Server | Apache/2.4.10 (Debian) |
X-Frame-Options | SAMEORIGIN |
X-Content-Type-Options | nosniff |
Content-Security-Policy | default-src https: 'self' fonts.googleapis.com fonts.gstatic.com cdnjs.cloudflare.com connect.facebook.net staticxx.facebook.com facebook.com feeds.feedburner.com cdn.jsdelivr.net data: 'unsafe-inline' 'unsafe-eval'; report-uri https://www.getynet.com/csp-report/ |
Strict-Transport-Security | max-age=31536000; includeSubdomains; |
Expires | Thu, 19 Nov 1981 08:52:00 GMT |
Cache-Control | private, must-revalidate |
Pragma | no-cache |
Vary | Accept-Encoding |
Content-Encoding | gzip |
X-XSS-Protection | 1; mode=block |
Keep-Alive | timeout=5, max=100 |
Connection | Keep-Alive |
Content-Type | text/html; charset=UTF-8 |