HTTP Headers Analysis for https://support.opteo.com

Detected Technologies from Headers

See all in URL Inspect 1

Cloudflare CDN

HTTP Security Headers

Status

Strict-Transport-Security

Weak

max-age=0; includeSubDomains

Content-Security-Policy

Weak

object-src; font-src; img-src; +1 more Analyze

Content-Security-Policy-Report-Only

Missing

Not configured Analyze

X-Frame-Options

Missing

Not configured

X-Content-Type-Options

Good

nosniff

Referrer-Policy

Good

strict-origin-when-cross-origin

Permissions-Policy

Present

geolocation=(self)

Recommendations

• Increase HSTS max-age to at least 1 year and add includeSubDomains
• Significantly strengthen CSP directives
• Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking

Performance Headers

Connection

Performance

close

Transfer-Encoding

Performance

chunked

Vary

Performance

Sec-CH-Prefers-Color-Scheme, Accept-Encoding

connection: close
transfer-encoding: chunked
vary: Sec-CH-Prefers-Color-Scheme, Accept-Encoding

Caching Headers

Cache-Control

Caching

max-age=0, private, must-revalidate

cache-control: max-age=0, private, must-revalidate

Content Headers

Content-Type

Content

text/html; charset=utf-8

content-type: text/html; charset=utf-8

Server Headers

Server

cloudflare

server: cloudflare

CORS Headers

No CORS headers found

Cookies Headers

Set-Cookie

Cookies

set-cookie: c_access_token=eyJhbGciOiJIUzUxMiIsInR5cCI6IkpXVCIsImtpZCI6ImZLR0cifQ.eyJpZCI6IkdVRVNUX2xuVkVqajVPZ1Q3OTJjVCIsIm5ldHdvcmtJZCI6ImdJQ2JqTTVHVVMiLCJuZXR3b3JrRG9tYWluIjoic3VwcG9ydC5vcHRlby5jb20iLCJ0b2tlblR5cGUiOiJHVUVTVCIsImVudGl0eUlkIjpudWxsLCJwZXJtaXNzaW9uQ29udGV4dCI6bnVsbCwicGVybWlzc2lvbnMiOm51bGwsImlhdCI6MTc3ODYzNDY0MSwiZXhwIjoxNzc4NjQ5MDQxfQ.fgf3YBAZFzLeJgO97A7nwIR6xcKkE3emy31rc1rCXOebhUEPgmF9A7kSaaa7-AETW0AzByOOSFB7BUa1VoONgg; Max-Age=604800; Path=/; secure; Expires=Wed, 20 May 2026 01:10:41 GMT; HttpOnly; Secure; Priority=High; SameSite=None
_cfuvid=_eEz14v8WjeQBAu7e2HeJX7TJK0dSXdJI8RrIfhME_I-1778634641.4218254-1.0.1.1-mpvZxfMYi8y6JVaWLSoQxh.xRjcAZoiSgE7LEiBKUyI; HttpOnly; SameSite=None; Secure; Path=/; Domain=support.opteo.com

Other Headers

Accept-Ch

Other

Sec-CH-Prefers-Color-Scheme

Cf-Cache-Status

Other

DYNAMIC

Cf-Ray

Other

9fadc8ecea6605b8-IAD

Critical-Ch

Other

Sec-CH-Prefers-Color-Scheme

Date

Other

Wed, 13 May 2026 01:10:41 GMT

Server-Timing

Other

cfCacheStatus;desc="DYNAMIC", cfEdge;dur=23,cfOrigin;dur=58

Via

Other

2.0 Caddy

X-Bettermode-Ui-Version

Other

4.142.14-16115

X-From-Bm

Other

true

X-Request-Uuid

Other

Zn-ZJp2UWDBDaLTznkqzb

accept-ch: Sec-CH-Prefers-Color-Scheme
cf-cache-status: DYNAMIC
cf-ray: 9fadc8ecea6605b8-IAD
critical-ch: Sec-CH-Prefers-Color-Scheme
date: Wed, 13 May 2026 01:10:41 GMT
server-timing: cfCacheStatus;desc="DYNAMIC", cfEdge;dur=23,cfOrigin;dur=58
via: 2.0 Caddy
x-bettermode-ui-version: 4.142.14-16115
x-from-bm: true
x-request-uuid: Zn-ZJp2UWDBDaLTznkqzb

Recommendations

Enable compression (gzip/brotli) to improve performance