HTTP Headers
Show the HTTP headers for a URL, with a full break-down of details. Will follow redirects.
Summary
- Response
- Total Requests
- 1
- Total Time
- 2047 ms
https://schoolae.com/read-blog/11410_fake-bags-aa876.html- Status
- 200
- Message
- OK
- Time
- 2047 ms
- IP
- 103.227.176.27
Timing
Wait
0 ms
DNS
21 ms
TCP
276 ms
Request
0 ms
First Byte
1474 ms
Download
0 ms
Total
2047 ms
HTTP Headers
- Connection
close
Control options for the current connection and list of hop-by-hop response fields.
close - The client or server would like to close the connection.
- X-Powered-By
PHP/8.0.30
The software powering this site.
- X-Frame-Options
SAMEORIGIN
Clickjacking protection.
SAMEORIGIN - No rendering if origin mismatch.
- Set-Cookie
PHPSESSID=07c25ed2554f706f2f65909bb6fb96db; path=/; HttpOnly; secure
A cookie sent from the server to be set on the client
PHPSESSID
07c25ed2554f706f2f65909bb6fb96db
Cookie name and value.
Path
/
The client will only send the cookie when requesting this path, or subdirectories, from the server.
HttpOnly
Prevents access to the cookie through JavaScript.
secure
The cookie is only sent when requesting from a https domain.
- Expires
Thu, 19 Nov 1981 08:52:00 GMT
The time at which the response is considered stale.
- Pragma
no-cache
HTTP/1.0 backwards compatible cache handling.
no-cache - Force requests to the origin server before releasing a cache.
- Cache-Control
max-age=846000
Inform all caching mechanisms from server to client whether they may cache this object.
Max-Age
846000 (9 days 19 hours)
The time a browser should remember a site can only be accessed with https (seconds).
- Content-Type
text/html; charset=UTF-8
The MIME type of this content.
Type
text/html
Description
HTML file
Charset
UTF-8
- Date
Sun, 18 May 2025 08:04:00 GMT
The date and time that the message was sent.
- Server
LiteSpeed
A name for the server.
LiteSpeed - Description of the server software.
- Strict-Transport-Security
max-age=63072000; includeSubDomains
A HSTS Policy informing the HTTP client how long to cache the HTTPS only policy and whether this applies to subdomains.
Max-Age
63072000 (2 years)
The time a browser should remember a site can only be accessed with https (seconds).
includesubdomains
max-age applies to subdomains as well.
- X-Content-Type-Options
nosniff
Prevents Internet Explorer from MIME-sniffing a response away from the declared content-type.
nosniff - Block requests if type 'style' or 'script'.
- Keep-Alive
timeout=100,max=500
- Content-Security-Policy
upgrade-insecure-requests;
The content security policy allows the server to determine what resources the user is allowed to load.
upgrade-insecure-requests
Treat insecure URLs as though they are secure.
- Alt-Svc
h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
Indicate a resource should be loaded from a different server while still appearing to be loaded from this server.
Service
- h3 - :443
Service
- ma - 2592000 (30 days)
Max age for the alternative (seconds).
- h3-29 - :443
- ma - 2592000 (30 days)
Service
- ma - 2592000 (30 days)
Max age for the alternative (seconds).
- h3-Q050 - :443
- ma - 2592000 (30 days)
Service
- ma - 2592000 (30 days)
Max age for the alternative (seconds).
- h3-Q046 - :443
- ma - 2592000 (30 days)
Service
- ma - 2592000 (30 days)
Max age for the alternative (seconds).
- h3-Q043 - :443
- ma - 2592000 (30 days)
Service
- ma - 2592000 (30 days)
Max age for the alternative (seconds).
- quic - :443
- ma - 2592000 (30 days)
Service
- ma - 2592000 (30 days)
Max age for the alternative (seconds).
- ma - 2592000 (30 days)
Version
- 43
- 46