CSP Data for: eurobank.gr


child-src *.youtube.com data: legacy.eurobank.gr *.facebook.com 'self' *.ytimg.com *.hotjar.com blob: *.google.com *.inbroker.com *.twitter.com; connect-src 'self' optimize.google.com *.streaming.mediaservices.windows.net *.hotjar.com *.inbroker.com www.google-analytics.com *.twitter.com; default-src 'self' blob:; font-src 'self' *.gstatic.com *.inbroker.com *.jwpcdn.com; frame-src *.youtube.com data: legacy.eurobank.gr *.facebook.com 'self' *.ytimg.com *.hotjar.com blob: *.google.com *.inbroker.com *.twitter.com; img-src *.gstatic.com data: *.youtube.com *.twimg.com *.facebook.com *.googleapis.com 'self' sitecoremedia.blob.core.windows.net 'unsafe-inline' jwpltx.com blob: *.twitter.com; media-src 'self' blob: *.streaming.mediaservices.windows.net; object-src 'self' *.streaming.mediaservices.windows.net *.jwpcdn.com; script-src data: *.googleapis.com 'self' 'unsafe-eval' *.jwpcdn.com *.ytimg.com blob: *.hotjar.com *.syndication.twimg.com *.facebook.com 'unsafe-inline' *.google.com *.angularjs.org *.google-analytics.com *.twitter.com *.youtube.com optimize.google.com *.gstatic.com *.facebook.net *.inbroker.com; style-src *.googleapis.com 'self' 'unsafe-inline' *.inbroker.com *.twitter.com; 
child-src *.youtube.com data: legacy.eurobank.gr *.facebook.com uat.eurobank.gr 'self' *.ytimg.com *.hotjar.com blob: *.google.com *.inbroker.com *.twitter.com; connect-src 'self' optimize.google.com *.streaming.mediaservices.windows.net *.hotjar.com *.inbroker.com www.google-analytics.com *.twitter.com; default-src 'self' blob:; font-src 'self' *.gstatic.com *.inbroker.com *.jwpcdn.com; frame-src *.youtube.com data: legacy.eurobank.gr *.facebook.com uat.eurobank.gr 'self' *.ytimg.com *.hotjar.com blob: *.google.com *.inbroker.com *.twitter.com; img-src *.gstatic.com data: *.youtube.com *.twimg.com *.facebook.com *.googleapis.com 'self' sitecoremedia.blob.core.windows.net 'unsafe-inline' jwpltx.com blob: *.twitter.com; media-src 'self' blob: *.streaming.mediaservices.windows.net; object-src 'self' *.streaming.mediaservices.windows.net *.jwpcdn.com; script-src data: *.googleapis.com 'self' 'unsafe-eval' *.jwpcdn.com *.ytimg.com blob: *.hotjar.com *.syndication.twimg.com *.facebook.com 'unsafe-inline' *.google.com *.angularjs.org *.google-analytics.com *.twitter.com *.youtube.com optimize.google.com *.gstatic.com *.facebook.net *.inbroker.com; style-src *.googleapis.com 'self' 'unsafe-inline' *.inbroker.com *.twitter.com; 
child-src *.youtube.com data: legacy.eurobank.gr *.facebook.com uat.eurobank.gr 'self' uat-legacy.eurobank.gr *.ytimg.com *.hotjar.com blob: *.google.com *.inbroker.com *.twitter.com; connect-src 'self' optimize.google.com *.streaming.mediaservices.windows.net *.hotjar.com *.inbroker.com www.google-analytics.com *.twitter.com; default-src 'self' blob:; font-src 'self' *.gstatic.com *.inbroker.com *.jwpcdn.com; frame-src *.youtube.com data: legacy.eurobank.gr *.facebook.com uat.eurobank.gr 'self' uat-legacy.eurobank.gr *.ytimg.com *.hotjar.com blob: *.google.com *.inbroker.com *.twitter.com; img-src *.gstatic.com data: *.youtube.com *.googletagmanager.com *.twimg.com *.facebook.com *.google.gr *.googleapis.com 'self' googleads.g.doubleclick.net sitecoremedia.blob.core.windows.net 'unsafe-inline' jwpltx.com blob: *.google.com *.twitter.com; media-src 'self' blob: *.streaming.mediaservices.windows.net; object-src 'self' *.streaming.mediaservices.windows.net *.jwpcdn.com; script-src data: optanon.blob.core.windows.net *.googleapis.com 'self' 'unsafe-eval' *.jwpcdn.com *.ytimg.com blob: *.hotjar.com www.googleadservices.com *.syndication.twimg.com *.facebook.com 'unsafe-inline' *.google.com *.google-analytics.com *.angularjs.org *.twitter.com cdn.cookielaw.org *.youtube.com optimize.google.com *.gstatic.com *.facebook.net *.inbroker.com; style-src optanon.blob.core.windows.net *.googleapis.com 'self' optimize.google.com 'unsafe-inline' *.inbroker.com *.twitter.com; 
child-src *.youtube.com data: legacy.eurobank.gr *.facebook.com uat.eurobank.gr 'self' uat-legacy.eurobank.gr *.ytimg.com *.hotjar.com blob: *.google.com *.inbroker.com *.twitter.com; connect-src 'self' optimize.google.com *.streaming.mediaservices.windows.net *.hotjar.com *.inbroker.com www.google-analytics.com *.twitter.com; default-src 'self' blob:; font-src 'self' *.gstatic.com *.inbroker.com *.jwpcdn.com; frame-src *.youtube.com data: legacy.eurobank.gr *.facebook.com uat.eurobank.gr 'self' uat-legacy.eurobank.gr *.ytimg.com *.hotjar.com blob: *.google.com *.inbroker.com *.twitter.com; img-src *.gstatic.com data: *.youtube.com *.googletagmanager.com *.twimg.com *.facebook.com *.google.gr *.googleapis.com 'self' googleads.g.doubleclick.net sitecoremedia.blob.core.windows.net 'unsafe-inline' jwpltx.com blob: *.google.com cdn.cookielaw.org *.twitter.com; media-src 'self' blob: *.streaming.mediaservices.windows.net; object-src 'self' *.streaming.mediaservices.windows.net *.jwpcdn.com; script-src data: optanon.blob.core.windows.net *.googleapis.com 'self' 'unsafe-eval' *.jwpcdn.com *.ytimg.com blob: *.hotjar.com www.googleadservices.com *.syndication.twimg.com *.facebook.com 'unsafe-inline' *.google.com *.google-analytics.com *.angularjs.org *.twitter.com cdn.cookielaw.org *.youtube.com optimize.google.com *.gstatic.com *.facebook.net *.inbroker.com; style-src optanon.blob.core.windows.net *.googleapis.com 'self' optimize.google.com 'unsafe-inline' *.inbroker.com cdn.cookielaw.org *.twitter.com; 
child-src *.youtube.com data: legacy.eurobank.gr *.facebook.com uat.eurobank.gr 'self' uat-legacy.eurobank.gr *.ytimg.com *.hotjar.com blob: *.google.com *.inbroker.com *.twitter.com; connect-src az416426.vo.msecnd.net 'self' *.doubleclick.net *.hotjar.com optimize.google.com *.streaming.mediaservices.windows.net adservice.google.com *.inbroker.com www.google-analytics.com *.twitter.com; default-src 'self' blob:; font-src 'self' *.gstatic.com *.inbroker.com *.jwpcdn.com; frame-src *.youtube.com data: legacy.eurobank.gr *.fls.doubleclick.net *.facebook.com uat.eurobank.gr 'self' uat-legacy.eurobank.gr *.doubleclick.net *.ytimg.com *.hotjar.com blob: *.google.com *.inbroker.com *.twitter.com; img-src *.gstatic.com data: *.youtube.com *.googletagmanager.com *.twimg.com *.facebook.com *.google.gr *.googleapis.com 'self' googleads.g.doubleclick.net sitecoremedia.blob.core.windows.net *.google-analytics.com 'unsafe-inline' jwpltx.com blob: *.google.com cdn.cookielaw.org *.twitter.com; media-src 'self' blob: *.streaming.mediaservices.windows.net; object-src 'self' *.streaming.mediaservices.windows.net *.jwpcdn.com; script-src data: *.googletagmanager.com optanon.blob.core.windows.net *.googleapis.com 'self' 'unsafe-eval' *.jwpcdn.com *.ytimg.com blob: *.hotjar.com www.googleadservices.com *.syndication.twimg.com *.facebook.com 'unsafe-inline' *.google.com *.google-analytics.com *.angularjs.org *.twitter.com cdn.cookielaw.org *.youtube.com az416426.vo.msecnd.net optimize.google.com *.gstatic.com *.facebook.net *.inbroker.com; style-src optanon.blob.core.windows.net *.googleapis.com 'self' optimize.google.com 'unsafe-inline' *.inbroker.com cdn.cookielaw.org *.twitter.com; 

#	Time Frame	Framing Control	TLS Enforce	Content Control	Third JS Parties	'unsafe-inline'	http / https / *	data:	Diffs	Normalized Policy
0	2017-11-18 - 2018-02-23	False	False	True	14	True	False	True	0	child-src .youtube.com data: legacy.eurobank.gr .facebook.com 'self' .ytimg.com .hotjar.com blob: .google.com .inbroker.com .twitter.com; connect-src* 'self' optimize.google.com .streaming.mediaservices.windows.net .hotjar.com .inbroker.com www.google-analytics.com .twitter.com; default-src 'self' blob:; font-src 'self' .gstatic.com .inbroker.com .jwpcdn.com; frame-src* .youtube.com data: legacy.eurobank.gr .facebook.com 'self' .ytimg.com .hotjar.com blob: .google.com .inbroker.com .twitter.com; img-src* .gstatic.com data: .youtube.com .twimg.com .facebook.com .googleapis.com 'self' sitecoremedia.blob.core.windows.net 'unsafe-inline' jwpltx.com blob: .twitter.com; media-src 'self' blob: .streaming.mediaservices.windows.net; object-src* 'self' .streaming.mediaservices.windows.net .jwpcdn.com; script-src data: .googleapis.com 'self' 'unsafe-eval' .jwpcdn.com .ytimg.com blob: .hotjar.com .syndication.twimg.com .facebook.com 'unsafe-inline' .google.com .angularjs.org .google-analytics.com .twitter.com .youtube.com optimize.google.com .gstatic.com .facebook.net .inbroker.com; style-src .googleapis.com 'self' 'unsafe-inline' .inbroker.com *.twitter.com;
1	2018-02-24 - 2018-07-19	False	False	True	14	True	False	True	2	child-src .youtube.com data: legacy.eurobank.gr .facebook.com uat.eurobank.gr 'self' .ytimg.com .hotjar.com blob: .google.com .inbroker.com .twitter.com; connect-src* 'self' optimize.google.com .streaming.mediaservices.windows.net .hotjar.com .inbroker.com www.google-analytics.com .twitter.com; default-src 'self' blob:; font-src 'self' .gstatic.com .inbroker.com .jwpcdn.com; frame-src* .youtube.com data: legacy.eurobank.gr .facebook.com uat.eurobank.gr 'self' .ytimg.com .hotjar.com blob: .google.com .inbroker.com .twitter.com; img-src* .gstatic.com data: .youtube.com .twimg.com .facebook.com .googleapis.com 'self' sitecoremedia.blob.core.windows.net 'unsafe-inline' jwpltx.com blob: .twitter.com; media-src 'self' blob: .streaming.mediaservices.windows.net; object-src* 'self' .streaming.mediaservices.windows.net .jwpcdn.com; script-src data: .googleapis.com 'self' 'unsafe-eval' .jwpcdn.com .ytimg.com blob: .hotjar.com .syndication.twimg.com .facebook.com 'unsafe-inline' .google.com .angularjs.org .google-analytics.com .twitter.com .youtube.com optimize.google.com .gstatic.com .facebook.net .inbroker.com; style-src .googleapis.com 'self' 'unsafe-inline' .inbroker.com *.twitter.com;
2	2018-07-20 - 2018-07-28	False	False	True	17	True	False	True	11	child-src .youtube.com data: legacy.eurobank.gr .facebook.com uat.eurobank.gr 'self' uat-legacy.eurobank.gr .ytimg.com .hotjar.com blob: .google.com .inbroker.com .twitter.com; connect-src* 'self' optimize.google.com .streaming.mediaservices.windows.net .hotjar.com .inbroker.com www.google-analytics.com .twitter.com; default-src 'self' blob:; font-src 'self' .gstatic.com .inbroker.com .jwpcdn.com; frame-src* .youtube.com data: legacy.eurobank.gr .facebook.com uat.eurobank.gr 'self' uat-legacy.eurobank.gr .ytimg.com .hotjar.com blob: .google.com .inbroker.com .twitter.com; img-src* .gstatic.com data: .youtube.com .googletagmanager.com .twimg.com .facebook.com .google.gr .googleapis.com 'self' googleads.g.doubleclick.net sitecoremedia.blob.core.windows.net 'unsafe-inline' jwpltx.com blob: .google.com .twitter.com; media-src* 'self' blob: .streaming.mediaservices.windows.net; object-src* 'self' .streaming.mediaservices.windows.net .jwpcdn.com; script-src data: optanon.blob.core.windows.net .googleapis.com 'self' 'unsafe-eval' .jwpcdn.com .ytimg.com blob: .hotjar.com www.googleadservices.com .syndication.twimg.com .facebook.com 'unsafe-inline' .google.com .google-analytics.com .angularjs.org .twitter.com cdn.cookielaw.org .youtube.com optimize.google.com .gstatic.com .facebook.net .inbroker.com; style-src optanon.blob.core.windows.net .googleapis.com 'self' optimize.google.com 'unsafe-inline' .inbroker.com *.twitter.com;
3	2018-07-29 - 2018-09-24	False	False	True	17	True	False	True	2	child-src .youtube.com data: legacy.eurobank.gr .facebook.com uat.eurobank.gr 'self' uat-legacy.eurobank.gr .ytimg.com .hotjar.com blob: .google.com .inbroker.com .twitter.com; connect-src* 'self' optimize.google.com .streaming.mediaservices.windows.net .hotjar.com .inbroker.com www.google-analytics.com .twitter.com; default-src 'self' blob:; font-src 'self' .gstatic.com .inbroker.com .jwpcdn.com; frame-src* .youtube.com data: legacy.eurobank.gr .facebook.com uat.eurobank.gr 'self' uat-legacy.eurobank.gr .ytimg.com .hotjar.com blob: .google.com .inbroker.com .twitter.com; img-src* .gstatic.com data: .youtube.com .googletagmanager.com .twimg.com .facebook.com .google.gr .googleapis.com 'self' googleads.g.doubleclick.net sitecoremedia.blob.core.windows.net 'unsafe-inline' jwpltx.com blob: .google.com cdn.cookielaw.org .twitter.com; media-src* 'self' blob: .streaming.mediaservices.windows.net; object-src* 'self' .streaming.mediaservices.windows.net .jwpcdn.com; script-src data: optanon.blob.core.windows.net .googleapis.com 'self' 'unsafe-eval' .jwpcdn.com .ytimg.com blob: .hotjar.com www.googleadservices.com .syndication.twimg.com .facebook.com 'unsafe-inline' .google.com .google-analytics.com .angularjs.org .twitter.com cdn.cookielaw.org .youtube.com optimize.google.com .gstatic.com .facebook.net .inbroker.com; style-src optanon.blob.core.windows.net .googleapis.com 'self' optimize.google.com 'unsafe-inline' .inbroker.com cdn.cookielaw.org *.twitter.com;
4	2018-10-28 - END	False	False	True	19	True	False	True	8	child-src .youtube.com data: legacy.eurobank.gr .facebook.com uat.eurobank.gr 'self' uat-legacy.eurobank.gr .ytimg.com .hotjar.com blob: .google.com .inbroker.com .twitter.com; connect-src* az416426.vo.msecnd.net 'self' .doubleclick.net .hotjar.com optimize.google.com .streaming.mediaservices.windows.net adservice.google.com .inbroker.com www.google-analytics.com .twitter.com; default-src* 'self' blob:; font-src 'self' .gstatic.com .inbroker.com .jwpcdn.com; frame-src* .youtube.com data: legacy.eurobank.gr .fls.doubleclick.net .facebook.com uat.eurobank.gr 'self' uat-legacy.eurobank.gr .doubleclick.net .ytimg.com .hotjar.com blob: .google.com .inbroker.com .twitter.com; img-src* .gstatic.com data: .youtube.com .googletagmanager.com .twimg.com .facebook.com .google.gr .googleapis.com 'self' googleads.g.doubleclick.net sitecoremedia.blob.core.windows.net .google-analytics.com 'unsafe-inline' jwpltx.com blob: .google.com cdn.cookielaw.org .twitter.com; media-src 'self' blob: .streaming.mediaservices.windows.net; object-src* 'self' .streaming.mediaservices.windows.net .jwpcdn.com; script-src data: .googletagmanager.com optanon.blob.core.windows.net .googleapis.com 'self' 'unsafe-eval' .jwpcdn.com .ytimg.com blob: .hotjar.com www.googleadservices.com .syndication.twimg.com .facebook.com 'unsafe-inline' .google.com .google-analytics.com .angularjs.org .twitter.com cdn.cookielaw.org .youtube.com az416426.vo.msecnd.net optimize.google.com .gstatic.com .facebook.net .inbroker.com; style-src* optanon.blob.core.windows.net .googleapis.com 'self' optimize.google.com 'unsafe-inline' .inbroker.com cdn.cookielaw.org *.twitter.com;