Cache-Control | private |
Pragma | no-cache |
Content-Type | text/html; charset=utf-8 |
Content-Encoding | gzip |
Expires | Sat, 24 Feb 2018 22:42:17 GMT |
Vary | Accept-Encoding |
Server | Microsoft-IIS/7.5 |
X-Powered-By | ASP.NET |
Content-Security-Policy | default-src 'self'; frame-src * https:; style-src * 'unsafe-inline' https:; script-src self * 'unsafe-inline' 'unsafe-eval' https://www.google-analytics.com; frame-ancestors 'self' https:; img-src 'self' http://i.ytimg.com https://www.google-analytics.com https://stats.g.doubleclick.net https://www.google.com; |
X-Frame-Options | SAMEORIGIN |
X-Xss-Protection | 1; mode=block |
X-Content-Type-Options | nosniff |
Referrer-Policy | no-referrer-when-downgrade |
Strict-Transport-Security | max-age=3600; includeSubDomains |