Set-Cookie: user_tracker=5cc5c98125afb953dd34b8804fe4bc29ddb70e1f|62.75.137.71|2017-06-10; Domain=.prom.ua; Path=/ X-XSS-Protection: 1; mode=block Set-cookie: prom=fc202662f248a6717548e91cc3a58c1b4ca1e27855acf08f7d1941dab8460cbba5a851c8; Domain=.prom.ua; httponly; Path=/ Content-Length: 288024 Pragma: no-cache Strict-Transport-Security: max-age=31104000 Set-Cookie: csrf_token=98e4f8692c7b4758b9c3811dea3bd380; Domain=.prom.ua; Max-Age=31449600; Path=/; expires=Sat, 09-Jun-2018 20:09:18 GMT HTTP/1.1 200 OK Content-Type: text/html; charset=utf-8 X-Content-Type-Options: nosniff Content-Security-Policy-Report-Only: default-src 'self' *.prom.ua *.uaprom cdn.prom.st static-cache.ua.uaprom.net *.cloudfront.net counter.yadro.ru *.skype.com *.youtube.com *.youtu.be *.jivosite.com *.reformal.ru https: ws://*.hypercomments.com *.example.com 'unsafe-inline' 'unsafe-eval' *.yandex.ru *.yandex.net yandex.st *.doubleclick.net *.facebook.com *.facebook.net *.hypercomments.com *.siteheart.com yandex.st *.google.com *.googleapis.com *.googleadservices.com *.googletagservices.com *.google-analytics.com *.googlesyndication.com; img-src * data:; media-src *; style-src * 'unsafe-inline'; font-src *; connect-src *; report-uri https://prom.ua/js_tests/csp_report Connection: keep-alive Server: nginx/1.10.3 Set-Cookie: auth=65a959c29ba08275f529d22e14bea0900810bcc6; Domain=.prom.ua; Max-Age=31536000; Path=/; expires=Sun, 10-Jun-2018 20:09:19 GMT; HttpOnly Set-Cookie: csrf_token=ba0fd276917f4a6c92e1ca5322777be8; Domain=.prom.ua; Max-Age=31449600; Path=/; expires=Sat, 09-Jun-2018 20:09:18 GMT Date: Sat, 10 Jun 2017 20:09:19 GMT Set-Cookie: cid=125794650358387925338317921608118495620; Max-Age=2592000; Path=/; expires=Mon, 10-Jul-2017 20:09:18 GMT Cache-Control: no-cache Set-Cookie: unauth=cfad62be4bde1fd7404271059486dc45a35e64cb; Domain=.prom.ua; Max-Age=31536000; Path=/; expires=Sun, 10-Jun-2018 20:09:19 GMT; HttpOnly