HTTP/1.1 200 OK
Server: nginx
Date: Wed, 08 May 2019 22:43:53 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
X-Recruitment: You read http header for fun? Would you like to work for us? Contact us: https://www.scip.ch/?contact
Expires: Thu, 09 May 2019 02:43:53 GMT
Content-Security-Policy: default-src 'self'; font-src 'self' data:; script-src 'nonce-EEA+aURPEkPDfZoMp4SEjA==' 'strict-dynamic' 'self'; connect-src 'none'; media-src 'self'; object-src 'none'; style-src 'self' 'unsafe-inline'; child-src *.youtube-nocookie.com *.ted.com *.vimeo.com *.liveleak.com *.srgssr.ch *.srf.ch *.slideshare.net *.eventbrite.co.uk; frame-ancestors 'none'; base-uri scip.ch
Feature-Policy: accelerometer 'none'; ambient-light-sensor 'none'; autoplay 'self'; camera 'none'; encrypted-media 'none'; fullscreen 'self'; geolocation 'none'; gyroscope 'none'; magnetometer 'none'; microphone 'none'; midi 'none'; payment 'none'; speaker 'self'; usb 'none'; vr 'none'
Set-Cookie: sid=0b14b6f4dd3404cfe2d799d1c4d1f1fc; expires=Thu, 09-May-2019 16:56:08 GMT; Max-Age=65535; path=/; secure; HttpOnly
X-Frame-Options: DENY
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000; includeSubDomains
Referrer-Policy: same-origin
Expect-CT: max-age=60; report-uri="https://0.report-uri.io/r/default/ct/reportOnly"
Vary: Accept-Encoding
X-Powered-By: PleskLin
X-Powered-By: PleskLin