Server | Apache/2.4.27 |
X-Frame-Options | DENY |
Content-Security-Policy | default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' *.facebook.net; style-src 'self' 'unsafe-inline'; img-src 'self' *.facebook.com; frame-src *.facebook.com *.google.com *.google.de; |
X-Content-Security-Policy | default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' *.facebook.net; style-src 'self' 'unsafe-inline'; img-src 'self' *.facebook.com; frame-src *.facebook.com *.google.com *.google.de; |
X-WebKit-CSP | default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' *.facebook.net; style-src 'self' 'unsafe-inline'; img-src 'self' *.facebook.com; frame-src *.facebook.com *.google.com *.google.de; |
X-Content-Type-Options | nosniff |
X-Powered-By | |
X-XSS-Protection | 1 |
Expires | Thu, 19 Nov 1981 08:52:00 GMT |
Pragma | no-cache |
Upgrade | h2c |
Connection | Upgrade, Keep-Alive |
Last-Modified | Thu, 25 Jan 2018 11:59:46 GMT |
ETag | "08b49dc723ee20adeea14140e2d8b56f-gzip" |
Vary | Accept-Encoding |
Content-Encoding | gzip |
Cache-Control | public, private, must-revalidate |
Keep-Alive | timeout=5, max=100 |
Content-Type | text/html; charset=UTF-8 |