Security Report Summary
C
Site: | https://padlet.com/sohbettr/tr-sohbet-chat-odalar-rdamsjes9mier9pu | ||
---|---|---|---|
IP Address: | 2606:4700:4400::6812:2aee | ||
Report Time: | 05 May 2024 13:15:33 UTC | ||
Headers: |
|
||
Advanced: |
|
Missing Headers
Content-Security-Policy | Content Security Policy is an effective measure to protect your site from XSS attacks. By whitelisting sources of approved content, you can prevent the browser from loading malicious assets. |
---|---|
X-Frame-Options | X-Frame-Options tells the browser whether you want to allow your site to be framed or not. By preventing a browser from framing your site you can defend against attacks like clickjacking. Recommended value "X-Frame-Options: SAMEORIGIN". |
Permissions-Policy | Permissions Policy is a new header that allows a site to control which features and APIs can be used in the browser. |
Raw Headers
HTTP/2 | 200 |
---|---|
date | Sun, 05 May 2024 13:15:33 GMT |
content-type | text/html; charset=utf-8 |
x-xss-protection | 0 |
x-content-type-options | nosniff |
x-download-options | noopen |
x-permitted-cross-domain-policies | none |
referrer-policy | strict-origin-when-cross-origin |
ww-app-version | v-2405032211-42381-production |
vary | Accept-Encoding, Accept-Language |
p3p | CP="IDC DSP COR CURa ADMa OUR NOR ONL COM" |
cache-control | no-store |
pragma | no-cache |
expires | Mon, 01 Jan 1990 00:00:00 GMT |
ww-cat | padlet |
x-robots-tag | noindex, nofollow |
link | <https://padlet.net/assets/immaterial-1d166df28d67a6034302b5566ee8f0402390285a7ec7558bf5c34023e1834dca.woff2>;rel="preload";as="font";crossorigin,<https://padlet.net/assets/translations/en_GB-bccdab4cae079bdf10d577ad8445f868ef3afb5a0f1328fc7a25b375b8d8ca8d.js>; rel=preload; as=script; nopush,<https://padlet.net/packs/js/runtime~surface-482ee2114b5792b5afca.js>; rel=preload; as=script; nopush,<https://padlet.net/packs/js/0-1c8b9f264dfe9c8132b2.chunk.js>; rel=preload; as=script; nopush,<https://padlet.net/packs/js/1-bf936fd842f2d9b1f86d.chunk.js>; rel=preload; as=script; nopush,<https://padlet.net/packs/js/surface-93ee6dde3530538f9a3f.chunk.js>; rel=preload; as=script; nopush,<https://padlet.net/assets/3/kit-87eb168e37f7db4248b55cef164eaabe5fb52fc4d26c2c317502888f8078c157.css>;rel="preload";as="style",<https://padlet.net/assets/3/kit-87eb168e37f7db4248b55cef164eaabe5fb52fc4d26c2c317502888f8078c157.css>; rel=preload; as=style; type=text/css,<https://padlet.net/assets/3/kit-87eb168e37f7db4248b55cef164eaabe5fb52fc4d26c2c317502888f8078c157.css>; rel=preload; as=style; nopush,<https://padlet.net/assets/3/surface/show-6cc486effff91f7afda2ab556adc152b26ab4f4b8c3c6bbf7267f4f7fcfeb2e1.css>;rel="preload";as="style",<https://padlet.net/assets/3/surface/show-6cc486effff91f7afda2ab556adc152b26ab4f4b8c3c6bbf7267f4f7fcfeb2e1.css>; rel=preload; as=style; type=text/css,<https://padlet.net/assets/3/surface/show-6cc486effff91f7afda2ab556adc152b26ab4f4b8c3c6bbf7267f4f7fcfeb2e1.css>; rel=preload; as=style; nopush,<https://padlet.net/packs/css/surface-82b2eb80.chunk.css>; rel=preload; as=style; nopush,<https://padlet.net/assets/print-67d79b583ec68c2a2f2071dc69e621f846cb7283ac7bc01109f117b8b3ddbbca.css>;rel="preload";as="style",<https://padlet.net/assets/print-67d79b583ec68c2a2f2071dc69e621f846cb7283ac7bc01109f117b8b3ddbbca.css>; rel=preload; as=style; type=text/css,<https://padlet.net/assets/print-67d79b583ec68c2a2f2071dc69e621f846cb7283ac7bc01109f117b8b3ddbbca.css>; rel=preload; as=style; nopush,<https://padlet.net/assets/3/surface/show/layouts/grid-512e338e12349162a4ec2e1c685766b7a84585439f05bc8a129ede3a0316a287.css>;rel="preload";as="style",<https://padlet.net/assets/3/surface/show/layouts/grid-512e338e12349162a4ec2e1c685766b7a84585439f05bc8a129ede3a0316a287.css>; rel=preload; as=style; type=text/css,<https://padlet.net/assets/3/surface/show/layouts/grid-512e338e12349162a4ec2e1c685766b7a84585439f05bc8a129ede3a0316a287.css>; rel=preload; as=style; nopush,<https://padlet.net/assets/3/surface/show/layouts/stream-dec99a9b1fc512e9210a17cb0808a31f8bff92b72eeed01a0afb9f9cca286f56.css>;rel="preload";as="style",<https://padlet.net/assets/3/surface/show/layouts/stream-dec99a9b1fc512e9210a17cb0808a31f8bff92b72eeed01a0afb9f9cca286f56.css>; rel=preload; as=style; type=text/css,<https://padlet.net/assets/3/surface/show/layouts/stream-dec99a9b1fc512e9210a17cb0808a31f8bff92b72eeed01a0afb9f9cca286f56.css>; rel=preload; as=style; nopush,<https://padlet.net/assets/3/surface/show/layouts/matrix-2e9f5fad60cf83bafbbba6766974c55cf42fc3769d2a238346f2093954fc45e4.css>;rel="preload";as="style",<https://padlet.net/assets/3/surface/show/layouts/matrix-2e9f5fad60cf83bafbbba6766974c55cf42fc3769d2a238346f2093954fc45e4.css>; rel=preload; as=style; type=text/css,<https://padlet.net/assets/3/surface/show/layouts/matrix-2e9f5fad60cf83bafbbba6766974c55cf42fc3769d2a238346f2093954fc45e4.css>; rel=preload; as=style; nopush,<https://padlet.net/assets/3/surface/show/layouts/shelf-322c8ea244c577772f7bc297bdb4175a0025eb2c8d5a78473cc5128682c018c9.css>;rel="preload";as="style",<https://padlet.net/assets/3/surface/show/layouts/shelf-322c8ea244c577772f7bc297bdb4175a0025eb2c8d5a78473cc5128682c018c9.css>; rel=preload; as=style; type=text/css,<https://padlet.net/assets/3/surface/show/layouts/shelf-322c8ea244c577772f7bc297bdb4175a0025eb2c8d5a78473cc5128682c018c9.css>; rel=preload; as=style; nopush,<https://padlet.net/assets/3/surface/show/layouts/free-457e956ef93731d60f8add28a257e8a09f329d8ff98ded9b9c920c98c4e69ffa.css>;rel="preload";as="style",<https://padlet.net/assets/3/surface/show/layouts/free-457e956ef93731d60f8add28a257e8a09f329d8ff98ded9b9c920c98c4e69ffa.css>; rel=preload; as=style; type=text/css,<https://padlet.net/assets/3/surface/show/layouts/free-457e956ef93731d60f8add28a257e8a09f329d8ff98ded9b9c920c98c4e69ffa.css>; rel=preload; as=style; nopush,<https://padlet.net/assets/3/surface/show/layouts/map-82206904596605d89156e2e781c4dbe892bdd22526a07695b5c18a097a36c0bd.css>;rel="preload";as="style",<https://padlet.net/assets/3/surface/show/layouts/map-82206904596605d89156e2e781c4dbe892bdd22526a07695b5c18a097a36c0bd.css>; rel=preload; as=style; type=text/css,<https://padlet.net/assets/3/surface/show/layouts/map-82206904596605d89156e2e781c4dbe892bdd22526a07695b5c18a097a36c0bd.css>; rel=preload; as=style; nopush,<https://padlet.net/assets/3/surface/show/layouts/timeline-e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855.css>;rel="preload";as="style",<https://padlet.net/assets/3/surface/show/layouts/timeline-e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855.css>; rel=preload; as=style; type=text/css,<https://padlet.net/assets/3/surface/show/layouts/timeline-e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855.css>; rel=preload; as=style; nopush,<https://padlet.net/v3/polyfill.min.js?flags=gated&features=default%2Cfetch%2CgetComputedStyle%2CResizeObserver%2CIntersectionObserver%2CIntersectionObserverEntry%2CArray.prototype.includes%2CArray.prototype.find%2CArray.prototype.findIndex%2CObject.entries%2CObject.values%2CNodeList.prototype.%40%40iterator%2CNodeList.prototype.forEach%2CIntl%2CNode.prototype.contains>;rel="preload";as="script";crossorigin,<https://padlet.net/v3/polyfill.min.js?flags=gated&features=default%2Cfetch%2CgetComputedStyle%2CResizeObserver%2CIntersectionObserver%2CIntersectionObserverEntry%2CArray.prototype.includes%2CArray.prototype.find%2CArray.prototype.findIndex%2CObject.entries%2CObject.values%2CNodeList.prototype.%40%40iterator%2CNodeList.prototype.forEach%2CIntl%2CNode.prototype.contains>; rel=preload; as=script; crossorigin=anonymous; nopush |
set-cookie | ww_d=b73c99b642b08504614a50afbacbb5c5; domain=.padlet.com; path=/; expires=Sat, 05 May 2074 13:15:33 GMT; secure |
x-request-id | 25c28548-ecfe-4a7b-bec5-5b44d1779558 |
x-runtime | 0.238805 |
strict-transport-security | max-age=63072000; includeSubDomains |
ww-box | mozart-web-blue-95d1 |
via | 1.1 google |
alt-svc | h3=":443"; ma=86400 |
cf-cache-status | DYNAMIC |
set-cookie | ww_s=b526bbe860e8e4612a1489decbefeb59; domain=.padlet.com; path=/; expires=Sun, 05 May 2024 13:45:33 GMT; secure |
set-cookie | ww_l=; domain=.padlet.com; path=/; expires=Sat, 05 May 2074 13:15:33 GMT; secure |
set-cookie | ww_f=beta%3Dfalse; domain=.padlet.com; path=/; expires=Sat, 05 May 2074 13:15:33 GMT; secure |
set-cookie | ww_p=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%3D--1ab739c2ddca11a3eb1a41e8bb784ff28b7e23aa; domain=.padlet.com; path=/; expires=Sat, 05 May 2074 13:15:33 GMT; secure; HttpOnly |
set-cookie | __cf_bm=FxxdMYwoWrafklt56KexY8rpf7tQRbDg8DuLS92H.9E-1714914933-1.0.1.1-tPzCUg4RkfIjgy_bM06apfgvYM9X0UKm7d7Tucq_o_BZe7avhiPsv518OAyy3wc84vOeIA9H74dEuFys2cj8BPNECWcfZa6aimpUQJskvZc; path=/; expires=Sun, 05-May-24 13:45:33 GMT; domain=.padlet.com; HttpOnly; Secure; SameSite=None |
report-to | {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Qtqe11iuHOyjqfNEWmqyt0f30bqTFZyMSjrmyqkJfw%2FGpHr%2B2kMUrM4ZI%2FRrW3fq6i5TwHzzVBljN62tx1cf4%2FewsxxeqYlzR8udATtAAiMrkCbNVAbk5IXYaAhZE0vM4FGCw0GxHt8%3D"}],"group":"cf-nel","max_age":604800} |
nel | {"success_fraction":0,"report_to":"cf-nel","max_age":604800} |
server | cloudflare |
cf-ray | 87f0fffe7bb467d9-SJC |
content-encoding | gzip |
Upcoming Headers
Cross-Origin-Embedder-Policy | Cross-Origin Embedder Policy allows a site to prevent assets being loaded that do not grant permission to load them via CORS or CORP. |
---|---|
Cross-Origin-Opener-Policy | Cross-Origin Opener Policy allows a site to opt-in to Cross-Origin Isolation in the browser. |
Cross-Origin-Resource-Policy | Cross-Origin Resource Policy allows a resource owner to specify who can load the resource. |
Additional Information
x-xss-protection | X-XSS-Protection sets the configuration for the XSS Auditor built into older browsers. The recommended value was "X-XSS-Protection: 1; mode=block" but you should now look at Content Security Policy instead. |
---|---|
x-content-type-options | X-Content-Type-Options stops a browser from trying to MIME-sniff the content type and forces it to stick with the declared content-type. The only valid value for this header is "X-Content-Type-Options: nosniff". |
referrer-policy | Referrer Policy is a new header that allows a site to control how much information the browser includes with navigations away from a document and should be set by all sites. |
strict-transport-security | HTTP Strict Transport Security is an excellent feature to support on your site and strengthens your implementation of TLS by getting the User Agent to enforce the use of HTTPS. |
report-to | Report-To enables the Reporting API. This allows a website to collect reports from the browser about various errors that may occur. You can sign up for a free account on Report URI to collect these reports. |
nel | Network Error Logging is a new header that instructs the browser to send reports during various network or application errors. You can sign up for a free account on Report URI to collect these reports. |
server | Server value has been changed. Typically you will see values like "Microsoft-IIS/8.0" or "nginx 1.7.2". |