Content-Type | text/html; charset=utf-8 |
Content-Length | 9522 |
Connection | keep-alive |
Vary | Accept-Encoding |
X-DNS-Prefetch-Control | off |
X-Frame-Options | SAMEORIGIN |
Strict-Transport-Security | max-age=15552000; includeSubDomains |
X-Download-Options | noopen |
X-Content-Type-Options | nosniff |
X-XSS-Protection | 1; mode=block |
ETag | W/"2532-v+PfDpzzqQ0tDDYbB7GWbopM3wk" |
Referrer-Policy | strict-origin-when-cross-origin |
Server | invinsec UK |
Public-Key-Pins | pin-sha256="RPnz7m2GLpW6ZrS1bmBP6k19XBKL1XnGlrMTGy1CXPg="; pin-sha256="amMeV6gb9QNx0Zf7FtJ19Wa/t2B7KpCF/1n2Js3UuSU="; pin-sha256="K87oWBWM9UZfyddvDfoxL+8lpNyoUB2ptGtn0fv6G2Q="; max-age=2592000; includeSubDomains; pin-sha256="WoiWRyIOVNa9ihaBciRSC7XHjliYS9VwUGOIud4PB18="; pin-sha256="RRM1dGqnDFsCJXBTHky16vi1obOlCgFFn/yOhI/y+ho="; pin-sha256="k2v657xBsOVe1PQRwOsHsw3bsGT2VzIqz5K+59sNQws="; pin-sha256="K87oWBWM9UZfyddvDfoxL+8lpNyoUB2ptGtn0fv6G2Q="; pin-sha256="IQBnNBEiFuhj+8x6X8XLgh01V9Ic5/V3IRQLNFFc7v4="; pin-sha256="iie1VXtL7HzAMF+/PVPR9xzT80kQxdZeJ+zduCB3uj0="; pin-sha256="LvRiGEjRqfzurezaWuj8Wie2gyHMrW5Q06LspMnox7A="; report-uri="https://invinsec.report-uri.io/r/default/hpkp/enforce" |
Public-Key-Pins-Report-Only | pin-sha256="RPnz7m2GLpW6ZrS1bmBP6k19XBKL1XnGlrMTGy1CXPg="; pin-sha256="amMeV6gb9QNx0Zf7FtJ19Wa/t2B7KpCF/1n2Js3UuSU="; pin-sha256="K87oWBWM9UZfyddvDfoxL+8lpNyoUB2ptGtn0fv6G2Q="; pin-sha256="WoiWRyIOVNa9ihaBciRSC7XHjliYS9VwUGOIud4PB18="; pin-sha256="RRM1dGqnDFsCJXBTHky16vi1obOlCgFFn/yOhI/y+ho="; pin-sha256="k2v657xBsOVe1PQRwOsHsw3bsGT2VzIqz5K+59sNQws="; pin-sha256="K87oWBWM9UZfyddvDfoxL+8lpNyoUB2ptGtn0fv6G2Q="; pin-sha256="IQBnNBEiFuhj+8x6X8XLgh01V9Ic5/V3IRQLNFFc7v4="; pin-sha256="iie1VXtL7HzAMF+/PVPR9xzT80kQxdZeJ+zduCB3uj0="; pin-sha256="LvRiGEjRqfzurezaWuj8Wie2gyHMrW5Q06LspMnox7A="; max-age=2592000; includeSubDomains; report-uri="https://invinsec.report-uri.io/r/default/hpkp/reportOnly" |
Content-Security-Policy | default-src 'self'; script-src 'unsafe-eval' 'self' https://www.google-analytics.com/analytics.js https://www.google.com/recaptcha/api.js https://www.gstatic.com; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com ; img-src 'self' https://www.google-analytics.com data:; font-src 'self' https://fonts.gstatic.com data:; connect-src 'self'; media-src 'self'; object-src 'none'; child-src 'self'; frame-src 'self' https://www.google.com/recaptcha/api2/; frame-ancestors 'self'; form-action 'self' https://crm.zoho.com/crm/Unsubscribe; reflected-xss block; manifest-src 'self' ; upgrade-insecure-requests; block-all-mixed-content; report-uri https://invinsec.report-uri.io/r/default/csp/enforce |
Content-Security-Policy-Report-Only | default-src 'self'; script-src 'unsafe-eval' 'self' https://www.google.com/recaptcha/api.js https://www.google-analytics.com/analytics.js https://www.gstatic.com; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com https://www.gstatic.com/recaptcha/api2/r20170629165701/recaptcha__en.js; img-src 'self' https://www.google-analytics.com data:; font-src 'self' https://fonts.gstatic.com data:; connect-src 'self'; media-src 'self'; object-src 'none'; child-src 'self'; frame-src 'self' https://www.google.com/recaptcha/api2/; frame-ancestors 'self'; form-action 'self' https://crm.zoho.com/crm/Unsubscribe; reflected-xss block; manifest-src 'self';report-uri https://invinsec.report-uri.io/r/default/csp/reportOnly |
Invinsec-Cache | HIT |