Server | Apache |
Cache-Control | max-age=0, private, must-revalidate |
Strict-Transport-Security | max-age=15768000 |
X-XSS-Protection | 1 |
X-Request-Id | e8afba70d29da97f3ca4fd2965242d49 |
Content-Security-Policy-Report-Only | default-src www.umassfive.coop fonts.gstatic.com fonts.googleapis.com ajax.googleapis.com umassfive.disqus.com a.disquscdn.com d20ni8a1sykdn9.cloudfront.net umassfive.wufoo.com piwik.tortus.com ssl.google-analytics.com www.timevaluecalculators.com 'self' 'unsafe-inline' 'unsafe-eval'; connect-src www.umassfive.coop fonts.gstatic.com fonts.googleapis.com ajax.googleapis.com umassfive.disqus.com a.disquscdn.com d20ni8a1sykdn9.cloudfront.net umassfive.wufoo.com piwik.tortus.com ssl.google-analytics.com www.timevaluecalculators.com 'self' 'unsafe-inline' 'unsafe-eval'; font-src www.umassfive.coop fonts.gstatic.com fonts.googleapis.com ajax.googleapis.com umassfive.disqus.com a.disquscdn.com d20ni8a1sykdn9.cloudfront.net umassfive.wufoo.com piwik.tortus.com ssl.google-analytics.com www.timevaluecalculators.com 'self' 'unsafe-inline' 'unsafe-eval'; frame-src itunes.apple.com www.youtube.com www.google.com disqus.com; img-src www.umassfive.coop fonts.gstatic.com fonts.googleapis.com ajax.googleapis.com umassfive.disqus.com a.disquscdn.com d20ni8a1sykdn9.cloudfront.net umassfive.wufoo.com piwik.tortus.com ssl.google-analytics.com www.timevaluecalculators.com 'self' 'unsafe-inline' 'unsafe-eval' data:; media-src www.umassfive.coop fonts.gstatic.com fonts.googleapis.com ajax.googleapis.com umassfive.disqus.com a.disquscdn.com d20ni8a1sykdn9.cloudfront.net umassfive.wufoo.com piwik.tortus.com ssl.google-analytics.com www.timevaluecalculators.com 'self' 'unsafe-inline' 'unsafe-eval'; object-src www.umassfive.coop fonts.gstatic.com fonts.googleapis.com ajax.googleapis.com umassfive.disqus.com a.disquscdn.com d20ni8a1sykdn9.cloudfront.net umassfive.wufoo.com piwik.tortus.com ssl.google-analytics.com www.timevaluecalculators.com 'self' 'unsafe-inline' 'unsafe-eval'; script-src www.umassfive.coop fonts.gstatic.com fonts.googleapis.com ajax.googleapis.com umassfive.disqus.com a.disquscdn.com d20ni8a1sykdn9.cloudfront.net umassfive.wufoo.com piwik.tortus.com ssl.google-analytics.com www.timevaluecalculators.com 'self' 'unsafe-inline' 'unsafe-eval'; style-src www.umassfive.coop fonts.gstatic.com fonts.googleapis.com ajax.googleapis.com umassfive.disqus.com a.disquscdn.com d20ni8a1sykdn9.cloudfront.net umassfive.wufoo.com piwik.tortus.com ssl.google-analytics.com www.timevaluecalculators.com 'self' 'unsafe-inline' 'unsafe-eval'; report-uri https://csp-reports; |
X-UA-Compatible | IE=Edge,chrome=1 |
X-Runtime | 0.203143 |
X-Rack-Cache | miss |
X-Powered-By | Phusion Passenger 5.0.15 |
ETag | "78fc4d93451bdb147e00a8016ec45d94-gzip" |
Status | 200 OK |
Vary | Accept-Encoding |
Content-Encoding | gzip |
X-Content-Type-Options | nosniff, nosniff |
X-Frame-Options | SAMEORIGIN, SAMEORIGIN |
Keep-Alive | timeout=5, max=100 |
Connection | Keep-Alive |
Content-Type | text/html; charset=utf-8 |