http://mc.yandex.ru/

Category: Images

Keywords: found


Last fetched: 2020-03-27T06:55:42.157417+00:00

HTTP status: 4 Connection error fail


HTTP security-related headers assessment

Security score
-7
crossdomain.xml

This file defines the cross-domain policy for Adobe applications. Dangerous if permissive or too broadly set » More...

<?xml version="1.0"?> <cross-domain-policy> <allow-access-from domain="*" secure="false"/> </cross-domain-policy>

Read here to see how this can be abused.

Security-related HTTP headers

  • Location: https://mc.yandex.ru/

    The HTTP Location header is being returned by a server to redirect the web browser to a new URL of the requested resource. The URL may be relative (/index.html) or absolute (https://example.com).

    Read more...

  • Server: nginx/1.8.1

    Announces web server software and optionally version details.

    Read more...

Sub-resources

Sub-resources

Most web pages load a number of sub-resources such as images, style sheets (CSS), JavaScript files, web fonts, audio or video files and other web pages in frames. Each of these sub-resources may be loaded from the same server (first-party resource) or servers belonging to other parties (third-party resources). In the latter case, the third-party will see a request coming from your browser with the information on the originating page and it can set its own cookies, both of which are frequently used for user tracking. Note that the cookies set by these sub-resources are already recorded in our cookie statistics for this page.

Symbols

  • Resource securely loaded over TLS
  • Resource insecurely loaded over plaintext HTTP.
  • A third-party resource. It may perform its own tracking on your requests and receive partial information about your activities on the original website
  • Resource with reputation warnings
  • Blacklisted domain
  • Suspicious pattern detected