Threat Level: green Handler on Duty: Jim Clausing

SANS ISC: HTTP Header Usage Statistics - SANS Internet Storm Center HTTP Header Usage Statistics


Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!

This is a continuation of work started by Brough Davis as part of his software security project for his Masters in Information Security Engineering. The main goal of this project is to find how many sites use security relevant headers, like for example the X-XSS-Protection or X-Frame-Options headers.

Below you will find a table/histogram showing how many times we found each header (security relevant or not). We access the index page of each site using a "head" request. The list of sites is derived from Alexa's Top 1 Million sites. We try to poll as many sites as possible each day.

As we collect more data, we will plot changes over time.



All Headers Active In The Past Month
Header Popularity
Content-Type
Date
Server
Connection
Set-Cookie
Cache-Control
X-Powered-By
Vary
Expires
Content-Length
Last-Modified
Pragma
Accept-Ranges
ETag
Link
X-Pingback
P3P
X-Content-Type-Options
X-AspNet-Version
X-XSS-Protection
X-Cache
X-Frame-Options
Content-Language
Age
X-UA-Compatible
CF-RAY
X-Adblock-Key
Via
Keep-Alive
X-Varnish
X-Check
X-Language
X-Template
X-Cacheable
X-Buckets
Access-Control-Allow-Origin
Content-Location
Strict-Transport-Security
X-Generator
X-Drupal-Cache
Status
X-Hacker
X-Ac
X-AspNetMvc-Version
X-Powered-By-Plesk
MS-Author-Via
X-Request-Id
WP-Super-Cache
P3p
X-Runtime
X-Geo
X-Geo-Port
X-Type
X-Cache-Group
X-Pass-Why
X-Powered-CMS
X-Pad
X-Mod-Pagespeed
Ngpass-Ngall
X-UA-Device
Host-Header
X-Cache-Hits
Access-Control-Allow-Credentials
X-Logged-In
X-Tumblr-Pixel
X-Tumblr-Pixel-0
X-Tumblr-User
Content-Security-Policy-Report-Only
X-Host
X-Iinfo
X-Tumblr-Pixel-1
X-Backend
X-Via
X-Alternate-Cache-Key
X-ShardId
X-Dc
X-ShopId
X-Tumblr-Pixel-2
Access-Control-Allow-Headers
MicrosoftOfficeWebServer
Access-Control-Allow-Methods
X-Server
X-ServedBy
X-Served-By
X-ContextId
X-Cache-Hit
X-CDN
X-Cache-Lookup
X-Port
X-PC-Key
X-PC-Hit
MicrosoftSharePointTeamServices
X-Rack-Cache
X-Request-Country
X-Robots-Tag
X-PC-Host
X-PC-Date
X-PC-AppVer
X-BC-Is-HA
SPRequestGuid
Content-Encoding
X-SharePointHealthScore
X-Accel-Version
X-Varnish-Cache
X-XRDS-Location
X-Tumblr-Pixel-3
X-FRAME-OPTIONS
X-MS-InvokeApp
X-Page-Speed
Powered-By
X-Safe-Firewall
X-Request-ID
X-Cnection
X-INKT-URI
X-INKT-SITE
X-Amz-Cf-Id
X-Ua-Compatible
X-Webserver
X-FullPageCaching
X-PhApp
Content-Security-Policy
X-W-DC
Composed-By
X-Seen-By
X-AH-Environment
X-Wix-Renderer-Server
X-Wix-Request-Id
Served-By
X-Firenze-Processing-Times
X-Timer
X-Turbo-Charged-By
X-Served-From-Cache
X-Cache-Status
Rating
CF-Cache-Status
X-SERVER
X-GitHub-Request-Id
X-Tumblr-Content-Rating
X-Content-Digest
Request-Id
X-Tumblr-Pixel-4
Liferay-Portal
X-CF-Powered-By
X-Spip-Cache
Public-Key-Pins
SPIisLatency
SPRequestDuration
X-Cache-Enabled
X-Pantheon-Endpoint
X-Pantheon-Styx-Hostname
X-Styx-Build-Date
X-Styx-Version
X-Styx-Build-Sha
X-Styx-Req-Id
X-Styx-Build-Num
X-Amz-Id-2
X-XN-Trace-Token
X-Node
X-XN-XNHTML
X-Amz-Request-Id
Cf-Railgun
X-Hyper-Cache
X-Server-Name
X-HeyJason
Permitted-Cross-Domain-Policies
Cartoon
Content-Script-Type
Content-Style-Type
X-Cache-Info
X-Powered-By-360WZB
Refresh
X-Proxy-Cache
X-Umbraco-Version
X-Clacks-Overhead
X-FB-Debug
X-CDN-Any-IP
X-CDN-Geo
X-CDN-Geo-IP
X-Cached-By
X-Tumblr-Pixel-5
Alternate-Protocol
Timing-Allow-Origin
X-VCache
Public-Key-Pins-Report-Only
Real-Hostname
X-TN-ServedBy
X-Device
X-Loop
X-PHP-Engine
X-Cache-Server
Charset
X-Cache-Result
X-FW-Hash
X-Microcachable
X-Cached
X-FW-Serve
X-FW-Static
X-FW-Type
X-TNCMS
X-PersistenceNode
X-Age
X-Outils-CS
X-Hostname
X-Generated-By
X-Url
X-DynaTrace-JS-Agent
NS-RTIMER-COMPOSITE
X-Px
X-Fastly-Request-ID
X-Hits
X-Swift-CacheTime
EagleId
X-Swift-SaveTime
TCN
X-Permitted-Cross-Domain-Policies
X-Jimdo-Pid
X-Jimdo-Wid
Magicmarker
Proxy-Connection
Alt-Svc
X-User-Agent
X-DDC-Arch-Trace
Content-MD5
Access-Control-Max-Age
X-Backend-Server
X-CMS-Version
X-Cache-Config
X-DynaTrace
Response
Grace
X-Whom
X-Content-Security-Policy
X-From
X-Forwarded-For
X-Content-Options
X-Middleton-Response
X-Middleton-Display
X-VWS-Id
Display
X-Gateway
X-Beta
X-Sol
X-AWS-Id
X-LJ-Flow-ID
Page-Completion-Status
X-Handled-By
X-Tumblr-Pixel-6
X-MiniProfiler-Ids
X-Content-Encoded-By
Product
X-Micro-Cache
X-URL
Generator
X-Matrix-Proxy
X-Matrix-Server
X-Msg-2-Log
IBM-Web2-Location
X-FORWARDED-FOR
Powered-By-ChinaCache
ServedBy
X-Mobilized-By
Surrogate-Control
Imagetoolbar
X-AspNetWebPages-Version
X-ARC
X-Expires-Orig
X-Version
Fastly-Debug-Digest
X-Firenze-Processing-Time
X-App-Hosting
X-Country-Code
Fpc-Cache-Id
DynaTrace
X-Returned-From
X-Actual-URL
X-Returned-From-PostProcessResponse
X-Returned-From-DLL
X-Original-Request
X-Passed-To-BeforeDispatch
X-Passed-To-PostProcessResponse
X-Passed-To
X-Passed-To-DLL
X-Returned-From-BeforeDispatch
X-Varnish-Host
X-LiteSpeed-Cache
X-Varnish-Backend
X-Varnish-TTL
Node
Upgrade
Cxy-All
Rt-Fastcgi-Cache
Fhost
X-ApacheServer
X-Stale
X-I
Access-Control-Request-Method
CC-CACHE
PageSpeed
Retry-After
X-Varnish-Beresp-Ttl
X-Varnish-Beresp-Grace
X-Varnish-Beresp-Status
Ngpass-Vcall
Proxy-Agent
Lsrequestid
X-UD-Method
Thanks
Content-Encoding-Handler
X-Instart-Request-ID
X-Nitra-Side
RTSS
X-Track
X-Hosted-By
X-WebKit-CSP
SID
Pics-Label
X-Cache-TTL
X-Director
X-Varnish-Age
X-NoCache
X-Processed-By
X-ATG-Version
X-Duration
X-PERF
X-Time
X-Cache-CFC
X-TTL
VAR-Cache
X-Cache-Debug
Content-Disposition
X-SDS
X-Server-ID
X-Cache-Rule
X-Srv
X-Varnish-Hits
X-Location-Id
Akamai-IP
SN
MIME-Version
X-ServerName
Powered
ServerID
X-CacheServer
X-Cache-Expires
Host
Location
X-Upstream
NODE
ServerName
Buuteeq-Source
X-Cookie-Domain
Access-Control-Expose-Headers
X-Cache-Control-Orig
X-Speed-Cache
X-S
X-Drectory-Script
S
X-Purge-Host
X-Art-Request-Id
X-Varnish-Cache-Hits
X-PF-Uncompressing
X-Powered-By-Server
Edge-Control
X-Varnish-Cacheable
X-CJ-Soft
X-Amz-Meta-S3cmd-Attrs
Server-Info
X-BackEnd
Accept-Encoding
X-PwB-Node
X-Distil-CS
X-GeoIP-Country-Code
X-GeoIP-Country-Name
Cache
X-Powered-By-VTEX-Janus-ApiCache
X-FW
No
X-VTEX-Janus-Router-Backend-App
X-Powered-By-VTEX-Janus-Edge
X-Powered-By-VTEX-Janus-Router
X-VTEX-Cache-Status-Janus-ApiCache
X-Speed-Cache-Key
X-VTEX-Cache-Status-Janus-Edge
X-Front
X-Vtex-Remote-Cache
X-I-Sp
X-BS
IISExport
X-Vtex-Processed-At
X-Vtex-Processado-Em:
X-DNS-Prefetch-Control
X-FIRSTBase
X-Varnish-IP
X-Do-Not-Hack
X-Geo-IP
Server-Name
BDQID
X-Powered-By-Anquanbao
X-Ttl
BDPAGETYPE
Webluker-Edge
X-Purge-URL
WWW-Authenticate
X-Route-Server
X-Origin
BDUSERID
X-Cache-Age
X-Varnish-Hostname
X-App-Status
X-Do-Esi
X-Recruiting
X-Translation
Accept-Charset
X-Microcache-Status
X-Device-Type
X-Yadis-Location
COMMERCE-SERVER-SOFTWARE
X-VARNISH-Cache
X-Geo-IPV
X-Trace-Cache
X-Goog-Hash
X-Geo-IP-Country
X-Cache-Operation
X-ServerID
X-Vary-Options
X-Geo-IP-Metro
X-Geo-IP-Region
X-App
X-Symfony-Cache
X-Developer
X-Trace
Id
X-Client-IP
Sprequestguid
X-Sharepointhealthscore
X-Response-Time
A-Powered-By
AMF-Ver
Srv
X-Daa-Tunnel
NtCoent-Length
Filter-Revision
Origin
X-Gamma-Serve
Cm-Server
X-Empowered-By
Version
Sfy
Lfy
X-Domain-Checked
X-Highwire-SessionId
X-Provisioner-Version
X-SmartBan-Host
X-SmartBan-URL
PICS-Label
X-Blog
X-BackendServer
X-Highwire-RequestId
X-DefendeR-Status
Host-Service
X-Frontend
Front-End-Https
Backend
X-DefendeR-Runtime
X-Libra-UpstreamHost
Arr-Disable-Session-Affinity
Qs-Cache
X-Cache-Tags
X-Directory-Script
X-UPSTREAM
Last-Published
X-Session-Reinit
X-CDN-Node
Cache-By-Node
X-CDN-Cache-Status
X-N
X-Magnolia-Registration
X-Loc
Content-Hash
X-Orig-Vary
X-ACMCache
X-Src-Webcache
X-Download-Options
Frame-Options
X-Zephyr
X-Secret
Req-Id
MJ12bot
SEOMOZ
Content-Transfer-Encoding
X-Varnish-Server
X-Fastcgi-Cache
X-ClientSide-Caching
LBVIS
X-Cocoon-Version
X-Ms-Invokeapp
Mime-Version
X-Real-Server
X-TempDebug
X-Xrds-Location
X-Amz-Version-Id
X-SE-Debug
X-Edge-Location
Mobiquo-Is-Login
X-Varnish-Count
NetMindSessionID
X-Varnish-HitMiss
X-WA-Info
CT
X-JG-Page-Cache
X-ID
X-Bettercache-Proxy
CacheControlHeader
X-Sys-Req-ID
X-Yottaa-Metrics
Nodo
X-Yottaa-Optimizations
X-Drupal-Dynamic-Cache
X-Old-Content-Length
X-Distributed-By
X-W3TC-Minify
X-Amz-Storage-Class
X-Engine
X-Object-Id
X-Object-Type
X-SCProxy
Pool-Info
Author
X-Full-URL
X-Server-Id
X-SmugMug-Hiring
X-SmugMug-Values
X-Prefetched
X-Env
BM-Cache-Key
Smug-CDN
X-TTFB
X-Req-Host
X-WR-Flags
X-Cache-Lifetime
X-Cache-Control
BM-Cache-Node
X-ServerCache-Info
X-Garden-Version
X-Resolver-IP
X-TTFB-L
X-Revision
X-Atraveo-Param-Rm
X-Grace
X-Atraveo-Set-Cookie
X-Cf-Requestid
X-Atraveo-Cache-Control
X-Atraveo-From-Varnish-Cache
X-Atraveo-ETag
X-B2f-Cache-Load
X-Who
X-Atraveo-Expires
X-Atraveo-TTL
X-ORACLE-DMS-ECID
S-Cnection
X-Atraveo-Varnish-Server-Id
X-Atraveo-Zone
Beyond-Iis
X-Origin-Id
X-Adobe-Content
RlogId
X-EBAY-C-REQUEST-ID
X-Source-ID
X-Adobe-Loc
XDomainRequestAllowed
X-Force
X-PRAM
BM-Cache-Status
Cneonction
SVR
X-Id
X-Storage
X-Amz-Id-1
W
X-AOL-SNH
RATING
X-Uid
ORIGIN
SiteName
X-APP
X-Content-Age
Sophnep-Edge-FX
X-Server-Instance
X-Grid-Server
X-Varnish-Debug-Age
Hamster
X-Gannett-Site-Version
X-Varnish-Action
X-Plat
Nitro-Cache
BrandBucket-Domain
X-Phpwcms-Page-Processed-In
X-Phpwcms-Release
X-NginX-Server
X-NginX-Cache
X-GeoIP
No-Cache
Fastcgi-Cache
MW-Webserver
Sprequestduration
X-Airee-Node
X-Detected-Device
X-Machine-Name
X-Cache-Set
X-XTM-Node
Keywords
Spiislatency
X-Nginx-Host
X-FreeTag-Count
SRV
X-Debug
NnCoection
X-Nurl
HCVer
Machine
HAVer
LBC
X-Nhost
Set-Cookie2
X-NFE
X-Info
X-REDIRECTSERVER
X-Dev
X-Hit-Cache
Encoding
X-Bcwwwid
X-SV
X-Varnish-ID
X-Middleton-PageSpeed
Vacache
X-HOSTNAME
X-Pagename
X-AWS
Pool
X-Remote-Addr
X-Cache-Action
NLCacheNote
Description
X-ChromeLogger-Data
X-PBY
X-Distributor
From
X-Stage
X-NetCat-Version
X-Unbounce-Variant
X-Optimization
Apache
X-Unbounce-PageId
X-Unbounce-VisitorID
SS
X-ManagedFusion-Rewriter-Version
X-Rewritten-By
PROPSON-FARM
Ksid
WFE
Edgecast
X-AIA-Log
X-J-Proxy-Hostname
X-J-Proxy
X-DTC
X-CacheTTL
B-Powered-By
X-Cms-Mode
Cache-Id
Y-Trace
-GCR
X-MrHost
X-Author
X-SERVER-ID
X-Rack-Cors
SSPAppContext
X-Jphone-Copyright
X-J-Proxy-Servername
X-Dispatch
Worker
Cache-Rule
X-Varnish-Device
X-HostName
X-ServerIndex
X-EPiLogOnScreen-PostUrl
X-B2f-Not-Route
X-EPiLogOnScreen
BALANCEDTO
X-Powered-Developer
X-Cache-On
X-Varnish-Debug-TTL
X-T3CacheTags
X-T3Cache
X-SSL
SIP
Cache-Ctrol
OT-RequestId
P3P:CP
Open.Jobgate.Se
Jobb.Passal.Se
Jobb.Assistentpoolen.Se
Jobb.Gil.Se
Test.Executivepeople.Se
Www.Mabracertifiering.Se
X-N-ViewType
X-Cache-Ttl
X-BLSR-COST
Www.Myjob.Se
Www.Mirrorgate.Se
X-Page-Cache
X-Max-Age
X-Edge-IP
X-Platform-Router
X-Expires
X-Trace-App
WP-AdvCache-MemCached
X-Abuse
X-Block
X-Platform-Processor
X-Channel-Maxage
Backend-Name-Original
X-EPiphany-Vid
X-Client-Vid
X-Frames-Options
X-Cache-Engine
X-SDE-Name
Fastly-Backend-Name
Accept-Language
SERVER-IP
X-Site:
BM-CountryCode
X-Webstats-RespID
X-Ruxit-JS-Agent
X-Render-Time
X-Venda-Hitid
Disablevcache
Ibf5scheme
X-Key
X-IsCacheURL
X-T3CacheInfo
X-Server-IP
TP-Cache
TP-L2-Cache
MIH-CLIENT-FARM
X-Real-IP
X-Built-By
X-Span
CommunityServer
X-Farm-Server
ScoreTracker
CtExclusions
X-Server-Node
BM-Cache-Bypass
X-CID
X-CCC
Il-Cl
MIH-PUBLIC-IDENTIFIER
X-DSMX-Render-MS
X-Cache-Original-TTL
MIH-PLATFORM
X-Hash
X-DSMX-Rewrite-MS
Countrycode
X-Transaction
X-SV-CacheTags
X-Connection-Hash
PServer
Server-N
Copyright
X-SV-Duration
X-SV-CreatedAt
X-CPU-Time
X-SV-Edge
Debug-3-1
X-Framework
X-SV-FromDBCache
MachineName
X-Twitter-Response-Tags
X-DPWN-IS-SECURE
X-Processing-Time
Language
OutputRewritten
Provider
Imx-Cookies-Used
X-Catalyst
No-Cookie
X-This-Proto
X-WP
X-Cache-Doesi
NZSpeedy
X-Invoke-Duration
X-Ratelimit
X-Would-Your-GrandPa-Wait
X-Plat-Be-Ip
X-ESI-Enable
X-FFX-B
X-Time-Microsecs
Warning
X-Plat-Va-Ip
ServerIP
X-Your-GrandPa-Would-Wait
Prxy
Xc
X-ATM-RServer
X-Smartcache-Timeout
X-Hosting
X-GC-Read
X-HeBS-Cache-Status
X-Response
X-Nginx
X-GC-Pointer
X-GC-App
X-Compressor
Nodeid
X-AISO-Cache
X-SilverStripe-Cache
X-Kirra-SiteId
Device
X-GC-Write
X-Smartcache-Keys
X-Cache-Backend
X-AISO-Server
X-Rocket-Nginx-Bypass
X-CB-Server
X-ATM-RTime
Acdc-Web
X-TTL-Age
X-Turpentine-Cache
X-AISO-Cacheable
X-Test
X-DC-Origin-IP
X-Analytics
Tk
X-KO-Site-Id
Cluster-ID
Og
X-B
Hash
X-Proxy
X-Purge-Level
Apachenode
X-Obvious-Tid
X-DeliveryServer
X-Obvious-Info
XX
X-ACCELERATE
Ec
X-Domino-CacheValidationWithETagResult
X-Domino-CacheValidationWithETagReason
X-Powered-By-Home.Pl
FROM-SERVER
X-Is-Mobile
X-Edge-V
X-Actindo-RS
X-Route
X-FS-UUID
X-DELIVERYSERVER
X-IP-Address
X-WorkerInstancename
X-SRV
X-Li-Fabric
Ttl
X-Webobjects-Loadaverage
INCOMING-TIME
X-PageID
X-Li-Pop
Content-Instance
Web
X-LI-UUID
X-Source
Aoestatic
X-Xhr-Current-Location
X-CCM
X-Vhost-ID
X-Search-Id
X-PageCache-Level
X-PageCache-Ttl
X-Node-ID
X-PageCache-ParseTime
X-PageCache-PagePath
X-Runtime-Memory
X-PageCache-Key
X-PageCache-Defaultable
X-Wb-Version-Expiry
X-PageCache-Expire
X-ProxyInstancename
X-Powered
X-Wb-Version-Value
X-Instance
X-ELC-Checkpoint4
Fw-Via
X-Server-Generated
X-Esi
X-Nginx-Cache
X-ENV
X-NID
X-Rack-CORS
X-7d-Trace-Id
Rt-Server
Ram
Noq
X-7d-Instance-Id
Be-Va
AcceptLangage
Be-Ip
Server-Hostname
X-Gyrobase-Publication
X-Prerender-Token
X-Serendipity-InterfaceLang
X-HA
X-JSESSIONID
X-KoobooCMS-Version
Server-Optimized-By
X-Made-Cache-Ttl
WebServer
X-Flex-Community
X-Flex-Tag
X-Flex-Tags
X-Flex-Lastmod
X-Flex-Lang
X-Flex-Evend
X-Flex-Evstart
1
ResourceTag
X-BE
X-Remove-Cookie
Sss
X-Artvisual-Server
X-Backend-Status
X-Cookie-Store
Redirect
X-App-Server
X-AG-MIPS
X-Url-Store
X-Serendipity-InterfaceLangSource
X-SeschatDID
X-Server-By
X-Obj-Ttl
X-Webbins-Node
X-Var-Hash
Sid
Http
X-Wikidot-Static-Cache
AC-ELC
X-Oracle-DMS-ECID
X-Wikidot-Backend
X-USERNAME
X-RSS-CACHE-STATUS
X-Server-Addr
X-HOSTTYPE
X-FCMS-Cache
X-Checkout
X-Avvio-Cms-Cacheload
X-Cluster-Node
X-Confluence-Request-Time
X-ESI
Foglight-Request-UUID
X-SeschatLayout
X-Seschat-URL
X-WHOIS-Cached
Bs-Header
X-Accel-Expires
X-Magento-Action
X-Magento-Lifetime
X-Meta-MSSmartTagsPreventParsing
X-SeschatRedID
Public-Extension
X-RP-WP-Expires
MSThemeCompatible
MSSmartTagsPreventParsing
X-GSL-Server
Serv
X-Ar-Debug
SV-Duration
X-Cache-Key
X-Meta-Imagetoolbar
Railo-Version
X-Stiffia-Cache
X-Meta-MSThemeCompatible
X-Varnish-ServiceNetIP
X-Turpentine-Esi
X-Varnish-Hashed-On
Cpu
X-SeschatTemplateID
X-T
X-Ocache
X-Header
Progma
X-Varnish-Esi-Method
X-Varnish-Esi-Access
X-BKSrc
X-Node-Name
X-Worker
Disaptch-Cache-Rule
Cteonnt-Length
X-Varnish-Ttl
X-HITS
X-Cache-PageType
X-Cache-Fix
X-Cookie-Request-Debug
XDisk
Noahs-Classifieds
X-UD-Host
X-Time-Spent
X-Provided-By
X-Req-Counter
RequestId
X-Cache-Extended
X-Foresight-Air
X-Foresight-Customresponse
X-Drupal-Cache-Tags
X-Dispatcher
X-Cookie-Response-Debug
X-SRVID
X-Goog-Storage-Class
X-Discourse-Route
X-Ct-Info
X-Content-Parsed-By
X-Lang
X-Pardot-LB
X-Pardot-Rsp
X-Pardot-Route
Url-Hash
Rewriter
At-Isb
X-AVG-REWRITE
X-AVG
At-Shoptype
Atp-Isdpp
Real-Server
HostName
X-Request-Processing-Time
X-Request-Received
X-WN-ClientGroup
Web-Server
X-ProxyDuration
X-Varnish-Debug-Hits
MDX-Naviid
WN
Wn-Vars
Yola-ID
X-ServedByHost
WP-Cache
Tracker
Response-Time
X-DN-Cache-Control
0
X-Accel-Cache-Control
Mto-License-Status
Server-Ip
X-PoolMember
X-Aberdeen-Cache
Surrogate-Key
FindLaw
X-Aberdeen-Site
X-AppServer-Cache-Rule
X-Hosts-Backend
X-Debug-Site-Time-OnInit.Master
Apple-Itunes-App
X-WR-MODIFICATION
X-Router-Backend
X-Router
X-Request-Count
X-SID
X-Static-Version
X-Webapp
X-UseReverse-Proxy
X-SRCache-Fetch-Status
X-SRCache-Store-Status
X-PURGE-Server
X-GUploader-UploadID
X-Goog-Stored-Content-Length
X-TargSmaku
Esi-Enabled
Count-Click-Attempt2
X-Backend-Ip
X-Goog-Stored-Content-Encoding
X-Goog-Metageneration
X-9XB-Server
Head
X-Status
X-AOESTATIC-FETCH
X-Built-With
X-Goog-Generation
X-Ghost-Cache-Status
X-Cluster-Host
X-Cache-Host
X-Origin-Cache
X-Request-Time
X-Web-Node
X-ETag
X-GLaDOS
Svr
X-Mii-Cache-Hit
X-Nucleus-Cache
X-Obr-Rule
X-Webkit-CSP
ContentType
X-Cached-On
X-Cached-Until
X-EdgeRouter
X-Cache-Me-Harder
X-AccessDev
IsMobile
Ozcache
Fpc-Expire
X-Device-Group
X-ATP-Server
Thinkindot-CacheControl-Type
Thinkindot-CacheControl
X-BPool
X-BServer
Thinkindot-Control
SL-NOREWRITE-REDIRECTS
Content
Allow
X-Varnish-URL
X-Cacheable-TTL
X-RP-SuperCache
X-VhostID
Www.Aujourdhui.Com
X-Allow-Redis
X-Enhanced-By
X-R4L-VHOST
X-Platform
X-LB
X-PvInfo
X-Hrouter
X-Pb-Mii
X-Varnish-Debug-Varnish-TTL-Set-From-Server
X-Varnish-Restarts
X-Varnish-Debug-Pool-Recv
X-Varnish-Debug-Pool-Fetch
X-SayCDN-UA
X-Uplex
DNNOutputCache
MGIT
X-Hit
X-MCB-Server
Time
SAVVIS
X-Hstore
X-SERVERID
X-SayCDN-TTL
RouteID
X-Say-TTL
X-Say-Original-Host
X-Martin
X-Say-Original-URL
X-Say-Original-IP
X-Say-Original-UA
X-Say-Cacheable
X-Haiku
X-SayCDN-Original-UA
X-NODE-NAME
X-SayCDN-Original-Path
X-MobileDetected
X-SayCDN-Original-Host
X-RAMCache
X-Full-Url
X-Zendesk-Request-Id
Requested-Host
SBGI-1
X-Zendesk-Origin-Server
X-Frontal
Ews
X-TAG
X-View
SBGI-10
SBGI-5
SBGI-9
Access-Control-Allow-Origin:
X-RNDPAGE
SBGI-RealPath
SBGI-RenderTime
X-Environment
X-Crafted
SBGI-7
SBGI-Device
X-LTM-ID
Login-Required
Publisher
X-Upstream-Echo-Time
Apple-Timing-App
Httpd-Identifier
Front
X-Lookup-Mode
D
E-TAG
Tempo
X-Pixelsilk-Version
WEB-CLUSTER-NODE
X-Cluster
X-Apple-Aka-Ttl
X-Apple-Application-Instance
X-Pixelsilk-Server
X-Czt
X-BIN
X-Cms-Server
X-Instance-Name
X-Pageid
Content-ID
X-PoweredBy
AGI-Request-ID
X-Trace-Id
Exires
X-Forwarded-Proto
X-UA
X-Process-Time
X-Generated-At
NodeId
X-Goog-Meta-Policy
X-Goog-Meta-Replace
X-PressLabs-Stats
X-PC3-Control
X-PC3-Time
HostGen
Activity-Id
X-Frame-Option
X-Memcached
X-Page-Id
X-Dynamic
X-Cookie
X-ASAP-Cache
X-Clara-ASAP
V-RESP
X-Brought-To-You-By
X-Rq
X-We-Are-Hiring
X-Cache-TTL-Remaining
X-Cache-Keep
X-CacheResult
X-D-Time
X-FE
X-Amz-Meta-Cb-Modifiedtime
Unique-Request-Id
X-Op
X-Platform-Cache
MirrorName
X-VG-WebCache
X-Generation-Time
X-S-Misc
X-LOCATION
X-B3-Traceid
X-Orig-Host
X-Pagely-Cache
X-SATserver
Kanooh-Host
INFO
X-Timestamp
X-Trans-Id
X-UType
X-WorkerDuration
X-LS-DEBUG
X-Beatles
X-Ants-Machine-Id
X-Cdn-View
X-HasAuthorization
X-Ants-Host
X-IsPremium
X-Client-Addr
X-IDS-WS
X-Restarts
Portlet.Expiration-Cache
Robots
SERVER-NAME
TIMESTAMP
MwpReleaseVersion
X-GETTER-Cache
MageStack-Cacheable
MageStack-Cache-Status
MageStack-Cache-Lifetime
MageStack-Cache-Hits
MageStack-Config
MageStack-Debug
MageStack-Web-Node
MageStack-Tag
MageStack-PageSpeed
MageStack-Loadbalancer
X-Upstream-Time
X-SiteConInfo
Web-Head
X-UA-Vendor
Be
RSL-Trace-ID
HA-Front
X-Accelerated-By
X-ACLR-Version
X-Http-Host
X-Ec-Custom-Error
X-Cache-Via
X-Cachable
SBMCLOUD
WEBO
X-ProcessESI
X-Healthy
X-RemovedCookies
X-NewRelic-App-Data
X-ErrorPage
X-Flow-Powered
X-Fallback
X-Nocache
Servername
X-Akamai-Edgescape
X-EntryPoint
MageStack-Cache
MageStack-Area
X-Apple-Translated-Wo-Url
X-Backend-IP
X-Apple-Partner
X-Apple-Orig-Url
X-Apple-Jingle-Correlation-Key
X-OPNET-Transaction-Trace
X-Feature
Gzip
F5-IpCliente
ClientIP
Backend-Host
BX-Cache
BX-TTL
X-Country
X-Backend-Name
X-Mag
X-Mobile
X-Region
V-Age
Test
FX-Cache
FX-Forwarded-For
FX-TTL
X-Apple-ATS-Cache-Key
X-RequesterIP
X-Path
Cmsid
X-Medium-Entity-Type
Cluster
X-Tags
Aurora-Node
X-Medium-Entity-Id
X-Lima-Id
HGR-NOCACHE
Device-Type
Cmstype
X-LB-Server
X-Varnish-Currency
X-Varnish-Store
X-Serverid
X-Highwire-Sitecode
X-Highwire-Cache
X-Cluster-ID
X-SiteFrom
X-Gondor-Server
X-Wm-1
X-Wm-VIP
X-Varnish-Set-Cookie
X-Tile-Url
X-Apple-Application-Site