Open
Cached
·
just now
17
Headers
HTTP Security Headers
Status
Strict-Transport-Security
Good
max-age=31536000; includeSubDomains
Content-Security-Policy
Weak
frame-ancestors
X-Frame-Options
Good
SAMEORIGIN
X-Content-Type-Options
Good
nosniff
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Consider adding 'preload' to HSTS for maximum security
- • Significantly strengthen CSP directives
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
Performance Headers
2 headers
Connection
Performance
Transfer-Encoding
Transfer-Encoding
Performance
chunked
Caching Headers
4 headers
Cache-Control
Caching
public, max-age=600
Etag
Caching
"4c584-6488f71c5fca8-gzip"
Expires
Caching
Sun, 18 Jan 2026 23:10:47 GMT
Last-Modified
Caching
Sat, 17 Jan 2026 06:19:46 GMT
Content Headers
1 headers
Content-Type
Content
text/html;charset=utf-8
Server Headers
1 headers
Server
Server
Apache
CORS Headers
0 headers
No CORS headers found
Cookies Headers
1 headers
Set-Cookie
Cookies
bm_sz=4D10A0BFBCA07B0A5962DDD9F8007A3E~YAAQCt7aF72NCr+bAQAAyetW0x6NzZIokh3F5Hj1bzCD3nfU5IL1Vsns6d8c5VUnli5TFv40c2ZGKHFmoyoHsDFPRonlxkmiIzgKDeN2dR9ARaTP98x8iSe9MTyjEFfBgzY/vnPpdTQfVKt+rex0Z0bBGGjGFs2yfh3O3aJCA5zjAarowqSduJ9fsnthHXN0Iwt8vQLTRGesffccmelxlapKqCXG6v2msXLHggrRoclQADS/FyTfSdWI2bLXQSebMyfwkOghcmxjcErTTBnTTPMaZiVSHRk2+Wwg1EV+Z57e6Vbxkq/6O1/i9C1E+0Nj6+uBp6celFy9edY1HvJj3YaOEau8WJ9uTcvvSuUubQs=~4277047~4473144; Domain=.wellpoint.com; Path=/; Expires=Mon, 19 Jan 2026 03:00:47 GMT; Max-Age=14400
Other Headers
4 headers
Date
Other
Sun, 18 Jan 2026 23:00:47 GMT
X-Akamai-Transformed
Other
9 63989 0 pmb=mTOE,2
X-Dispatcher
Other
dispatcher2useast1
X-Vhost
Other
wellpoint
Recommendations
Enable compression (gzip/brotli) to improve performance