DNS Gurus
Cached · just now
21 Headers

HTTP Security Headers

Status
Strict-Transport-Security
Good
max-age=63072000; includeSubDomains
Content-Security-Policy
Weak
frame-ancestors; report-uri
X-Frame-Options
Good
SAMEORIGIN
X-Content-Type-Options
Good
nosniff
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
  • Consider adding 'preload' to HSTS for maximum security
  • Significantly strengthen CSP directives
  • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
  • Consider adding Permissions-Policy to control browser features

Performance Headers

3 headers
Connection
Performance
close
Transfer-Encoding
Performance
chunked
Vary
Performance
Accept-Encoding, Origin

Caching Headers

3 headers
Cache-Control
Caching
no-cache,must-revalidate,max-age=0,no-store,private
Expires
Caching
Sat, 25 Jan 2025 06:48:13 GMT
Last-Modified
Caching
Sat, 25 Jan 2025 06:48:13 GMT

Content Headers

1 headers
Content-Type
Content
text/html;charset=UTF-8

Server Headers

0 headers
No server headers found

CORS Headers

0 headers
No CORS headers found

Cookies Headers

1 headers
Set-Cookie
Cookies
incap_ses_182_3144915=T9n7Y8T0PhAlDMbYlJiGAq28dWkAAAAAFubFXsYNe3WgC8LsCq87eg==; path=/; Domain=.luxilon.com; Secure; SameSite=None

Other Headers

9 headers
Content-Security-Policy-Report-Only
Other
font-src *.force.com https://amersportssurveys.secure.force.com *.onetrust.com https://fonts.gstatic.com/ *.wilson.com 'self' https://use.typekit.net https://cdn.cookielaw.org blob: https://amerservice.my.site.com *.peakperformance.com *.atomic.com https://amerservice.force.com https://www.gstatic.com *.cloudfront.net *.salesforce.com https://amersportssurveys.force.com *.salomon.com https://service.force.com data:; report-to sfdc-csp-ep; report-uri https://amerservice.lightning.force.com/_/ContentDomainCSPNoAuth?tenantId=00Db0000000ILKF&networkId=0DMTp00000007Co&type=communities
Date
Other
Sun, 25 Jan 2026 06:48:13 GMT
Link
Other
</s/sfsites/auraFW/javascript/REdtNUF5ejJUNWxpdVllUjQtUzV4UTFLcUUxeUY3ZVB6dE9hR0VheDVpb2cxMy4zMzU1NDQzMi41MDMzMTY0OA/aura_prod.js>;rel=preload;as=script;nopush,</s/sfsites/l/%7B%22mode%22%3A%22PROD%22%2C%22dfs%22%3A%228%22%2C%22app%22%3A%22siteforce%3AcommunityApp%22%2C%22fwuid%22%3A%22REdtNUF5ejJUNWxpdVllUjQtUzV4UTFLcUUxeUY3ZVB6dE9hR0VheDVpb2cxMy4zMzU1NDQzMi41MDMzMTY0OA%22%2C%22loaded%22%3A%7B%22APPLICATION%40markup%3A%2F%2Fsiteforce%3AcommunityApp%22%3A%221421_mg1QpGWKsu060_sD-hU2fg%22%7D%2C%22apce%22%3A1%2C%22apck%22%3A%22JHt0aW1lc3RhbXB9MDAwMDAwMDA1MzRlbl9VUw%22%2C%22mlr%22%3A1%2C%22pathPrefix%22%3A%22%22%2C%22dns%22%3A%22c%22%2C%22ls%22%3A1%2C%22lrmc%22%3A%22551347034%22%7D/resources.js?pu=1&pv=1769040575000-1827064432&rv=1767693481000>;rel=preload;as=script;nopush,</s/sfsites/l/%7B%22mode%22%3A%22PROD%22%2C%22dfs%22%3A%228%22%2C%22app%22%3A%22siteforce%3AcommunityApp%22%2C%22serializationVersion%22%3A%221-13.33554432.50331648-b%22%2C%22parts%22%3A%22f%22%2C%22loaded%22%3A%7B%22APPLICATION%40markup%3A%2F%2Fsiteforce%3AcommunityApp%22%3A%221421_mg1QpGWKsu060_sD-hU2fg%22%7D%2C%22dns%22%3A%22c%22%2C%22ls%22%3A1%2C%22lrmc%22%3A%22551347034%22%7D/app.js?3=>;rel=preload;as=script;nopush
Report-To
Other
{"endpoints":[{"url":"https://amerservice.lightning.force.com/_/ContentDomainCSPNoAuth?tenantId=00Db0000000ILKF&networkId=0DMTp00000007Co&type=communities"}],"max_age":31536000,"group":"sfdc-csp-ep"}
Reporting-Endpoints
Other
sfdc-csp-ep="https://amerservice.lightning.force.com/_/ContentDomainCSPNoAuth?tenantId=00Db0000000ILKF&networkId=0DMTp00000007Co&type=communities"
Server-Timing
Other
Headers;dur=49
Timing-Allow-Origin
Other
*
X-Cdn
Other
Imperva
X-Iinfo
Other
15-7333055-7333056 NNNY CT(91 96 0) RT(1769323693838 14) q(0 0 0 0) r(2 2) U12

Recommendations

Enable compression (gzip/brotli) to improve performance