Server | nginx |
Content-Type | text/html; charset=UTF-8 |
Connection | keep-alive |
X-Trace | 2BEA37C2B89761460654399EEB7073BC8D71ECEB529ED575D3FFF7A63700 |
Vary | Accept-Encoding |
Content-Encoding | gzip |
Cache-Control | private, must-revalidate |
Expires | Thu, 15 Mar 2018 17:51:50 GMT |
X-Powered-By | PHP/7.1.12, PleskLin |
X-Content-Type-Options | nosniff |
X-Frame-Options | sameorigin |
X-XSS-Protection | 1; mode=block |
Content-Security-Policy | default-src https:; font-src https: data:; img-src https: data: 'self' about:; script-src 'unsafe-inline' 'unsafe-eval' https: data:; style-src 'unsafe-inline' https:; |
Strict-Transport-Security | max-age=31536000; includeSubDomains; preload |