! (remove all default headers, e.g. HSTS, CSP) $status-code-number httpdelay=1000 (wait with the response, in ms, max 120000ms) .content (in case of 30x, this is used as location in combination with noAutoLastlineCRLF) forceLF (will force \n instead or \r\n in content) header:valueSamples:
.broersma.com/.well-known/security.txt ?title=0&byline=0&portrait=0&badge=0&autopause=0&player_id=0&app_id=58479" width="1920" height="1080" frameborder="0" allow="autoplay; fullscreen; picture-in-picture; clipboard-write" title=" Content-Security-Policy:default-src 'self';base-uri 'none';form-action 'self';img-src 'self' data:;font-src 'self' data:;child-src 'none';frame-ancestors 'none';upgrade-insecure-requests; .<iframe src="https://player.vimeo.com/video/50071857" width="640" height="360" frameborder="0" allowfullscreen></iframe> noAutoLastlineCRLF forceLF .-----BEGIN PGP SIGNED MESSAGE----- .Hash: SHA256 . .Contact: mailto:some-id@example.org .Expires: 2024-12-31T23:59:59Z .-----BEGIN PGP SIGNATURE----- . .iHUEARMIAB0WIQRnSTngeethLs/475n+jJIL5ZJ5vwUCZpbvTgAKCRD+jJIL5ZJ5 .vwh2AQD0sE5OnUw3op+Pjzz+FYQFZGW2VFkjFJ+oaYIUjUTQHQD/UlQXfN/g0m+m .ebbLC/pDFvxwGpt2tqLgE/Xfmmx2HiY= .=Q5vn .-----END PGP SIGNATURE----- $now@ipv4@ipv6@httpdelay=10000 content-type:text/plain .Contact: https://example.org .Expires: 2024-12-31T23:59:59Z refresh:2;url=https://internet.nl$204 .$404 $403 $401 www-authenticate:Basic realm="location:https://$301 $302 $303 referrer-policy:origin-when-cross-origin, strict-origin-when-cross-origin x-frame-options:SAMEORIGIN x-content-type-options:nosniff strict-transport-security:max-age=31536000; includeSubDomains; preload