Set-Cookie: _chorus_geoip_continent=EU; expires=Tue, 12 Sep 2017 11:20:47 GMT; path=/;
X-Cache: MISS
Server: nginx
Content-Length: 278098
X-Request-Id: b904d1c072330621c426c373c6afc19c24974faf
X-Timer: S1505128847.558733,VS0,VE706
Accept-Ranges: bytes
Content-Security-Policy-Report-Only: default-src https: data: 'unsafe-inline' 'unsafe-eval'; child-src https: data: blob:; connect-src https: data: blob:; font-src https: data:; img-src https: data:; media-src https: data: blob:; object-src https:; script-src https: data: blob: 'unsafe-inline' 'unsafe-eval'; style-src https: 'unsafe-inline'; report-uri https://recode.report-uri.io/r/default/csp/reportOnly
Strict-Transport-Security: max-age=7776000
X-XSS-Protection: 1; mode=block
Vary: Accept-Encoding, Accept-Encoding, X-Chorus-Unison-Testing, Origin, X-Forwarded-Proto, X-Chorus-Unison-Testing
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Content-Security-Policy: default-src https: data: 'unsafe-inline' 'unsafe-eval'; child-src https: data: blob:; connect-src https: data: blob:; font-src https: data:; img-src https: data:; media-src https: data: blob:; object-src https:; script-src https: data: blob: 'unsafe-inline' 'unsafe-eval'; style-src https: 'unsafe-inline'; block-all-mixed-content; upgrade-insecure-requests; report-uri https://recode.report-uri.io/r/default/csp/enforce
Age: 82
HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
X-Cache-Hits: 0
Date: Mon, 11 Sep 2017 11:20:47 GMT
X-Served-By: cache-ams4435-AMS
Connection: close
Via: 1.1 varnish
Pragma: no-cache
Expires: Thu, 19 Nov 1981 08:52:00 GMT
X-Runtime: 0.388954
Cache-Control: max-age=0, must-revalidate
Via: 1.1 varnish-v4