Strict-Transport-Security: max-age=15552000; includeSubDomains
Content-Length: 64382
Set-Cookie: gls.session=crypto-session:b0pJvbJGIilAMvhzZWqjsb8YCI5D11G3ktgBEstGFMAd9lfgdTPs+iAvAex0SSV6ogUFUwPnizQPrr5cN0jc+V4tmdhi6M8MauL6YQwL6RMAs867hHNkfg1/m8Mtl5AhyN1aaCl6p+FUl/cgF60KuhJacP0v+KvINumikfLST5H7M4kUClvcuWH4ce498Nj4geSLw/LRuGco5LEoumaLjvgk74kIUlvbVWhJ+Gs7X6RUoM+OdNDEry8bTzV7Rt8NQMDLlvR66CA3GiyhjJD6t+XUWjmQymldIh59cqiaL0OFIGGoooFeK33iQfGv0IvO25Flk75rFOVXPTU=; path=/; expires=Wed, 17 Jan 2018 05:22:48 GMT; httponly
Date: Sat, 18 Nov 2017 05:22:48 GMT
Connection: keep-alive
HTTP/1.1 200 OK
X-WebKit-CSP: default-src 'self' golos.blog golos.io www.youtube.com *.facebook.com; child-src 'self' www.youtube.com w.soundcloud.com *.facebook.com player.vimeo.com chat.golos.io livejournal.com app.powerbi.com www.google.com/maps/; script-src 'self' 'unsafe-inline' *.facebook.com cyber.fund www.google-analytics.com *.facebook.net js-agent.newrelic.com bam.nr-data.net cdn.polyfill.io cdn.segment.com *.mxpnl.com *.metabar.ru mc.yandex.ru chat.golos.io media.reformal.ru cdn.ravenjs.com; style-src 'self' 'unsafe-inline' cdnjs.cloudflare.com fonts.googleapis.com; img-src * data:; font-src data: fonts.gstatic.com; connect-src 'self' cyber.fund lang.golos.io images.golos.blog images.golos.io wss://ws.golos.io wss://ws.golos.blog *.facebook.com www.google-analytics.com api.segment.io api.blocktrades.us query.yahooapis.com api.blockcypher.com api.mixpanel.com mc.yandex.ru; report-uri /api/v1/csp_violation; object-src 'self'; plugin-types application/pdf; frame-ancestors 'none'
Content-Type: text/html; charset=utf-8
X-DNS-Prefetch-Control: off
Server: nginx
X-Content-Security-Policy: default-src 'self' golos.blog golos.io www.youtube.com *.facebook.com; child-src 'self' www.youtube.com w.soundcloud.com *.facebook.com player.vimeo.com chat.golos.io livejournal.com app.powerbi.com www.google.com/maps/; script-src 'self' 'unsafe-inline' *.facebook.com cyber.fund www.google-analytics.com *.facebook.net js-agent.newrelic.com bam.nr-data.net cdn.polyfill.io cdn.segment.com *.mxpnl.com *.metabar.ru mc.yandex.ru chat.golos.io media.reformal.ru cdn.ravenjs.com; style-src 'self' 'unsafe-inline' cdnjs.cloudflare.com fonts.googleapis.com; img-src * data:; font-src data: fonts.gstatic.com; connect-src 'self' cyber.fund lang.golos.io images.golos.blog images.golos.io wss://ws.golos.io wss://ws.golos.blog *.facebook.com www.google-analytics.com api.segment.io api.blocktrades.us query.yahooapis.com api.blockcypher.com api.mixpanel.com mc.yandex.ru; report-uri /api/v1/csp_violation; object-src 'self'; plugin-types application/pdf; frame-ancestors 'none'
X-Content-Type-Options: nosniff
X-Download-Options: noopen
Content-Security-Policy: default-src 'self' golos.blog golos.io www.youtube.com *.facebook.com; child-src 'self' www.youtube.com w.soundcloud.com *.facebook.com player.vimeo.com chat.golos.io livejournal.com app.powerbi.com www.google.com/maps/; script-src 'self' 'unsafe-inline' *.facebook.com cyber.fund www.google-analytics.com *.facebook.net js-agent.newrelic.com bam.nr-data.net cdn.polyfill.io cdn.segment.com *.mxpnl.com *.metabar.ru mc.yandex.ru chat.golos.io media.reformal.ru cdn.ravenjs.com; style-src 'self' 'unsafe-inline' cdnjs.cloudflare.com fonts.googleapis.com; img-src * data:; font-src data: fonts.gstatic.com; connect-src 'self' cyber.fund lang.golos.io images.golos.blog images.golos.io wss://ws.golos.io wss://ws.golos.blog *.facebook.com www.google-analytics.com api.segment.io api.blocktrades.us query.yahooapis.com api.blockcypher.com api.mixpanel.com mc.yandex.ru; report-uri /api/v1/csp_violation; object-src 'self'; plugin-types application/pdf; frame-ancestors 'none'
ETag: "fb7e-0lZfi7nzXQc7+kkF4c8/AspnX0U"
X-XSS-Protection: 1; mode=block
Content-Encoding: gzip
Set-Cookie: gls.session.sig=FXh2zjgsYNSwBmfg9Hn1QuK526g; path=/; expires=Wed, 17 Jan 2018 05:22:48 GMT; httponly
X-Frame-Options: SAMEORIGIN