Server | nginx |
Content-Type | text/html; charset=UTF-8 |
Transfer-Encoding | chunked |
Connection | keep-alive |
P3P | CP="NOI NID ADMa OUR IND UNI COM NAV" |
Cache-Control | max-age=60, private, proxy-revalidate |
Expires | Tue, 11 Sep 2001 01:00:00 GMT |
Pragma | no-cache |
Last-Modified | Wed, 04 Nov 2015 17:48:10 GMT |
Content-Security-Policy | default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' *.donfisher.ru ads.adfox.ru directstat.ru www2.acint.net *.yandex.ru *.yandex.net yandex.st *.yastatic.net *.google.ru *.google.com *.gstatic.com *.googlesyndication.com *.googleapis.com *.google-analytics.com *.doubleclick.net; style-src 'self' 'unsafe-inline' *.donfisher.ru; object-src 'self' *.donfisher.ru content.adfox.ru *.macromedia.com *.gstatic.com; img-src 'self' data: *.donfisher.ru content.adfox.ru counter.yadro.ru www.acint.net *.yandex.ru *.yandex.net *.yastatic.net *.google.ru *.google.com *.googlesyndication.com *.google-analytics.com; media-src 'self' *.donfisher.ru; frame-src 'self' *.donfisher.ru content.adfox.ru *.yandex.ru *.yastatic.net *.google.com *.doubleclick.net; font-src 'self' https://fonts.gstatic.com https://themes.googleusercontent.com https://apps.2gis.ru; connect-src 'self' *.donfisher.ru *.yandex.ru *.gstatic.com; report-uri /csp/report.php |
X-Content-Type-Options | nosniff |
X-XSS-Protection | 1; mode=block; |
Content-Encoding | gzip |