Content-Security-Policy | default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' http://eldiablo.ru dynamic.exaccess.ru a.cackle.me b.cackle.me cackle.me www.gstatic.com yandex.st *.yandex.ru pagead2.googlesyndication.com fonts.googleapis.com www.google-analytics.com https://www.google-analytics.com; object-src 'self' *.cackle.me www.gstatic.com dynamic.exaccess.ru *.exaccess.ru http://dynamic.exaccess.ru; style-src 'self' *.cackle.me fonts.googleapis.com 'unsafe-inline'; img-src *; media-src 'self' cackle.me a.cackle.me b.cackle.me; frame-src 'self' *.cackle.me yastatic.net http://yastatic.net/ connect.mail.ru an.yandex.ru www.youtube.com googleads.g.doubleclick.net vk.com 'unsafe-inline'; font-src 'self' cackle.me fonts.gstatic.com; connect-src 'self' wss://rt2.cackle.me wss://rt.cackle.me *.cackle.me mc.yandex.ru *.gstatic.com |