HTTP/1.1 301 Moved Permanently
Date: Fri, 09 Oct 2020 12:17:24 GMT
Server: Apache
Content-Security-Policy: default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' *.amazonaws.com *.googleapis.com pym.nprapps.org *.marketo.com *.cloudflare.com www.google-analytics.com cdn.optimizely.com www.bugherd.com sjrtp4-cdn.marketo.com www.googletagmanager.com cdn.callrail.com cdn-akamai.mookie1.com secure-ds.serving-sys.com munchkin.marketo.net *.calltrk.com tags.tiqcdn.com bs.serving-sys.com *.marketo.com app.callrail.com p.jwpcdn.com www.youtube.com *.addthis.com m.addthisedge.com maps.googleapis.com s.ytimg.com graph.facebook.com widgets.pinterest.com *.googleapis.com use.typekit.net *.northwell.edu video.limelight.com *.delvenetworks.com static.addtoany.com malihu.github.io ajax.aspnetcdn.com s.gravatar.com *.wp.com calltrk-production.s3.amazonaws.com *.bootstrapcdn.com *.googleadservices.com ajax.microsoft.com code.jquery.com api.html5media.info *.cloudfront.net *.jwpcdn.com *.google.com; object-src 'self' assets.delvenetworks.com *.delvenetworks.com video.limelight.com assets.delvenetworks.com assets.delvenetworks.com; style-src 'self' 'unsafe-inline' *.googleapis.com *.ajax.googleapis.com ajax.googleapis.com *.marketo.com rtp-static.marketo.com *.bootstrapcdn.com *.northwell.edu malihu.github.io static.addtoany.com s.gravatar.com code.jquery.com *.cloudfront.net *.google.com; img-src 'self' media.npr.org data: *.google-analytics.com *.g.doubleclick.net *.google.com jwpltx.com api.nslijweb.com csi.gstatic.com *.googleapis.com maps.gstatic.com img.delvenetworks.com *.llnw.net m.addthis.com *.northwell.edu northwellhealt.wpengine.com *.gravatar.com *.wp.com *.northwell.io *.cloudfront.net *.amazonaws.com www.bugherd.com; frame-src 'self' *.marketo.com cdn-akamai.mookie1.com tags.tiqcdn.com s7.addthis.com www.youtube.com static.addtoany.com googleads.g.doubleclick.net *.google.com; font-src 'self' data: *.joinhoney.com themes.googleusercontent.com fonts.gstatic.com *.bootstrapcdn.com www.bugherd.com; connect-src 'self' 'unsafe-inline' *.serving-sys.com 309-lvl-470.mktoresp.com sjrtp4.marketo.com m.addthis.com *.pusherapp.com *.pusher.com www.bugherd.com
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Xss-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Location: https://feinstein.northwell.edu/
Content-Length: 240
Connection: close
Content-Type: text/html; charset=iso-8859-1
Set-Cookie: visid_incap_1772439=HtBZo0OkQeCrKB3wtqvzVdNUgF8AAAAAQUIPAAAAAAD2LFv8CQj9v71dF1aEzCAK; expires=Fri, 08 Oct 2021 19:27:26 GMT; HttpOnly; path=/; Domain=.feinsteininstitute.org
Set-Cookie: incap_ses_156_1772439=31VdQiS3gXo6W4yqWDkqAtNUgF8AAAAAUdv+3yhw7wy6OwUaXZfb4A==; path=/; Domain=.feinsteininstitute.org
Set-Cookie: ___utmvmDFuzpZyB=aJVLRVUKziT; path=/; Max-Age=900
Set-Cookie: ___utmvaDFuzpZyB=mkKqIrf; path=/; Max-Age=900
Set-Cookie: ___utmvbDFuzpZyB=VZp
XVROZalm: ktB; path=/; Max-Age=900
X-CDN: Incapsula
X-Iinfo: 8-30809195-30809196 NNNN CT(3 -1 0) RT(1602245843750 0) q(0 0 0 1) r(0 0) U11
HTTP/2 200
date: Fri, 09 Oct 2020 12:17:24 GMT
content-type: text/html; charset=UTF-8
set-cookie: __cfduid=d0bb5ee5f3e6b42b205623dc0fd4e059b1602245844; expires=Sun, 08-Nov-20 12:17:24 GMT; path=/; domain=.northwell.edu; HttpOnly; SameSite=Lax
cache-control: public, max-age=2764800
x-drupal-dynamic-cache: MISS
link: <https://feinstein.northwell.edu/>; rel="canonical"
x-ua-compatible: IE=edge
content-language: en
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
expires: Tue, 10 Nov 2020 12:17:24 GMT
last-modified: Thu, 08 Oct 2020 21:58:04 GMT
vary: Cookie,Accept-Encoding
x-generator: Drupal 8 (https://www.drupal.org)
content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' blob: *.facebook.net *.google-analytics.com *.addthisedge.com *.marketo.com *.googletagmanager.com *.mookie1.com *.serving-sys.com *.marketo.net *.calltrk.com *.tiqcdn.com *.jwpcdn.com *.youtube.com *.addthis.com m.addthisedge.com s.ytimg.com *.facebook.com *.pinterest.com *.googleapis.com *.typekit.net *.northwell.edu *.limelight.com *.delvenetworks.com *.addtoany.com *.github.io *.aspnetcdn.com s.gravatar.com *.wp.com *.amazonaws.com *.googleadservices.com *.microsoft.com *.jquery.com *.html5media.info *.cloudfront.net *.jwpcdn.com *.newrelic.com *.nr-data.net tagmanager.google.com *.surveymonkey.com *.brightwhistle.com *.callrail.com *.healthwise.net *.merklesearch.com *.rkdms.com *.rawgit.com *.cloudflare.com ethn.io e.infogram.com *.gigya.com *.influencehealth.com *.bing.com *.visto1.net *.linkedin.com *.hotjar.com *.doubleclick.net *.creative-serving.com *.invocacdn.com *.invoca.net *.adsrvr.org *.acquia.com *.segment.com *.rdcdn.com *.msecnd.net *.mymarketingreports.com *.optimizely.com *.syllable.ai *.conveythis.com *.force.com *.salesforce.com *.salesforceliveagent.com *.sanzone.io api.dpx.northwell.io *.yimg.com *.yahoo.com tags.srv.stackadapt.com; object-src 'self' video.limelight.com assets.delvenetworks.com *.gigya.com; style-src 'self' 'unsafe-inline' rtp-static.marketo.com *.googleapis.com *.vm *.bootstrapcdn.com *.northwell.edu malihu.github.io static.addtoany.com s.gravatar.com code.jquery.com *.cloudfront.net *.surveymonkey.com *.marketo.com *.rkdms.com tagmanager.google.com *.acquia.com *.syllable.ai *.force.com *.salesforce.com api.dpx.northwell.io *.yimg.com *.srv.stackadapt.com; img-src 'self' data: *.google-analytics.com *.g.doubleclick.net www.facebook.com www.google.com jwpltx.com api.nslijweb.com csi.gstatic.com *.googleapis.com maps.gstatic.com img.delvenetworks.com *.llnw.net m.addthis.com *.northwell.edu northwellhealt.wpengine.com *.gravatar.com *.wp.com *.cloudfront.net *.amazonaws.com www.bugherd.com *.surveymonkey.com img.youtube.com *.googleadservices.com maps.googleapis.com *.mxptint.net dpm.demdex.net ad.yieldmanager.com ad.afy11.net d.agkn.com idsync.rlcdn.com *.bluekai.com *.openx.net *.rubiconproject.com *.adnxs.com sync.adaptv.advertising.com *.rkdms.com i.ytimg.com *.gigya.com *.bing.com *.googletagmanager.com *.doubleclick.net *.google.com *.gstatic.com *.tilehosting.com *.hotjar.com *.maptiler.com *.rdcdn.com https://rdcdn.com clickserv.pixel.ad *.syllablecdn.com *.syllable.ai *.conveythis.com *.force.com *.salesforce.com *.sanzone.dev *.northwell.io api.dpx.northwell.io *.yimg.com *.googleusercontent.com; media-src 'self' blob: *.llnw.net *.delvenetworks.com *.llnw.com; frame-src 'self' blob: cdn-akamai.mookie1.com tags.tiqcdn.com s7.addthis.com www.youtube.com static.addtoany.com *.doubleclick.net www.google.com *.understand.com *.marketo.com *.sli.do ethn.io e.infogram.com *.gigya.com w.soundcloud.com view.knowledgevision.com 8065684-gigya.northwell.edu intakeforms.sequencehealth.com mednews.hofstra.edu app.stitcher.com vars.hotjar.com *.googletagmanager.com www.facebook.com insight.adsrvr.org *.acquia.com *.segment.com *.optimizely.com *.force.com *.salesforce.com *.pledgeling.com *.adsrvr.org *.healthgrades.com *.podbean.com *.libsyn.com *.simplecast.com; child-src 'self' blob:; font-src 'self' data: themes.googleusercontent.com fonts.gstatic.com *.bootstrapcdn.com www.bugherd.com static.hotjar.com api.dpx.northwell.io *.hotjar.com; connect-src 'self' 'unsafe-inline' 309-lvl-470.mktoresp.com sjrtp4.marketo.com *.addthis.com *.pusherapp.com *.pusher.com www.bugherd.com *.google-analytics.com *.northwell.edu content.healthwise.net *.cloudflare.com *.rkdms.com *.callrail.com *.serving-sys.com api.dpx.northwell.io *.gigya.com *.llnw.net *.hotjar.com wss://*.hotjar.com *.doubleclick.net *.hotjar.io www.facebook.com *.cloudfront.net *.acquia.com *.segment.com *.visualstudio.com *.bugsnag.com *.mktoresp.com *.nr-data.net *.optimizely.com *.syllable.ai *.locationiq.com *.conveythis.com *.force.com *.sanzone.io *.sanzone.dev *.northwell.io *.yimg.com *.srv.stackadapt.com; report-uri https://northwell.report-uri.com/r/d/csp/reportOnly
x-xss-protection: 1; mode=block
strict-transport-security: max-age=2592000
referrer-policy: no-referrer-when-downgrade
x-drupal-cache: MISS
x-request-id: v-57acc890-09b1-11eb-a945-d705e4dbb4cb
x-ah-environment: prod
via: varnish
x-cache: HIT
x-cache-hits: 198
cf-cache-status: REVALIDATED
cf-request-id: 05aee4775a00000e8e57a8e200000001
expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
server: cloudflare
cf-ray: 5df809d22b750e8e-PHL
alt-svc: h3-27=":443"; ma=86400, h3-28=":443"; ma=86400, h3-29=":443"; ma=86400
|