HTTP Headers
Show the HTTP headers for a URL, with a full break-down of details. Will follow redirects.
Summary
- Response
- Total Requests
- 1
- Total Time
- 318 ms
http://nagievonline.com/user/kneecarbon0/
- Status
- 200
- Message
- OK
- Time
- 318 ms
- IP
- 87.236.177.203
Timing
Wait
0 ms
DNS
158 ms
TCP
77 ms
Request
0 ms
First Byte
83 ms
Download
0 ms
Total
318 ms
HTTP Headers
- Server
nginx
A name for the server.
nginx - Description of the server software.
- Date
Sun, 19 May 2024 08:21:00 GMT
The date and time that the message was sent.
- Content-Type
text/html
The MIME type of this content.
Type
text/html
Description
HTML file
- Connection
close
Control options for the current connection and list of hop-by-hop response fields.
close - The client or server would like to close the connection.
- Vary
Accept-Encoding
Indicates that different content may be provided to different clients, depending on the vary header.
Headers
- Accept-Encoding
- Expires
Thu, 19 Nov 1981 08:52:00 GMT
The time at which the response is considered stale.
- Cache-Control
no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Inform all caching mechanisms from server to client whether they may cache this object.
no-store
May not be stored by any cache.
no-cache
May be stored by any cache but must be validated by the server.
must-revalidate
Stale caches must not be used.
post-check
0
Problems were found.
- Option is not one of known values.
pre-check
0
Problems were found.
- Option is not one of known values.
- Pragma
no-cache
HTTP/1.0 backwards compatible cache handling.
no-cache - Force requests to the origin server before releasing a cache.
- Set-Cookie
PHPSESSID=oucajistq8rt94e1ufchhbpdq5; path=/; domain=.nagievonline.com; HttpOnly
A cookie sent from the server to be set on the client
PHPSESSID
oucajistq8rt94e1ufchhbpdq5
Cookie name and value.
Path
/
The client will only send the cookie when requesting this path, or subdirectories, from the server.
Domain
.nagievonline.com
The client will only send the cookie when requesting from this domain.
HttpOnly
Prevents access to the cookie through JavaScript.
- Set-Cookie
dle_user_id=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/; domain=.nagievonline.com; httponly
A cookie sent from the server to be set on the client
dle_user_id
deleted
Cookie name and value.
Expires
Thu, 01-Jan-1970 00:00:01 GMT
When the cookie should expire.
Path
/
The client will only send the cookie when requesting this path, or subdirectories, from the server.
Domain
.nagievonline.com
The client will only send the cookie when requesting from this domain.
httponly
Prevents access to the cookie through JavaScript.
- Set-Cookie
dle_password=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/; domain=.nagievonline.com; httponly
A cookie sent from the server to be set on the client
dle_password
deleted
Cookie name and value.
Expires
Thu, 01-Jan-1970 00:00:01 GMT
When the cookie should expire.
Path
/
The client will only send the cookie when requesting this path, or subdirectories, from the server.
Domain
.nagievonline.com
The client will only send the cookie when requesting from this domain.
httponly
Prevents access to the cookie through JavaScript.
- Set-Cookie
dle_hash=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/; domain=.nagievonline.com; httponly
A cookie sent from the server to be set on the client
dle_hash
deleted
Cookie name and value.
Expires
Thu, 01-Jan-1970 00:00:01 GMT
When the cookie should expire.
Path
/
The client will only send the cookie when requesting this path, or subdirectories, from the server.
Domain
.nagievonline.com
The client will only send the cookie when requesting from this domain.
httponly
Prevents access to the cookie through JavaScript.
- Strict-Transport-Security
max-age=15768000
A HSTS Policy informing the HTTP client how long to cache the HTTPS only policy and whether this applies to subdomains.
Max-Age
15768000 (182 days 12 hours)
The time a browser should remember a site can only be accessed with https (seconds).
- X-Frame-Options
Allow-From http://nagievonline.com
Clickjacking protection.
Allow-From
Allow from specified location.
Problems were found.
- Header is deprecated and should be removed.
- X-Content-Type-Options
nosniff
Prevents Internet Explorer from MIME-sniffing a response away from the declared content-type.
nosniff - Block requests if type 'style' or 'script'.
- X-Xss-Protection
1; mode=block;
Cross-site scripting (XSS) filter.
1
Enable XSS filtering.
Mode
Filtering mode.
- block - Block page if XSS is detected.