Server | nginx |
Content-Type | text/html; charset=utf-8 |
X-Drupal-Cache | MISS |
Etag | "1446897695-0" |
Content-Security-Policy-Report-Only | default-src 'self'; script-src 'self' 'unsafe-eval' 'unsafe-inline' *.googleapis.com *.marketo.net *.google-analytics.com use.typekit.net *.liveperson.net *.google.com *.linkedin.com cdn01.smartling.com *.marketo.com dev.visualwebsiteoptimizer.com *.googletagmanager.com *.googleadservices.com *.webmarketing123.com *.demandbase.com *.mktoresp.com *.insightera.com *.adroll.com *.rackcdn.com; object-src 'self'; style-src 'self' 'unsafe-inline' fonts.googleapis.com cloud.typography.com use.typekit.net www.veracode.com *.smartling.com *.rackcdn.com; img-src 'self' data: *; media-src 'self' www.youtube.com; frame-src 'self' www.youtube.com *.google.com www.facebook.com platform.twitter.com www.hirebridge.com; font-src 'self' data: *; connect-src 'self' *.mktoresp.com *.marketo.com; report-uri /admin/config/system/seckit/csp-report |
X-Content-Security-Policy-Report-Only | default-src 'self'; script-src 'self' 'unsafe-eval' 'unsafe-inline' *.googleapis.com *.marketo.net *.google-analytics.com use.typekit.net *.liveperson.net *.google.com *.linkedin.com cdn01.smartling.com *.marketo.com dev.visualwebsiteoptimizer.com *.googletagmanager.com *.googleadservices.com *.webmarketing123.com *.demandbase.com *.mktoresp.com *.insightera.com *.adroll.com *.rackcdn.com; object-src 'self'; style-src 'self' 'unsafe-inline' fonts.googleapis.com cloud.typography.com use.typekit.net www.veracode.com *.smartling.com *.rackcdn.com; img-src 'self' data: *; media-src 'self' www.youtube.com; frame-src 'self' www.youtube.com *.google.com www.facebook.com platform.twitter.com www.hirebridge.com; font-src 'self' data: *; connect-src 'self' *.mktoresp.com *.marketo.com; report-uri /admin/config/system/seckit/csp-report |
X-WebKit-CSP-Report-Only | default-src 'self'; script-src 'self' 'unsafe-eval' 'unsafe-inline' *.googleapis.com *.marketo.net *.google-analytics.com use.typekit.net *.liveperson.net *.google.com *.linkedin.com cdn01.smartling.com *.marketo.com dev.visualwebsiteoptimizer.com *.googletagmanager.com *.googleadservices.com *.webmarketing123.com *.demandbase.com *.mktoresp.com *.insightera.com *.adroll.com *.rackcdn.com; object-src 'self'; style-src 'self' 'unsafe-inline' fonts.googleapis.com cloud.typography.com use.typekit.net www.veracode.com *.smartling.com *.rackcdn.com; img-src 'self' data: *; media-src 'self' www.youtube.com; frame-src 'self' www.youtube.com *.google.com www.facebook.com platform.twitter.com www.hirebridge.com; font-src 'self' data: *; connect-src 'self' *.mktoresp.com *.marketo.com; report-uri /admin/config/system/seckit/csp-report |
X-Content-Type-Options | nosniff |
X-Frame-Options | SameOrigin |
From-Origin | same |
Content-Language | en |
X-Generator | Drupal 7 (http://drupal.org) |
Cache-Control | public, max-age=600 |
Last-Modified | Sat, 07 Nov 2015 12:01:35 GMT |
Expires | Sun, 19 Nov 1978 05:00:00 GMT |
Vary | Cookie,Accept-Encoding |
X-Request-ID | v-4b2bfaee-8547-11e5-85d9-22000ab6b690 |
X-AH-Environment | prod |
Content-Encoding | gzip |
Accept-Ranges | bytes |
X-Varnish | 630594643 630593700 |
Age | 179 |
Via | 1.1 varnish |
Connection | keep-alive |
X-Cache | HIT |
X-Cache-Hits | 15 |