Server | nginx |
Content-Type | text/html; charset=utf-8 |
Transfer-Encoding | chunked |
Connection | keep-alive |
Content-Security-Policy | default-src 'self'; script-src aahvz.top *.aahvz.top https://connect.ok.ru connect.ok.ru https://www.google.com www.googletagmanager.com https://www.gstatic.com https://www.google.kz google.kz https://*.yandex.ru *.yandex.ru https://*.yandex.ua *.yandex.ua https://*.vk.com vk.com https://vk.com https://graph.facebook.com http://connect.mail.ru 'self' 'unsafe-inline' 'unsafe-eval'; style-src https://*.googleapis.com 'self' 'unsafe-inline'; img-src data: *.aahvz.top aahvz.top yastatic.net https://*.yandex.ru https://*.yandex.ua check.googlezip.net https://www.gstatic.com http://csi.gstatic.com https://vk.com https://www.google.ru 'self'; font-src https://fonts.gstatic.com http://fonts.gstatic.com 'self'; connect-src https://*.yandex.net https://yandex.ru https://yandex.ua https://*.yandex.ru https://*.yandex.ua https://*.yandex.kz https://graph.facebook.com 'self'; frame-src ybnotification: *.aahvz.top s1.yallaneliera.com 37.220.36.15 www.youtube.com https://www.youtube.com vk.com https://vk.com https://*.vk.com *.yandex.ru https://www.google.com 'self'; report-uri https://720.report-uri.io/r/default/csp/enforce |
Expires | Thu, 19 Nov 1981 08:52:00 GMT |
Cache-Control | no-store, no-cache, must-revalidate, post-check=0, pre-check=0 |
Pragma | no-cache |
Content-Encoding | gzip |
x-frame-options | SAMEORIGIN |
X-XSS-Protection | 1; mode=block |
X-Content-Type-Options | nosniff |