Threat Level: green Handler on Duty: Richard Porter

SANS ISC HTTP Header Usage Statistics


Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!

This is a continuation of work started by Brough Davis as part of his software security project for his Masters in Information Security Engineering. The main goal of this project is to find how many sites use security relevant headers, like for example the X-XSS-Protection or X-Frame-Options headers.

Below you will find a table/histogram showing how many times we found each header (security relevant or not). We access the index page of each site using a "head" request. The list of sites is derived from Alexa's Top 1 Million sites. We try to poll as many sites as possible each day.

As we collect more data, we will plot changes over time.



All Headers Active In The Past Month
Header Popularity
Content-Type
Date
Server
Connection
Set-Cookie
Cache-Control
X-Powered-By
Vary
Expires
Content-Length
Last-Modified
Pragma
Accept-Ranges
ETag
X-Pingback
X-AspNet-Version
Link
P3P
X-Content-Type-Options
X-XSS-Protection
Age
X-Cache
Alternate-Protocol
Content-Language
X-UA-Compatible
Via
X-Adblock-Key
X-Frame-Options
Keep-Alive
CF-RAY
Content-Location
X-Varnish
X-Language
X-Check
X-Template
X-Buckets
X-Cacheable
P3p
Access-Control-Allow-Origin
X-Generator
X-Drupal-Cache
X-Ac
X-Hacker
WP-Super-Cache
Status
MS-Author-Via
X-Powered-By-Plesk
X-AspNetMvc-Version
Strict-Transport-Security
X-Runtime
X-Pad
X-Geo-Port
X-Geo
X-Request-Id
X-Powered-CMS
X-Host
X-Type
X-Cache-Group
MicrosoftOfficeWebServer
Access-Control-Allow-Credentials
X-Server
Ngpass-Ngall
X-Logged-In
X-Cache-Lookup
X-Mod-Pagespeed
X-UA-Device
X-Cache-Hits
Host-Header
MicrosoftSharePointTeamServices
X-Rack-Cache
X-Tumblr-User
X-Tumblr-Pixel
X-Tumblr-Pixel-0
X-Iinfo
X-Via
X-Url
X-Tumblr-Pixel-1
X-Backend
X-CF-Powered-By
X-XRDS-Location
Access-Control-Allow-Headers
SPRequestGuid
X-SharePointHealthScore
Access-Control-Allow-Methods
X-Varnish-Cache
Content-Encoding
X-Served-By
X-Tumblr-Pixel-2
X-Forwarded-For
X-Robots-Tag
X-Accel-Version
X-Seen-By
X-INKT-SITE
X-INKT-URI
X-ContextId
X-MS-InvokeApp
X-Alternate-Cache-Key
X-ShopId
X-ShardId
X-ServedBy
X-Page-Speed
X-Cnection
X-BC-Is-HA
X-Sorting-Hat-ShopId-Cached
X-Sorting-Hat-PodId
X-Sorting-Hat-ShopId
X-Sorting-Hat-PodId-Cached
X-Dc
X-PhApp
X-Ua-Compatible
X-Webserver
X-CDN
X-Pass-Why
Composed-By
X-Safe-Firewall
X-Cache-Hit
X-Request-ID
Served-By
X-PC-Key
X-PC-Hit
X-PC-Host
X-PC-Date
X-PC-AppVer
X-Hostname
X-Firenze-Processing-Times
X-Port
X-Tumblr-Pixel-3
X-AH-Environment
X-XN-Trace-Token
X-XN-XNHTML
X-Cache-Status
X-FullPageCaching
Cartoon
X-W-DC
X-Wix-Dispatcher-Cache-Hit
X-Wix-Renderer-Server
X-Powered-By-360WZB
X-Wix-Request-Id
Cf-Railgun
X-Spip-Cache
Liferay-Portal
X-Amz-Cf-Id
Content-Security-Policy
X-Age
X-Amz-Id-2
X-HeyJason
Content-Script-Type
X-Server-Name
Content-Style-Type
X-Amz-Request-Id
X-Umbraco-Version
X-Cache-Info
X-Content-Digest
Request-Id
SPIisLatency
SPRequestDuration
Public-Key-Pins
X-DynaTrace
X-Served-From-Cache
X-SERVER
Rating
X-FB-Debug
X-Styx-Build-Sha
X-Styx-Req-Id
X-Pantheon-Styx-Hostname
X-Styx-Version
X-Pantheon-Endpoint
X-Styx-Build-Date
X-Styx-Build-Num
X-Hyper-Cache
X-Timer
DynaTrace
X-Device
X-Outils-CS
X-Cache-Server
CF-Cache-Status
X-Clacks-Overhead
Real-Hostname
X-TN-ServedBy
Refresh
X-PHP-Engine
X-Loop
X-Tumblr-Pixel-4
X-Cache-Result
X-VCache
TCN
X-PersistenceNode
X-HOST
X-Px
X-Cached-By
Wp-Super-Cache
X-Tumblr-Content-Rating
X-Source
Powered-By
X-Mobilized-By
NS-RTIMER-COMPOSITE
X-Cache-Enabled
X-FORWARDED-FOR
X-Rot
Powered-By-ChinaCache
X-Generated-By
Imagetoolbar
X-Cached
X-CDN-Geo
X-CDN-Any-IP
X-CDN-Geo-IP
X-Content-Encoded-By
X-Original-Content-Length
X-Microcachable
Page-Completion-Status
X-From
Magicmarker
X-Tumblr-Pixel-5
X-DynaTrace-JS-Agent
X-Loc
IBM-Web2-Location
Thanks
Product
X-CMS-Version
X-Sov
X-Backend-Server
Access-Control-Max-Age
X-Matrix-Server
X-Matrix-Proxy
X-Content-Security-Policy
X-Zephyr
Charset
X-Jimdo-Wid
X-DDC-Arch-Trace
X-Jimdo-Pid
X-W3TC-Minify
X-Permitted-Cross-Domain-Policies
X-Powered-By-Anquanbao
X-Node
Pics-Label
X-Cdn
X-Firenze-Processing-Time
X-TNCMS-Served-By
X-TNCMS-Memory-Usage
X-TNCMS-Version
X-TNCMS-Render-Time
X-FW-Hash
Proxy-Agent
Response
X-Version
X-WebKit-CSP
CC-CACHE
X-FW-Serve
X-FW-Type
X-FW-Static
Retry-After
X-I
Generator
ServedBy
Content-Encoding-Handler
X-Content-Options
X-App-Hosting
MIME-Version
X-Proxy-Cache
X-TNCMS
X-SDS
X-Varnish-Cacheable
X-Middleton-Display
X-Sol
Display
X-Processed-By
X-Varnish-Host
X-Varnish-Backend
Set-Cookie2
X-Middleton-Response
X-Drectory-Script
Lsrequestid
X-UD-Method
X-UD-Host
X-Varnish-TTL
X-User-Agent
X-AspNetWebPages-Version
X-Hits
Access-Control-Request-Method
ServerName
X-Purge-Host
X-Cache-Debug
X-Original-Request
X-DNS-Prefetch-Control
X-Passed-To-PostProcessResponse
X-Returned-From-PostProcessResponse
X-Returned-From-DLL
X-Returned-From-BeforeDispatch
X-Passed-To-DLL
X-Passed-To-BeforeDispatch
X-Actual-URL
X-Handled-By
X-Passed-To
X-Returned-From
X-NoCache
SID
X-Cache-Expires
X-Duration
X-Whom
Node
RTSS
X-PF-Uncompressing
X-Hosted-By
Host
NODE
X-Expires-Orig
X-Xrds-Location
PICS-Label
X-ApacheServer
IISExport
Id
X-Cache-Config
X-Swift-CacheTime
X-Purge-URL
X-Nitra-Side
X-Swift-SaveTime
X-LiteSpeed-Cache
Machine
Edge-Control
X-SN
X-Micro-Cache
VAR-Cache
X-TTL
X-PERF
AMF-Ver
X-Director
X-Cache-Control-Orig
Fhost
X-ATG-Version
COMMERCE-SERVER-SOFTWARE
X-Cookie-Domain
Content-Disposition
X-MiniProfiler-Ids
Accept-Encoding
Cache-By-Node
S
X-Front
X-Varnish-Hits
SEOMOZ
MJ12bot
X-PwB-Node
X-Speed-Cache-Key
X-Speed-Cache
Cm-Server
SN
Filter-Revision
X-Blog
X-Session-Reinit
Surrogate-Control
X-CJ-Soft
X-Varnish-IP
X-Cache-Rule
X-App-Status
X-Response-Time
X-FIRSTBase
WWW-Authenticate
X-ServerID
X-Art-Request-Id
X-ServerName
X-Vary-Options
Server-Info
Website-Info
X-Varnish-Server
X-S
X-Cocoon-Version
Accept-Charset
X-Stale
Cache
Upgrade
Srv
X-Engine
X-App
Grace
X-GeoIP-Country-Code
X-GeoIP-Country-Name
X-Varnish-Age
X-BackendServer
X-Trace-Cache
Ngpass-Vcall
X-Highwire-SessionId
X-Cache-Operation
X-Highwire-RequestId
X-Amz-Meta-S3cmd-Attrs
Req-Id
X-Srv
X-Yadis-Location
Fpc-Cache-Id
X-Tumblr-Pixel-6
A-Powered-By
Location
X-Track
X-Country-Code
X-ID
X-Distil-CS
X-Do-Not-Hack
X-Time
X-Provisioner-Version
X-Cluster-Node
X-LIGHTHTTP-PCDID
ServerID
X-Domain-Checked
X-Server-Id
X-FW
X-ACMCache
X-Varnish-Cache-Hits
Nodo
X-Gamma-Serve
NtCoent-Length
X-Microcache-Status
Proxy-Connection
X-SRV
X-URL
X-Cache-TTL
Origin
X-Device-Type
X-Varnish-Beresp-Ttl
Buuteeq-Source
X-Varnish-Beresp-Grace
X-Varnish-Beresp-Status
Qs-Cache
MIH-PLATFORM
MIH-PUBLIC-IDENTIFIER
MIH-CLIENT-FARM
NetMindSessionID
CT
X-Cache-Age
X-WEBSERVER
Powered
X-Orig-Vary
Backend
X-Varnish-Object-Age
X-Instart-Request-ID
X-Location-Id
X-Connection-Hash
X-Twitter-Response-Tags
Ms
X-Secret
X-Transaction
X-Sys-Req-ID
X-Bettercache-Proxy
CommunityServer
X-Geo-IP
X-Adobe-Content
Content-MD5
X-Translation
Dispatcher
X-Recruiting
Server-Name
PageSpeed
X-Resolver-IP
MW-Webserver
X-Object-Type
X-Object-Id
X-Frontend
X-FreeTag-Count
X-CHSN
X-ServerCache-Info
X-TempDebug
Beyond-Iis
-GCR
X-Request-Locale
Server2
Apache
X-AOL-SNH
Rt-Fastcgi-Cache
X-Venda-Hitid
SS
LBVIS
X-Grid-Server
X-Varnish-HitMiss
X-Varnish-Count
X-Server-ID
X-HostName
X-Ttl
X-Enhanced-By
X-Src-Webcache
XDomainRequestAllowed
X-Trace
X-Cache-Lifetime
X-Header
X-Wily-Servlet
Version
X-Ar-Debug
X-Wily-Info
BM-Cache-Key
BM-Cache-Node
X-Directory-Script
X-Machine-Name
X-Distributed-By
From
Content-Transfer-Encoding
Warning
X-Cache-Action
X-Jphone-Copyright
Front-End-Https
X-Atraveo-From-Varnish-Cache
X-Atraveo-Cache-Control
X-Expires
X-Force
X-PRAM
X-Atraveo-NC
NLCacheNote
X-Source-ID
X-Dev
X-GeoIP
X-Info
SVR
X-Developer
Webluker-Edge
Worker
X-Cms-Mode
X-Atraveo-TTL
X-Atraveo-Varnish-Server-Id
X-Amz-Id-1
UniqueName
X-Cached-Status
No
X-Powered-By-VTEX-Janus-Edge
X-WebServer
X-Powered-By-VTEX-Janus-ApiCache
X-Hash
X-Vtex-Processado-Em
X-VTEX-Janus-Router-Backend-App
X-Vtex-Processed-At
X-Vtex-Remote-Cache
Be-Va
Last-Published
X-VTEX-Cache-Status-Janus-Edge
Be-Ip
X-VTEX-Cache-Status-Janus-ApiCache
X-Powered-By-VTEX-Janus-Router
SiteName
X-ManagedFusion-Rewriter-Version
X-Varnish-ID
X-Turbo-Control
X-GC-Read
Allow
X-Varnish-Debug-Age
X-Empowered-By
X-BS
X-Req-Host
X-Cache-On
X-Rewritten-By
Cteonnt-Length
X-GC-Write
X-Powered-By-Server
X-GC-App
X-Varnish-Debug-Hits
X-T3CacheInfo
X-Flow-Powered
Access-Control-Expose-Headers
LBC
X-WR-MODIFICATION
X-UD-Target
X-Varnish-Action
X-UD-Loopcounter
X-UD-REMOTE-ADDR
ScoreTracker
Front
Author
X-Uid
X-Content-Age
X-B2f-Cache-Load
Cache-Ctrol
BM-Cache-Status
No-Cookie
LFY
Smug-Env
X-Id
X-Webapp
X-Router
X-MJ-Upstream-Addr
X-Router-Backend
X-SDE-Name
X-UseReverse-Proxy
X-Trace-App
X-Cache-Ttl
X-Frames-Options
X-Vhost
ORIGIN
X-Vhost-ID
Backend-Name-Original
X-TTFB-L
X-TTFB
X-SmugMug-Hiring
MirrorName
X-Channel-Maxage
X-SmugMug-Values
X-Block
SFY
X-Stage
X-Origin-Id
Accept-Language
X-Monstercache-Timeout
NnCoection
Content-Security-Policy-Report-Only
X-Max-Age
X-Remote-Addr
X-ACCELERATE
X-FCMS-Cache
X-WP
X-Garden-Version
X-Kirra-SiteId
X-Beatles
X-Debug
Ksid
X-ATM-RServer
X-ATM-RTime
Edgecast
X-Origin
7e-Page-Cache
X-N
X-Pagename
X-Hit-Cache
No-Cache
X-Cache-Set
X-Geo-IP-Metro
X-Geo-IP-Country
X-Server-By
X-CacheTTL
Compression-Control
X-Response
X-Varnish-Cache-Server
X-Client-IP
Rt-Server
X-OPNET-Transaction-Trace
XX
Www.Mirrorgate.Se
Www.Mabracertifiering.Se
X-T3CacheTags
Www.Myjob.Se
X-Locale
Ram
SS-Request-ID2
Test.Executivepeople.Se
X-UserAgent
Jobb.Assistentpoolen.Se
BM-CountryCode
Jobb.Gil.Se
Jobb.Passal.Se
P3P:CP
Open.Jobgate.Se
Noq
Cpu
X-EPiLogOnScreen-PostUrl
X-MCB-Server
X-EPiLogOnScreen
X-B2f-Not-Route
Tracker
X-Geo-IP-Region
X-LAvg
X-Gannett-Site-Version
X-Via-Kemp
Cluster-ID
X-Varnish-Device
X-ORACLE-DMS-ECID
X-Goog-Hash
X-MJ-Serve-Req-Time
SIP
Il-Cl
X-WA-Info
X-Phpwcms-Release
X-Geo-IPV
X-Phpwcms-Page-Processed-In
X-S-Misc
WP-AdvCache-MemCached
X-Edge-Location
X-UPSTREAM
X-Generation-Time
X-D-Time
X-Old-Content-Length
Head
X-Li-Pop
INCOMING-TIME
X-LI-UUID
X-Route
Provider
X-Li-Fabric
X-FS-UUID
X-WorkerInstancename
Provided-Host
Redirect
X-Web-Node
X-MobileDetected
X-ChromeLogger-Data
X-DefendeR-Runtime
X-TLServer
X-Hstore
X-Catalyst
X-Actindo-RS
X-EdgeRouter
X-Revision
X-Nginx-Backend
X-DTC
X-Life
X-Farm-Server
X-Host-Url
X-Hrouter
BALANCEDTO
X-Varnish-Debug-Pool-Fetch
X-Varnish-Debug-Pool-Recv
X-Monstercache
X-Monstercache-Hash
Cmstype
Cmsid
Content
X-Varnish-Restarts
X-T3Cache
X-SSL
X-Monstercache-Host
Server-N
CDN
CP
X-Varnish-Cache-Local
AppDynamics-BT
Pool
Tpt.Renderer1
X-Powered
RATING
Web-Server
X-Uplex
X-CacheServer
X-ARR
X-Client-Vid
Render
Before
ExecuteNonQuerySQLParam
Svr
ServerConfigManager.WebBugTracker
Progma
Sid
IsFullSiteRequest
Backend-Host
Copyright
X-Vivastreet-KiwiiPage
X-EPiphany-Vid
X-REDIRECTSERVER
X-SV
X-Wikidot-Backend
After
Tpt.Renderer
X-Wikidot-Static-Cache
X-Vivastreet
Cneonction
B-Powered-By
SRV
X-Varnish-URL
X-SilverStripe-Cache
Bs-Header
Fw-Via
Xonnection
X-Nginx-Host
X-Distributor
Pool-Info
X-Accel-Expires
ServerId
X-DB-Content-Length
X-CacheHits
X-Real-Server
X-Built-By
User-Updated-At
X-Domino-CacheValidationWithETagResult
X-LB
Content-Instance
X-Full-URL
X-Varnish-Cookie-Debug
97YES.COM
OriginServer
X-Ms-Invokeapp
PServer
Esi-Enabled
X-Domino-CacheValidationWithETagReason
X-Internal-IP
Sophnep-Edge-FX
X-Yqk-Set
User-Cache-Control
X-Amz-Version-Id
X-Nginx-Server
X-Powered-By-Yqk
X-Node-Name
X-Varnish-Currency
User-Id
X-RemovedCookies
X-AISO-Server
X-Time-Spent
X-PM-ID
X-AISO-Cache
X-ProcessESI
Ec
X-HOSTTYPE
X-Yottaa-Metrics
X-Edge-IP
X-Server-IP
X-Yottaa-Optimizations
HCVer
X-Drupal-Cache-Tags
HAVer
CacheControlHeader
X-USERNAME
X-Bcwwwid
WFE
X-Brought-To-You-By
TP-L2-Cache
TP-Cache
X-Dynamic
Mark
X-Server-Instance
If-Modified-Since
X-FFX-B
X-7d-Version
X-7d-Traceid
X-N-ViewType
X-CCM
X-ESI-Enable
X-App-Container
X-7dig
Sprequestguid
X-PBY
X-NginX-Server
X-Middleton-PageSpeed
X-Hit
X-NginX-Cache
X-Benchmark-Total
X-SeschatTemplateID
X-Seschat-URL
X-Benchmark-Db
X-Benchmark-Cache
Xc
X-SeschatDID
X-SeschatLayout
X-Allow-Redis
X-Benchmark-Sphinx
X-SeschatRedID
X-Benchmark-Sphinx-Count
X-PvInfo
X-Purge-Level
X-IDS-WS
X-Cache-Control
X-ProxyInstancename
Publisher
Portlet.Expiration-Cache
X-BIN
Web-Head
WP-Cache
X-CMS
X-ESI-Processing
F-In-Cache
X-TAG
X-Oracle-DMS-ECID
X-Server-Generated
X-RNDPAGE
X-FarmId
XDisk
MachineName
Requested-Host
Time
Tempo
X-VG-WebCache
X-WLD-LB
X-Country
X-View
X-Abuse
X-Powered-Developer
X-Unbounce-Variant
X-Unbounce-VisitorID
Ibf5scheme
X-DC-Origin-IP
X-Accelerated-By
X-Mobile
X-Unbounce-PageId
X-Author
Acdc-Web
X-MSEdge-Ref
Content-Cache
X-DeliveryServer
X-From-TL-Proxy
X-Flex-Community
X-Flex-Evend
X-Flex-Evstart
WebDevSrc
SBMCLOUD
X-Hostingcenter
Cached
X-Flex-Lang
X-Flex-Lastmod
X-Upstream
X-Sharepointhealthscore
X-Stackable-Node
X-Forwarded-Proto
X-Flex-Tag
X-Flex-Tags
X-Fett
X-Server-Node
Http
Hamster
UNIQUE-ID
X-Svr-Id
SLB
Tracecode
X-CACHE-TTL
X-ESI
X-RequesterIP
SV-Duration
X-Client-Addr
Foglight-Request-UUID
D
X-RSS-CACHE-STATUS
X-SATserver
Arr-Disable-Session-Affinity
X-Test
X-TTL-Age
X-Page-Generated-At
X-JSON-API-LATENCY
X-Hosting
X-Webstats-RespID
X-Your-GrandPa-Would-Wait
X-PS-MURDOCK-ORIG-PROTOCOL
X-PS-MURDOCK-ORIG-FILEEXT
X-PS-MURDOCK-CASE-NORMALIZATION
X-Varnish-Debug-Varnish-TTL-Set-From-Server
X-Cache-Backend
X-Page-Generation-Time
X-Would-Your-GrandPa-Wait
ServerIP
Ozcache
X-Work-With-Me
X-Purge-Url
X-CACHE-ON
Nitro-Cache
X-Varnish-Ttl
X-DELIVERYSERVER
X-SERVERID
X-Varnish-Set-Cookie
X-FRONT-TTL
DBG-HTTPHOST
DBG-TargetHost
X-Compressed-By
X-Binarysec-Via
X-Nucleus-Cache
Server-Optimized-By
Description
X-Snapsis-PageBlaster
SharePointError
MGIT
X-Amz-Meta-S3fox-Filesize
DB-Nickname
Encoding
OGHopCount
X-Amz-Meta-S3fox-Modifiedtime
PROPSON-FARM
Host-Service
X-NID
ResourceTag
Public-Extension
Nginx-Cache
X-IP
X-IP-Address
X-Framework
Mobiquo-Is-Login
X-HW
X-Http-Host
WEBO
X-App-Server
Robots
Atp-Isdpp
X-Mod-Oboe-PS
X-MidCOM-Meta-Cache
BM-Cache-Bypass
X-Turpentine-Cache
X-Process-Time
X-Src-Loadbalancer
Apple-Itunes-App
X-Ratelimit
X-Client-Id
X-Pixelsilk-Server
At-Isb
X-Confluence-Request-Time
X-Gondor-Server
X-Cluster
X-Pixelsilk-Version
CacheControlMode
X-Czt
X-Ec-Custom-Error
At-Shoptype
X-Backend-Ip
X-Accel-Cache-Control
ASD-WEB-40
DBG-Timestamp
MageStack-Tag
Server-Ip
MageStack-Response-Ttl
MageStack-PageSpeed
MageStack-Debug
MageStack-Loadbalancer
Ttl
X-Artvisual-Server
X-Created
Test
S-Cnection
CPOINT
SL-NOREWRITE-REDIRECTS
MageStack-Config
MageStack-Cacheable
X-GitHub-Request-Id
X-Cluster-ID
X-Dokk-PortalId
Keywords
X-Time-Microsecs
X-Optimization
X-Cluster-Host
Hotelbookingid
MageStack-Cache-Lifetime
MageStack-Cache-Status
MageStack-Cache-Hits
MageStack-Cache
MageStack-Area
X-Frontal
X-ErrorPage
X-Nc
X-GeoIP-Country
X-Planisys-CDN-Cache
X-Req-Url
X-Environment
X-Debug-Token
X-Planisys-CDN-Rules
X-GSL-Server
X-WAP
X-V-TTL
X-V-Outer
X-V-I-TTL
X-Hosting-Env
POOL
X-SERVER-ID
IsMobile
X-From-TL-Server
X-AccessDev
X-PageCache-PagePath
X-PageCache-Level
X-PageCache-Key
X-PageCache-Expire
X-PageCache-Defaultable
X-Request-Time
Protected-By
ProxiaInstanceId
X-AspNet-Browser-ID
Aoestatic
X-Varnish-Hashed-On
X-Backend-IP
X-Backend-Name
X-PageCache-ParseTime
X-Rq
X-V
X-Magento-Lifetime
X-Magento-Action
X-TISSERVER
X-Symfony-Cache
X-Bip
X-Crafted
X-Rack-Cors
X-Provided-By
X-CDN-Node
X-Xhr-Current-Location
X-Storage
Web
Z-NginxStatus
Srv-N
Ap-Exec-Time-Mks
Disablevcache
X-CDN-Cache-Status
X-BCube-Filmed-By
X-Turpentine-Esi
X-Varnish-Esi-Access
X-Req-Counter
X-Papaya-Gzip
X-Papaya-Cache
X-Varnish-Esi-Method
X-Varnish-Store
X-ACLR-Version
BM-Cache-BackendTime
BM-Cache-BackendNode
B2C-F-008
X-PageCache-Ttl
OutputRewritten
X-Aberdeen-Site
X-Aberdeen-Cache
X-Timestamp
X-Obvious-Tid
Access-Control-Allow-Method
X-Apublish-Id
X-Trans-Id
X-GL-SRV
BrandBucket-Domain
Server-IP
X-Obvious-Info
Prama
MwpReleaseVersion
X-Device-Group
X-ATP-Server
Www.Aujourdhui.Com
Secured
X-Mii-Cache-Hit
X-Pb-Mii
X-Cache-Key
Serv
CACHED-RESPONSE
Vacache
X-Serendipity-InterfaceLang
X-Serendipity-InterfaceLangSource
X-Varnish-Mode
X-AVG
Disaptch-Cache-Rule
X-Gyrobase-Publication
X-Loopia-Cache
X-AVG-REWRITE
X-Cached-From
X-Varnish-Hostname
X-PHP-Cache
X-Panel-Name
X-Panel-Id
X-Cache-Host
GenSvr
X-Cookie
X-BKSrc
X-Cachable
BE
X-DEBUG
X-Aws-Ec2
Commerce-Server-Software
X-SiteConInfo
X-PoweredBy
X-MSU-SOURCE
Language