| X-Drupal-Cache | HIT |
| Etag | "1518201798-0" |
| Content-Language | de |
| X-Frame-Options | SAMEORIGIN |
| Cache-Control | public, max-age=0 |
| Last-Modified | Fri, 09 Feb 2018 18:43:18 GMT |
| Expires | Sun, 19 Nov 1978 05:00:00 GMT |
| Vary | Cookie,Accept-Encoding |
| Keep-Alive | timeout=5, max=100 |
| Connection | Keep-Alive |
| Content-Type | text/html; charset=utf-8 |
| Strict-Transport-Security | max-age=31536000; includeSubDomains; preload |
| Referrer-Policy | same-origin |
| X-Xss-Protection | 1; mode=block |
| X-Content-Type-Options | nosniff |
| Expect-CT | enforce; max-age=30; report-uri https://concentrade.report-uri.com/r/d/ct/enforce ; |
| Expect-Staple | max-age=3600; report-uri=https://concentrade.report-uri.com/r/d/staple/reportOnly ; |
| Content-Security-Policy | default-src 'none'; base-uri 'self'; script-src 'nonce-1oZdHYeNNlSNRfuu' 'unsafe-inline' https 'strict-dynamic'; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com/; object-src 'none'; img-src 'self' https://www.google-analytics.com/ https://csi.gstatic.com/ https://maps.gstatic.com/ https://maps.google.com/ https://maps.googleapis.com/; frame-ancestors 'self'; font-src 'self' data: https://fonts.gstatic.com/ https://themes.googleusercontent.com/; frame-src 'self'; form-action 'self'; report-uri https://concentrade.report-uri.com/r/d/csp/enforce; block-all-mixed-content; |
| Content-Encoding | gzip |
| Server | concentrade GmbH |
| Transfer-Encoding | chunked |