Server | Apache/2.4.25 (Debian) |
Expires | Thu, 19 Nov 1981 08:52:00 GMT |
Pragma | no-cache |
Content-Language | de |
Cache-Control | private |
X-Frame-Options | SAMEORIGIN |
Vary | Accept-Encoding |
Content-Encoding | gzip |
X-UA-Compatible | IE=edge |
X-Content-Type-Options | nosniff |
Strict-Transport-Security | max-age=31556926 |
X-XSS-Protection | 1; mode=block |
Content-Security-Policy | default-src 'self' 'unsafe-inline' 'unsafe-eval' code.jquery.com www.google-analytics.com ajax.googleapis.com www.security.honeywell.de www.google.com www.gstatic.com stats.g.doubleclick.net; style-src 'self' 'unsafe-inline' |
X-Content-Security-Policy | default-src 'self' 'unsafe-inline' 'unsafe-eval' code.jquery.com www.google-analytics.com ajax.googleapis.com www.security.honeywell.de www.google.com www.gstatic.com stats.g.doubleclick.net; style-src 'self' 'unsafe-inline' |
X-Webkit-CSP | default-src 'self' 'unsafe-inline' 'unsafe-eval' code.jquery.com www.google-analytics.com ajax.googleapis.com www.security.honeywell.de www.google.com www.gstatic.com stats.g.doubleclick.net; style-src 'self' 'unsafe-inline' |
Keep-Alive | timeout=5, max=100 |
Connection | Keep-Alive |
Content-Type | text/html; charset=utf-8 |