Threat Level: green Handler on Duty: Tom Webb

SANS ISC: HTTP Header Usage Statistics - Internet Security | DShield HTTP Header Usage Statistics


Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!

This is a continuation of work started by Brough Davis as part of his software security project for his Masters in Information Security Engineering. The main goal of this project is to find how many sites use security relevant headers, like for example the X-XSS-Protection or X-Frame-Options headers.

Below you will find a table/histogram showing how many times we found each header (security relevant or not). We access the index page of each site using a "head" request. The list of sites is derived from Alexa's Top 1 Million sites. We try to poll as many sites as possible each day.

As we collect more data, we will plot changes over time.



All Headers Active In The Past Month
Header Popularity
Content-Type
Date
Server
Connection
Set-Cookie
Cache-Control
X-Powered-By
Vary
Expires
Content-Length
Last-Modified
Pragma
Accept-Ranges
ETag
Link
X-Pingback
P3P
X-Content-Type-Options
X-AspNet-Version
X-XSS-Protection
X-Cache
X-Frame-Options
Content-Language
Age
X-UA-Compatible
CF-RAY
X-Adblock-Key
Via
Keep-Alive
X-Varnish
X-Language
X-Check
X-Template
X-Cacheable
Access-Control-Allow-Origin
X-Buckets
Strict-Transport-Security
Content-Location
X-Generator
X-Drupal-Cache
Status
X-AspNetMvc-Version
X-Request-Id
X-Ac
X-Hacker
X-Powered-By-Plesk
MS-Author-Via
WP-Super-Cache
P3p
X-Runtime
X-Geo
X-Geo-Port
X-Type
X-Pass-Why
X-Cache-Group
X-Powered-CMS
X-Pad
Ngpass-Ngall
X-Mod-Pagespeed
X-UA-Device
Host-Header
X-Cache-Hits
Access-Control-Allow-Credentials
X-Logged-In
X-Tumblr-Pixel
X-Tumblr-Pixel-0
X-Tumblr-User
Content-Security-Policy-Report-Only
X-Backend
X-Via
X-Iinfo
X-Tumblr-Pixel-1
X-Alternate-Cache-Key
X-Dc
X-ShopId
X-ShardId
X-Host
X-Tumblr-Pixel-2
Access-Control-Allow-Headers
Access-Control-Allow-Methods
X-ServedBy
MicrosoftOfficeWebServer
X-Server
X-ContextId
X-Served-By
X-Cache-Hit
X-CDN
X-Port
X-Cache-Lookup
X-PC-Key
X-PC-Hit
X-Rack-Cache
MicrosoftSharePointTeamServices
X-Robots-Tag
X-Request-Country
X-PC-Date
X-PC-Host
X-PC-AppVer
X-BC-Is-HA
X-Tumblr-Pixel-3
SPRequestGuid
X-SharePointHealthScore
Content-Encoding
X-Varnish-Cache
X-Accel-Version
X-XRDS-Location
X-FRAME-OPTIONS
X-MS-InvokeApp
Powered-By
X-Page-Speed
X-Safe-Firewall
X-Webserver
X-Amz-Cf-Id
X-PhApp
X-Cnection
X-INKT-URI
X-INKT-SITE
X-FullPageCaching
Content-Security-Policy
X-Ua-Compatible
X-AH-Environment
Composed-By
X-Served-From-Cache
X-Seen-By
X-Wix-Renderer-Server
X-Turbo-Charged-By
Rating
X-Wix-Request-Id
X-W-DC
Served-By
X-Timer
X-Cache-Status
X-Tumblr-Content-Rating
X-Firenze-Processing-Times
CF-Cache-Status
X-GitHub-Request-Id
X-Tumblr-Pixel-4
X-Content-Digest
Request-Id
Public-Key-Pins
Liferay-Portal
X-SERVER
SPIisLatency
SPRequestDuration
X-CF-Powered-By
X-Cache-Enabled
X-Amz-Id-2
X-Request-ID
X-Pantheon-Endpoint
X-Styx-Build-Num
X-Styx-Version
X-Styx-Req-Id
X-Spip-Cache
X-Styx-Build-Sha
X-Styx-Build-Date
X-Pantheon-Styx-Hostname
X-Amz-Request-Id
X-Node
X-XN-Trace-Token
X-Hyper-Cache
X-XN-XNHTML
Cf-Railgun
Permitted-Cross-Domain-Policies
X-HeyJason
X-Server-Name
Cartoon
Content-Script-Type
Content-Style-Type
X-Proxy-Cache
X-Cache-Info
Refresh
X-Powered-By-360WZB
X-Umbraco-Version
X-Clacks-Overhead
X-CDN-Geo-IP
X-CDN-Geo
X-CDN-Any-IP
X-FB-Debug
X-Tumblr-Pixel-5
Alternate-Protocol
Timing-Allow-Origin
X-Cached-By
X-Cache-Server
X-VCache
Public-Key-Pins-Report-Only
Real-Hostname
X-TN-ServedBy
X-Device
X-Cache-Result
X-PHP-Engine
X-Loop
Charset
X-FW-Hash
X-FW-Static
X-FW-Serve
X-FW-Type
X-Url
X-Hostname
X-TNCMS
X-Cached
X-PersistenceNode
X-Px
X-Outils-CS
X-Age
X-Jimdo-Pid
X-Jimdo-Wid
NS-RTIMER-COMPOSITE
X-Fastly-Request-ID
X-Hits
X-Microcachable
X-DynaTrace-JS-Agent
X-Generated-By
EagleId
X-Swift-CacheTime
X-Swift-SaveTime
TCN
Content-MD5
Proxy-Connection
X-Permitted-Cross-Domain-Policies
X-User-Agent
Magicmarker
Alt-Svc
X-DDC-Arch-Trace
Access-Control-Max-Age
X-Backend-Server
X-Cache-Config
X-DynaTrace
X-Content-Security-Policy
X-Forwarded-For
Response
X-VWS-Id
X-AWS-Id
X-Beta
X-CMS-Version
X-LJ-Flow-ID
X-Gateway
X-Whom
Grace
X-From
Product
Page-Completion-Status
X-MiniProfiler-Ids
X-Content-Encoded-By
X-Tumblr-Pixel-6
X-Handled-By
X-Middleton-Display
X-Sol
X-Middleton-Response
Display
X-Micro-Cache
X-URL
Generator
X-Content-Options
X-Msg-2-Log
Imagetoolbar
Powered-By-ChinaCache
X-FORWARDED-FOR
Surrogate-Control
ServedBy
X-AspNetWebPages-Version
X-Expires-Orig
Fastly-Debug-Digest
X-Mobilized-By
X-Matrix-Proxy
X-Matrix-Server
X-LiteSpeed-Cache
X-ARC
X-App-Hosting
IBM-Web2-Location
X-Version
X-Firenze-Processing-Time
DynaTrace
X-Country-Code
Fpc-Cache-Id
X-Returned-From-BeforeDispatch
X-Passed-To-PostProcessResponse
X-Actual-URL
X-Returned-From-DLL
X-Returned-From-PostProcessResponse
X-Passed-To-DLL
X-Returned-From
X-Passed-To
X-Original-Request
X-Passed-To-BeforeDispatch
X-Varnish-Backend
X-ApacheServer
Cxy-All
Fhost
Retry-After
Upgrade
X-I
Rt-Fastcgi-Cache
CC-CACHE
X-UD-Method
PageSpeed
Node
Content-Encoding-Handler
X-Varnish-TTL
X-Varnish-Host
Access-Control-Request-Method
Ngpass-Vcall
X-Stale
X-Hosted-By
Pics-Label
X-WebKit-CSP
Proxy-Agent
X-ATG-Version
X-Nitra-Side
X-Processed-By
X-SDS
X-Varnish-Beresp-Status
X-Varnish-Beresp-Ttl
X-Varnish-Beresp-Grace
X-Director
VAR-Cache
X-Track
Thanks
Akamai-IP
Lsrequestid
RTSS
X-Instart-Request-ID
X-Time
X-ServerName
X-Varnish-Age
X-Cache-Rule
X-Cache-TTL
X-PERF
X-Server-ID
X-Duration
SID
MIME-Version
X-Cache-Debug
Powered
X-S
X-Srv
Content-Disposition
ServerName
X-Upstream
X-CacheServer
X-NoCache
X-Cache-CFC
ServerID
X-I-Sp
X-BS
X-Powered-By-Server
X-Varnish-Hits
Cache
Access-Control-Expose-Headers
X-TTL
X-Powered-By-Anquanbao
SN
IISExport
Location
X-Distil-CS
X-Do-Not-Hack
X-Location-Id
NODE
X-PF-Uncompressing
X-Powered-By-VTEX-Janus-ApiCache
X-Powered-By-VTEX-Janus-Router
X-Front
No
X-Powered-By-VTEX-Janus-Edge
X-VTEX-Cache-Status-Janus-ApiCache
X-Vtex-Processado-Em:
X-Vtex-Processed-At
X-VTEX-Janus-Router-Backend-App
X-Vtex-Remote-Cache
X-VTEX-Cache-Status-Janus-Edge
X-Cache-Expires
X-Varnish-Cache-Hits
X-PwB-Node
X-Purge-Host
Host
X-DNS-Prefetch-Control
X-Varnish-Cacheable
X-Cache-Control-Orig
BDPAGETYPE
BDQID
X-Drectory-Script
BDUSERID
X-Cache-Age
Accept-Encoding
X-Amz-Meta-S3cmd-Attrs
X-FW
X-Art-Request-Id
Edge-Control
X-Ttl
Buuteeq-Source
X-FIRSTBase
X-Varnish-IP
Server-Info
X-Cookie-Domain
X-Response-Time
Webluker-Edge
X-Route-Server
X-ServerID
S
X-Purge-URL
Server-Name
Accept-Charset
X-CJ-Soft
X-App
X-BackendServer
X-Varnish-Hostname
X-Do-Esi
WWW-Authenticate
X-Recruiting
X-Speed-Cache
Content-Hash
X-Daa-Tunnel
X-Developer
COMMERCE-SERVER-SOFTWARE
X-Trace-Cache
X-Cache-Operation
X-App-Status
X-Origin
X-Vary-Options
X-GeoIP-Country-Name
X-Symfony-Cache
X-GeoIP-Country-Code
X-Speed-Cache-Key
X-VARNISH-Cache
Srv
Filter-Revision
X-Goog-Hash
X-Secret
Host-Service
X-Blog
Arr-Disable-Session-Affinity
X-Yadis-Location
PICS-Label
X-Frontend
X-Loc
X-Geo-IP
X-Cache-Tags
Sprequestguid
X-ClientSide-Caching
Cm-Server
X-ACMCache
X-Gamma-Serve
X-DefendeR-Status
X-Sharepointhealthscore
X-DefendeR-Runtime
X-Grace
X-Zephyr
X-Trace
Origin
X-Translation
Id
X-Microcache-Status
NtCoent-Length
X-Session-Reinit
X-Device-Type
X-Provisioner-Version
Front-End-Https
A-Powered-By
AMF-Ver
X-Domain-Checked
Version
Last-Published
Frame-Options
Cache-By-Node
Qs-Cache
X-WR-Flags
X-Amz-Version-Id
SEOMOZ
X-Highwire-RequestId
Backend
X-Libra-UpstreamHost
MJ12bot
X-Highwire-SessionId
X-SmartBan-Host
X-Download-Options
X-SmartBan-URL
X-N
X-CDN-Node
Nodo
X-Directory-Script
NetMindSessionID
X-CDN-Cache-Status
X-Geo-IP-Metro
X-Edge-Location
RATING
X-Geo-IP-Country
X-Geo-IPV
X-Geo-IP-Region
X-Drupal-Dynamic-Cache
Mobiquo-Is-Login
X-Cocoon-Version
X-Client-IP
X-Empowered-By
Smug-CDN
X-SmugMug-Hiring
X-SE-Debug
X-SmugMug-Values
X-TTFB
X-Adobe-Loc
X-TTFB-L
X-Real-Server
X-Prefetched
X-Orig-Vary
X-Env
X-Src-Webcache
X-Adobe-Content
X-Cf-Requestid
LBVIS
Sfy
Lfy
X-Yottaa-Optimizations
X-Server-Instance
X-SCProxy
X-Yottaa-Metrics
Author
X-Old-Content-Length
X-Ms-Invokeapp
X-Gannett-Site-Version
Content-Transfer-Encoding
S-Cnection
X-Origin-Id
X-Sys-Req-ID
X-JG-Page-Cache
CT
X-Xrds-Location
X-Magnolia-Registration
MW-Webserver
X-Debug
X-Fastcgi-Cache
X-UPSTREAM
Req-Id
X-WA-Info
SVR
X-Resolver-IP
X-Cache-Lifetime
X-FreeTag-Count
X-Distributed-By
X-Bettercache-Proxy
X-ChromeLogger-Data
X-Id
X-XTM-Node
X-Varnish-HitMiss
X-Varnish-Count
BM-Cache-Node
BM-Cache-Key
X-Engine
X-Full-URL
X-Varnish-Server
Sophnep-Edge-FX
X-ID
CacheControlHeader
X-Unbounce-PageId
X-Unbounce-Variant
X-Object-Id
X-Unbounce-VisitorID
X-Object-Type
X-NetCat-Version
X-Garden-Version
X-W3TC-Minify
X-Varnish-Action
Pool-Info
Nitro-Cache
BM-Cache-Status
Mime-Version
X-Atraveo-Param-Rm
X-Cache-Control
X-Atraveo-From-Varnish-Cache
X-Atraveo-Expires
X-Atraveo-Cache-Control
X-Atraveo-ETag
X-Atraveo-TTL
X-Atraveo-Set-Cookie
X-Atraveo-Varnish-Server-Id
X-Atraveo-Zone
X-Abuse
X-Force
X-Expires
X-SV
X-Varnish-Debug-Age
X-Cache-On
X-ServerCache-Info
Cneonction
X-PRAM
BALANCEDTO
X-ORACLE-DMS-ECID
X-Revision
X-SDE-Name
Beyond-Iis
X-GeoIP
X-Amz-Id-1
X-NginX-Cache
From
X-Uid
Keywords
ORIGIN
XDomainRequestAllowed
X-AOL-SNH
X-Cache-Engine
X-BackEnd
X-Server-Id
HAVer
RlogId
X-TempDebug
X-Storage
Cache-Id
LBC
Fastcgi-Cache
Hamster
Ec
X-Amz-Storage-Class
X-EBAY-C-REQUEST-ID
X-SERVER-ID
X-Grid-Server
W
X-Phpwcms-Release
X-Phpwcms-Page-Processed-In
X-Machine-Name
X-Content-Age
HCVer
X-Source-ID
MIH-PUBLIC-IDENTIFIER
Spiislatency
X-Detected-Device
SS
MIH-CLIENT-FARM
X-Stage
MIH-PLATFORM
X-Airee-Node
Sprequestduration
NnCoection
SiteName
X-Nginx-Host
X-Req-Host
X-Distributor
WP-AdvCache-MemCached
X-Middleton-PageSpeed
ScoreTracker
X-Render-Time
Description
X-Real-IP
X-NFE
CommunityServer
X-Hit-Cache
X-Farm-Server
X-Bcwwwid
WFE
X-GC-App
Y-Trace
X-Cache-Action
X-Nhost
X-GC-Write
X-Dev
X-Nurl
X-Varnish-ID
X-GC-Read
X-GC-Pointer
X-APP
X-Pagename
X-Plat
Ibf5scheme
X-Who
Accept-Language
X-Twitter-Response-Tags
X-Edge-IP
Warning
X-PBY
SRV
X-Transaction
X-Remote-Addr
X-Optimization
X-Framework
X-B2f-Cache-Load
X-Connection-Hash
X-Max-Age
Cache-Ctrol
No-Cache
X-EPiLogOnScreen-PostUrl
X-EPiLogOnScreen
X-Key
X-B2f-Not-Route
SSPAppContext
Pool
SIP
X-Span
FROM-SERVER
Hash
X-Actindo-RS
Cluster-ID
X-Site:
X-CCC
X-CID
X-Kirra-SiteId
X-Author
X-Invoke-Duration
Nodeid
X-ATM-RServer
X-Built-By
X-ATM-RTime
X-Response
No-Cookie
X-Ruxit-JS-Agent
X-MrHost
Vacache
-GCR
X-Varnish-Device
Disablevcache
X-SSL
X-T3Cache
BM-CountryCode
Prxy
X-Webstats-RespID
X-Varnish-Debug-TTL
X-T3CacheTags
X-ServerIndex
Encoding
NZSpeedy
Apache
X-SV-CacheTags
X-SV-CreatedAt
X-Page-Cache
X-DPWN-IS-SECURE
X-NginX-Server
X-Cms-Mode
X-Rack-Cors
Content-Instance
X-HostName
X-IsCacheURL
X-AWS
X-Jphone-Copyright
X-SV-Duration
Debug-3-1
X-SV-FromDBCache
X-SV-Edge
X-Is-Mobile
X-Dispatch
Worker
X-CB-Server
X-Source
X-ManagedFusion-Rewriter-Version
X-Rewritten-By
Fastly-Backend-Name
X-Cache-Doesi
X-Catalyst
X-Nginx
Rt-Server
TP-L2-Cache
X-BLSR-COST
X-DSMX-Render-MS
X-DSMX-Rewrite-MS
X-Server-Node
X-ACCELERATE
X-Powered
X-GSL-Server
Backend-Name-Original
X-Powered-Developer
X-Block
X-Channel-Maxage
SERVER-IP
X-N-ViewType
X-AISO-Cache
X-REDIRECTSERVER
X-Cache-Set
X-B
X-AISO-Cacheable
Www.Myjob.Se
Jobb.Assistentpoolen.Se
Cache-Rule
Jobb.Gil.Se
Jobb.Passal.Se
X-Esi
BM-Cache-Bypass
BrandBucket-Domain
X-Server-IP
X-Cache-Original-TTL
X-Stiffia-Cache
TP-Cache
OT-RequestId
Open.Jobgate.Se
P3P:CP
Www.Mabracertifiering.Se
Www.Mirrorgate.Se
Set-Cookie2
Test.Executivepeople.Se
CtExclusions
X-AISO-Server
X-Trace-App
X-Varnish-Ttl
X-Hash
X-Smartcache-Keys
MachineName
X-Processing-Time
Ttl
X-Smartcache-Timeout
X-Platform-Processor
Og
X-KO-Site-Id
X-Platform-Router
X-Backend-Ip
X-Accel-Expires
NLCacheNote
X-WorkerInstancename
X-Frames-Options
PServer
Countrycode
X-WP
X-SRV
X-Cache-Ttl
X-CacheTTL
Machine
X-Proxy
X-Ocache
X-TTL-Age
X-CPU-Time
X-Venda-Hitid
X-Your-GrandPa-Would-Wait
Acdc-Web
Sss
X-Would-Your-GrandPa-Wait
X-USERNAME
X-T3CacheInfo
B-Powered-By
X-J-Proxy
X-Nginx-Cache
X-J-Proxy-Hostname
X-FFX-B
X-J-Proxy-Servername
X-DTC
Ksid
Bs-Header
PROPSON-FARM
Tk
X-Obvious-Info
X-Obvious-Tid
X-ESI-Enable
X-7d-Trace-Id
Edgecast
X-BKSrc
X-Ar-Debug
X-App-Server
Device
X-PageID
X-Test
X-7d-Instance-Id
X-Search-Id
X-ProxyInstancename
X-This-Proto
X-AIA-Log
X-T
Progma
MSThemeCompatible
MSSmartTagsPreventParsing
Esi-Enabled
Serv
X-Domino-CacheValidationWithETagReason
X-Edge-V
X-Domino-CacheValidationWithETagResult
Copyright
X-Meta-MSSmartTagsPreventParsing
X-Cache-Backend
X-HOSTTYPE
X-Client-Vid
X-Info
X-EPiphany-Vid
X-Rocket-Nginx-Bypass
X-Cluster-Node
X-Meta-Imagetoolbar
ServerIP
Il-Cl
X-Meta-MSThemeCompatible
X-Compressor
X-Plat-Be-Ip
X-Plat-Va-Ip
X-Cache-Fix
X-Cache-PageType
X-IP-Address
X-Node-Name
Cteonnt-Length
X-HOSTNAME
X-Worker
X-Aberdeen-Cache
Disaptch-Cache-Rule
INCOMING-TIME
X-Analytics
X-Route
X-Aberdeen-Site
X-Cookie-Request-Debug
X-NID
X-Xhr-Current-Location
X-Cookie-Response-Debug
X-Gyrobase-Publication
X-Server-Generated
Surrogate-Key
X-Flex-Tag
X-Flex-Tags
X-Cache-Extended
X-Gondor-Server
Web-Server
X-Flex-Lastmod
X-Dispatcher
X-Webobjects-Loadaverage
Head
X-Wb-Version-Value
X-AppServer-Cache-Rule
X-Purge-Level
X-Drupal-Cache-Tags
X-Vhost-ID
X-Static-Version
X-SRCache-Store-Status
Aoestatic
X-Cluster-Host
X-SRCache-Fetch-Status
X-SID
Server-Optimized-By
X-FCMS-Cache
1
OutputRewritten
X-Request-Count
X-Powered-By-Home.Pl
Server-Hostname
X-Time-Microsecs
X-Flex-Evend
X-SRVID
X-Hosts-Backend
X-Flex-Evstart
Cpu
X-Flex-Community
X-WR-MODIFICATION
Apple-Itunes-App
Ram
Noq
X-Flex-Lang
X-Prerender-Token
X-Goog-Stored-Content-Encoding
X-Goog-Storage-Class
X-DeliveryServer
X-Goog-Stored-Content-Length
X-GUploader-UploadID
X-Url-Store
X-Var-Hash
X-DC-Origin-IP
X-Cookie-Store
X-Remove-Cookie
WebServer
Http
X-Content-Parsed-By
X-Runtime-Memory
Xc
X-Checkout
X-ELC-Checkpoint4
X-ENV
X-Magento-Lifetime
X-Magento-Action
X-Made-Cache-Ttl
X-PageCache-Level
X-PageCache-Key
X-PageCache-Expire
X-PageCache-Defaultable
X-PageCache-PagePath
X-PageCache-ParseTime
X-PageCache-Ttl
X-Hosting
X-HA
X-SilverStripe-Cache
X-HeBS-Cache-Status
X-KoobooCMS-Version
X-JSESSIONID
X-Cache-Key
X-Goog-Metageneration
X-Rack-CORS
Be-Va
X-Serendipity-InterfaceLang
X-Provided-By
Redirect
X-AOESTATIC-FETCH
Provider
X-Serendipity-InterfaceLangSource
X-Ratelimit
XDisk
X-Webbins-Node
X-Wb-Version-Expiry
AcceptLangage
Be-Ip
X-Time-Spent
X-MCB-Server
Imx-Cookies-Used
X-Ghost-Cache-Status
X-Backend-Status
X-Goog-Generation
RouteID
X-9XB-Server
Noahs-Classifieds
X-TargSmaku
X-Turpentine-Cache
X-Varnish-Esi-Method
X-Ec-Custom-Error
Language
X-Built-With
X-Varnish-Esi-Access
X-UD-Host
Server-N
Web
X-Hypernode
X-DELIVERYSERVER
X-Cache-Keep
X-HITS
X-Cache-TTL-Remaining
X-CacheResult
Count-Click-Attempt2
XX
AC-ELC
SV-Duration
Content-ID
X-Generated-At
X-Process-Time
Content
X-Pagely-Cache
X-DN-Cache-Control
WP-Cache
Tracker
Response-Time
ResourceTag
X-SeschatRedID
X-SeschatLayout
X-SeschatDID
X-SeschatTemplateID
X-Varnish-Hashed-On
Public-Extension
Allow
X-Varnish-ServiceNetIP
Mto-License-Status
X-UType
SBGI-10
SBGI-1
X-Lookup-Mode
SBGI-5
SBGI-7
SBGI-RealPath
SBGI-Device
SBGI-9
X-LS-DEBUG
X-Op
X-Timestamp
X-Trans-Id
X-ServedByHost
Httpd-Identifier
Unique-Request-Id
X-ProxyDuration
X-Instance-Name
X-Seschat-URL
X-Server-By
X-Turpentine-Esi
X-Server-Addr
X-RSS-CACHE-STATUS
X-Wikidot-Backend
X-Wikidot-Static-Cache
Atp-Isdpp
At-Shoptype
At-Isb
X-Oracle-DMS-ECID
X-ESI
X-AG-MIPS
MDX-Naviid
Server-Ip
X-AVG
X-AVG-REWRITE
X-Confluence-Request-Time
X-Varnish-Debug-Hits
X-Avvio-Cms-Cacheload
Foglight-Request-UUID
HostName
X-Obj-Ttl
X-Node-ID
X-Lang
X-Pardot-LB
X-Pardot-Route
X-Request-Received
X-Request-Processing-Time
X-Pardot-Rsp
X-Discourse-Route
X-Ct-Info
Sid
Rewriter
Real-Server
Url-Hash
X-Artvisual-Server
X-CCM
X-BE
Railo-Version
X-Fallback
Apachenode
X-SayCDN-Original-Path
X-SayCDN-TTL
X-SayCDN-UA
X-Uplex
X-SayCDN-Original-Host
X-Say-TTL
X-Say-Original-Host
X-Say-Cacheable
X-Say-Original-IP
X-Say-Original-UA
X-Say-Original-URL
X-Varnish-Debug-Pool-Fetch
X-Varnish-Debug-Pool-Recv
Web-Head
Time
X-Accelerated-By
X-ACLR-Version
X-Cachable
SAVVIS
RSL-Trace-ID
X-Varnish-Restarts
X-Varnish-Debug-Varnish-TTL-Set-From-Server
DNNOutputCache
HA-Front
MGIT
X-NODE-NAME
X-MobileDetected
X-Origin-Cache
X-Obr-Rule
X-Pb-Mii
X-Request-Time
X-Web-Node
X-Nucleus-Cache
X-HW
X-Allow-Redis
Www.Aujourdhui.Com
X-ATP-Server
X-Device-Group
X-Mii-Cache-Hit
X-Webkit-CSP
ContentType
X-EdgeRouter
X-Cached-Until
X-Hrouter
X-Hstore
X-Martin
X-Cached-On
X-Cache-Me-Harder
Ozcache
IsMobile
X-4ormat-Cacheable
X-AccessDev
X-Cache-Host
X-Cache-Via
X-SayCDN-Original-UA
X-SiteConInfo
X-UseReverse-Proxy
X-Status
X-WHOIS-Cached
X-Router-Backend
X-Router
X-Healthy
X-ProcessESI
X-RemovedCookies
Fpc-Expire
X-Header
FindLaw
X-PURGE-Server
X-LB-Server
X-Webapp
X-Hit
X-Debug-Site-Time-OnInit.Master
X-Rot
Wn-Vars
X-Flow-Powered
X-WN-ClientGroup
X-ETag
RequestId
SBMCLOUD
WEBO
X-UA-Vendor
X-Req-Counter
Fw-Via
X-Path
X-PoolMember
X-Foresight-Air
X-Foresight-Customresponse
WN
X-EntryPoint
SBGI-RenderTime
V-RESP
X-Wm-1
X-Nocache
X-SERVERID
X-Wm-VIP
X-Sov
X-LI-UUID
X-Li-Pop
X-Li-Fabric
X-RAMCache
X-Full-Url
X-FS-UUID
X-S-Misc
X-Crafted
X-Esi-Processing
X-WorkerDuration
X-Generation-Time
X-Frame-Option
X-Environment
X-Brought-To-You-By
X-Platform-Cache
X-Cookie
X-Dynamic
X-Amz-Meta-Cb-Modifiedtime
X-D-Time
Is-Cached
X-Frontal
X-FE
X-VG-WebCache
X-ASAP-Cache
X-LB
X-PoweredBy
X-Enhanced-By
AGI-Request-ID
X-UA
CpuTime
X-Trace-Id
Exires
X-MOBILE
X-Ob-Mode
X-PC3-Control
X-PC3-Time
Machinename
X-Forwarded-Proto
X-PressLabs-Stats
X-Haiku
X-A
X-SATserver
X-Orig-Host
X-LOCATION
Kanooh-Host
X-B3-Traceid
X-We-Are-Hiring
X-Clara-ASAP
X-Goog-Meta-Policy
X-Goog-Meta-Replace
X-GLaDOS
Svr
NodeId
INFO
X-IsPremium
X-RequesterIP
X-RP-WP-Expires
X-OPNET-Transaction-Trace
X-Beatles
Thinkindot-Control
X-Varnish-URL
Thinkindot-CacheControl
Thinkindot-CacheControl-Type
X-Platform
BX-Cache
SL-NOREWRITE-REDIRECTS
Test
V-Age
FX-TTL
FX-Forwarded-For
BX-TTL
FX-Cache
X-Varnish-Store
X-Varnish-Currency
Be
X-Akamai-Edgescape
Portlet.Expiration-Cache
X-Http-Host
Servername
X-ErrorPage
X-NewRelic-App-Data
Robots
SERVER-NAME
X-Medium-Entity-Id
X-Medium-Entity-Type
X-Tags
X-Lima-Id
X-Instance
X-HasAuthorization
X-GETTER-Cache
X-Backend-Name
X-BPool
Publisher
Tempo
X-BIN
Login-Required
Front
D
E-TAG
X-Cms-Server
X-LTM-ID
X-View
X-Zendesk-Origin-Server
X-Zendesk-Request-Id
X-VhostID
X-TAG
X-Pageid
X-RNDPAGE
Yola-ID
X-Czt
X-Mobile
X-PvInfo
X-R4L-VHOST
X-Mag
X-Country
X-BServer
X-Cacheable-TTL
X-Region
X-Rq
X-Pixelsilk-Version
0
X-Accel-Cache-Control
X-Pixelsilk-Server
X-Cluster
Access-Control-Allow-Origin:
Ews
Requested-Host