HTTP Headers Analysis for https://radio.itunes.apple.com

HTTP Security Headers

Status

Strict-Transport-Security

Good

max-age=31536000; includeSubDomains

Content-Security-Policy

Missing

Not configured Analyze

Content-Security-Policy-Report-Only

Missing

Not configured Analyze

X-Frame-Options

Missing

Not configured

X-Content-Type-Options

Missing

Not configured

Referrer-Policy

Missing

Not configured

Permissions-Policy

Missing

Not configured

Recommendations

• Consider adding 'preload' to HSTS for maximum security
• Add Content-Security-Policy header to prevent XSS attacks
• Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
• Add X-Content-Type-Options: nosniff
• Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
• Consider adding Permissions-Policy to control browser features

Performance Headers

Connection

Performance

close

connection: close

Caching Headers

Age

Caching

0

Cache-Control

Caching

private, no-cache, no-store, no-transform, must-revalidate, max-age=0

Expires

Caching

Tue, 31 Mar 2026 05:13:33 GMT

age: 0
cache-control: private, no-cache, no-store, no-transform, must-revalidate, max-age=0
expires: Tue, 31 Mar 2026 05:13:33 GMT

Content Headers

Content-Length

Content

0

content-length: 0

Server Headers

Server

daiquiri/5

server: daiquiri/5

CORS Headers

No CORS headers found

Cookies Headers

No cookies headers found

Other Headers

Apple-Timing-App

Other

1 ms

Cdnuuid

Other

0be1c1d7-89f2-4c58-b64b-7f7e229b27c5-9144036131

Date

Other

Tue, 31 Mar 2026 05:13:33 GMT

Edge-Control

Other

no-store, cache-maxage=0

Reasons

Other

signature

Via

Other

https/1.1 uschi5-edge-bx-014.ts.apple.com (acdn/302.16436)

X-Apple-Application-Instance

Other

10001

X-Apple-Jingle-Correlation-Key

Other

FJFRWUG5OR5XSR3ATPFSQGURYM

X-Apple-Lokamai-No-Cache

Other

true

X-Cache

Other

skipped

X-Daiquiri-Debug-Worker-Pid

Other

77879

X-Daiquiri-Instance

Other

daiquiri:42282006:st53p00it-qujn15040502:7987:26RELEASE56:daiquiri-amp-store-l7shared-ext-001-st

X-Responding-Instance

Other

MZTilt:10001:::

apple-timing-app: 1 ms
cdnuuid: 0be1c1d7-89f2-4c58-b64b-7f7e229b27c5-9144036131
date: Tue, 31 Mar 2026 05:13:33 GMT
edge-control: no-store, cache-maxage=0
reasons: signature
via: https/1.1 uschi5-edge-bx-014.ts.apple.com (acdn/302.16436)
x-apple-application-instance: 10001
x-apple-jingle-correlation-key: FJFRWUG5OR5XSR3ATPFSQGURYM
x-apple-lokamai-no-cache: true
x-cache: skipped
x-daiquiri-debug-worker-pid: 77879
x-daiquiri-instance: daiquiri:42282006:st53p00it-qujn15040502:7987:26RELEASE56:daiquiri-amp-store-l7shared-ext-001-st
x-responding-instance: MZTilt:10001:::

Recommendations

Enable compression (gzip/brotli) to improve performance