Content-Security-Policy | default-src 'self';style-src 'unsafe-inline' *;frame-src 'self' http://*.googleapis.com https://*.googleapis.com https://google.com http://google.com https://*.google.com http://*.google.com http://*.doubleclick.net https://*.doubleclick.net https://*.facebook.com http://*.facebook.com http://*.mail.ru http://yastatic.net https://yastatic.net http://*.yandex.ru https://*.yandex.ru;img-src * data:;media-src *;font-src *;script-src 'self' 'unsafe-inline' 'unsafe-eval' blob: http://www.google-analytics.com https://www.google-analytics.com http://*.googleapis.com https://*.googleapis.com https://google.com http://google.com https://*.google.com http://*.google.com http://*.doubleclick.net https://*.doubleclick.net https://*.facebook.net http://*.facebook.net https://*.facebook.com http://*.facebook.com http://*.mail.ru http://yandex.st https://yandex.st http://*.yandex.ru https://*.yandex.ru http://yastatic.net https://yastatic.net http://*.imgsmail.ru http://*.mixmarket.biz http://*.googlecode.com https://*.googlecode.com;connect-src *;object-src *;report-uri /csp.php |