Server | Apache |
X-Frame-Options | SAMEORIGIN |
X-Xss-Protection | 1; mode=block |
Content-Security-Policy | default-src 'unsafe-inline' 'unsafe-eval' https:; img-src 'self' data: https://img.youtube.com https://seal.websecurity.norton.com https://www.google-analytics.com https://widgets.trustedshops.com ; |
X-Content-Security-Policy | default-src 'unsafe-inline' 'unsafe-eval' https:; img-src 'self' data: https://img.youtube.com https://seal.websecurity.norton.com https://www.google-analytics.com https://widgets.trustedshops.com ; |
X-WebKit-CSP | default-src 'unsafe-inline' 'unsafe-eval' https:; img-src 'self' data: https://img.youtube.com https://seal.websecurity.norton.com https://www.google-analytics.com https://widgets.trustedshops.com ; |
Strict-Transport-Security | max-age=31536000; includeSubDomains; preload |
Content-Language | de |
Expires | Thu, 07 Mar 2019 15:52:55 GMT |
Cache-Control | max-age=31408475 |
Pragma | public |
Content-Encoding | gzip |
Vary | Accept-Encoding |
X-UA-Compatible | IE=edge |
X-Content-Type-Options | nosniff, nosniff |
Keep-Alive | timeout=5, max=100 |
Connection | Keep-Alive |
Content-Type | text/html; charset=utf-8 |