bbg.org | Analytics by SecurityHeaders

HTTP Headers report for bbg.org

Header Name Header Data
HTTP status code 200
Connection keep-alive
Strict-Transport-Security max-age=31536000; includeSubDomains; preload
X-Content-Type-Options nosniff
Report-To {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=x0MkEh2S1ZJkSSqPnUVBDxEuV8buzAbfG2Y8Yxd7%2BzxOSuy%2B7qqG19n4KAOQn6B95okWShKj9xnV3c11Hc1Sif%2Blz%2BR7mkiCkrrrNcn5VadNkM1%2BpsB19pgbH%2BHS"}],"group":"cf-nel","max_age":604800}
Alt-Svc h3=":443"; ma=86400
Content-Type text/html
Expires Sat, 19 Apr 2025 16:57:44 GMT
Vary Accept-Encoding
Server cloudflare
Server-Timing cfL4;desc="?proto=TCP&rtt=856&min_rtt=853&rtt_var=247&sent=5&recv=8&lost=0&retrans=0&sent_bytes=4172&recv_bytes=1810&delivery_rate=4958904&cwnd=251&unsent_bytes=0&cid=ccfafad7466b3e4d&ts=292&x=0"
Date Sat, 19 Apr 2025 12:57:44 GMT
Referrer-Policy strict-origin
Last-Modified Sat, 19 Apr 2025 04:15:10 GMT
Cache-Control max-age=14400
X-Frame-Options SAMEORIGIN
Content-Security-Policy default-src 'none'; script-src 'self' fs20.formsite.com embed.showclix.com bbox.blackbaudhosting.com payments.blackbaud.com www.instagram.com www.google-analytics.com secure.quantserve.com www.googleadservices.com extend.vimeocdn.com www.googletagmanager.com connect.facebook.net rules.quantcount.com *.doubleclick.net *.adroll.com www.google.com www.gstatic.com bbg-botanic.disqus.com cdn.matomo.cloud widgets.resy.com datawrapper.dwcdn.net doublethedonation.com https://cdn.rollbar.com cdn01.basis.net analytics.tiktok.com/api/v2/pixel 'unsafe-inline' 'unsafe-eval'; object-src 'none'; style-src 'self' payments.blackbaud.com bbox.blackbaudhosting.com doublethedonation.com *.disquscdn.com *.dwcdn.net 'unsafe-inline'; base-uri 'self'; form-action 'self' https://signup.bbg.org https://plants.bbg.org https://herbarium.bbg.org https://hic.bbg.org; img-src https: ; media-src https://*.bbg.org; frame-src 'self' www.instagram.com embed.showclix.com *.formsite.com *.vimeo.com widgets.resy.com www.youtube.com www.facebook.com *.doubleclick.net disqus.com recaptcha.google.com payments.blackbaud.com bbox.blackbaudhosting.com www.google.com bbg.matomo.cloud pixel-sync.sitescout.com analytics.tiktok.com; font-src 'self' fonts.gstatic.com doublethedonation.com static.dwcdn.net use.typekit.net; frame-ancestors 'self' manifest-src 'self'; connect-src 'self' www.google-analytics.com tools.bbg.org assets.bbg.org plants.bbg.org signup.bbg.org lookup.bbg.org www.google.com payments.blackbaud.com greenestblock.bbg.org updates.expressionengine.com doublethedonation.com bbg.matomo.cloud datawrapper.dwcdn.net *.doubleclick.net
Cf-Ray 932c91c1a92cdfd3-AMS
Cf-Cache-Status DYNAMIC
Nel {"success_fraction":0,"report_to":"cf-nel","max_age":604800}

About the tool

By using SecurityHeaders.info, you can quickly identify missing or misconfigured headers and take steps to secure your website, improving both security and user confidence.

This tool is widely used by developers, security professionals, and organizations to ensure their websites adhere to best practices in web security.

We also have another analytic tool that is used for identifying popularity metrics, general information about the business, finding similar products and competitors, and much more.

Watch it now at TrustRadar