Strict-Transport-Security | max-age=28800 |
X-Content-Type-Options | nosniff |
X-Frame-Options | SAMEORIGIN |
Vary | Host,Cookie,Accept-Encoding,Origin |
Last-Modified | Mon, 05 Feb 2018 00:42:19 GMT |
Cache-Control | max-age=60 |
Content-Security-Policy | default-src 'self' *.bundesbank.de www.hochschule-bundesbank.de hochschule-bundesbank.de hs-bundesbank.de http://*.mescdn.com slidesync.com http://*.slidesync.com http://*.akamaihd.net http://*.akamaized.net https://*.mescdn.com https://slidesync.com https://*.slidesync.com https://*.akamaihd.net https://*.akamaized.net fpdownload.adobe.com *.ytimg.com *.youtube.com *.googlevideo.com *.gstatic.com *.googleapis.com *.etracker.com *.etracker.de *.core-cdn.net https://notify.bluecoat.com; style-src 'self' 'unsafe-inline' *.bundesbank.de www.hochschule-bundesbank.de *.googleapis.com www.w3.org www.stiftung-geld-und-waehrung.de www.supervisory-disclosure.de www.ese-initiative.org; img-src 'self' www.bundesbank.de www.hochschule-bundesbank.de wpn-e.inet.bundesbank.de www.wpn-a.bundesbank.de www.stiftung-geld-und-waehrung.de www.supervisory-disclosure.de www.ese-initiative.org data: *.etracker.com *.etracker.de jwpltx.com p.jwpcdn.com *.ytimg.com *.twimg.com http://*.twimg.com; script-src 'self' 'unsafe-inline' 'unsafe-eval' www.bundesbank.de www.hochschule-bundesbank.de wpn-e.inet.bundesbank.de www.wpn-a.bundesbank.de offline.bundesbank.de *.youtube.com *.ytimg.com *.etracker.com *.etracker.de *.jwpcdn.com *.googleapis.com; font-src 'self' *.bundesbank.de data:; connect-src 'self' http://*.bundesbank.de https://*.bundesbank.de https://notify.bluecoat.com *.etracker.de *.etracker.com; report-uri /cspViolation |
X-XSS-Protection | 1; mode=block |
Content-Encoding | gzip |
Keep-Alive | timeout=10, max=93 |
Connection | Keep-Alive |
Content-Type | text/html;charset=utf-8 |
Content-Language | de |
Transfer-Encoding | chunked |