| Header Name | Header Data |
|---|---|
| HTTP status code | 200 |
| Content-Type | text/html; charset=UTF-8 |
| Connection | keep-alive |
| Cache-Control | no-store, no-cache, must-revalidate |
| Expires | Thu, 19 Nov 1981 08:52:00 GMT |
| X-Powered-Cms | Bitrix Site Manager (fa0f8e35d75ea25a6ecf513746bd771b) |
| Set-Cookie | PHPSESSID=I8D3sUN9gB951c7dyacPQUSK7395hBvK; path=/; domain=www.nsu.ru; HttpOnly; Secure |
| Pragma | no-cache |
| Strict-Transport-Security | max-age=15768000 |
| X-Xss-Protection | 1; mode=block |
| X-Content-Type-Options | nosniff |
| Date | Mon, 21 Apr 2025 20:53:38 GMT |
| P3p | policyref="/bitrix/p3p.xml", CP="NON DSP COR CUR ADM DEV PSA PSD OUR UNR BUS UNI COM NAV INT DEM STA" |
| Content-Security-Policy-Report-Only | script-src 'self' 'unsafe-eval' chrome-extension: 'unsafe-inline' 'unsafe-inline' https://bitrix.info https://www.googletagmanager.com https://stat.sputnik.ru https://mc.yandex.ru https://464403861.mc.yandex.ru https://oss.maxcdn.com http://css3-mediaqueries-js.googlecode.com https://1795496257.mc.yandex.ru https://connect.facebook.net https://1335335199.mc.yandex.ru https://44uk.roeo9l.com https://3368812663.mc.yandex.ru https://mc.yandex.com asset https://9dki.k99zdb.com blob: http://[fdbd:dc05:ff:ff:7fc:be89:1cea:e9b6]:9411 https://www.google.com https://www.gstatic.com https://ucads-cdn.ucweb.com https://3157771695.mc.yandex.ru https://top-fwz1.mail.ru https://privacy-cs.mail.ru https://914933330.mc.yandex.ru https://723036344.mc.yandex.ru 127.0.0.1:8182 127.0.0.1:8888 127.0.0.1:5005; frame-src 'self' https://mc.yandex.ru chrome-extension: https://mc.yandex.md https://rutube.ru https://mc.yandex.com https://skytraf.xyz https://m.youtube.com https://dl.metabar.ru https://slapvk.com https://acestream.me https://cdn.hunong.xyz https://div.show https://www.ciuvo.com https://ucads-cdn.ucweb.com null https://noop.style https://image.masala.link https://v2.maoyinews.xyz https://td.doubleclick.net https://aflt.market.yandex.ru https://c.safen110.com https://player.twitch.tv https://cdnmi.global-cache.online https://www.youtube.com http://sml-block.alrosa.ru:8002 https://www.google.com https://menrealitycalc.com https://mozbar.moz.com https://daatc-3234-r.digitalartscloud.com https://recaptcha.net https://www.recaptcha.net http://block.irkutsk-dobycha.gazprom.ru:8002 https://gateway.zscalertwo.net baiduboxapp: ms-appx-web: https://acestream.tv https://emet.live https://emet.news https://loader.media https://myaccount.google.com https://policies.google.com https://surfe.be http://sib-cdc-ugblock.rosneft.ru:8002 https://192.168.15.9 https://idecoutm-pcoytg.tgngu.loc http://block.l.vector.nsc.ru:8002 https://remove.video http://remove.video http://block-sb-hq-usg.rugrid.ru:8002 https://cp.polymetal.ru https://block.kau.nul:8043 https://localhost:6543; object-src 'self' https://noop.style chrome-extension:; report-uri /cspreportonly; |
| X-Frame-Options | SAMEORIGIN |
By using SecurityHeaders.info, you can quickly identify missing or misconfigured headers and take steps to secure your website, improving both security and user confidence.
This tool is widely used by developers, security professionals, and organizations to ensure their websites adhere to best practices in web security.
We also have another analytic tool that is used for identifying popularity metrics, general information about the business, finding similar products and competitors, and much more.
Watch it now at TrustRadar