SECURITYHEADERS.IO 網站分析
造訪網站 securityheaders.io 時發生錯誤
我們在嘗試存取網站 securityheaders.io 的以下 URL 位址時遇到錯誤:
- HTTP 403 http://securityheaders.io/
- HTTP 403 https://securityheaders.io/
HTTP 403 是一個 HTTP 狀態碼,表示禁止存取所要求的資源。當伺服器限制我們的機器人存取頁面時,通常會由於防火牆的存在而發生這種情況。
以下內容顯示了我們的伺服器在 2024-09-30 快取的部分歷史分析資料。由於我們的機器人無法存取本網站,數據可能不完整或過時,僅供您參考。
基本信息
服務器:
cloudflare
IP:
城市:
頁面信息
標題:
Analyse your HTTP response headers
長度: 34 字元; 最佳長度: 10 ~ 60 字元
Meta 描述信息:
Quickly and easily assess the security of your HTTP response headers
長度: 68 字元; 最佳長度: 50 ~ 160 字元
Meta 關鍵詞:
security headers, http response headers, check headers, scan headers
長度: 68 字元; 最佳長度: 10 ~ 255 字元
H1標籤:
Security Headers
長度: 16 字元; 最佳長度: 10 ~ 255 字元
外部鏈接:
6 (0 nofollow)
內部鏈接:
26 (0 nofollow)
建站技術
服務器:
cloudflare
SSL 安全:
有效
robots.txt:
不可用
XML 站點地圖:
不可用
Gzip 壓縮:
有效
favicon.ico:
不可用
HTTP Head 分析
HTTP 協議採用了請求與響應模型,通過HTTP Header 定義了HTTP 傳輸過程中的必要參數。瀏覽器(例如Internet Explorer, Google Chrome, Firefox 等)並不會顯示HTTP header 字段的內容,下面是網站securityheaders.io 的HTTP header 信息:
HTTP/1.1 200 OK
Date: Tue, 01 Oct 2024 01:29:36 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
vary: Accept-Encoding
set-cookie: anti_forgery_cookie=2889fd2f13a4369b2005fb74a1087030; expires=Tue, 01-Oct-2024 03:29:36 GMT; Max-Age=7200; path=/
access-control-allow-origin: *
content-security-policy: default-src 'self'; script-src 'self' js.stripe.com static.cloudflareinsights.com www.google.com/recaptcha/api.js www.gstatic.com/recaptcha/releases/; img-src 'self'; style-src 'self' 'unsafe-inline' fonts.googleapis.com cdnjs.cloudflare.com; font-src 'self' fonts.gstatic.com cdnjs.cloudflare.com; form-action 'self'; frame-src js.stripe.com www.google.com; report-uri https://scotthelme.report-uri.com/r/d/csp/enforce; report-to default
strict-transport-security: max-age=31536000; includeSubDomains; preload
referrer-policy: strict-origin-when-cross-origin
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block; report=https://scotthelme.report-uri.com/r/d/xss/enforce
x-content-type-options: nosniff
expect-ct: max-age=0, report-uri="https://scotthelme.report-uri.com/r/d/ct/reportOnly"
permissions-policy: accelerometer=(), camera=(), geolocation=(), gyroscope=(), magnetometer=(), microphone=(), payment=(), usb=()
report-to: {"group":"default","max_age":31536000,"endpoints":[{"url":"https://scotthelme.report-uri.com/a/d/g"}],"include_subdomains":true}
nel: {"report_to":"default","max_age":31536000,"include_subdomains":true}
Cache-Control: public, max-age=60
cross-origin-embedder-policy-report-only: require-corp; report-to="default"
cross-origin-opener-policy-report-only: same-origin; report-to="default"
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 8cb8aec37c99429e-EWR
Content-Encoding: gzip
Date: Tue, 01 Oct 2024 01:29:36 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
vary: Accept-Encoding
set-cookie: anti_forgery_cookie=2889fd2f13a4369b2005fb74a1087030; expires=Tue, 01-Oct-2024 03:29:36 GMT; Max-Age=7200; path=/
access-control-allow-origin: *
content-security-policy: default-src 'self'; script-src 'self' js.stripe.com static.cloudflareinsights.com www.google.com/recaptcha/api.js www.gstatic.com/recaptcha/releases/; img-src 'self'; style-src 'self' 'unsafe-inline' fonts.googleapis.com cdnjs.cloudflare.com; font-src 'self' fonts.gstatic.com cdnjs.cloudflare.com; form-action 'self'; frame-src js.stripe.com www.google.com; report-uri https://scotthelme.report-uri.com/r/d/csp/enforce; report-to default
strict-transport-security: max-age=31536000; includeSubDomains; preload
referrer-policy: strict-origin-when-cross-origin
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block; report=https://scotthelme.report-uri.com/r/d/xss/enforce
x-content-type-options: nosniff
expect-ct: max-age=0, report-uri="https://scotthelme.report-uri.com/r/d/ct/reportOnly"
permissions-policy: accelerometer=(), camera=(), geolocation=(), gyroscope=(), magnetometer=(), microphone=(), payment=(), usb=()
report-to: {"group":"default","max_age":31536000,"endpoints":[{"url":"https://scotthelme.report-uri.com/a/d/g"}],"include_subdomains":true}
nel: {"report_to":"default","max_age":31536000,"include_subdomains":true}
Cache-Control: public, max-age=60
cross-origin-embedder-policy-report-only: require-corp; report-to="default"
cross-origin-opener-policy-report-only: same-origin; report-to="default"
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 8cb8aec37c99429e-EWR
Content-Encoding: gzip
DNS 記錄分析
DNS 域名系統(Domain Name System,縮寫)是Internet 的一項基礎服務。它作為將域名和 IP 位址相互映射的一個分佈式數據庫,能夠使人更方便的訪問互聯網。 securityheaders.io 當前共有 13 項 DNS 記錄。
| 主機 | 類型 | IP/目標 | TTL | 擴充資訊 |
|---|---|---|---|---|
| securityheaders.io | A | 296 | ||
| securityheaders.io | A | 296 | ||
| securityheaders.io | NS | 21600 | ||
| securityheaders.io | NS | 21600 | ||
| securityheaders.io | SOA | 1800 | expire: 604800 serial: 2351537871 | |
| securityheaders.io | MX | 300 | pri: 10 | |
| securityheaders.io | MX | 300 | pri: 20 | |
| securityheaders.io | TXT | v=spf1 include:spf.messagingengine.com -all | 300 | |
| securityheaders.io | TXT | google-site-verification=Ope15tGgC-fqidRzJOi3pJfLYAUjg-fC1BzWgKHciJY | 300 | |
| securityheaders.io | TXT | keybase-site-verification=36kRxygqDNby_83957VhO1OKAkrU-JQeY1apzZL3HTE | 300 | |
| securityheaders.io | TXT | blitz=mu-d15e2e49-bd72d4fd-b5efada7-c5904cb1 | 300 | |
| securityheaders.io | AAAA | 2606:4700:3031::ac43:c46b | 300 | |
| securityheaders.io | AAAA | 2606:4700:3033::6815:1532 | 300 |