Server | nginx |
Content-Type | text/html; charset=UTF-8 |
Transfer-Encoding | chunked |
Connection | keep-alive |
Vary | Accept-Encoding |
Strict-Transport-Security | max-age=31536000; |
Access-Control-Allow-Origin | stephane-huc.net |
Content-Security-Policy | default-src 'none'; child-src 'self' data:; font-src 'self' https://fonts.googleapis.com https://fonts.gstatic.com; form-action 'self'; frame-ancestors 'none'; img-src 'self' data: ; referrer same-origin; require-sri-for script style; sandbox allow-forms allow-same-origin allow-scripts; script-src 'self' data: https://code.jquery.com https://maxcdn.bootstrapcdn.com; style-src 'self' https://maxcdn.bootstrapcdn.com https://cdnjs.cloudflare.com https://fonts.googleapis.com; |
Referrer-Policy | strict-origin |
X-Content-Type-Options | nosniff |
Frame-Options | DENY |
X-Frame-Options | DENY |
X-Powered-By | Power by Me, Myself, and moults softs :D |
X-Robots-Tag | index,nofollow |
X-Xss-Protection | 1; mode=block |
x-ua-compatible | IE=edge |
X-Permitted-Cross-Domain-Policies | master-only |
Content-Encoding | gzip |