Accept-Ranges | bytes |
Cache-Control | max-age=3600 |
Content-Encoding | gzip |
Content-Security-Policy | script-src 'self' https://www.googletagmanager.com https://www.google-analytics.com; img-src 'self' https://www.google-analytics.com https://*.doubleclick.net; default-src 'none'; font-src 'self'; connect-src 'self' https://www.googletagmanager.com https://www.google-analytics.com https://stats.g.doubleclick.net; style-src 'unsafe-inline' 'self'; media-src 'self'; manifest-src 'self'; report-uri https://5147a3de4e66e209aef908a024509fc5.report-uri.io/r/default/csp/enforce; referrer origin; object-src 'none'; child-src 'self' |
Content-Type | text/html |
ETag | "375c-53812ef025849-gzip" |
Expires | Sat, 10 Feb 2018 20:17:13 GMT |
Last-Modified | Wed, 20 Jul 2016 15:34:14 GMT |
Public-Key-Pins | pin-sha256="1UnPQZXseH0gw0LwwoejUZz9yEAhsO8vgeKmpQCHqeE="; pin-sha256="M17Zo5D5J+hxMQTJD9dyp3Aewaf7g3djJq/63mGHHK4="; pin-sha256="hFsEno65SrdZKzBp9Jl+DDLr+UUEYAAWypuH1bNecNA="; max-age=60; report-uri="https://5147a3de4e66e209aef908a024509fc5.report-uri.io/r/default/hpkp/enforce" |
Server | Apache |
Strict-Transport-Security | max-age=16070400; includeSubDomains; preload |
Vary | Accept-Encoding |
X-Content-Security-Policy | script-src 'self' https://www.googletagmanager.com https://www.google-analytics.com; img-src 'self' https://www.google-analytics.com https://*.doubleclick.net; default-src 'none'; font-src 'self'; connect-src 'self' https://www.googletagmanager.com https://www.google-analytics.com https://stats.g.doubleclick.net; style-src 'unsafe-inline' 'self'; media-src 'self'; manifest-src 'self'; report-uri https://5147a3de4e66e209aef908a024509fc5.report-uri.io/r/default/csp/enforce; referrer origin; object-src 'none'; child-src 'self' |
X-Content-Type-Options | nosniff |
X-Frame-Options | deny |
X-XSS-Protection | 1; mode=block |
Connection | keep-alive |