Server | Apache |
Strict-Transport-Security | max-age=31536000; includeSubDomains |
Content-Security-Policy | default-src 'self' https://*.familyofpower.com https://familyofpower.com https://stats.g.doubleclick.net https://*.google.com https://www.google-analytics.com https://www.googletagmanager.com https://*.googleapis.com https://*.gstatic.com; style-src 'self' https://*.google.com https://*.googleapis.com https://*.gstatic.com 'unsafe-inline'; font-src 'self' https://*.google.com https://*.googleapis.com https://*.gstatic.com 'unsafe-inline'; img-src 'self' https://*.familyofpower.com https://familyofpower.com https://*.google.com https://*.googleapis.com https://*.gstatic.com https://www.google-analytics.com https://stats.g.doubleclick.net data: |
x-permitted-cross-domain-policies | none |
referrer-policy | no-referrer-when-downgrade |
x-frame-options | deny |
x-xss-protection | 1; mode=block |
x-download-options | noopen |
x-content-type-options | nosniff |
Upgrade | h2,h2c |
Connection | Upgrade, Keep-Alive |
Vary | Accept-Encoding,User-Agent |
Content-Encoding | gzip |
Keep-Alive | timeout=5, max=100 |
Content-Type | text/html; charset=UTF-8 |