Server | Apache |
Strict-Transport-Security | max-age=31536000; includeSubDomains; preload |
Public-Key-Pins | pin-sha256="3EAs+TXQ50+I+MzIy/IlZQAKCKITNMubfktpCvt9mrw="; pin-sha256="1yPHnmQRrKT+AU3r6RRdAdnFG6+RmsDnhF7f9O3weOE="; pin-sha256="sRHdihwgkaib1P1gxX8HFszlD+7/gTfNvuAybgLPNis="; pin-sha256="YLh1dUR9y6Kja30RrAn7JKnbQG/uEtLMkBgFF2Fuihg="; pin-sha256="C5+lpZ7tcVwmwQIMcRtPbsQtWLABXhQzejna0wHFr8M="; max-age=2592000; |
Referrer-Policy | strict-origin |
Upgrade | h2 |
Connection | Upgrade, Keep-Alive |
P3P | CP="NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM" |
Content-Encoding | gzip |
Expires | Wed, 17 Aug 2005 00:00:00 GMT |
Last-Modified | Thu, 01 Mar 2018 04:48:03 GMT |
Cache-Control | no-store, no-cache, must-revalidate, post-check=0, pre-check=0 |
Pragma | no-cache |
X-Content-Type-Options | nosniff |
X-Frame-Options | sameorigin |
Content-Security-Policy | default-src 'self'; script-src 'self' 'unsafe-inline' https://www.google.com/recaptcha/ https://www.gstatic.com/recaptcha/; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com/css; img-src 'self' data:; font-src 'self'; connect-src 'self'; object-src 'none'; child-src https://www.google.com/recaptcha/; form-action 'self'; upgrade-insecure-requests; block-all-mixed-content; frame-ancestors 'none'; base-uri 'self'; |
X-XSS-Protection | 1; mode=block |
Keep-Alive | timeout=5, max=100 |
Transfer-Encoding | chunked |
Content-Type | text/html; charset=utf-8 |