DNS Gurus

SSL Verification Bypassed

The server's SSL certificate could not be verified. The analysis was completed using insecure mode. Data may be less reliable.

Reason:

Unknown Certificate Authority - the server's certificate is not trusted

Cached · just now
17 Headers

HTTP Security Headers

Status
Strict-Transport-Security
Present
max-age=31536000
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Good
SAMEORIGIN
X-Content-Type-Options
Good
nosniff
Referrer-Policy
Good
strict-origin-when-cross-origin
Permissions-Policy
Present
accelerometer=(), autoplay=(), camera=(), encrypted-media=(), fullscreen=(self), geolocation=(), gyroscope=(), magnetometer=(), microphone=(), midi=(), payment=(), picture-in-picture=(), sync-xhr=(), usb=()
Recommendations
  • Increase HSTS max-age to at least 1 year and add includeSubDomains
  • Add Content-Security-Policy header to prevent XSS attacks

Performance Headers

0 headers
No performance headers found

Caching Headers

1 headers
Cache-Control
Caching
must-revalidate, no-cache, no-store, post-check=0, pre-check=0, private

Content Headers

1 headers
Content-Type
Content
text/html; charset=UTF-8

Server Headers

0 headers
No server headers found

CORS Headers

0 headers
No CORS headers found

Cookies Headers

1 headers
Set-Cookie
Cookies
sra_s=eyJpdiI6InJhajA1bTYrUGpWRzRFa3BqK21TbWc9PSIsInZhbHVlIjoieTUyMkV2SGNlVGhGbytzK292SVQvTVErcFUrUjhYM2JBeThQVDJjTm1NenBBN3k3Zkd0RmVZelRZNVVOZlg4VTluK2xnM2JTWWtxOXFPcWVFeVJaN3pGS3RyYWE5M2pUcGdOVllPUUFvRnhrbHljT2wzVHhtRFhCM3RkZGViMGgiLCJtYWMiOiI2NWI5MzhlMzNmNmVmNDc1MWRjZDkxYzNhYWE4YTFlYzM3MTMxODJlYzM3NDg1OTQ0NmNiMDc1ODE1YTkxNTYwIiwidGFnIjoiIn0%3D; path=/; secure; httponly; samesite=lax

Other Headers

7 headers
Accept-Ch
Other
Sec-CH-UA, Sec-CH-UA-Mobile, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-Arch, Sec-CH-UA-Bitness
Content-Security-Policy-Report-Only
Other
default-src 'self' pinned-stjudemedicalint:; frame-ancestors 'self'; object-src 'none'; base-uri 'self'; report-uri https://support.sjm.com/portal/cspv; report-to cspv;
Date
Other
Fri, 26 Dec 2025 07:08:13 GMT
Reporting-Endpoints
Other
cspv="https://support.sjm.com/portal/cspv"
X-Permitted-Cross-Domain-Policies
Other
none
X-Trace-Id
Other
d8672c45-9055-4f9b-a454-fe35c0c01bcc
X-Ua-Compatible
Other
IE=edge

Recommendations

Enable compression (gzip/brotli) to improve performance

Analysis completed in 296ms