https://www.google.com/maps/embed?pb=%211m14%211m8%211m3%211d14099.356722646155%212d-82.485352%213d27.937575%213m2%211i1024%212i768%214f13.1%213m3%211m2%211s0x0%3A0xa45adeda1ed1828f%212sLaFrance+Law%215e0%213m2%211sen%212sus%214v1498752650539&wmode=transparent

Category: Search Engine Clean Browsing

Keywords: data play learn share store using google policy search account collect content example privacy service started personal services including information


Last fetched: 2020-06-30T03:31:20.103695+00:00

HTTP status: 5 Sub-resource URL


Security-related HTTP headers

  • Server: mafe

    Announces web server software and optionally version details.

    Read more...

  • X-XSS-Protection: 0

    Controls an Cross-Site Scripting (XSS) filters built into the majority of web browsers. The filter is usually turned on by default anyway, but requirement to set the header to 1 became part of canonical set of "secure" HTTP headers. Over time, vulnerabilities in the "sanitizing" mode filter were found, so 1; mode=block became the recommended value. Some companies decided that they don't really need a browser-side XSS filter to mess with their web services which are XSS-free anyway and they became consciously disabling the XSS filter by setting the header to 0.

    Read more...

Content Security Policy

  • object-src 'none';base-uri 'self';script-src 'nonce-oAukEMZERbmtpLX2p+tVFg==' 'strict-dynamic' 'report-sample' 'unsafe-eval' 'unsafe-inline' https: http:;report-uri https://csp.withgoogle.com/csp/geo-maps-api/1

Want second opinion? Try Google CSP Evaluator.

Sub-resources

Parent pages

Parent pages loading this resource.