Threat Level: green Handler on Duty: Rick Wanner

SANS ISC HTTP Header Usage Statistics


Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!

This is a continuation of work started by Brough Davis as part of his software security project for his Masters in Information Security Engineering. The main goal of this project is to find how many sites use security relevant headers, like for example the X-XSS-Protection or X-Frame-Options headers.

Below you will find a table/histogram showing how many times we found each header (security relevant or not). We access the index page of each site using a "head" request. The list of sites is derived from Alexa's Top 1 Million sites. We try to poll as many sites as possible each day.

As we collect more data, we will plot changes over time.



All Headers Active In The Past Month
Header Popularity
Content-Type
Date
Server
Connection
Set-Cookie
Cache-Control
X-Powered-By
Vary
Expires
Content-Length
Last-Modified
Pragma
Accept-Ranges
ETag
X-Pingback
X-AspNet-Version
Link
P3P
X-Content-Type-Options
X-XSS-Protection
Age
X-Cache
Alternate-Protocol
Content-Language
X-UA-Compatible
Via
X-Adblock-Key
X-Frame-Options
Keep-Alive
Content-Location
CF-RAY
X-Varnish
P3p
X-Check
X-Language
X-Template
X-Buckets
X-Cacheable
Access-Control-Allow-Origin
X-Generator
X-Drupal-Cache
X-Ac
X-Hacker
WP-Super-Cache
Status
MS-Author-Via
X-AspNetMvc-Version
X-Powered-By-Plesk
Strict-Transport-Security
X-Runtime
X-Pad
X-Geo
X-Geo-Port
X-Request-Id
X-Powered-CMS
X-Host
MicrosoftOfficeWebServer
X-Type
X-Cache-Group
Access-Control-Allow-Credentials
X-FRAME-OPTIONS
X-Server
Ngpass-Ngall
X-Cache-Lookup
X-Logged-In
X-Mod-Pagespeed
X-Cache-Hits
X-UA-Device
Host-Header
X-Rack-Cache
MicrosoftSharePointTeamServices
X-Via
X-Url
X-Iinfo
X-CF-Powered-By
X-Backend
Access-Control-Allow-Headers
SPRequestGuid
X-Forwarded-For
X-Tumblr-User
X-SharePointHealthScore
X-Tumblr-Pixel-0
X-Tumblr-Pixel
Access-Control-Allow-Methods
X-XRDS-Location
Content-Encoding
X-Tumblr-Pixel-1
X-Served-By
X-Varnish-Cache
X-Robots-Tag
X-Accel-Version
X-Page-Speed
X-INKT-URI
X-INKT-SITE
X-Ua-Compatible
X-MS-InvokeApp
X-ContextId
X-BC-Is-HA
X-Tumblr-Pixel-2
X-ServedBy
X-ShardId
X-Alternate-Cache-Key
X-ShopId
X-Cnection
X-PhApp
X-Seen-By
X-Webserver
X-CDN
Composed-By
X-Sorting-Hat-PodId
X-Sorting-Hat-ShopId-Cached
X-Dc
X-Sorting-Hat-PodId-Cached
X-Sorting-Hat-ShopId
X-Safe-Firewall
Served-By
X-Pass-Why
X-Cache-Hit
X-Firenze-Processing-Times
X-Hostname
X-PC-Hit
X-PC-Key
X-PC-Host
X-PC-Date
X-PC-AppVer
X-Request-ID
X-Port
X-AH-Environment
X-XN-Trace-Token
X-XN-XNHTML
X-Cache-Status
X-Tumblr-Pixel-3
Cartoon
X-Powered-By-360WZB
X-Spip-Cache
X-W-DC
Cf-Railgun
X-Age
Liferay-Portal
Content-Security-Policy
X-Amz-Cf-Id
X-Wix-Renderer-Server
X-Wix-Dispatcher-Cache-Hit
X-FullPageCaching
X-Wix-Request-Id
X-Amz-Id-2
Content-Script-Type
Content-Style-Type
X-Server-Name
X-Umbraco-Version
X-Cache-Info
X-Content-Digest
X-HeyJason
X-Amz-Request-Id
Request-Id
SPIisLatency
SPRequestDuration
X-Served-From-Cache
X-SERVER
X-FB-Debug
X-Hyper-Cache
X-Cache-Server
X-Styx-Build-Date
X-Styx-Build-Num
X-Pantheon-Styx-Hostname
X-Styx-Req-Id
X-Styx-Version
X-Pantheon-Endpoint
X-Styx-Build-Sha
Rating
X-Timer
X-Clacks-Overhead
X-Device
X-Cache-Result
CF-Cache-Status
X-Outils-CS
Real-Hostname
X-TN-ServedBy
X-Loop
X-PHP-Engine
X-VCache
X-Source
X-Px
X-Rot
X-Cached-By
X-PersistenceNode
TCN
Refresh
X-DynaTrace
X-Tumblr-Pixel-4
X-Mobilized-By
X-Cache-Enabled
NS-RTIMER-COMPOSITE
X-TNCMS-Served-By
X-TNCMS-Version
X-TNCMS-Memory-Usage
X-TNCMS-Render-Time
Imagetoolbar
Powered-By-ChinaCache
X-CDN-Geo
X-CDN-Geo-IP
X-CDN-Any-IP
X-Generated-By
Public-Key-Pins
X-Cached
X-DynaTrace-JS-Agent
Magicmarker
Page-Completion-Status
IBM-Web2-Location
Powered-By
X-Original-Content-Length
X-Microcachable
X-Xrds-Location
DynaTrace
X-From
X-Content-Encoded-By
X-Tumblr-Content-Rating
Thanks
X-Content-Security-Policy
X-Loc
Product
X-Matrix-Proxy
X-Matrix-Server
X-Backend-Server
Access-Control-Max-Age
X-Zephyr
X-CMS-Version
X-W3TC-Minify
X-Tumblr-Pixel-5
Charset
X-DDC-Arch-Trace
X-Powered-By-Anquanbao
X-Firenze-Processing-Time
X-WebKit-CSP
X-Permitted-Cross-Domain-Policies
Generator
Response
X-Node
X-Jimdo-Wid
X-Jimdo-Pid
X-Sov
Pics-Label
Proxy-Agent
X-I
X-FW-Hash
Retry-After
MIME-Version
Content-Encoding-Handler
X-FW-Static
X-FW-Serve
X-FW-Type
X-SDS
X-Processed-By
X-Middleton-Display
X-Sol
Display
X-Varnish-Host
X-Middleton-Response
X-Varnish-Cacheable
X-App-Hosting
X-FORWARDED-FOR
ServedBy
X-Version
Lsrequestid
X-Drectory-Script
X-Varnish-Backend
X-Content-Options
Node
Set-Cookie2
X-Cache-Debug
X-DNS-Prefetch-Control
CC-CACHE
X-User-Agent
Access-Control-Request-Method
X-UD-Method
X-UD-Host
X-AspNetWebPages-Version
X-Expires-Orig
X-Varnish-TTL
PICS-Label
X-Cache-Expires
ServerName
X-NoCache
SID
X-Purge-Host
IISExport
X-Duration
X-Cdn
X-Hits
Id
X-VARNISH-Cache
X-LiteSpeed-Cache
X-PF-Uncompressing
X-Swift-SaveTime
X-Swift-CacheTime
Host
RTSS
X-Original-Request
VAR-Cache
X-ApacheServer
X-Returned-From
Edge-Control
X-Returned-From-DLL
X-Returned-From-PostProcessResponse
X-ATG-Version
X-SN
X-Cache-Config
X-Returned-From-BeforeDispatch
X-Passed-To-PostProcessResponse
X-Passed-To
X-Handled-By
X-Passed-To-BeforeDispatch
X-Hosted-By
X-Passed-To-DLL
X-Actual-URL
X-Nitra-Side
X-Cache-Control-Orig
NODE
Content-Disposition
COMMERCE-SERVER-SOFTWARE
X-Proxy-Cache
X-Whom
Cache-By-Node
AMF-Ver
X-Director
X-Micro-Cache
SEOMOZ
MJ12bot
X-PERF
Accept-Encoding
X-Cookie-Domain
X-Varnish-Hits
Machine
X-PwB-Node
Surrogate-Control
X-TTL
Filter-Revision
X-Front
X-Purge-URL
X-ServerID
Fhost
X-Art-Request-Id
X-MiniProfiler-Ids
Cm-Server
S
X-FIRSTBase
X-Speed-Cache-Key
X-Speed-Cache
SN
Srv
X-WEBSERVER
X-Cache-Rule
X-URL
X-Cocoon-Version
X-Vary-Options
X-Varnish-Server
X-App-Status
X-Varnish-IP
WWW-Authenticate
X-CJ-Soft
Cache
X-Engine
X-Blog
X-Session-Reinit
X-ServerName
X-Varnish-Age
Website-Info
Server-Info
X-Highwire-SessionId
X-Highwire-RequestId
X-Yadis-Location
Ngpass-Vcall
Accept-Charset
Upgrade
X-Trace-Cache
X-Track
X-Response-Time
X-FW
X-Cache-Operation
X-SRV
Origin
X-Distil-CS
X-Stale
X-GeoIP-Country-Name
Grace
X-GeoIP-Country-Code
X-Amz-Meta-S3cmd-Attrs
Req-Id
X-S
X-Varnish-Cache-Hits
X-Provisioner-Version
X-Domain-Checked
X-Cache-TTL
Nodo
Server-Name
Fpc-Cache-Id
X-HostName
X-BackendServer
Proxy-Connection
Powered
NtCoent-Length
Buuteeq-Source
A-Powered-By
Webluker-Edge
X-Varnish-Object-Age
MIH-PUBLIC-IDENTIFIER
X-ID
X-App
X-Server-ID
MIH-PLATFORM
NetMindSessionID
X-ACMCache
MIH-CLIENT-FARM
X-Geo-IP
X-Ttl
ServerID
Backend
X-Microcache-Status
X-Device-Type
Location
X-Time
X-Cluster-Node
X-Cache-Age
X-Country-Code
Qs-Cache
X-Orig-Vary
X-Sys-Req-ID
X-Secret
X-Frontend
X-Gamma-Serve
CT
X-Bettercache-Proxy
PageSpeed
X-Adobe-Content
XDomainRequestAllowed
X-LIGHTHTTP-PCDID
X-TempDebug
X-Object-Type
MW-Webserver
X-Server-Id
X-Object-Id
Content-Transfer-Encoding
X-Varnish-Beresp-Grace
X-Varnish-Beresp-Status
X-Header
X-Varnish-Beresp-Ttl
X-Srv
X-Location-Id
X-Translation
CommunityServer
X-AOL-SNH
Beyond-Iis
Rt-Fastcgi-Cache
X-VTEX-Cache-Status-Janus-ApiCache
X-VTEX-Cache-Status-Janus-Edge
SS
LBVIS
X-Powered-By-VTEX-Janus-Router
X-Powered-By-VTEX-Janus-Edge
Apache
Server2
X-Cache-Lifetime
X-Powered-By-VTEX-Janus-ApiCache
X-VTEX-Janus-Router-Backend-App
Dispatcher
No
X-Request-Locale
X-Tumblr-Pixel-6
X-Vtex-Remote-Cache
X-Vtex-Processado-Em
X-Vtex-Processed-At
X-Cache-Action
X-Directory-Script
LFY
X-TNCMS
X-Venda-Hitid
X-Varnish-Count
SFY
X-Varnish-HitMiss
X-Cache-On
X-CHSN
X-ServerCache-Info
X-Distributed-By
X-Wily-Servlet
From
X-Wily-Info
X-Machine-Name
X-Atraveo-TTL
X-Atraveo-Varnish-Server-Id
X-Atraveo-NC
X-Atraveo-From-Varnish-Cache
X-FreeTag-Count
X-Atraveo-Cache-Control
X-Transaction
UniqueName
X-UD-REMOTE-ADDR
X-PRAM
X-Connection-Hash
Ms
X-UD-Target
X-UD-Loopcounter
X-Info
X-Force
Worker
X-Ar-Debug
X-Expires
Content-MD5
X-Src-Webcache
X-T3CacheInfo
X-Amz-Id-1
Author
X-Enhanced-By
X-Cms-Mode
X-Dev
X-Recruiting
X-Twitter-Response-Tags
X-Jphone-Copyright
X-Source-ID
NLCacheNote
X-Trace
X-WR-MODIFICATION
ScoreTracker
X-Max-Age
X-WebServer
X-Varnish-Action
X-ORACLE-DMS-ECID
X-Debug
BM-Cache-Node
BM-Cache-Key
X-Varnish-Debug-Hits
X-Cached-Status
X-Varnish-ID
X-Rewritten-By
Warning
X-ManagedFusion-Rewriter-Version
X-Resolver-IP
X-Frames-Options
X-Varnish-Debug-Age
X-Turbo-Control
X-BS
MirrorName
SiteName
X-Grid-Server
X-Empowered-By
X-N
X-Instart-Request-ID
X-Origin-Id
X-MJ-Upstream-Addr
X-Remote-Addr
LBC
Front
X-LI-UUID
Allow
X-Uid
X-Geo-IP-Metro
X-Geo-IP-Country
X-GeoIP
X-Li-Fabric
X-Geo-IP-Region
X-Li-Pop
X-FS-UUID
X-Geo-IPV
X-Phpwcms-Release
X-Phpwcms-Page-Processed-In
WP-AdvCache-MemCached
X-Developer
Access-Control-Expose-Headers
SVR
Be-Ip
Cteonnt-Length
-GCR
X-CacheHits
X-Stage
Be-Va
X-Id
X-MJ-Serve-Req-Time
Version
X-Powered-By-Server
X-Router-Backend
X-Hash
X-Webapp
X-UseReverse-Proxy
X-Router
X-B2f-Cache-Load
X-ACCELERATE
Open.Jobgate.Se
X-ATM-RServer
X-LAvg
OriginServer
Jobb.Passal.Se
X-Gannett-Site-Version
X-Origin
Jobb.Assistentpoolen.Se
Backend-Host
X-Host-Url
X-ChromeLogger-Data
X-CacheTTL
X-Farm-Server
Sid
X-Via-Kemp
X-Kirra-SiteId
X-Client-IP
Www.Mirrorgate.Se
BALANCEDTO
Ksid
X-ATM-RTime
X-OPNET-Transaction-Trace
Backend-Name-Original
X-Server-By
Accept-Language
Compression-Control
X-Varnish-Device
X-Trace-App
X-Goog-Hash
Test.Executivepeople.Se
Cpu
Noq
X-B2f-Not-Route
X-Varnish-Cache-Server
Www.Myjob.Se
Www.Mabracertifiering.Se
Web-Server
Ram
SS-Request-ID2
X-TTFB-L
X-Channel-Maxage
X-Vhost-ID
Ec
X-Garden-Version
Cneonction
X-T3CacheTags
X-Catalyst
P3P:CP
Cluster-ID
X-Response
X-TTFB
X-Block
X-SmugMug-Values
X-SmugMug-Hiring
X-T3Cache
SIP
X-Vhost
XX
Rt-Server
7e-Page-Cache
Jobb.Gil.Se
NnCoection
X-WorkerInstancename
X-Content-Age
Smug-Env
X-SDE-Name
X-Old-Content-Length
X-Cache-Set
X-Edge-Location
Tracker
Provided-Host
X-Varnish-URL
X-Web-Node
X-Nginx-Server
Bs-Header
X-Server-Generated
X-Yqk-Set
X-GC-Write
After
BM-Cache-Status
X-EPiphany-Vid
X-UserAgent
X-ARR
If-Modified-Since
X-Client-Vid
X-GC-Read
X-FFX-B
X-ESI-Enable
Provider
X-Server-Instance
X-Accelerated-By
X-Cache-Ttl
X-Vivastreet
Content
X-Flow-Powered
X-DB-Content-Length
X-Route
Il-Cl
No-Cookie
X-Vivastreet-KiwiiPage
X-Varnish-Cache-Local
X-Work-With-Me
X-SSL
RATING
Cache-Ctrol
X-Powered-By-Yqk
X-Locale
X-Powered
X-PM-ID
X-GC-App
X-Upstream
Cmsid
IsFullSiteRequest
Atp-Isdpp
ExecuteNonQuerySQLParam
At-Isb
At-Shoptype
Render
ServerConfigManager.WebBugTracker
CDN
X-Purge-Url
WFE
Tpt.Renderer1
Tpt.Renderer
97YES.COM
Cmstype
Before
Copyright
Fw-Via
X-Distributor
X-S-Misc
User-Id
Last-Published
X-Hstore
X-Do-Not-Hack
Front-End-Https
X-D-Time
Server-N
X-Generation-Time
X-UPSTREAM
X-MobileDetected
X-Hrouter
User-Updated-At
X-EdgeRouter
X-Nginx-Host
X-ProcessESI
X-Real-Server
X-Varnish-Cookie-Debug
X-7d-Traceid
X-Varnish-Currency
X-Ms-Invokeapp
X-Pagename
X-RemovedCookies
X-Brought-To-You-By
TP-Cache
ServerId
PServer
X-Unbounce-PageId
Content-Security-Policy-Report-Only
X-Unbounce-VisitorID
X-Unbounce-Variant
X-Hit-Cache
Progma
TP-L2-Cache
X-Full-URL
X-Node-Name
X-Edge-IP
X-Drupal-Cache-Tags
X-CacheServer
X-Actindo-RS
X-DTC
X-Accel-Expires
X-7dig
X-Snapsis-PageBlaster
X-PvInfo
X-SV
X-Yottaa-Optimizations
X-GSL-Server
X-WA-Info
X-ProxyInstancename
Pool
X-N-ViewType
Mark
Nitro-Cache
Hamster
Redirect
Acdc-Web
X-Amz-Version-Id
X-Nginx-Backend
BM-CountryCode
CP
X-Yottaa-Metrics
X-7d-Version
X-Dynamic
X-EPiLogOnScreen
Edgecast
X-EPiLogOnScreen-PostUrl
Sprequestguid
X-Internal-IP
X-Seschat-URL
X-Monstercache-Timeout
X-Flex-Tag
X-Flex-Evend
X-Uplex
X-Varnish-Restarts
X-SeschatTemplateID
X-Varnish-Debug-Pool-Recv
X-Hit
X-Varnish-Debug-Pool-Fetch
X-WP
X-Flex-Lastmod
Xonnection
X-SeschatRedID
X-Hosting-Env
X-Flex-Lang
X-Cache-Control
X-SeschatLayout
B-Powered-By
X-Purge-Level
X-Flex-Evstart
X-Flex-Tags
X-Allow-Redis
X-Flex-Community
X-SeschatDID
X-SilverStripe-Cache
User-Cache-Control
MGIT
Test
Portlet.Expiration-Cache
MachineName
Publisher
X-Sharepointhealthscore
X-BIN
X-MCB-Server
X-PBY
X-RNDPAGE
X-CMS
X-Benchmark-Total
X-Benchmark-Sphinx
X-Benchmark-Sphinx-Count
X-TAG
X-Time-Spent
X-ESI-Processing
X-Abuse
Requested-Host
X-Mobile
Content-Instance
X-View
XDisk
X-Benchmark-Db
X-Benchmark-Cache
X-Monstercache
X-Monstercache-Hash
X-Monstercache-Host
X-Hosting
X-GitHub-Request-Id
X-Cache-Backend
X-DC-Origin-IP
X-Powered-Developer
X-PS-MURDOCK-CASE-NORMALIZATION
Tempo
Time
Web-Head
Xc
X-Time-Microsecs
X-PS-MURDOCK-ORIG-FILEEXT
X-PS-MURDOCK-ORIG-PROTOCOL
X-Author
Ttl
X-REDIRECTSERVER
X-GeoIP-Country
X-ESI
Ibf5scheme
Pool-Info
AppDynamics-BT
X-NID
X-Environment
X-Cluster-ID
X-SATserver
PROPSON-FARM
UNIQUE-ID
X-DeliveryServer
X-Client-Id
X-Binarysec-Via
X-Planisys-CDN-Cache
X-Server-Node
Foglight-Request-UUID
S-Cnection
D
X-Beatles
X-Req-Host
X-RequesterIP
SV-Duration
X-CCM
X-NginX-Cache
X-NginX-Server
X-Planisys-CDN-Rules
X-IDS-WS
X-Client-Addr
F-In-Cache
X-FCMS-Cache
X-Hostingcenter
X-Revision
HCVer
X-TLServer
WP-Cache
X-Stackable-Node
X-Oracle-DMS-ECID
X-FRONT-TTL
INCOMING-TIME
X-JSON-API-LATENCY
X-Forwarded-Proto
X-CACHE-TTL
X-Page-Generation-Time
ServerIP
SBMCLOUD
POOL
X-VG-WebCache
X-Would-Your-GrandPa-Wait
X-Your-GrandPa-Would-Wait
Http
X-Page-Generated-At
X-WLD-LB
Ozcache
HAVer
X-TTL-Age
X-Source-Host
Svr
X-SERVERID
ORIGIN
SharePointError
X-Framework
X-Domino-CacheValidationWithETagReason
CacheControlHeader
X-Domino-CacheValidationWithETagResult
X-Frontal
X-Built-By
Sophnep-Edge-FX
ASD-WEB-40
X-MSEdge-Ref
X-Ec-Custom-Error
CPOINT
X-AISO-Server
X-AISO-Cache
X-Gondor-Server
X-HOSTTYPE
X-Svr-Id
X-LB
SLB
No-Cache
X-AspNet-Browser-ID
Disaptch-Cache-Rule
X-Compressed-By
Esi-Enabled
Head
X-Test
X-USERNAME
Cached
X-Server-IP
WebDevSrc
X-Middleton-PageSpeed
X-From-TL-Proxy
Arr-Disable-Session-Affinity
X-RSS-CACHE-STATUS
Host-Service
X-Trans-Id
X-Wikidot-Backend
X-Wikidot-Static-Cache
DB-Nickname
X-Timestamp
X-Nc
X-Pixelsilk-Server
X-IP
X-Obvious-Info
Www.Aujourdhui.Com
X-Cluster
X-Artvisual-Server
X-Dokk-PortalId
Hotelbookingid
X-Webstats-RespID
X-Confluence-Request-Time
SL-NOREWRITE-REDIRECTS
X-Pixelsilk-Version
X-IP-Address
X-Cache-Key
CACHED-RESPONSE
X-Aws-Ec2
X-Cluster-Host
X-Device-Group
X-DefendeR-Runtime
X-GL-SRV
X-Mii-Cache-Hit
X-Nucleus-Cache
X-ATP-Server
DBG-HTTPHOST
X-PHP-Cache
X-Pb-Mii
X-Optimization
X-Apublish-Id
X-Accel-Cache-Control
MageStack-Cache-Status
MageStack-Cacheable
MageStack-Cache-Lifetime
MageStack-Cache-Hits
MageStack-Area
MageStack-Cache
MageStack-Config
MageStack-Debug
MageStack-Tag
Prama
MageStack-Response-Ttl
MageStack-PageSpeed
MageStack-Loadbalancer
X-Backend-Ip
X-Http-Host
DBG-Timestamp
X-Varnish-Set-Cookie
DBG-TargetHost
X-Obvious-Tid
Server-Optimized-By
X-Czt
X-App-Server
Access-Control-Allow-Method
X-Varnish-Mode
X-Ratelimit
CData
Server-Ip
X-Varnish-Ttl
Tracecode
Nginx-Cache
Public-Extension
X-App-Container
BrandBucket-Domain
Encoding
X-Bcwwwid
X-V-TTL
X-V-Outer
Server-IP
X-Life
X-Amz-Meta-S3fox-Modifiedtime
X-Amz-Meta-S3fox-Filesize
X-Aberdeen-Site
X-Aberdeen-Cache
MwpReleaseVersion
AppServer
X-HW
X-DEBUG
X-Cookie
X-BKSrc
WEBO
X-MSU-SOURCE
X-PoweredBy
Z-NginxStatus
W
Hishop
X-SiteConInfo
BE
Apple-Itunes-App
X-Medium-Entity-Id
X-DELIVERYSERVER
X-Medium-Entity-Type
Serv
SRV
CC-UP
X-Serendipity-InterfaceLangSource
X-Serendipity-InterfaceLang
CacheControlMode
X-V-I-TTL
ResourceTag
X-Fett
X-Backend-Status
X-Checkout
X-Config-By
X-Continum-Server
CountryCode
AcceptLangage
X-Debug-Serve
X-Magento-Action
X-Magento-Lifetime
X-RE-Ref
X-Cookie-Store
Sigma
X-Varnish-Esi-Method
X-Varnish-Store
B2C-F-008
EWHSERVER
X-Varnish-Esi-Access
X-Turpentine-Esi
X-ELC-Checkpoint4
X-Url-Store
X-Var-Hash
X-Turpentine-Cache
X-ASTRO-REWRITE
X-Debug-Token
OGHopCount
X-DSMX-Rewrite-MS
X-WAP
X-Varnish-Debug-Varnish-TTL-Set-From-Server
Secured
X-Cachable
X-Created
X-DSMX-Render-MS
X-V
X-Req-Counter
X-Cache-Host
Keywords
Mobiquo-Is-Login
ProxiaInstanceId
Vacache
V-Cache
X-ErrorPage
X-Gyrobase-Publication
Description
Aoestatic
X-Xhr-Current-Location
X-Req-Url