HTTP/1.1 200 OK
Server: nginx/1.10.3 (Ubuntu)
Date: Fri, 29 Nov 2019 14:35:19 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 42528
Connection: keep-alive
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
Content-Security-Policy: default-src 'none'; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://code.jquery.com https://ajax.googleapis.com https://www.googletagmanager.com https://www.googleadservices.com https://googleads.g.doubleclick.net https://www.linkedin.com https://maxcdn.bootstrapcdn.com https://*.addthis.com https://m.addthisedge.com https://m.addthis.com c.disquscdn.com disqus.com https://infinome.disqus.com https://cdn.ravenjs.com graph.facebook.com www.google-analytics.com https://connect.facebook.net addthis.com; connect-src 'self' bugs.infino.me google.com graph.facebook.com; img-src 'self' data: www.google-analytics.com www.google.com googleads.g.doubleclick.net static.xx.fbcdn.net www.ncbi.nlm.nih.gov www.facebook.com play.google.com graph.facebook.com scontent.xx.fbcdn.net; style-src https://maxcdn.bootstrapcdn.com 'self' 'unsafe-inline' c.disquscdn.com; frame-src 'self' https://*.addthis.com disqus.com www.youtube.com www.facebook.com staticxx.facebook.com s-static.ak.facebook.com api.23andme.com; font-src 'self' https://maxcdn.bootstrapcdn.com ;
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Frame-Options: DENY
Referrer-Policy: strict-origin-when-cross-origin