Server | Camelot |
Cache-Control | no-cache, no-store, must-revalidate |
Expires | Fri, 01 Jan 1999 00:00:00 GMT |
Vary | *,Accept-Encoding |
X-Frame-Options | sameorigin |
X-Content-Type-Options | nosniff |
X-XSS-Protection | 1; mode=block |
X-UA-Compatible | IE=edge |
X-Content-Security-Policy | default-src 'self'; script-src 'self' tags.tiqcdn.com tealium.hs.llnwd.net e8091.b.akamaiedge.net connect.facebook.net platform.twitter.com *.maxymiser.net *.maxymiser.com *.turn.com camelotcdn.abaresearch.uk prf.hn *.egaincloud.net *.twimg.com; frame-src 'self' https://payments1.national-lottery.co.uk https://payments2.national-lottery.co.uk *.doubleclick.net *.tealiumiq.com www.youtube.com platform.twitter.com twitter.com static.ak.facebook.com s-static.ak.facebook.com www.facebook.com *.maxymiser.net *.maxymiser.com qgen.abaresearch.co.uk *.egaincloud.net; options eval-script; img-src 'self' camelot.d3.sc.omtrdc.net *.turn.com *.maxymiser.com *.maxymiser.net camelotcdn.abaresearch.uk prf.hn *.egaincloud.net *.twitter.com *.twimg.com blob: data:; |
Content-Security-Policy | default-src 'self'; script-src 'self' 'unsafe-eval' tags.tiqcdn.com tealium.hs.llnwd.net e8091.b.akamaiedge.net connect.facebook.net platform.twitter.com *.maxymiser.net *.maxymiser.com *.turn.com camelotcdn.abaresearch.uk prf.hn *.egaincloud.net *.twimg.com; style-src 'self' 'unsafe-inline' camelotcdn.abaresearch.uk *.maxymiser.com *.maxymiser.net prf.hn *.egaincloud.net *.twitter.com; frame-src 'self' https://payments1.national-lottery.co.uk https://payments2.national-lottery.co.uk *.doubleclick.net *.tealiumiq.com www.youtube.com platform.twitter.com twitter.com static.ak.facebook.com s-static.ak.facebook.com www.facebook.com *.maxymiser.net *.maxymiser.com qgen.abaresearch.co.uk *.egaincloud.net; img-src 'self' camelot.d3.sc.omtrdc.net *.turn.com *.maxymiser.com *.maxymiser.net camelotcdn.abaresearch.uk prf.hn *.egaincloud.net *.twitter.com *.twimg.com blob:; connect-src 'self' camelotcdn.abaresearch.uk *.egaincloud.net |
X-WebKit-CSP | default-src 'self'; script-src 'self' 'unsafe-eval' tags.tiqcdn.com tealium.hs.llnwd.net e8091.b.akamaiedge.net connect.facebook.net platform.twitter.com *.maxymiser.net *.maxymiser.com *.turn.com camelotcdn.abaresearch.uk prf.hn *.egaincloud.net *.twimg.com; style-src 'self' 'unsafe-inline' camelotcdn.abaresearch.uk *.maxymiser.com *.maxymiser.net prf.hn *.egaincloud.net *.twitter.com; frame-src 'self' https://payments1.national-lottery.co.uk https://payments2.national-lottery.co.uk *.doubleclick.net *.tealiumiq.com www.youtube.com platform.twitter.com twitter.com static.ak.facebook.com s-static.ak.facebook.com www.facebook.com *.maxymiser.net *.maxymiser.com qgen.abaresearch.co.uk *.egaincloud.net; img-src 'self' camelot.d3.sc.omtrdc.net *.turn.com *.maxymiser.com *.maxymiser.net camelotcdn.abaresearch.uk prf.hn *.egaincloud.net *.twitter.com *.twimg.com blob:; connect-src 'self' camelotcdn.abaresearch.uk *.egaincloud.net |
Content-Type | text/html;charset=utf-8 |
Content-Language | en-GB |
Content-Encoding | gzip |
Keep-Alive | timeout=5, max=90 |
Connection | Keep-Alive |
Strict-Transport-Security | max-age=31536000 ; national-lottery.co.uk |