Content-Security-Policy | default-src 'self'; script-src 'self' 'unsafe-eval' 'unsafe-inline' http://vkrk.ru https://apis.google.com https://connect.ok.ru https://mc.yandex.ru http://mc.yandex.ru https://yastatic.net http://yastatic.net http://git.blivesta.com http://cdnjs.cloudflare.com http://cdn.rawgit.com https://ajax.googleapis.com http://ajax.googleapis.com ajax.googleapis.com https://vk.com http://vk.com; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com http://fonts.googleapis.com; object-src 'self'; img-src 'self' http://vk.com https://yastatic.net http://yastatic.net http://counter.yadro.ru data:; media-src 'self'; frame-src 'self' https://apis.google.com https://accounts.google.com https://connect.ok.ru https://vk.com http://37.220.36.15 http://moonwalk.cc https://yastatic.net http://yastatic.net https://www.youtube.com http://www.youtube.com http://vk.com; font-src 'self' https://fonts.gstatic.com http://fonts.gstatic.com data:; connect-src 'self' https://mc.yandex.ru http://mc.yandex.ru; report-uri /newcsp.php |