Server | nginx |
Content-Type | text/html; charset=utf-8 |
Connection | keep-alive |
X-Frame-Options | sameorigin |
X-XSS-Protection | 1; mode=block |
X-Content-Type-Options | nosniff |
X-Permitted-Cross-Domain-Policies | master-only |
Strict-Transport-Security | max-age=31536000; includeSubDomains; preload |
Content-Security-Policy | default-src https:; script-src https: 'unsafe-inline'; style-src https: 'unsafe-inline' |
Last-Modified | Fri, 26 Aug 2016 09:30:00 GMT |
Vary | Accept-Encoding |
Content-Encoding | gzip |
Cache-Control | max-age=86400, no-transform |
Expires | Mon, 05 Feb 2018 19:14:13 GMT |
Access-Control-Allow-Origin | * |
X-UA-Compatible | IE=edge |
X-Powered-By | PleskLin |
Accept-Ranges | bytes |