Content-Type | text/html; charset=UTF-8 |
Transfer-Encoding | chunked |
Connection | keep-alive |
Cache-Control | private, no-cache="set-cookie" |
Expires | 0 |
Pragma | no-cache |
Content-Encoding | gzip |
Vary | Accept-Encoding |
Server | You wont believe anyway |
X-Frame-Options | DENY |
X-Content-Type-Options | nosniff |
Alternate-Protocol | 443:npn-spdy/3 |
X-Firefox-Spdy | 3 |
Strict-Transport-Security | max-age=31536000; includeSubdomains; |
Public-Key-Pins | pin-sha256="nVrCl9+s6nNWjGhlgy1ds9mf47dBgTtV5tTCDrPPC1k="; pin-sha256="1qGEQ9NI25lPk0zNjmNdgzonrB5W+K+vfJfLT0Pqtos="; max-age=31536000; includeSubDomains |
Content-Security-Policy | default-src https: data: 'unsafe-inline' 'unsafe-eval' |
X-Xss-Protection | 1; mode=block |