Threat Level: green Handler on Duty: Brad Duncan

SANS ISC HTTP Header Usage Statistics


Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!

This is a continuation of work started by Brough Davis as part of his software security project for his Masters in Information Security Engineering. The main goal of this project is to find how many sites use security relevant headers, like for example the X-XSS-Protection or X-Frame-Options headers.

Below you will find a table/histogram showing how many times we found each header (security relevant or not). We access the index page of each site using a "head" request. The list of sites is derived from Alexa's Top 1 Million sites. We try to poll as many sites as possible each day.

As we collect more data, we will plot changes over time.



All Headers Active In The Past Month
Header Popularity
Content-Type
Date
Server
Connection
Set-Cookie
Cache-Control
X-Powered-By
Vary
Expires
Content-Length
Last-Modified
Pragma
Accept-Ranges
ETag
X-Pingback
Link
X-AspNet-Version
X-Content-Type-Options
P3P
X-XSS-Protection
X-Cache
Age
X-Adblock-Key
Content-Language
X-UA-Compatible
X-Frame-Options
Via
Keep-Alive
CF-RAY
P3p
X-Template
X-Language
X-Check
X-Buckets
Content-Location
X-Varnish
X-Cacheable
Access-Control-Allow-Origin
X-Generator
Alternate-Protocol
X-Drupal-Cache
X-Ac
X-Hacker
WP-Super-Cache
Strict-Transport-Security
Status
X-Powered-By-Plesk
MS-Author-Via
X-AspNetMvc-Version
X-Request-Id
X-Geo
X-Geo-Port
X-Runtime
X-Pad
X-Powered-CMS
X-Mod-Pagespeed
X-Type
X-Cache-Group
X-Pass-Why
Access-Control-Allow-Credentials
Ngpass-Ngall
X-Xss-Protection
X-Logged-In
MicrosoftOfficeWebServer
X-Cache-Hits
X-Host
X-UA-Device
X-Cache-Lookup
Host-Header
X-Server
X-Proxy-Cache
X-Iinfo
X-Via
MicrosoftSharePointTeamServices
Access-Control-Allow-Headers
X-Tumblr-Pixel-0
X-Tumblr-User
X-Tumblr-Pixel
X-Backend
Access-Control-Allow-Methods
X-Tumblr-Pixel-1
SPRequestGuid
X-SharePointHealthScore
X-Robots-Tag
X-Rack-Cache
X-XRDS-Location
X-Sorting-Hat-ShopId-Cached
X-Sorting-Hat-ShopId
X-Dc
X-Sorting-Hat-PodId-Cached
X-Sorting-Hat-PodId
X-Served-By
X-CF-Powered-By
X-Varnish-Cache
X-Accel-Version
X-CDN
X-ShopId
X-Alternate-Cache-Key
X-ShardId
X-ContextId
X-ServedBy
X-Cnection
X-Tumblr-Pixel-2
X-MS-InvokeApp
X-Seen-By
Content-Encoding
X-Safe-Firewall
X-BC-Is-HA
X-INKT-URI
X-INKT-SITE
X-PC-Key
X-PC-Hit
X-Webserver
X-Hostname
X-PC-Host
X-PC-AppVer
X-PC-Date
X-PhApp
Content-Security-Policy-Report-Only
X-FullPageCaching
X-Cache-Hit
X-Page-Speed
Composed-By
Served-By
X-Port
X-AH-Environment
Cartoon
X-FRAME-OPTIONS
X-Tumblr-Pixel-3
X-W-DC
Public-Key-Pins
X-Firenze-Processing-Times
X-Cache-Status
X-Amz-Cf-Id
X-HeyJason
X-Age
X-XN-Trace-Token
X-XN-XNHTML
X-Wix-Renderer-Server
Cf-Railgun
X-Wix-Request-Id
Request-Id
X-Wix-Dispatcher-Cache-Hit
X-Spip-Cache
Content-Security-Policy
X-Powered-By-360WZB
SPIisLatency
SPRequestDuration
Liferay-Portal
X-Served-From-Cache
X-Content-Digest
CF-Cache-Status
Content-Script-Type
Content-Style-Type
X-Amz-Id-2
X-Amz-Request-Id
X-Server-Name
X-Styx-Req-Id
X-Styx-Version
X-Styx-Build-Sha
X-Styx-Build-Num
X-Pantheon-Styx-Hostname
X-Styx-Build-Date
X-Pantheon-Endpoint
X-Umbraco-Version
X-Timer
Powered-By
X-SERVER
X-Clacks-Overhead
Rating
X-Cache-Server
X-Cache-Info
X-Hyper-Cache
X-DynaTrace
X-Turbo-Charged-By
X-Cache-Enabled
X-Tumblr-Pixel-4
X-Device
X-Request-ID
X-Outils-CS
TCN
X-TN-ServedBy
Real-Hostname
DynaTrace
X-PHP-Engine
X-Loop
X-VCache
X-Cached-By
X-Cache-Resuilt
X-Px
X-FB-Debug
X-CDN-Any-IP
X-CDN-Geo
X-CDN-Geo-IP
X-Microcachable
X-PersistenceNode
X-TNCMS
X-Forwarded-For
X-Tumblr-Content-Rating
NS-RTIMER-COMPOSITE
X-Hits
X-Cached
X-Url
X-Generated-By
Refresh
Imagetoolbar
Charset
Product
Ms-Author-Via
X-Tumblr-Pixel-5
Access-Control-Max-Age
X-Matrix-Proxy
X-Matrix-Server
Powered-By-ChinaCache
X-From
X-FW-Hash
X-FW-Static
X-FW-Type
X-FW-Serve
IBM-Web2-Location
X-Backend-Server
X-Content-Security-Policy
Page-Completion-Status
X-Loc
Magicmarker
X-CMS-Version
X-Content-Encoded-By
X-Mobilized-By
X-Permitted-Cross-Domain-Policies
X-Zephyr
Response
X-DynaTrace-JS-Agent
CC-CACHE
ServedBy
X-Jimdo-Wid
X-Jimdo-Pid
X-Node
X-DDC-Arch-Trace
X-User-Agent
X-SDS
Thanks
X-Version
Ngpass-Vcall
X-Middleton-Response
Display
X-Sol
X-Middleton-Display
Generator
X-Content-Options
X-Swift-CacheTime
X-Swift-SaveTime
SID
X-MiniProfiler-Ids
X-Powered-By-Anquanbao
Grace
X-App-Hosting
X-Cache-Config
Access-Control-Request-Method
X-Firenze-Processing-Time
Node
X-I
Vacache
X-Director
X-Country-Code
X-UD-Method
X-UD-Host
X-AspNetWebPages-Version
X-Varnish-TTL
X-WebKit-CSP
X-Whom
X-Purge-Host
X-URL
X-W3TC-Minify
X-Micro-Cache
X-Cache-Expires
X-ApacheServer
Content-Disposition
PICS-Label
RTSS
X-Varnish-Host
X-Processed-By
X-Cache-Debug
X-Expires-Orig
X-Original-Request
Host
Lsrequestid
Proxy-Agent
X-Handled-By
Surrogate-Control
X-Purge-URL
X-DNS-Prefetch-Control
Content-Encoding-Handler
X-Returned-From-BeforeDispatch
X-Actual-URL
X-Returned-From-DLL
X-Returned-From
Alt-Svc
X-Passed-To-BeforeDispatch
X-Passed-To-DLL
X-Returned-From-PostProcessResponse
X-Passed-To-PostProcessResponse
X-Passed-To
X-Hosted-By
X-ATG-Version
X-Varnish-Backend
X-Instart-Request-ID
MIME-Version
Edge-Control
X-Cache-Result
Accept-Encoding
X-NoCache
VAR-Cache
Retry-After
X-FORWARDED-FOR
COMMERCE-SERVER-SOFTWARE
X-Nitra-Side
Pics-Label
X-TTL
Set-Cookie2
X-PF-Uncompressing
X-PwB-Node
X-Duration
Proxy-Connection
Fpc-Cache-Id
X-Tumblr-Pixel-6
ServerName
X-Cookie-Domain
X-App-Status
X-PERF
IISExport
X-Speed-Cache-Key
X-Speed-Cache
X-CJ-Soft
X-Varnish-Cacheable
S
X-Yadis-Location
Rt-Fastcgi-Cache
X-Varnish-Hits
X-FW
X-Drectory-Script
X-Location-Id
X-Stale
X-Varnish-IP
X-Front
X-Varnish-Cache-Hits
SN
Fhost
X-SRV
WWW-Authenticate
X-LiteSpeed-Cache
Srv
ServerID
X-ServerID
AMF-Ver
Cache
X-GeoIP-Country-Name
X-GeoIP-Country-Code
X-Track
X-S
Webluker-Edge
Accept-Charset
Version
X-Amz-Meta-S3cmd-Attrs
X-Varnish-Age
X-Cache-Age
X-ServerName
X-Art-Request-Id
NODE
MJ12bot
Filter-Revision
Cm-Server
SEOMOZ
X-Cache-Rule
X-Distil-CS
X-ACMCache
Location
X-Directory-Script
X-FIRSTBase
X-Cache-Control-Orig
Req-Id
Front-End-Https
X-Time
X-Trace
X-Vary-Options
X-Session-Reinit
X-Cache-CFC
X-Cache-Lifetime
Upgrade
X-Ttl
Qs-Cache
X-BackendServer
X-App
X-Gamma-Serve
X-Provisioner-Version
X-Varnish-Beresp-Ttl
X-Varnish-Beresp-Status
X-Varnish-Beresp-Grace
X-Blog
X-Translation
X-Device-Type
X-Microcache-Status
X-Domain-Checked
X-SN
Content-Transfer-Encoding
A-Powered-By
PageSpeed
Powered
Buuteeq-Source
Id
X-Cocoon-Version
Server-Name
X-Cache-Operation
Nodo
X-N
Warning
X-Xrds-Location
X-Do-Not-Hack
X-Cache-TTL
X-Trace-Cache
X-HOST
X-Highwire-SessionId
X-Response-Time
X-Distributed-By
X-Highwire-RequestId
X-WR-Flags
-GCR
X-Varnish-Server
Machine
LBVIS
S-Cnection
X-Country
X-Cdn
Dispatcher
ORIGIN
X-Server-Id
X-CHSN
X-Geo-IP
X-SBGI-Cache-Codes
NetMindSessionID
X-Orig-Vary
Cache-By-Node
X-Vtex-Remote-Cache
X-Powered-By-VTEX-Janus-Router
X-Powered-By-VTEX-Janus-Edge
X-VTEX-Cache-Status-Janus-ApiCache
X-VTEX-Cache-Status-Janus-Edge
X-Vtex-Processado-Em
X-Powered-By-VTEX-Janus-ApiCache
X-Vtex-Processed-At
X-Frontend
X-ID
X-Secret
X-Symfony-Cache
X-VTEX-Janus-Router-Backend-App
No
X-AOL-SNH
XX
X-Src-Webcache
X-Old-Content-Length
X-Varnish-Action
X-Varnish-HitMiss
Apache
X-Varnish-Count
NLCacheNote
X-Info
MIH-PUBLIC-IDENTIFIER
MIH-PLATFORM
MIH-CLIENT-FARM
X-Bettercache-Proxy
Server-Info
Cteonnt-Length
X-Adobe-Content
Website-Info
BM-Cache-Node
CT
BM-Cache-Status
X-Edge-Location
Backend
W
REFRESH
BM-Cache-Key
X-Id
X-Geo-IP-Region
X-Geo-IPV
X-FreeTag-Count
X-Geo-IP-Country
X-Server-ID
X-Geo-IP-Metro
X-ChromeLogger-Data
X-Powered-By-Server
X-Srv
Access-Control-Expose-Headers
X-Object-Type
X-Who
X-Force
X-ServerCache-Info
X-LIGHTHTTP-PCDID
X-PRAM
X-Recruiting
Pool
X-Object-Id
X-Source-ID
Last-Published
X-Developer
X-Nginx-Cache
X-WebServer
Origin
Cxy-All
X-Cluster-Node
X-Empowered-By
X-Engine
NtCoent-Length
X-Cache-Set
Progma
From
Beyond-Iis
X-BS
X-Cache-Action
X-Webapp
X-Router
X-UseReverse-Proxy
X-ClientSide-Caching
X-Router-Backend
Content-MD5
X-Machine-Name
X-UD-Loopcounter
X-Cache-On
X-Origin-Id
X-Resolver-IP
X-UD-REMOTE-ADDR
X-UPSTREAM
X-UD-Target
X-Cache-Control
SVR
ScoreTracker
X-Rewritten-By
X-Sys-Req-ID
X-Frames-Options
X-Gannett-Site-Version
X-Yottaa-Metrics
X-Yottaa-Optimizations
X-ManagedFusion-Rewriter-Version
X-Debug
X-Expires
X-Remote-Addr
X-Oracle-DMS-ECID
X-SDE-Name
X-Request-Country
MW-Webserver
CommunityServer
X-Header
TP-Cache
TP-L2-Cache
XDomainRequestAllowed
Cneonction
X-Wily-Servlet
X-CACHE-TTL
Sprequestduration
X-Libra-UpstreamHost
Spiislatency
X-REDIRECTSERVER
X-Wily-Info
X-Accel-Expires
X-Max-Age
X-Storage
X-Amz-Id-1
Cache-Rule
X-Render-Time
X-Turbo-Control
Rt-Server
Provided-Host
X-FFX-B
X-N-ViewType
X-Phpwcms-Page-Processed-In
WFE
BM-Cache-Bypass
X-CacheServer
No-Cookie
X-Req-Host
X-DTC
Cmstype
X-ESI-Enable
X-Phpwcms-Release
X-ORACLE-DMS-ECID
X-Response
X-Flow-Powered
Cmsid
X-Loopia-Cache
NnCoection
SiteName
Muha
X-APP
X-Env
LBC
X-Atraveo-NC
X-WorkerInstancename
X-Grid-Server
X-NginX-Server
Server-N
SRV
X-I-Sp
X-Atraveo-Cache-Control
Pool-Info
X-Ruxit-Js-Agent
X-Atraveo-From-Varnish-Cache
X-Atraveo-Varnish-Server-Id
X-Atraveo-TTL
X-Varnish-ID
X-Edge-IP
X-Nginx-Host
Smug-CDN
X-Farm-Server
X-Download-Options
X-Beatles
X-Kirra-SiteId
X-SmugMug-Hiring
X-SmugMug-Values
X-TTFB-L
X-ATM-RTime
X-ATM-RServer
LFY
X-Real-Server
X-Stage
SFY
X-TTFB
X-Abuse
X-Enhanced-By
X-Uid
Edgecast
X-Goog-Hash
HCVer
Sid
HAVer
X-Varnish-Device
Aoestatic
X-Dev
X-Webobjects-Loadaverage
Servername
SIP
X-SV
Front
X-Garden-Version
After
X-Content-Age
X-SilverStripe-Cache
Render
X-Pagename
X-Hit-Cache
Mobiquo-Is-Login
Tpt.Renderer1
Tpt.Renderer
ExecuteNonQuerySQLParam
IsFullSiteRequest
ServerConfigManager.WebBugTracker
Before
CacheControlHeader
X-Server-Instance
X-Fastcgi-Cache
X-Built-By
X-Webstats-RespID
P3P:CP
Open.Jobgate.Se
X-T3Cache
X-T3CacheTags
BM-CountryCode
Publisher
X-MCB-Server
X-Plat
Author
Sophnep-Edge-FX
X-EPiphany-Vid
X-Vhost
X-Powered
X-SSL
X-Drupal-Cache-Tags
X-OPNET-Transaction-Trace
X-7dig
Hamster
INCOMING-TIME
FROM-SERVER
X-Vhost-ID
X-7d-Version
X-7d-Traceid
X-Is-Mobile
X-LB
Jobb.Passal.Se
Jobb.Gil.Se
Jobb.Assistentpoolen.Se
X-Varnish-Debug-Age
Accept-Language
X-FS-UUID
Www.Mirrorgate.Se
Www.Mabracertifiering.Se
X-Actindo-RS
B-Powered-By
X-B2f-Not-Route
X-EPiLogOnScreen
Web-Server
X-WR-MODIFICATION
Worker
WP-AdvCache-MemCached
X-LI-UUID
X-Client-Vid
X-Client-IP
CP
X-Li-Pop
X-Grace
Cluster-ID
X-Server-IP
Www.Myjob.Se
X-Artvisual-Server
X-EPiLogOnScreen-PostUrl
Cache-Ctrol
Xonnection
X-Li-Fabric
X-Jphone-Copyright
X-App-Server
X-This-Proto
X-Cache-Ttl
Test.Executivepeople.Se
SS-Request-ID2
X-PvInfo
X-Cms-Mode
Mime-Version
X-SeschatDID
X-SeschatLayout
X-SeschatTemplateID
X-Seschat-URL
X-CCC
F-In-Cache
X-Twitter-Response-Tags
CACHED-RESPONSE
X-SeschatRedID
Ms
Arr-Disable-Session-Affinity
X-Venda-Hitid
X-ProxyInstancename
X-Ar-Debug
X-CID
X-Transaction
X-NFE
X-DefendeR-Status
X-DefendeR-Runtime
X-Connection-Hash
X-GC-App
X-Nhost
Content-Instance
X-GC-Read
X-GC-Write
X-DSMX-Render-MS
X-Revision
X-DSMX-Rewrite-MS
X-Powered-Developer
Copyright
X-CacheTTL
X-Backend-IP
X-Node-ID
Backend-Name-Original
SB-Cache-Version
WEBO
X-WA-Info
BrandBucket-Domain
X-Origin
X-Flex-Community
X-IP-Address
X-Pageid
X-Invoke-Duration
X-Dynamic
X-Brought-To-You-By
X-Ants-Machine-Id
X-ACCELERATE
X-Flex-Tags
X-Flex-Tag
X-Content-Security-Policy-Report-Only
X-Unbounce-VisitorID
X-Flex-Evend
X-Flex-Evstart
X-Flex-Lastmod
X-Flex-Lang
X-IDS-WS
X-Cache-Doesi
X-Channel-Maxage
X-Web-Node
X-Block
X-Unbounce-PageId
X-Unbounce-Variant
X-IP
X-FCMS-Cache
X-Amz-Version-Id
X-PM-ID
X-Trace-App
X-DPWN-IS-SECURE
Tracker
X-Node-Name
X-MobileDetected
X-Apple-Aka-Ttl
Apple-Timing-App
X-Ec-Custom-Error
X-SERVER-ID
X-Hstore
X-DeliveryServer
X-EdgeRouter
X-Hash
X-DELIVERYSERVER
X-Middleton-PageSpeed
X-Hrouter
X-Apple-Application-Instance
X-Prerender-Token
X-Apple-Jingle-Correlation-Key
X-Akamai-Device-Characteristics
X-Apple-Partner
X-Apple-Translated-Wo-Url
X-Powered-By-Srv
X-Apple-Orig-Url
X-Apple-Application-Site
X-Apple-ATS-Cache-Key
X-Varnish-Hashed-On
X-DB-Content-Length
X-DC-Origin-IP
X-Domino-CacheValidationWithETagResult
X-Varnish-Debug-Hits
X-Domino-CacheValidationWithETagReason
X-RateLimit
X-WLD-LB
X-Confluence-Request-Time
X-Site
X-Magnolia-Registration
OutputRewritten
X-Varnish-ServiceNetIP
Secured
Ksid
X-App-Container
X-Compressor
X-Nucleus-Cache
X-Fett
X-Hostingcenter
X-Magento-Lifetime
X-MSEdge-Ref
X-Request-Time
ResourceTag
X-Monstercache-Timeout
X-Monstercache-Host
X-Magento-Action
X-GSL-Server
Public-Extension
X-Monstercache-Hash
Thinkindot-Control
Allow
Thinkindot-CacheControl
X-Generation-Time
Provider
Nitro-Cache
X-Fallback
Thinkindot-CacheControl-Type
UNIQUE-ID
X-Instance
X-D-Time
X-GeoIP-Country
X-BKSrc
SS
Bs-Header
X-Foresight-Air
Host-Service
X-USERNAME
X-Wikidot-Backend
X-TLServer
PServer
X-S-Misc
WP-Cache
Ozcache
X-Wikidot-Static-Cache
X-Cached-Status
X-HOSTTYPE
D
Z-NginxStatus
X-Healthy
X-Foresight-Customresponse
X-Catalyst
X-EntryPoint
Nodeid
NZSpeedy
X-SATserver
Unique-Request-Id
X-RequesterIP
Noq
Esi-Enabled
X-UType
Ec
X-CCM
SV-Duration
Redirect
X-TempDebug
X-AISO-Cache
X-RSS-CACHE-STATUS
X-AISO-Server
X-Key
BALANCEDTO
Backend-Host
Cpu
X-AISO-Cacheable
X-Planisys-CDN-Rules
Ram
X-Planisys-CDN-Cache
X-NginX-Cache
If-Modified-Since
MageStack-Cache
X-Time-Microsecs
X-Varnish-Max-Age
XDisk
MageStack-Config
MageStack-Cache-Status
MageStack-Cache-Lifetime
MageStack-Cacheable
MageStack-Area
MageStack-Debug
MageStack-Cache-Hits
X-Provided-By
MachineName
MGIT
OGHopCount
Test
Ibf5scheme
Fastcgi-Cache
X-VhostID
X-Would-Your-GrandPa-Wait
X-WP
X-Your-GrandPa-Would-Wait
X-ACLR-Version
X-CDN-Cache-Status
MageStack-Loadbalancer
X-HP-CAM-COLOR
X-Req-Counter
X-Serendipity-InterfaceLang
At-Isb
X-Hit
X-CDN-Node
X-CMS-Powered-By
X-GitHub-Request-Id
X-Serendipity-InterfaceLangSource
X-Cookie-Request-Debug
DB-Nickname
CtExclusions
X-Aberdeen-Cache
X-Aberdeen-Site
X-V-TTL
X-V-Outer
X-Created
X-Gondor-Server
X-Req-Url
X-V-I-TTL
X-Client-Id
X-Cluster-ID
Dynatrace
X-ARR
X-Client-Addr
X-Dynatrace
RayEngine
Protected-By
X-Highwire-Cache
X-Highwire-Sitecode
X-Node-Id
MwpReleaseVersion
Server-IP
Url-Hash
UniqueName
X-B
X-Cache-Extended
X-Cookie
Ttl
Tempo
MageStack-Response-Ttl
MageStack-Tag
Masquerade
SBMCLOUD
X-Varnish-Restarts
X-Cookie-Response-Debug
X-Varnish-Currency
Tracecode
Description
Keywords
X-Varnish-Cookie-Debug
X-UA-Profile
X-Frontal
X-Mobile
X-Ocache
X-T
MageStack-PageSpeed
X-Cache-Via
X-Backend-Status
X-Request-Count
X-Cache-Backend
X-Server-Generated
X-AccessDev
ServerIP
X-Upstream
X-Static-Version
X-Cache-Host
X-Cached-On
X-Cookie-Store
X-Dokk-PortalId
X-ELC-Checkpoint4
X-Prefetched
X-Compressed-By
X-Cached-Until
X-Checkout
IsMobile
CountryCode
X-Varnish-Debug-Varnish-TTL-Set-From-Server
X-ESI
Railo-Version
ProxiaInstanceId
Access-Ip
X-Author
Language
X-NID
Xc
X-HW
X-Origin-Cache
AcceptLangage
X-ErrorPage
X-Process-Time
WebDevSrc
X-Environment
X-HA
Www.Aujourdhui.Com
X-Varnish-Debug-Pool-Fetch
X-Varnish-Debug-Pool-Recv
X-Route
X-T3CacheInfo
X-Url-Store
X-TTL-Age
X-Test
X-Uplex
X-Rack-Cors
X-Ratelimit
X-Monstercache
X-Var-Hash
X-Hosting
X-Dynatrace-Js-Agent
Orgin-Server
Head
Timing-Allow-Origin
X-Nocache
Hotelbookingid
Atp-Isdpp
Il-Cl
X-Server-Node
X-PoolMember
X-SERVERID
At-Shoptype
X-GeoIP
X-Mii-Cache-Hit
X-Pb-Mii
X-Device-Group
X-Cache-Key
X-ATP-Server
Server-Optimized-By
X-Purge-Level
X-PageID
Rt-Proxy-Cache
X-ENV
Be-Va
Max-Age
Be-Ip
CorrelationVector
X-Allow-Redis
X-VG-WebCache
Is-Wireless-Device
Mobile-Browser
Is-Tablet
Is-Mobile
Device-Os
Device-Os-Version
Mobile-Browser-Version
Physical-Screen-Height
Viewport-Width
-Onnection
Viewport-Initial-Scale
Resolution-Width
Physical-Screen-Width
Resolution-Height
Ajax-Preferred-Geoloc-Api
X-Cdn-View
SLB
X-AG-MIPS
X-Sov
X-Source
X-MidCOM-Meta-Cache
X-Rot
ClientIP
F5-IpCliente
TIMESTAMP
X-Ants-Host
HGR-NOCACHE
X-Mod
Gzip
Requested-Host
X-Upstream-Time
X-NewRelic-App-Data
CData
X-R4L-VHOST
X-ProcessESI
User-Id
X-CDN-Version
Disaptch-Cache-Rule
User-Updated-At
DrivedBy
X-RemovedCookies
Time
Encoding
X-Accelerated-By
Rewriter
Content-Cache
X-TAProxy
X-CMS
Content
X-Cacheable-TTL
X-IP-BE
X-Panel-Name
SSPAppContext
X-Litespeed-Cache
X-Panel-Id
Webserver
X-AppServer-Status
C-TTL
X-BPool
SL-NOREWRITE-REDIRECTS
X-BServer
X-Backend-Name
X-Daa-Tunnel
X-Built-With
X-Gyrobase-Publication
X-Benchmark-Db
X-AMAZEEIO
Server-Hostname
Cluster
Ftwid
X-Stackable-Node
X-Mobile-Device-Type
X-Benchmark-Sphinx
X-Benchmark-Cache
X-Benchmark-Total
Robots
Noahs-Classifieds
X-Locale
X-Restarts
X-Logword
X-Esi
KinteraFilter
X-Webbins-Node
X-Mobile-Device
X-Crafted
Content-ID
OriginServer
X-Benchmark-Sphinx-Count
SAVVIS
X-Fpc
X-We-Are-Hiring
X-Distributor
AMFplus-Ver
X-App-Reload-Settings
X-Request-Processing-Time
X-Debug-Serve
X-UserAgent
Foglight-Request-UUID
X-Varnish-Hostname
X-Powered-By-Home.Pl
X-Server-By
User-Cache-Control
X-Request-Received
Device
X-Rq
X-FRONT-TTL
X-WHOIS-Cached
X-RAMCache
Sigma
WEB-CLUSTER-NODE
Cleartype
X-Ruxit-JS-Agent
X-Forwarded-Proto
X-Avvio-Cms-Cacheload
X-TISSERVER
X-Cachable
X-Path
X-Src-Loadbalancer
Access-Control-Allow-Origin:
X-Bcwwwid