Server | Apache |
Vary | Accept-Encoding |
Cache-Control | max-age=3600 |
Expires | Sat, 17 Feb 2018 21:27:45 GMT |
Content-Encoding | gzip |
Content-Security-Policy | default-src *; frame-src 'self' https: http://*.google.com http://*.facebook.com http://*.twitter.com http://*.youtube.com http://*.sharethis.com http://*.googletagmanager.com http://*.vimeo.com http://*.sharpspring.com http://*.googleadservices.com http://*.doubleclick.net http://*.wistia.com http://*.wistia.net; script-src * 'unsafe-inline' 'unsafe-eval'; style-src * 'unsafe-inline'; font-src * data: ; img-src * data: ; media-src * blob: ; worker-src * 'unsafe-inline' 'unsafe-eval' blob: ; report-uri https://modsec.durkancloud.com/csp/report.php; |
X-Frame-Options | SAMEORIGIN |
X-XSS-Protection | 1; mode=block |
X-Content-Type-Options | nosniff |
Access-Control-Allow-Origin | * |
Keep-Alive | timeout=3, max=200 |
Connection | Keep-Alive |
Content-Type | text/html; charset=UTF-8 |