| Header Name | Header Data |
|---|---|
| HTTP status code | 200 |
| Ghost-Fastly | true |
| X-Timer | S1745039421.758165,VS0,VE0 |
| Cf-Cache-Status | MISS |
| Content-Security-Policy | default-src 'none'; connect-src 'self' api.passwordpurgatory.com bloghelpers.troyhunt.com links.services.disqus.com syndication.twitter.com troyhunt.ghost.io *.google-analytics.com *.privacymanager.io; font-src 'self' cdnjs.cloudflare.com fonts.gstatic.com; frame-src www.linkedin.com disqus.com c.disquscdn.com www.youtube.com player.vimeo.com twitter.com platform.twitter.com syndication.twitter.com omny.fm pastebin.com www.google.com; img-src 'self' c.disquscdn.com referrer.disqus.com syndication.twitter.com platform.twitter.com www.gravatar.com *.twimg.com data:; script-src 'self' passwordpurgatory.com c.disquscdn.com disqus.com troyhunt.disqus.com cdnjs.cloudflare.com platform.twitter.com cdn.syndication.twimg.com syndication.twitter.com gist.github.com/troyhunt/ cdn.jsdelivr.net/ghost/ www.googletagmanager.com *.privacymanager.io www.google.com www.gstatic.com static.cloudflareinsights.com ajax.cloudflare.com 'sha256-26FfYB0WAsKHsnA92jxqaHCDCNo7MV3NrLe1wgLwuI4=' 'sha256-4JqPqO/eQLWuWw1AE7dCvI9hPwiBcw0gy7uoLqS0ncg='; style-src 'self' 'unsafe-inline' c.disquscdn.com cdnjs.cloudflare.com platform.twitter.com ton.twimg.com assets-cdn.github.com github.githubassets.com fonts.googleapis.com; form-action *.twitter.com; media-src 'self'; frame-ancestors 'self' troyhunt.ghost.io; upgrade-insecure-requests; report-uri https://troyhunt.report-uri.com/r/d/csp/enforce |
| Cf-Ray | 9329e51b89840e89-AMS |
| Alt-Svc | h3=":443"; ma=86400 |
| Report-To | {"group":"default","max_age":10886400,"endpoints":[{"url":"https://troyhunt.report-uri.com/a/d/g"}],"include_subdomains":true} |
| Content-Type | text/html; charset=utf-8 |
| Via | 1.1 varnish, 1.1 varnish, 1.1 varnish |
| Referrer-Policy | no-referrer-when-downgrade |
| X-Cache-Hits | 0, 31, 105 |
| Connection | keep-alive |
| Vary | Cookie, Accept-Encoding |
| X-Served-By | cache-ams2100118-AMS, cache-ams2100136-AMS, cache-bru1480038-BRU |
| X-Xss-Protection | 1; mode=block; report=https://troyhunt.report-uri.com/r/d/xss/enforce |
| Cache-Control | public, max-age=14400 |
| Nel | {"report_to":"default","max_age":10886400} |
| Permissions-Policy | accelerometer=(), camera=(), geolocation=(), gyroscope=(), magnetometer=(), microphone=(), payment=(), usb=(), interest-cohort=() |
| X-Request-Id | 03b89539-83db-437a-92c5-ee0f05d605cb |
| X-Content-Type-Options | nosniff |
| Strict-Transport-Security | max-age=31536000; includeSubDomains; preload |
| Status | 200 OK |
| X-Cache | MISS, HIT, HIT |
| Expect-Ct | max-age=0, report-uri=https://troyhunt.report-uri.com/r/d/ct/reportOnly |
| Server | cloudflare |
| Date | Sat, 19 Apr 2025 05:10:20 GMT |
| Expires | Sat, 19 Apr 2025 09:10:20 GMT |
By using SecurityHeaders.info, you can quickly identify missing or misconfigured headers and take steps to secure your website, improving both security and user confidence.
This tool is widely used by developers, security professionals, and organizations to ensure their websites adhere to best practices in web security.
We also have another analytic tool that is used for identifying popularity metrics, general information about the business, finding similar products and competitors, and much more.
Watch it now at TrustRadar