CF-RAY: 3a6bec32bc9e637f-FRA
Last-Modified: Fri, 29 Sep 2017 19:45:45 GMT
X-Permitted-Cross-Domain-Policies: none
Connection: keep-alive
Server: cloudflare-nginx
Set-Cookie: __cfduid=dc5f38a251662e671417fc908d14c44f91506824215; expires=Mon, 01-Oct-18 02:16:55 GMT; path=/; domain=.tunnelbear.com; HttpOnly
Content-Type: text/html
Accept-Ranges: bytes
HTTP/1.1 200 OK
X-Frame-Options: SAMEORIGIN
Strict-Transport-Security: max-age=15552000; preload
X-XSS-Protection: 1; mode=block
Date: Sun, 01 Oct 2017 02:16:56 GMT
X-Content-Type-Options: nosniff
Content-Length: 18175
Content-Security-Policy: default-src 'none'; img-src *; style-src 'unsafe-inline' 'self' fonts.gstatic.com fonts.googleapis.com; font-src 'self' fonts.gstatic.com fonts.googleapis.com; frame-src 'self' www.youtube.com s3.amazonaws.com/tunnelbear tunnelbear.s3.amazonaws.com js.stripe.com; object-src 'self'; child-src 'self'; connect-src 'self' fullstory.com *.log.optimizely.com log.optimizely.com logx.optimizely.com; script-src 'unsafe-inline' 'unsafe-eval' 'self' js.stripe.com cdn.optimizely.com www.fullstory.com fullstory.com www.googleadservices.com googleadservices.com google-analytics.com www.google-analytics.com s3.amazonaws.com/tunnelbear; upgrade-insecure-requests; block-all-mixed-content