Open
Cached
·
just now
13
Headers
Detected Technologies from Headers
YouTube
Adyen
AWS
Amazon S3
AzureFrontDoor
Bing
Cloudflare CDNJS
Active incidents
Facebook
Fonts.com
Google AdSense
Google Analytics
Google Conversion Tracking
Google DoubleClick
Google Fonts
Google Search
Google Static File Front End
Google Tag Manager
LinkedIn
Myra Security
OneTrust
OpenStreetMap
unpkg
Varnish
Google Cloud
Microsoft Azure
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31536000
X-Frame-Options
Good
SAMEORIGIN
X-Content-Type-Options
Good
nosniff
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Improve CSP by adding more specific directives and removing 'unsafe-inline'
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
Performance Headers
Connection
close
Transfer-Encoding
chunked
Vary
origin, x-editorial-mode
connection: close transfer-encoding: chunked vary: origin, x-editorial-mode
Caching Headers
Cache-Control
max-age=0, no-cache, no-store, stale-while-revalidate=300, stale-if-error=300
cache-control: max-age=0, no-cache, no-store, stale-while-revalidate=300, stale-if-error=300
Content Headers
Content-Type
text/html; charset=UTF-8
content-type: text/html; charset=UTF-8
Server Headers
Server
myracloud
server: myracloud
CORS Headers
No CORS headers found
Cookies Headers
Other Headers
Date
Wed, 29 Apr 2026 01:38:50 GMT
X-Varnish
43128352 40388432
date: Wed, 29 Apr 2026 01:38:50 GMT x-varnish: 43128352 40388432
Recommendations
Enable compression (gzip/brotli) to improve performance