Server | Apache/2.2.31 (Unix) mod_ssl/2.2.31 OpenSSL/1.0.1e-fips mod_bwlimited/1.4 |
Cache-Control | max-age=604800 |
Expires | Thu, 16 Jun 2016 13:27:10 GMT |
Vary | Accept-Encoding |
Content-Encoding | gzip |
X-UA-Compatible | IE=edge |
Content-Security-Policy | default-src 'self' data: https: *.4ty.gr *.4ty.local code.jquery.com *.gstatic.com www.google-analytics.com *.googleapis.com *.facebook.net *.facebook.com cloudfront-labs.amazonaws.com *.cloudfront.net; script-src 'self' data: 'unsafe-inline' 'unsafe-eval' https: *.4ty.gr *.4ty.local code.jquery.com *.gstatic.com www.google-analytics.com *.googleapis.com *.facebook.net *.facebook.com cloudfront-labs.amazonaws.com *.cloudfront.net googledrive.com; style-src 'self' data: 'unsafe-inline' https: *.4ty.gr *.4ty.local code.jquery.com *.gstatic.com www.google-analytics.com *.googleapis.com *.facebook.net *.facebook.com cloudfront-labs.amazonaws.com *.cloudfront.net; child-src 'self' https: *.4ty.gr *.4ty.local *.youtube.com *.facebook.com; |
X-Content-Security-Policy | default-src 'self' data: https: *.4ty.gr *.4ty.local code.jquery.com *.gstatic.com www.google-analytics.com *.googleapis.com *.facebook.net *.facebook.com cloudfront-labs.amazonaws.com *.cloudfront.net; script-src 'self' data: 'unsafe-inline' 'unsafe-eval' https: *.4ty.gr *.4ty.local code.jquery.com *.gstatic.com www.google-analytics.com *.googleapis.com *.facebook.net *.facebook.com cloudfront-labs.amazonaws.com *.cloudfront.net googledrive.com; style-src 'self' data: 'unsafe-inline' https: *.4ty.gr *.4ty.local code.jquery.com *.gstatic.com www.google-analytics.com *.googleapis.com *.facebook.net *.facebook.com cloudfront-labs.amazonaws.com *.cloudfront.net; child-src 'self' https: *.4ty.gr *.4ty.local *.youtube.com *.facebook.com; |
X-WebKit-CSP | default-src 'self' data: https: *.4ty.gr *.4ty.local code.jquery.com *.gstatic.com www.google-analytics.com *.googleapis.com *.facebook.net *.facebook.com cloudfront-labs.amazonaws.com *.cloudfront.net; script-src 'self' data: 'unsafe-inline' 'unsafe-eval' https: *.4ty.gr *.4ty.local code.jquery.com *.gstatic.com www.google-analytics.com *.googleapis.com *.facebook.net *.facebook.com cloudfront-labs.amazonaws.com *.cloudfront.net googledrive.com; style-src 'self' data: 'unsafe-inline' https: *.4ty.gr *.4ty.local code.jquery.com *.gstatic.com www.google-analytics.com *.googleapis.com *.facebook.net *.facebook.com cloudfront-labs.amazonaws.com *.cloudfront.net; child-src 'self' https: *.4ty.gr *.4ty.local *.youtube.com *.facebook.com; |
X-XSS-Protection | 1; mode=block |
Keep-Alive | timeout=5, max=100 |
Connection | Keep-Alive |
Content-Type | text/html; charset=utf-8 |