Server | nginx |
Content-Type | text/html; charset=utf-8 |
Transfer-Encoding | chunked |
Connection | keep-alive |
X-XSS-Protection | 1; mode=block |
X-Content-Type-Options | nosniff |
Content-Security-Policy | script-src 'self' https://strategylens.com/js/ https://www.google-analytics.com/analytics.js https://www.gstatic.com https://code.jquery.com https://maxcdn.bootstrapcdn.com https://cdnjs.cloudflare.com https://www.google.com https://use.fontawesome.com |
Referrer-Policy | strict-origin-when-cross-origin |
x-frame-options | SAMEORIGIN |
Vary | Accept-Encoding |
Content-Encoding | gzip |
Strict-Transport-Security | max-age=15552000 |
X-Powered-By | PleskLin |