Report for login.gov Generated 2017-10-05T08:14:35Z

sp-sinatra.pt.login.gov

http://sp-sinatra.pt.login.gov/ source code | headers | screenshot

200 OK  
Connection keep-alive
Content-Length 4742
Content-Type text/html;charset=utf-8
Date Thu, 05 Oct 2017 08:14:01 GMT
Keep-Alive timeout=5
Server nginx + Phusion Passenger
Set-Cookie sinatra_sp=BAh7BkkiD3Nlc3Npb25faWQGOgZFVEkiRThiMDcxNTMyOWViM2EwYWJhN2Yw%0AM2QyOWJjNTUyMzU1YjBkZDM1ZDJhZTk0NTZiZjZiZWEwNGVmNGJmYjRhNDAG%0AOwBG%0A--88b71de6cf8b8406a730e6aa0b1efc449b74cbfe; path=/; HttpOnly
Status 200 OK
Strict-Transport-Security max-age=31536000; includeSubdomains; preload
X-Content-Type-Options nosniff
X-Frame-Options SAMEORIGIN
X-Powered-By Phusion Passenger
X-Xss-Protection 1; mode=block
sp-sinatra.pt.login.gov

https://sp-sinatra.pt.login.gov/ source code | headers | screenshot

200 OK  
Connection keep-alive
Content-Length 4742
Content-Type text/html;charset=utf-8
Date Thu, 05 Oct 2017 08:14:08 GMT
Keep-Alive timeout=5
Server nginx + Phusion Passenger
Set-Cookie sinatra_sp=BAh7BkkiD3Nlc3Npb25faWQGOgZFVEkiRWM1NzYxOGViMGQ1Zjk2YTRkYzgx%0AOTZkZTA4Yzc5MGMzODg1MTYwMmVmOTUyNzZjYmJiYzcxYjk0Yzk3MWYxYzkG%0AOwBG%0A--648690c38af2ffc52dd226f8f587b8f888538e06; path=/; HttpOnly
Status 200 OK
Strict-Transport-Security max-age=31536000; includeSubdomains; preload
X-Content-Type-Options nosniff
X-Frame-Options SAMEORIGIN
X-Powered-By Phusion Passenger
X-Xss-Protection 1; mode=block
sp-sinatra.qa.login.gov

http://sp-sinatra.qa.login.gov/ source code | headers | screenshot

200 OK  
Connection keep-alive
Content-Length 4742
Content-Type text/html;charset=utf-8
Date Thu, 05 Oct 2017 08:13:54 GMT
Keep-Alive timeout=5
Server nginx + Phusion Passenger
Set-Cookie sinatra_sp=BAh7BkkiD3Nlc3Npb25faWQGOgZFVEkiRTk4YTk4ZGFhYmJhMTg2MTMxYzlm%0AYzg4NWU3ZWYzZjU4Yjk0Y2YzMDQ5ZTM3ODEwNDQxNzA5YWNmMTdkZTkxODMG%0AOwBG%0A--f7f5d33ecce59a298e311fc5e84895f70d6349bd; path=/; HttpOnly
Status 200 OK
Strict-Transport-Security max-age=31536000; includeSubdomains; preload
X-Content-Type-Options nosniff
X-Frame-Options SAMEORIGIN
X-Powered-By Phusion Passenger
X-Xss-Protection 1; mode=block
sp-sinatra.qa.login.gov

https://sp-sinatra.qa.login.gov/ source code | headers | screenshot

200 OK  
Connection keep-alive
Content-Length 4742
Content-Type text/html;charset=utf-8
Date Thu, 05 Oct 2017 08:14:10 GMT
Keep-Alive timeout=5
Server nginx + Phusion Passenger
Set-Cookie sinatra_sp=BAh7BkkiD3Nlc3Npb25faWQGOgZFVEkiRTc5ODYwYjNhYWRjNjdiMzIyNWIy%0AZmU1ZDY5Y2FhM2QwNWE4NjVmNjQwYmIxZTRkNTM0NmM0ODM3MjU4M2IzYWQG%0AOwBG%0A--b8d7f93ba84857e2e6f086fcca837486c3f00b87; path=/; HttpOnly
Status 200 OK
Strict-Transport-Security max-age=31536000; includeSubdomains; preload
X-Content-Type-Options nosniff
X-Frame-Options SAMEORIGIN
X-Powered-By Phusion Passenger
X-Xss-Protection 1; mode=block
sp.brody.login.gov

http://sp.brody.login.gov/ source code | headers | screenshot

401 Unauthorized  
Cache-Control no-cache
Content-Type text/html; charset=utf-8
Date Thu, 05 Oct 2017 08:14:06 GMT
Server nginx + Phusion Passenger
Status 401 401 Unauthorized
Www-Authenticate Basic realm="Application"
X-Content-Type-Options nosniff
X-Frame-Options SAMEORIGIN
X-Powered-By Phusion Passenger
X-Request-Id 1d481ce1-7089-4559-b338-55649f67557b
X-Runtime 0.002701
X-Xss-Protection 1; mode=block
sp.brody.login.gov

https://sp.brody.login.gov/ source code | headers | screenshot

200 OK  
Cache-Control max-age=0, private, must-revalidate
Content-Security-Policy default-src 'self'; connect-src 'self'; font-src 'self' data:; frame-src 'self'; img-src 'self' data:; media-src 'self'; object-src 'none'; script-src 'self' *.newrelic.com *.nr-data.net; style-src 'self'
Content-Type text/html; charset=utf-8
Date Thu, 05 Oct 2017 08:14:16 GMT
Etag W/"01a26346725ed5baada7fc7b43fd4010"
Server nginx + Phusion Passenger
Set-Cookie _identity-dashboard_session=REpjT3B3ZU43OTNmRjdsWGpXNzcvNW5MVER1YnVGODhZV1FLRE9uSXZTWGtnVkE0MzhDR3AvY0RwODBtaURSdE9sYlBNU0txVitnOTVwZnBCYUlGYjl2K2hSbFppMXJocXdMbmhoRXVQNVF1ZGw5eVpHSXhKZUFTZVdEN2RZam1sVGQ0ZWkyQlpMMFFVMnlXdGZMSTZBPT0tLUdJRGpGYmExd3dzMFNZaEQ4YmhuN0E9PQ%3D%3D--3cc2a904af4b5766bd960cfca92f9db773c50c2a; path=/; HttpOnly
Status 200 200 OK
Strict-Transport-Security max-age=86400; includeSubDomains
Vary Accept-Encoding
X-Content-Type-Options nosniff
X-Download-Options noopen
X-Frame-Options SAMEORIGIN
X-Permitted-Cross-Domain-Policies none
X-Powered-By Phusion Passenger
X-Request-Id 6051797c-d0f9-453c-9283-d4ce6e354de4
X-Runtime 0.061448
X-Xss-Protection 1; mode=block
sp.dm.login.gov

http://sp.dm.login.gov/ source code | headers | screenshot

401 Unauthorized  
Cache-Control no-cache
Connection keep-alive
Content-Type text/html; charset=utf-8
Date Thu, 05 Oct 2017 08:14:21 GMT
Keep-Alive timeout=5
Server nginx + Phusion Passenger
Status 401 Unauthorized
Transfer-Encoding chunked
Www-Authenticate Basic realm="Application"
X-Content-Type-Options nosniff
X-Frame-Options SAMEORIGIN
X-Powered-By Phusion Passenger
X-Request-Id eb7a1318-f14e-429b-8ccb-e7edf018d8e5
X-Runtime 0.002639
X-Xss-Protection 1; mode=block
sp.dm.login.gov

https://sp.dm.login.gov/ source code | headers | screenshot

401 Unauthorized  
Cache-Control no-cache
Connection keep-alive
Content-Type text/html; charset=utf-8
Date Thu, 05 Oct 2017 08:14:27 GMT
Keep-Alive timeout=5
Server nginx + Phusion Passenger
Status 401 Unauthorized
Transfer-Encoding chunked
Www-Authenticate Basic realm="Application"
X-Content-Type-Options nosniff
X-Frame-Options SAMEORIGIN
X-Powered-By Phusion Passenger
X-Request-Id a5d2c488-b639-4aa7-a36f-e34ae6a518b9
X-Runtime 0.002665
X-Xss-Protection 1; mode=block
sp.int.login.gov

https://sp.int.login.gov/ source code | headers | screenshot

401 Unauthorized  
Cache-Control no-cache
Connection keep-alive
Content-Type text/html; charset=utf-8
Date Thu, 05 Oct 2017 08:14:01 GMT
Keep-Alive timeout=5
Server nginx + Phusion Passenger
Status 401 Unauthorized
Transfer-Encoding chunked
Www-Authenticate Basic realm="Application"
X-Content-Type-Options nosniff
X-Frame-Options SAMEORIGIN
X-Powered-By Phusion Passenger
X-Request-Id 1a49f2f9-5e3c-4ef5-8324-3c7ab9496723
X-Runtime 0.002504
X-Xss-Protection 1; mode=block
sp.int.login.gov

http://sp.int.login.gov/ source code | headers | screenshot

401 Unauthorized  
Cache-Control no-cache
Connection keep-alive
Content-Type text/html; charset=utf-8
Date Thu, 05 Oct 2017 08:14:12 GMT
Keep-Alive timeout=5
Server nginx + Phusion Passenger
Status 401 Unauthorized
Transfer-Encoding chunked
Www-Authenticate Basic realm="Application"
X-Content-Type-Options nosniff
X-Frame-Options SAMEORIGIN
X-Powered-By Phusion Passenger
X-Request-Id c572faba-756d-45a9-99e9-9f80395b71df
X-Runtime 0.002813
X-Xss-Protection 1; mode=block
sp.pt.login.gov

http://sp.pt.login.gov/ source code | headers | screenshot

401 Unauthorized  
Cache-Control no-cache
Connection keep-alive
Content-Type text/html; charset=utf-8
Date Thu, 05 Oct 2017 08:13:54 GMT
Keep-Alive timeout=5
Server nginx + Phusion Passenger
Status 401 Unauthorized
Transfer-Encoding chunked
Www-Authenticate Basic realm="Application"
X-Content-Type-Options nosniff
X-Frame-Options SAMEORIGIN
X-Powered-By Phusion Passenger
X-Request-Id 73d081b6-d7dd-4fdb-a760-c7f1c6a54ee2
X-Runtime 0.002654
X-Xss-Protection 1; mode=block
sp.pt.login.gov

https://sp.pt.login.gov/ source code | headers | screenshot

401 Unauthorized  
Cache-Control no-cache
Connection keep-alive
Content-Type text/html; charset=utf-8
Date Thu, 05 Oct 2017 08:14:05 GMT
Keep-Alive timeout=5
Server nginx + Phusion Passenger
Status 401 Unauthorized
Transfer-Encoding chunked
Www-Authenticate Basic realm="Application"
X-Content-Type-Options nosniff
X-Frame-Options SAMEORIGIN
X-Powered-By Phusion Passenger
X-Request-Id 1dc05f68-3d03-4f3e-8fd2-e85f695c0698
X-Runtime 0.002596
X-Xss-Protection 1; mode=block
sp.qa.login.gov

http://sp.qa.login.gov/ source code | headers | screenshot

401 Unauthorized  
Cache-Control no-cache
Connection keep-alive
Content-Type text/html; charset=utf-8
Date Thu, 05 Oct 2017 08:13:56 GMT
Keep-Alive timeout=5
Server nginx + Phusion Passenger
Status 401 Unauthorized
Transfer-Encoding chunked
Www-Authenticate Basic realm="Application"
X-Content-Type-Options nosniff
X-Frame-Options SAMEORIGIN
X-Powered-By Phusion Passenger
X-Request-Id 1d6e2358-e334-4bef-afad-812d8c016181
X-Runtime 0.002597
X-Xss-Protection 1; mode=block
sp.qa.login.gov

https://sp.qa.login.gov/ source code | headers | screenshot

401 Unauthorized  
Cache-Control no-cache
Connection keep-alive
Content-Type text/html; charset=utf-8
Date Thu, 05 Oct 2017 08:14:30 GMT
Keep-Alive timeout=5
Server nginx + Phusion Passenger
Status 401 Unauthorized
Transfer-Encoding chunked
Www-Authenticate Basic realm="Application"
X-Content-Type-Options nosniff
X-Frame-Options SAMEORIGIN
X-Powered-By Phusion Passenger
X-Request-Id 78f08fdb-8dde-48e1-aaa8-145e9c9f6a1d
X-Runtime 0.002688
X-Xss-Protection 1; mode=block
staging.login.gov

http://staging.login.gov/ source code | headers | screenshot

200 OK  
Cache-Control no-store
Content-Security-Policy default-src 'self'; base-uri 'self'; block-all-mixed-content; child-src 'self'; connect-src 'self' *.newrelic.com *.nr-data.net; font-src 'self' data:; form-action 'self'; img-src 'self' data: *.google-analytics.com; media-src 'self'; object-src 'none'; script-src 'self' *.newrelic.com *.nr-data.net dap.digitalgov.gov *.google-analytics.com 'nonce-gyaUhK6bv6NCcEN+55lH6t56M9tm8pDObHSubWZ2Q9Y='; style-src 'self'
Content-Type text/html; charset=utf-8
Date Thu, 05 Oct 2017 08:14:12 GMT
Etag W/"e191397a115ef994e1a4b151c5c51756"
Pragma no-cache
Server nginx + Phusion Passenger
Set-Cookie AWSALB=AsufdKJKtXS+qOYsXceWJ6rVP2RJWJl3i4p2avhaZ3BIhFqXqxNCQNlbi2wqT01kYCIFM44AFlItgQ+kQNOF6RQglzNPsoJz2jH657KMiBWv3v7i2ceKeOKvwpNI; Expires=Thu, 12 Oct 2017 08:14:12 GMT; Path=/ ahoy_visitor=4d00ac1f-d88a-448b-bf48-3aea0047a458; path=/; expires=Sat, 05 Oct 2019 08:14:12 -0000; secure; HttpOnly; SameSite=Lax ahoy_visit=bc39e033-34ba-4862-8429-d072c8f2ebe3; path=/; expires=Thu, 05 Oct 2017 08:44:12 -0000; secure; HttpOnly; SameSite=Lax ahoy_track=true; path=/; secure; HttpOnly; SameSite=Lax _upaya_session=85fa79987b72e73e9f7f77bc5cd86ee5; path=/; HttpOnly; secure; SameSite=Lax
Status 200 200 OK
Strict-Transport-Security max-age=31536000; includeSubDomains; preload
X-Content-Type-Options nosniff
X-Download-Options noopen
X-Frame-Options DENY
X-Permitted-Cross-Domain-Policies none
X-Powered-By Phusion Passenger
X-Request-Id 9862cd87-2579-4633-8f45-7e90b50c1eaf
X-Runtime 0.043925
X-Xss-Protection 1; mode=block
staging.login.gov

https://staging.login.gov/ source code | headers | screenshot

200 OK  
Cache-Control no-store
Content-Security-Policy default-src 'self'; base-uri 'self'; child-src 'self'; connect-src 'self' *.newrelic.com *.nr-data.net; font-src 'self' data:; form-action 'self'; img-src 'self' data: *.google-analytics.com; media-src 'self'; object-src 'none'; script-src 'self' *.newrelic.com *.nr-data.net dap.digitalgov.gov *.google-analytics.com 'nonce-CNLltBsChXGdXo1BQIvIrA656neyuAYNCc9vOcnNY6E='; style-src 'self'
Content-Type text/html; charset=utf-8
Date Thu, 05 Oct 2017 08:14:25 GMT
Etag W/"22c160df9a7e866d34aeca5a929ef5c9"
Pragma no-cache
Server nginx + Phusion Passenger
Set-Cookie AWSALB=JGA+dJUP7e0iLjoGaHloF7qA4MZkJPkXIpJGTWMKZcP5hoBTleoSa7rW+31AZvjXCuI716Bl9NIP0QP1O1jBsrrvI3HsmdOBxzS4AkDvS4EGCWnMuUIB9h+QHqeS; Expires=Thu, 12 Oct 2017 08:14:25 GMT; Path=/ ahoy_visitor=0e15e021-3fe3-4b79-9719-fa2b50ba1ebd; path=/; expires=Sat, 05 Oct 2019 08:14:25 -0000; secure; HttpOnly; SameSite=Lax ahoy_visit=acc0c07a-fc82-45c7-b4a9-1c139750b7a7; path=/; expires=Thu, 05 Oct 2017 08:44:25 -0000; secure; HttpOnly; SameSite=Lax ahoy_track=true; path=/; secure; HttpOnly; SameSite=Lax _upaya_session=d415059d5b6ee4b63bb692077a615611; path=/; HttpOnly; secure; SameSite=Lax
Status 200 200 OK
Strict-Transport-Security max-age=31536000; includeSubDomains; preload
X-Content-Type-Options nosniff
X-Download-Options noopen
X-Frame-Options DENY
X-Permitted-Cross-Domain-Policies none
X-Powered-By Phusion Passenger
X-Request-Id 4a451275-529b-4a80-9d40-45a367c15afc
X-Runtime 0.083591
X-Xss-Protection 1; mode=block
test1.login.gov

http://test1.login.gov/ source code | headers | screenshot

503 Service Unavailable  
Connection keep-alive
Content-Length 580
Content-Type text/html
Date Thu, 05 Oct 2017 08:14:27 GMT
Server awselb/2.0
tf.login.gov

http://tf.login.gov/ source code | headers | screenshot

401 Unauthorized  
Content-Length 590
Content-Type text/html
Date Thu, 05 Oct 2017 08:13:54 GMT
Server nginx
Set-Cookie AWSALB=iMUeNVUNkjOBBh8jDTRPPxjIi1gwDk3DX2UUOu5d33HiR588RM4nvHLRd/3sxgk+bQ88+ermKtxiOV6M5qnAH2Nv1TJ1neu69WPwr8HE87DUsct/iSXjfoFBdWmU; Expires=Thu, 12 Oct 2017 08:13:54 GMT; Path=/
Status 401
Www-Authenticate Basic realm="Restricted"
tf.login.gov

https://tf.login.gov/ source code | headers | screenshot

401 Unauthorized  
Content-Length 590
Content-Type text/html
Date Thu, 05 Oct 2017 08:14:00 GMT
Server nginx
Set-Cookie AWSALB=OAV/xUZSDxRP6WiC2/ShdP55QCGKwlXky+Qq69cKoJ4Nb8JclNpJIOo7mFXS+9fs3lkAC6ATjk0gz2IRKnpZ+0X81dPiKsaKGBUntoTs1ttaDzPKSuuWlsPwnOpx; Expires=Thu, 12 Oct 2017 08:14:00 GMT; Path=/
Status 401
Www-Authenticate Basic realm="Restricted"
www.login.gov

http://www.login.gov/ source code | headers | screenshot

200 OK  
Age 3
Cache-Control max-age=60
Content-Type text/html; charset=utf-8
Date Thu, 05 Oct 2017 08:14:27 GMT
Etag W/"8f53dccad19f33d3678c33a71580bac4"
Last-Modified Wed, 04 Oct 2017 23:55:44 GMT
Status 200
Strict-Transport-Security max-age=31536000
Vary Accept-Encoding
Via 1.1 289241c3af05a479dc26e3b6a8f02210.cloudfront.net (CloudFront)
X-Amz-Cf-Id lTAaHuCberMKwFx1TYlqLtEjxz3LVapSVqJK5qepCpL9ylOAettFNA==
X-Cache Hit from cloudfront
X-Content-Type-Options nosniff
X-Frame-Options SAMEORIGIN
X-Vcap-Request-Id 8e3de0bb-2450-4aa6-517d-9dec1ffb3e87
X-Xss-Protection 1; mode=block