Server | nginx |
Content-Type | text/html; charset=utf-8 |
Last-Modified | Thu, 11 Jan 2018 00:06:12 GMT |
Connection | keep-alive |
Vary | Accept-Encoding |
ETag | "5a56aa74-2230" |
Content-Encoding | gzip |
Public-Key-Pins | pin-sha256="YLh1dUR9y6Kja30RrAn7JKnbQG/uEtLMkBgFF2Fuihg="; pin-sha256="sRHdihwgkaib1P1gxX8HFszlD+7/gTfNvuAybgLPNis=";max-age=2592000;includeSubDomains |
Strict-Transport-Security | max-age=15768000;includeSubdomains;preload |
X-Frame-Options | SameOrigin |
Referrer-Policy | strict-origin-when-cross-origin |
X-UA-Compatible | IE=Edge |
X-XSS-Protection | 1;mode=block |
X-Content-Type-Options | nosniff |
Cache-Control | private,max-age=600 |
Content-Security-Policy | default-src 'self';img-src https:;font-src cdn.matthiasadler.info;script-src 'unsafe-inline' https://www.google-analytics.com; style-src 'unsafe-inline'; |