Server | nginx |
Content-Type | text/html; charset=utf-8 |
Last-Modified | Tue, 17 Jan 2017 20:47:13 GMT |
Transfer-Encoding | chunked |
Connection | keep-alive |
Vary | Accept-Encoding |
ETag | W/"587e82d1-1213a" |
Expires | Sun, 26 Mar 2017 11:51:29 GMT |
Pragma | public |
Cache-Control | max-age=600, public, no-transform |
strict-transport-security | max-age=10886400; includeSubDomains; preload |
x-content-type-options | nosniff |
x-ua-compatible | IE=edge, chrome=1 |
x-xss-protection | 1; mode=block |
x-permitted-cross-domain-policies | none |
content-security-policy | default-src 'self';child-src 'self' youtube.com www.youtube.com;connect-src 'self' drawesome.uy:* draw.uy:* wss://draw.uy:* wss://drawesome.uy:* *.imgur.com imgur.com fonts.gstatic.com fonts.googleapis.com www.google-analytics.com youtube.com www.youtube.com;font-src 'self' data: fonts.gstatic.com;frame-src youtube.com www.youtube.com;form-action 'self' www.paypal.com;img-src data: http: https:;media-src http: https:;object-src 'none';script-src 'self' 'unsafe-inline' www.google-analytics.com;style-src 'self' 'unsafe-inline' fonts.googleapis.com;manifest-src 'self'; |
Content-Encoding | gzip |