HTTP Headers Analysis for https://www.tursido.com

HTTP Security Headers

Status

Strict-Transport-Security

Present

max-age=15552001

Content-Security-Policy

Missing

Not configured

X-Frame-Options

Missing

Not configured

X-Content-Type-Options

Good

nosniff

Referrer-Policy

Missing

Not configured

Permissions-Policy

Missing

Not configured

Recommendations

• Increase HSTS max-age to at least 1 year and add includeSubDomains
• Add Content-Security-Policy header to prevent XSS attacks
• Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
• Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
• Consider adding Permissions-Policy to control browser features

Performance Headers

3 headers

Accept-Ranges

Performance

bytes

Connection

Performance

keep-alive

Vary

Performance

X-UA-Device, Accept

Caching Headers

0 headers

No caching headers found

Content Headers

2 headers

Content-Length

Content

104470

Content-Type

Content

text/html; charset=utf-8

Server Headers

1 headers

Server

nginx

CORS Headers

0 headers

No CORS headers found

Cookies Headers

0 headers

No cookies headers found

Other Headers

11 headers

Date

Other

Thu, 13 Nov 2025 05:37:25 GMT

Link

Other

<https://64.media.tumblr.com/6286fd506ce7975f5a188160d3a8f328/43471ec392e9ad54-f0/s128x128u_c1/8005a99699aa1dcdb12ac0cc5f948c638e2ac8b7.pnj>; rel=icon

X-Nc

Other

MISS

X-Rid

Other

db09ac1dcedc51c335d8b48f1532a787

X-Tumblr-Pixel

Other

3

X-Tumblr-Pixel-0

Other

https://px.srvcs.tumblr.com/impixu?T=1763012245&J=eyJ0eXBlIjoidXJsIiwidXJsIjoiaHR0cDovL3R1cnNpZG8uY29tLyIsInJlcXR5cGUiOjAsInJvdXRlIjoiLyJ9&U=CCGILPGFBL&K=4b0b572b7de534481f39e213623c2250469f8ad2304b0f349a21806056c16101--https://px.srvcs.tumblr.com/impixu?T=1763012245&J=eyJ0eXBlIjoicG9zdCIsInVybCI6Imh0dHA6Ly90dXJzaWRvLmNvbS8iLCJyZXF0eXBlIjowLCJyb3V0ZSI6Ii8iLCJwb3N0cyI6W3sicG9zdGlkIjoiNzI3OTUxNjk2NDAzMzE2NzM2IiwiYmxvZ2lkIjoxMzE5NTQ3NDUsInNvdXJjZSI6MzN9LHsicG9zdGlkIjoiNzI3OTUxNjM1MTg0MjIy

X-Tumblr-Pixel-1

Other

MjA4IiwiYmxvZ2lkIjoxMzE5NTQ3NDUsInNvdXJjZSI6MzN9LHsicG9zdGlkIjoiNzI3OTUxNTY1Nzg3MzgxNzYwIiwiYmxvZ2lkIjoxMzE5NTQ3NDUsInNvdXJjZSI6MzN9LHsicG9zdGlkIjoiNzE2ODQ4NDE5MzE3MTIxMDI0IiwiYmxvZ2lkIjoxMzE5NTQ3NDUsInNvdXJjZSI6MzN9LHsicG9zdGlkIjoiNzE2ODQ4NDAwNDQwNjcyMjU2IiwiYmxvZ2lkIjoxMzE5NTQ3NDUsInNvdXJjZSI6MzN9LHsicG9zdGlkIjoiNzE2ODQ4Mzg3MjczNzM2MTkyIiwiYmxvZ2lkIjoxMzE5NTQ3NDUsInNvdXJjZSI6MzN9LHsicG9zdGlkIjoiNzE2ODQ4MzcxNzc2ODY0MjU2IiwiYmxvZ2lkIjoxMzE5NTQ3NDUsInNvdXJjZSI6MzN9LHsicG9zdGlkIjoiNzE2OD

X-Tumblr-Pixel-2

Other

Q3MzcyOTUyNTUxNDI0IiwiYmxvZ2lkIjoxMzE5NTQ3NDUsInNvdXJjZSI6MzN9LHsicG9zdGlkIjoiNzEzMTM3NTExNDc4NzIyNTYwIiwiYmxvZ2lkIjoxMzE5NTQ3NDUsInNvdXJjZSI6MzN9LHsicG9zdGlkIjoiNzA5MTI5MjU4OTMzNTgzODcyIiwiYmxvZ2lkIjoxMzE5NTQ3NDUsInNvdXJjZSI6MzN9LHsicG9zdGlkIjoiNzA5MTI0NTQ2NTY1OTMxMDA4IiwiYmxvZ2lkIjoxMzE5NTQ3NDUsInNvdXJjZSI6MzN9LHsicG9zdGlkIjoiNzA4NzA1MzI1MzYyMDY5NTA1IiwiYmxvZ2lkIjoxMzE5NTQ3NDUsInNvdXJjZSI6MzN9XX0=&U=PPCKGHCIEM&K=9272c8c8e4e071a166744b680fee78222c6c6167c3c125f64396eab05581531e

X-Tumblr-User

Other

tursido

X-Ua-Compatible

Other

IE=Edge,chrome=1

X-Ua-Device

Other

desktop

Recommendations

Enable compression (gzip/brotli) to improve performance

Add Cache-Control header to optimize caching