Server | Apache/2 |
Public-Key-Pins | pin-sha256="n8sIpPufmwannFyQ+0SIfdhrDS5w+MHjV3wMxxeDB98="; pin-sha256="EgNpQklEUNXn9Nl6RoIOC532j1g5+EFw0ZpLxxJq9Ms="; pin-sha256="ettBAIJMFxXnds82MgAL7JyRNQ4a7gWHZy5aI+uwZjA="; pin-sha256="58qRu/uxh4gFezqAcERupSkRYBlBAvfcw7mEjGPLnNU="; pin-sha256="pin-sha256="ol8TZNdvX0unq6CHQNphyBC+vuvvaB+I+M7cwZtuWB8="; pin-sha256="vsAtdNbOf6+1s4UOZJA1w8iry7Ue7pIBK0kdGqkTJSA="; max-age=604800; report-uri="https://safire.report-uri.io/r/default/hpkp/enforce" |
Strict-Transport-Security | max-age=15724800; includeSubdomains; preload |
X-Content-Type-Options | nosniff |
X-Frame-Options | SAMEORIGIN |
X-Xss-Protection | 1; mode=block |
Referrer-Policy | strict-origin-when-cross-origin |
Content-Security-Policy | default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' blob: data: static.safire.ac.za cdnjs.cloudflare.com code.jquery.com www.google-analytics.com; style-src 'self' 'unsafe-inline' static.safire.ac.za fonts.googleapis.com cdnjs.cloudflare.com; img-src * data:; font-src 'self' data: static.safire.ac.za static.safire.ac.za cdnjs.cloudflare.com fonts.gstatic.com; frame-src 'self' docs.google.com; upgrade-insecure-requests; block-all-mixed-content; report-uri https://safire.report-uri.io/r/default/csp/enforce; |
Last-Modified | Wed, 28 Feb 2018 08:10:12 GMT |
ETag | "4dbc-5664145c4b4f4-gzip" |
Accept-Ranges | bytes |
Vary | Accept-Encoding |
Content-Encoding | gzip |
Keep-Alive | timeout=5, max=100 |
Connection | Keep-Alive |
Content-Type | text/html |