Server | Apache |
Expires | Thu, 19 Nov 1981 08:52:00 GMT |
Cache-Control | no-store, no-cache, must-revalidate |
Pragma | no-cache |
Content-Language | de |
X-Frame-Options | SAMEORIGIN |
Strict-Transport-Security | max-age=31536000 |
Vary | Accept-Encoding |
Content-Encoding | gzip |
Content-Security-Policy | default-src 'self' https://www.google.com/maps/api/js/; style-src 'self' 'unsafe-inline'; connect-src 'self' https://www.google-analytics.com/ https://maps.googleapis.com/ https://googleads.g.doubleclick.net/ https://csi.gstatic.com/ http://*.hotjar.com:* https://*.hotjar.com:* ws://*.hotjar.com wss://*.hotjar.com; img-src 'self' data: https://www.google.com/ https://csi.gstatic.com/ https://maps.gstatic.com/ https://maps.googleapis.com/ https://www.google-analytics.com/ https://www.googleadservices.com/ https://stats.g.doubleclick.net/ https://www.google.de/ https://insights.hotjar.com http://static.hotjar.com https://static.hotjar.com; script-src 'self' 'unsafe-eval' 'unsafe-inline' https://www.google-analytics.com/ https://maps.googleapis.com/ https://www.googleadservices.com/ https://pagead2.googlesyndication.com/ https://adservice.google.de/ https://adservice.google.com/ https://googleads.g.doubleclick.net/ http://static.hotjar.com https://static.hotjar.com https://script.hotjar.com; font-src 'self' data: http://*.hotjar.com https://*.hotjar.com; child-src 'self' https://googleads.g.doubleclick.net/ https://*.hotjar.com; frame-src 'self' https://googleads.g.doubleclick.net/ https://*.hotjar.com |
Keep-Alive | timeout=5, max=500 |
Connection | Keep-Alive |
Content-Type | text/html; charset=utf-8 |