Age HTTP Header - Original Server Response
Download List of All Websites using Age HTTP Header - Original Server Response
The Age header contains the time in seconds the object has been in a proxy cache.
HSTS - Browser HTTPS Only
Download List of All Websites using HSTS - Browser HTTPS Only
The HTTP Strict-Transport-Security response header (often abbreviated as HSTS) lets a web site tell browsers that it should only be accessed using HTTPS, instead of using HTTP for 604800 seconds
Public Cache-Control
Download List of All Websites using Public Cache-Control
Indicates that the response may be cached by any cache, even if the response would normally be non-cacheable (e.g. if the response does not contain a max-age directive or the Expires header).
Tags:
Cache-Control Header Max-Age
Download List of All Websites using Cache-Control Header Max-Age
Specifies the maximum amount of time a resource will be considered fresh. Contrary to Expires, this directive is relative to the time of the request. this website is having max-age=0 secs.
Tags:
Meta Description
Download List of All Websites using Meta Description
A meta description is a 160-character snippet, a meta tag in HTML, that summarizes a page`s content. this website is having meta description of the following : Home page of Bev Grant, a dance artist from Brooklyn, NY. Singer/Songwriter social justice/feminist, choral director, occasional bandleader, photographer, video and filmmaker
Block Content Sniffing
Download List of All Websites using Block Content Sniffing
The X-Content-Type-Options response HTTP header is a marker used by the server to indicate that the MIME types advertised in the Content-Type headers should not be changed and be followed. This allows to opt-out of MIME type sniffing, or, in other words, it is a way to say that the webmasters knew what they were doing.
Tags:
XSS-Protection Header
Download List of All Websites using XSS-Protection Header
The HTTP X-XSS-Protection response header is a feature of Internet Explorer, Chrome and Safari that stops pages from loading when they detect reflected cross-site scripting (XSS) attacks. Although these protections are largely unnecessary in modern browsers when sites implement a strong Content-Security-Policy that disables the use of inline JavaScript (`unsafe-inline`), they can still provide protections for users of older web browsers that don`t yet support CSP.
Tags: