Vary: Accept-Encoding
Strict-Transport-Security: max-age=31536000
Content-Type: text/html; charset=windows-1251
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Set-Cookie: BABAI_SM_GUEST_ID=191841; expires=Sun, 22-Apr-2018 09:46:04 GMT; Max-Age=31104000; path=/; domain=babai.ru; Secure
X-XSS-Protection: 1; mode=block
Server: nginx
X-Content-Type-Options: nosniff
P3P: policyref="/bitrix/p3p.xml", CP="NON DSP COR CUR ADM DEV PSA PSD OUR UNR BUS UNI COM NAV INT DEM STA"
Set-Cookie: BABAI_SM_LAST_VISIT=27.04.2017+12%3A46%3A04; expires=Sun, 22-Apr-2018 09:46:04 GMT; Max-Age=31104000; path=/; domain=babai.ru; Secure
HTTP/1.1 200 OK
Transfer-Encoding: chunked
X-Powered-CMS: Bitrix Site Manager (c78d4b5d4a110e803002fb734002d062)
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Public-Key-Pins: pin-sha256="UHmokpoXgrwmJuyHGGKBUspMFbxOSblKyjd74Ui14Qg="; pin-sha256="rWUVoKOvMJBlafZ9O8I/wryzw/z4k3JK5wRTL1vzdos="; max-age=2592000;
Connection: keep-alive
X-Frame-Options: SAMEORIGIN
Referrer-Policy: strict-origin-when-cross-origin
Date: Thu, 27 Apr 2017 09:46:04 GMT
Set-Cookie: PHPSESSID=ohdejl4ojo290m89fnb72gtl55; path=/; domain=babai.ru; HttpOnly; Secure
Content-Security-Policy: default-src 'self' *.babai.ru babai.ru; script-src 'self' 'unsafe-inline' 'unsafe-eval' *.babai.ru babai.ru *.yandex.ru yandex.ru *.yandex.net yandex.st *.yandex.st https://*.yandex.ru https://www.googletagmanager.com https://*.googletagmanager.com *.googletagmanager.com *.googleapis.com *.gstatic.com gstatic.com *.googlesyndication.com *.doubleclick.net https://*.googleapis.com https://*.gstatic.com https://gstatic.com https://*.googlesyndication.com https://cdn.ampproject.org cdn.ampproject.org; child-src 'self' *.babai.ru babai.ru *.yandex.ru yandex.ru *.yandex.net yandex.st *.yandex.st https://*.yandex.ru *.googleapis.com *.gstatic.com gstatic.com https://www.googletagmanager.com https://*.googletagmanager.com *.googletagmanager.com *.googlesyndication.com *.doubleclick.net youtube.ru youtube.com *.youtube.ru *.youtube.com https://youtube.ru https://youtube.com https://*.youtube.ru https://*.youtube.com apis.google.com https://*.googleapis.com https://*.gstatic.com https://gstatic.com https://*.googlesyndication.com https://*.doubleclick.net https://apis.google.com https://cdn.ampproject.org cdn.ampproject.org; object-src 'self' *; img-src 'self' * data: * blob:; font-src 'self' * data:; connect-src 'self' *; media-src 'self' * data: * blob:; style-src 'unsafe-inline' 'unsafe-eval' 'self' *;