Server | Apache/2.4.18 (Ubuntu) |
Cache-Control | no-cache, private |
X-Content-Type-Options | nosniff |
Referrer-Policy | no-referrer, strict-origin-when-cross-origin |
Content-Security-Policy | default-src 'self' https://player.vimeo.com; block-all-mixed-content; connect-src 'self' https://secure.adnxs.com; font-src 'self' https://fonts.gstatic.com https://fonts.googleapis.com data:; img-src 'self' data: https://csi.gstatic.com https://maps.googleapis.com https://maps.gstatic.com https://www.google-analytics.com https://secure.adnxs.com https://imp2.ads.linkedin.com/l https://cm.g.doubleclick.net https://px.ads.linkedin.com https://stats.g.doubleclick.net https://www.google.com https://www.google.be; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://ajax.googleapis.com https://cdnjs.cloudflare.com https://maps.googleapis.com https://s3-us-west-2.amazonaws.com https://www.gstatic.com https://www.googletagmanager.com https://www.google-analytics.com https://snap.licdn.com https://dc.ads.linkedin.com https://secure.adnxs.com https://px.ads.linkedin.com; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com data:; report-uri /nelmio/csp/report |
X-Content-Security-Policy | default-src 'self' https://player.vimeo.com; block-all-mixed-content; connect-src 'self' https://secure.adnxs.com; font-src 'self' https://fonts.gstatic.com https://fonts.googleapis.com data:; img-src 'self' data: https://csi.gstatic.com https://maps.googleapis.com https://maps.gstatic.com https://www.google-analytics.com https://secure.adnxs.com https://imp2.ads.linkedin.com/l https://cm.g.doubleclick.net https://px.ads.linkedin.com https://stats.g.doubleclick.net https://www.google.com https://www.google.be; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://ajax.googleapis.com https://cdnjs.cloudflare.com https://maps.googleapis.com https://s3-us-west-2.amazonaws.com https://www.gstatic.com https://www.googletagmanager.com https://www.google-analytics.com https://snap.licdn.com https://dc.ads.linkedin.com https://secure.adnxs.com https://px.ads.linkedin.com; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com data:; report-uri /nelmio/csp/report |
X-XSS-Protection | 1; mode=block |
Vary | Accept-Encoding |
Content-Encoding | gzip |
Keep-Alive | timeout=5, max=100 |
Connection | Keep-Alive |
Content-Type | text/html; charset=UTF-8 |