| Header Name | Header Data |
|---|---|
| HTTP status code | 200 |
| Last-Modified | Fri, 18 Apr 2025 22:00:11 GMT |
| Responsetime | D=2734 t=1745062953376704 |
| X-Ua-Compatible | IE=EmulateIE7 |
| X-Nmcid | |
| Referrer-Policy | strict-origin-when-cross-origin |
| Expires | Sat, 19 Apr 2025 12:03:18 GMT |
| Server | Apache |
| Set-Cookie | ZNPCQ003-31313500=31ba576e; Path=/; Domain=.nmc.edu |
| Content-Type | text/html; charset=UTF-8 |
| Strict-Transport-Security | max-age=31536000;includeSubDomains |
| Cache-Control | max-age=0 |
| Vary | Accept-Encoding |
| X-Content-Type-Options | nosniff |
| X-Xss-Protection | 1; mode=block |
| Content-Security-Policy | default-src 'none'; base-uri 'none'; child-src bid.g.doubleclick.net www.youtube.com 'self' docs.google.com ensemble.nmc.edu vimeo.com nmc.hosted.panopto.com cdn.youvisit.com www.youvisit.com weatherwidget.io; connect-src 'self' *.clive.cloud *.opentable.com *.blackbaud.com *.blackbaudhosting.com *.clarity.ms *.doubleclick.net www.facebook.com adservice.google.com www.google.com www.google-analytics.com analytics.google.com translate.googleapis.com translate-pa.googleapis.com www.googletagmanager.com contact.simpletix.com cdn-graphql.youvisit.com csp.withgoogle.com; font-src data: 'self' *.otstatic.com fonts.gstatic.com; frame-src 'self' sky.blackbaudcdn.net web-pusa01.app.blackbaud.net www.instagram.com player.pbs.org *.elluciancrmrecruit.com www.adsensecustomsearchads.com syndicatedsearch.goog *.opentable.com *.adobe.com *.blackbaud.com *.blackbaudhosting.com *.doubleclick.net googleads.g.doubleclick.net www.facebook.com payment.flywire.com *.google.com www.googletagmanager.com e.issuu.com *.libanswers.com *.lightcastcc.com ensemble.nmc.edu nmcp.ssbxe.nmc.edu webcam.nmc.edu vimeo.com nmc.hosted.panopto.com app.powerbi.com www.powtoon.com www.shoppingsheet.com embed.prod.simpletix.com platform.twitter.com player.vimeo.com cdn.yoshki.com www.youtube.com cdn.youvisit.com www.youvisit.com weatherwidget.io; img-src 'self' data: secure.adnxs.com s3.amazonaws.com c.bing.com *.blackbaud.com *.blackbaudhosting.com *.clarity.ms *.doubleclick.net www.facebook.com adservice.google.com clients1.google.com www.google.com www.google-analytics.com translate.google.com translate.googleapis.com translate-pa.googleapis.com www.googleapis.com www.googletagmanager.com *.gstatic.com code.jquery.com *.nmc.edu www.onlinechatcenters.com cdn.simpletix.com *.smugmug.com syndication.twitter.com m.youtube.com sp.youvisit.com trck.youvisit.com i.ytimg.com www.ebenefits.va.gov littleworld.tv; media-src data: 'self'; object-src 'none'; script-src 'self' 'unsafe-eval' 'unsafe-inline' *.blackbaud.com *.blackbaudhosting.com *.clarity.ms cdnjs.cloudflare.com googleads.g.doubleclick.net connect.facebook.net cse.google.com translate.google.com www.google.com www.google-analytics.com partner.googleadservices.com www.googleadservices.com ajax.googleapis.com translate.googleapis.com translate-pa.googleapis.com www.googletagmanager.com code.jquery.com *.libanswers.com *.lightcastcc.com nmc.beyondtrustcloud.com www.onlinechatcenters.com embed.prod.simpletix.com www.gstatic.com www.shoppingsheet.com platform.twitter.com player.vimeo.com www.youvisit.com weatherwidget.io; script-src-elem 'self' 'unsafe-inline' nmc.elluciancrmrecruit.com nmc.us5.list-manage.com www.instagram.com/embed.js *.gstatic.com *.clive.cloud *.opentable.com *.otstatic.com *.blackbaud.com *.blackbaudhosting.com sky.blackbaudcdn.net *.clarity.ms cdnjs.cloudflare.com googleads.g.doubleclick.net connect.facebook.net cse.google.com translate.google.com www.google.com www.google-analytics.com partner.googleadservices.com www.googleadservices.com ajax.googleapis.com translate.googleapis.com translate-pa.googleapis.com www.googletagmanager.com e.issuu.com/embed.js code.jquery.com *.libanswers.com *.lightcastcc.com list-manage.com/generate-js nmc.beyondtrustcloud.com www.onlinechatcenters.com www.shoppingsheet.com embed.prod.simpletix.com platform.twitter.com player.vimeo.com www.youvisit.com www.ebenefits.va.gov weatherwidget.io; script-src-attr 'unsafe-inline' *.clarity.ms; style-src 'self' 'unsafe-eval' 'unsafe-inline' *.blackbaud.com *.blackbaudhosting.com cdnjs.cloudflare.com www.google.com fonts.googleapis.com translate.googleapis.com translate-pa.googleapis.com code.jquery.com nmc.beyondtrustcloud.com www.shoppingsheet.com embed.prod.simpletix.com; style-src-attr 'unsafe-inline'; style-src-elem 'self' 'unsafe-inline' www.gstatic.com cdn.otstatic.com cdn.gstatic.com *.blackbaud.com *.blackbaudhosting.com sky.blackbaudcdn.net cdnjs.cloudflare.com www.google.com fonts.googleapis.com translate.googleapis.com e.issuu.com/embed.js code.jquery.com nmc.beyondtrustcloud.com www.shoppingsheet.com embed.prod.simpletix.com |
| Via | 1.1 www.nmc.edu (Access Gateway-ag-A5BF464952E28E50-3359474) |
| Accept-Ranges | bytes |
| X-Frame-Options | SAMEORIGIN |
| Date | Sat, 19 Apr 2025 12:03:18 GMT |
By using SecurityHeaders.info, you can quickly identify missing or misconfigured headers and take steps to secure your website, improving both security and user confidence.
This tool is widely used by developers, security professionals, and organizations to ensure their websites adhere to best practices in web security.
We also have another analytic tool that is used for identifying popularity metrics, general information about the business, finding similar products and competitors, and much more.
Watch it now at TrustRadar