html; charset=UTF-8
Server Headers
Server
Apache/2.4.66 (Debian)
X-Powered-By
PHP/8.3.30
server: Apache/2.4.66 (Debian) x-powered-by: PHP/8.3.30
CORS Headers
No CORS headers found
Cookies Headers
Other Headers
Date
Tue, 12 May 2026 16:38:04 GMT
Link
rel=preconnect
crossorigin=anonymous
rel=preconnect
crossorigin=anonymous
rel=dns-prefetch
rel=dns-prefetch
X-Drupal-Cache
HIT
X-Drupal-Cache-Contexts
languages:language_interface theme url.path url.query_args:_wrapper_format url.query_args:key user
X-Drupal-Cache-Max-Age
-1 (Permanent)
X-Drupal-Cache-Tags
config:block.block.cohesion_theme_breadcrumbs config:block.block.cohesion_theme_content config:block.block.cohesion_theme_help config:block.block.cohesion_theme_local_actions config:block.block.cohesion_theme_messages config:block.block.cohesion_theme_page_title config:block.block.cohesion_theme_planetheaderblock config:block.block.cohesion_theme_planetheaderblock_2 config:block.block.cohesion_theme_primary_local_tasks config:block.block.cohesion_theme_secondary_local_tasks config:block.block.planetfooterblock config:block.block.planetheaderblock config:block_list config:extlink.settings config:google_tag.container.GTM-TXBDKTF.674d9d1eeebce6.30562886 config:google_tag_container_list config:shield.settings config:user.role.anonymous http_response node:2218 rendered user:0
X-Drupal-Dynamic-Cache
UNCACHEABLE
X-Generator
Drupal 10 (https://www.drupal.org)
date: Tue, 12 May 2026 16:38:04 GMT link: <https://www.googletagmanager.com>; rel="preconnect"; crossorigin="anonymous", <https://cdn.cookielaw.org>; rel="preconnect"; crossorigin="anonymous", <https://scripts.clarity.ms>; rel="dns-prefetch", <https://www.clarity.ms>; rel="dns-prefetch" x-drupal-cache: HIT x-drupal-cache-contexts: languages:language_interface theme url.path url.query_args:_wrapper_format url.query_args:key user x-drupal-cache-max-age: -1 (Permanent) x-drupal-cache-tags: config:block.block.cohesion_theme_breadcrumbs config:block.block.cohesion_theme_content config:block.block.cohesion_theme_help config:block.block.cohesion_theme_local_actions config:block.block.cohesion_theme_messages config:block.block.cohesion_theme_page_title config:block.block.cohesion_theme_planetheaderblock config:block.block.cohesion_theme_planetheaderblock_2 config:block.block.cohesion_theme_primary_local_tasks config:block.block.cohesion_theme_secondary_local_tasks config:block.block.planetfooterblock config:block.block.planetheaderblock config:block_list config:extlink.settings config:google_tag.container.GTM-TXBDKTF.674d9d1eeebce6.30562886 config:google_tag_container_list config:shield.settings config:user.role.anonymous http_response node:2218 rendered user:0 x-drupal-dynamic-cache: UNCACHEABLE x-generator: Drupal 10 (https://www.drupal.org)
Recommendations
Enable compression (gzip/brotli) to improve performance
Consider removing X-Powered-By header to hide server technology