Server | Apache |
Cache-Control | no-cache |
Content-Security-Policy | default-src 'self' https://*.hotjar.com; script-src 'unsafe-inline' 'unsafe-eval' 'self' https://www.youtube.com https://s.ytimg.com https://www.google-analytics.com https://www.google.com https://*.googleapis.com https://*.gstatic.com https://js-agent.newrelic.com https://bam.nr-data.net https://*.clickdimensions.com https://*.msecnd.net https://www.wufoo.com https://www.googletagmanager.com https://*.hotjar.com https://*.licdn.com https://*.linkedin.com https://*.adnxs.com https://adadvisor.net; object-src 'self' https://www.youtube.com; style-src 'unsafe-inline' 'self' https://fonts.googleapis.com https://www.google.com; img-src 'self' data: https://i.vimeocdn.com https://i.ytimg.com https://www.google-analytics.com https://stats.g.doubleclick.net https://*.gstatic.com https://*.googleapis.com https://google.com/ads https://loremflickr.com https://*.adnxs.com https://*.bizographics.com https://*.mookie1.com https://*.bluekai.com https://*.linkedin.com; frame-src 'self' https://i.ytimg.com https://www.youtube.com https://youtube.com https://www.vimeo.com https://vimeo.com https://player.vimeo.com https://www.google.com https://*.clickdimensions.com https://*.wufoo.com https://web.solvinity.com https://*.soundcloud.com https://www.googletagmanager.com https://*.hotjar.com; font-src 'self' https://fonts.gstatic.com |
X-Content-Security-Policy | default-src 'self' https://*.hotjar.com; script-src 'unsafe-inline' 'unsafe-eval' 'self' https://www.youtube.com https://s.ytimg.com https://www.google-analytics.com https://www.google.com https://*.googleapis.com https://*.gstatic.com https://js-agent.newrelic.com https://bam.nr-data.net https://*.clickdimensions.com https://*.msecnd.net https://www.wufoo.com https://www.googletagmanager.com https://*.hotjar.com https://*.licdn.com https://*.linkedin.com https://*.adnxs.com https://adadvisor.net; object-src 'self' https://www.youtube.com; style-src 'unsafe-inline' 'self' https://fonts.googleapis.com https://www.google.com; img-src 'self' data: https://i.vimeocdn.com https://i.ytimg.com https://www.google-analytics.com https://stats.g.doubleclick.net https://*.gstatic.com https://*.googleapis.com https://google.com/ads https://loremflickr.com https://*.adnxs.com https://*.bizographics.com https://*.mookie1.com https://*.bluekai.com https://*.linkedin.com; frame-src 'self' https://i.ytimg.com https://www.youtube.com https://youtube.com https://www.vimeo.com https://vimeo.com https://player.vimeo.com https://www.google.com https://*.clickdimensions.com https://*.wufoo.com https://web.solvinity.com https://*.soundcloud.com https://www.googletagmanager.com https://*.hotjar.com; font-src 'self' https://fonts.gstatic.com |
X-Content-Type-Options | nosniff |
X-Frame-Options | DENY |
Keep-Alive | timeout=5, max=497 |
Connection | Keep-Alive |
Transfer-Encoding | chunked |
Content-Type | text/html; charset=UTF-8 |
Strict-Transport-Security | max-age=2628000 |