This site uses cookies for analytics. By continuing to browse this site, you agree to this use.

scanning 100%

scan time: 00:10

hints

69

Date: 2019-11-12T21:56:45.880Z

webhint version: 5.3.0

Hints

Accessibility

axe/color: 1 hints

hint #1: Elements must have sufficient color contrast: Element has insufficient color contrast of 4.03 (foreground color: #428bca, background color: #29282a, font size: 10.5pt (14px), font weight: normal). Expected contrast ratio of 4.5:1

http://fileto.host/

<a href="javascript:void(0);" data-toggle="modal" data-target="#modal_DMCA">DMCA</a>
axe/language: 1 hints

hint #1: <html> element must have a lang attribute

http://fileto.host/

<html>
axe/sensory-and-visual-cues: 1 hints

hint #1: Zooming and scaling must not be disabled: maximum-scale on <meta> tag disables zooming on mobile devices

http://fileto.host/

<meta name="viewport" content="width=device-width, initial-scale=1, maximum-scale=1.0, user-scalable=0">

Compatibility

content-type: 2 hints

hint #1: 'content-type' header charset value should be 'utf-8'.

http://fileto.host/static/style.css

Content-Type: text/css

hint #2: 'content-type' header charset value should be 'utf-8'.

http://fileto.host/static/functions.js

Content-Type: application/javascript
highest-available-document-mode: 1 hints

hint #1: 'x-ua-compatible' meta element should not be specified as it is not needed.

http://fileto.host/

<meta http-equiv="X-UA-Compatible" content="IE=edge">
meta-viewport: 2 hints

hint #1: 'viewport' meta element 'content' attribute value should not contain disallowed property 'maximum-scale'.

http://fileto.host/

<meta name="viewport" content="width=device-width, initial-scale=1, maximum-scale=1.0, user-scalable=0">

hint #2: 'viewport' meta element 'content' attribute value should not contain disallowed property 'user-scalable'.

http://fileto.host/

<meta name="viewport" content="width=device-width, initial-scale=1, maximum-scale=1.0, user-scalable=0">

PWA

apple-touch-icons: 1 hints

hint #1: 'apple-touch-icon' link element was not specified.

http://fileto.host/

Performance

http-cache: 14 hints

hint #1: No "cache-control" header or empty value found. It should have a value

http://fileto.host/

hint #2: Static resources should use the "immutable" directive: Directives used: public, max-age=31536000

http://netdna.bootstrapcd … css/bootstrap.min.css

Cache-Control: public, max-age=31536000

hint #3: Static resources should use the "immutable" directive: Directives used: public, max-age=31536000

http://netdna.bootstrapcd … 1/js/bootstrap.min.js

Cache-Control: public, max-age=31536000

hint #4: Static resources should have a long cache value (31536000): Directives used: public, no-transform

http://fileto.host/static/style.css

Cache-Control: public, no-transform

hint #5: Static resources should use the "immutable" directive: Directives used: public, no-transform

http://fileto.host/static/style.css

Cache-Control: public, no-transform

hint #6: Static resources should use the "immutable" directive: Directives used: max-age=315360000, public

http://code.jquery.com/jquery-1.11.1.min.js

Cache-Control: max-age=315360000, public

hint #7: Static resources should have a long cache value (31536000): Directives used: public, no-transform

http://fileto.host/static/functions.js

Cache-Control: public, no-transform

hint #8: Static resources should use the "immutable" directive: Directives used: public, no-transform

http://fileto.host/static/functions.js

Cache-Control: public, no-transform

hint #9: Static resources should use the "immutable" directive: Directives used: public, max-age=31536000

http://netdna.bootstrapcd … halflings-regular.woff

Cache-Control: public, max-age=31536000

hint #10: Static resources should use the "immutable" directive: Directives used: public, max-age=31536000

http://fonts.gstatic … 3bXL8LICs1xZosUZiZQ.woff2

Cache-Control: public, max-age=31536000

hint #11: Static resources should use the "immutable" directive: Directives used: public, max-age=31536000

http://fonts.gstatic … 3bXL8LICs1_FvsUZiZQ.woff2

Cache-Control: public, max-age=31536000

hint #12: Static resources should use the "immutable" directive: Directives used: public, max-age=31536000

http://fonts.gstatic … 3bXL8LICs169vsUZiZQ.woff2

Cache-Control: public, max-age=31536000

hint #13: The directive "must-revalidate" is not recommended

https://stats.g.doublecli … IGBAgEAB~&z=830758911

Cache-Control: no-cache, no-store, must-revalidate

hint #14: No "cache-control" header or empty value found. It should have a value

http://fileto.host/favicon.ico

http-compression: 11 hints

hint #1: Response should not be compressed for requests made with 'accept-encoding: identity'.

http://netdna.bootstrapcd … css/bootstrap.min.css

<link rel="stylesheet" href="//netdna.bootstrapcdn.com/bootstrap/3.1.1/css/bootstrap.min.css">

hint #2: Response should be compressed with Zopfli when gzip compression is requested.

http://netdna.bootstrapcd … css/bootstrap.min.css

<link rel="stylesheet" href="//netdna.bootstrapcdn.com/bootstrap/3.1.1/css/bootstrap.min.css">

hint #3: Response should not be compressed with Brotli over HTTP.

http://netdna.bootstrapcd … css/bootstrap.min.css

<link rel="stylesheet" href="//netdna.bootstrapcdn.com/bootstrap/3.1.1/css/bootstrap.min.css">

hint #4: Response should not be compressed for requests made with 'accept-encoding: identity'.

http://netdna.bootstrapcd … 1/js/bootstrap.min.js

<script src="//netdna.bootstrapcdn.com/bootstrap/3.1.1/js/bootstrap.min.js"></script>

hint #5: Response should be compressed with Zopfli when gzip compression is requested.

http://netdna.bootstrapcd … 1/js/bootstrap.min.js

<script src="//netdna.bootstrapcdn.com/bootstrap/3.1.1/js/bootstrap.min.js"></script>

hint #6: Response should not be compressed with Brotli over HTTP.

http://netdna.bootstrapcd … 1/js/bootstrap.min.js

<script src="//netdna.bootstrapcdn.com/bootstrap/3.1.1/js/bootstrap.min.js"></script>

hint #7: Response should be compressed with Zopfli when gzip compression is requested.

http://fileto.host/static/style.css

<link rel="stylesheet" href="http://fileto.host/static/style.css" type="text/css">

hint #8: Response should be compressed with Zopfli when gzip compression is requested.

http://code.jquery.com/jquery-1.11.1.min.js

<script src="//code.jquery.com/jquery-1.11.1.min.js"></script>

hint #9: Response should be compressed with Zopfli when gzip compression is requested.

http://fileto.host/static/functions.js

<script type="text/javascript" src="http://fileto.host/static/functions.js"></script>

hint #10: Response should not be compressed.

http://netdna.bootstrapcd … halflings-regular.woff

hint #11: Response should not include 'content-encoding' header.

http://netdna.bootstrapcd … halflings-regular.woff

Content-Encoding: gzip
no-html-only-headers: 3 hints

hint #1: Response should not include unneeded 'x-xss-protection' header.

http://fonts.gstatic … 3bXL8LICs1xZosUZiZQ.woff2

hint #2: Response should not include unneeded 'x-xss-protection' header.

http://fonts.gstatic … 3bXL8LICs1_FvsUZiZQ.woff2

hint #3: Response should not include unneeded 'x-xss-protection' header.

http://fonts.gstatic … 3bXL8LICs169vsUZiZQ.woff2

no-http-redirects: 1 hints

hint #1: 1 redirect detected for 'http://www.fileto.host/' (max is 0).

http://www.fileto.host/

Pitfalls

No issues

Security

https-only: 1 hints

hint #1: Site should be served over HTTPS.

http://fileto.host/

no-disallowed-headers: 3 hints

hint #1: Response should not include disallowed 'x-powered-by' header.

http://fileto.host/

x-powered-by: php/5.6.40

hint #2: Response should not include disallowed 'x-powered-by' header.

http://fileto.host/static/style.css

x-powered-by: thinkcms v4

hint #3: Response should not include disallowed 'x-powered-by' header.

http://fileto.host/static/functions.js

x-powered-by: thinkcms v4
no-protocol-relative-urls: 4 hints

hint #1: '//netdna.bootstrapcdn.com/bootstrap/3.1.1/css/bootstrap.min.css' should not be specified as a protocol-relative URL.

http://fileto.host/

<link rel="stylesheet" href="//netdna.bootstrapcdn.com/bootstrap/3.1.1/css/bootstrap.min.css">

hint #2: '//www.google-analytics.com/analytics.js' should not be specified as a protocol-relative URL.

http://fileto.host/

<script async="" src="//www.google-analytics.com/analytics.js"></script>

hint #3: '//code.jquery.com/jquery-1.11.1.min.js' should not be specified as a protocol-relative URL.

http://fileto.host/

<script src="//code.jquery.com/jquery-1.11.1.min.js"></script>

hint #4: '//netdna.bootstrapcdn.com/bootstrap/3.1.1/js/bootstrap.min.js' should not be specified as a protocol-relative URL.

http://fileto.host/

<script src="//netdna.bootstrapcdn.com/bootstrap/3.1.1/js/bootstrap.min.js"></script>
sri: 3 hints

hint #1: Cross-origin resource <a href="http://netdna.bootstrapcdn.com/bootstrap/3.1.1/css/bootstrap.min.css">http://netdna.bootstrapcdn.com/bootstrap/3.1.1/css/bootstrap.min.css</a> needs a "crossorigin" attribute to be eligible for integrity validation

http://fileto.host/

<link rel="stylesheet" href="//netdna.bootstrapcdn.com/bootstrap/3.1.1/css/bootstrap.min.css">

hint #2: Cross-origin resource <a href="http://netdna.bootstrapcdn.com/bootstrap/3.1.1/js/bootstrap.min.js">http://netdna.bootstrapcdn.com/bootstrap/3.1.1/js/bootstrap.min.js</a> needs a "crossorigin" attribute to be eligible for integrity validation

http://fileto.host/

<script src="//netdna.bootstrapcdn.com/bootstrap/3.1.1/js/bootstrap.min.js"></script>

hint #3: Cross-origin resource <a href="http://code.jquery.com/jquery-1.11.1.min.js">http://code.jquery.com/jquery-1.11.1.min.js</a> needs a "crossorigin" attribute to be eligible for integrity validation

http://fileto.host/

<script src="//code.jquery.com/jquery-1.11.1.min.js"></script>
strict-transport-security: 10 hints

hint #1: 'strict-transport-security' header was not specified

https://fileto.host/

hint #2: 'strict-transport-security' header was not specified

https://netdna.bootstrapc … css/bootstrap.min.css

hint #3: 'strict-transport-security' header was not specified

https://netdna.bootstrapc … 1/js/bootstrap.min.js

hint #4: 'strict-transport-security' header was not specified

https://fileto.host/static/style.css

hint #5: 'strict-transport-security' header was not specified

https://code.jquery.com/jquery-1.11.1.min.js

hint #6: 'strict-transport-security' header was not specified

https://fileto.host/static/functions.js

hint #7: 'strict-transport-security' header was not specified

https://netdna.bootstrapc … halflings-regular.woff

hint #8: 'strict-transport-security' header was not specified

https://fonts.gstatic … 3bXL8LICs1xZosUZiZQ.woff2

hint #9: 'strict-transport-security' header was not specified

https://fonts.gstatic … 3bXL8LICs1_FvsUZiZQ.woff2

hint #10: 'strict-transport-security' header was not specified

https://fonts.gstatic … 3bXL8LICs169vsUZiZQ.woff2

x-content-type-options: 8 hints

hint #1: Response should include 'x-content-type-options' header.

http://fileto.host/

hint #2: Response should include 'x-content-type-options' header.

http://netdna.bootstrapcd … css/bootstrap.min.css

<link rel="stylesheet" href="//netdna.bootstrapcdn.com/bootstrap/3.1.1/css/bootstrap.min.css">

hint #3: Response should include 'x-content-type-options' header.

http://netdna.bootstrapcd … 1/js/bootstrap.min.js

<script src="//netdna.bootstrapcdn.com/bootstrap/3.1.1/js/bootstrap.min.js"></script>

hint #4: Response should include 'x-content-type-options' header.

http://fileto.host/static/style.css

<link rel="stylesheet" href="http://fileto.host/static/style.css" type="text/css">

hint #5: Response should include 'x-content-type-options' header.

http://code.jquery.com/jquery-1.11.1.min.js

<script src="//code.jquery.com/jquery-1.11.1.min.js"></script>

hint #6: Response should include 'x-content-type-options' header.

http://fileto.host/static/functions.js

<script type="text/javascript" src="http://fileto.host/static/functions.js"></script>

hint #7: Response should include 'x-content-type-options' header.

http://netdna.bootstrapcd … halflings-regular.woff

hint #8: Response should include 'x-content-type-options' header.

http://fileto.host/favicon.ico

no-vulnerable-javascript-libraries: 1 hints

hint #1: 'jQuery@1.11.1' has 2 known vulnerabilities (2 medium). See 'https://snyk.io/vuln/npm:jquery' for more information.

http://fileto.host/

ssllabs: 1 hints

hint #1: 'http://fileto.host/' does not support HTTPS.

http://fileto.host/