dropbox.com Review

 N/A

HTTP/1.1 301 Moved Permanently
location: https://dropbox.com/
date: Sun, 23 Nov 2025 19:21:06 GMT
server: envoy
x-dropbox-request-id: ea7e80e905e14985894bdea969235ea2
content-length: 0

HTTP/1.1 301 Moved Permanently
Location: https://www.dropbox.com/
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
Cache-Control: no-cache, no-store
Alt-Svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
Vary: Accept-Encoding
X-Dropbox-Response-Origin: local
Date: Sun, 23 Nov 2025 19:21:06 GMT
Server: envoy
X-Dropbox-Request-Id: d7ce0ae4950f4db682c4209569235ea2
Content-Length: 0

HTTP/1.1 200 OK
Content-Security-Policy: default-src 'none' ; object-src 'self' https://cfl.dropboxstatic.com/static/ https://www.dropboxstatic.com/static/ ; media-src https://* blob: ; base-uri 'self' ; connect-src https://* ws://127.0.0.1:*/ws blob: wss://dsimports.dropbox.com/ ; form-action 'self' https://www.dropbox.com/ https://dl-web.dropbox.com/ https://photos.dropbox.com/ https://paper.dropbox.com/ https://showcase.dropbox.com/ https://www.hellofax.com/ https://app.hellofax.com/ https://www.hellosign.com/ https://app.hellosign.com/ https://docsend.com/ https://www.docsend.com/ https://help.dropbox.com/ https://navi.dropbox.jp/ https://a.sprig.com/ https://selfguidedlearning.dropboxbusiness.com/ https://instructorledlearning.dropboxbusiness.com/ https://sales.dropboxbusiness.com/ https://accounts.google.com/ https://api.login.yahoo.com/ https://login.yahoo.com/ https://experience.dropbox.com/ https://pal-test.adyen.com https://2e83413d8036243b-Dropbox-pal-live.adyenpayments.com/ https://onedrive.live.com/picker ; style-src https://* 'unsafe-inline' 'unsafe-eval' ; script-src 'unsafe-eval' 'inline-speculation-rules' https://www.dropbox.com/static/api/ https://www.dropbox.com/pithos/ https://cfl.dropboxstatic.com/static/ https://www.dropboxstatic.com/static/ https://accounts.google.com/gsi/client https://canny.io/sdk.js https://www.paypal.com/sdk/js https://applepay.cdn-apple.com 'nonce-SItCoCkAPw7V8kJel5AzTV3bMnA=' ; report-uri https://www.dropbox.com/csp_log?policy_name=metaserver-whitelist ; frame-src https://* dbapi-6: dbapi-7: dbapi-8: dropbox-client: itms-apps: itms-appss: blob: ; frame-ancestors 'self' ; img-src https://* data: blob: ; worker-src https://www.dropbox.com/static/serviceworker/ https://www.dropbox.com/encrypted_folder_download/service_worker.js https://www.dropbox.com/service_worker.js blob: ; child-src https://www.dropbox.com/static/serviceworker/ blob: ; font-src https://* data:
Content-Security-Policy: report-uri https://www.dropbox.com/csp_log?policy_name=metaserver-dynamic ; script-src 'unsafe-eval' 'strict-dynamic' 'nonce-SItCoCkAPw7V8kJel5AzTV3bMnA=' 'nonce-TqTdgurvuTh5m1T3phpT0tJ9JzY='
Content-Type: text/html; charset=utf-8
Pragma: no-cache
Referrer-Policy: strict-origin-when-cross-origin
Set-Cookie: gvc=MTY5MDcyMzI3NjI0ODc5NDcyMDg5NzA3MzMyODI3MDQ3NjMyNjM1; Path=/; Expires=Fri, 22 Nov 2030 19:21:07 GMT; HttpOnly; Secure
Set-Cookie: t=VtlE9V0M6aHuQfqgE54dp1g0; Path=/; Domain=dropbox.com; Expires=Mon, 23 Nov 2026 19:21:07 GMT; HttpOnly; Secure
Set-Cookie: __Host-js_csrf=VtlE9V0M6aHuQfqgE54dp1g0; Path=/; Expires=Mon, 23 Nov 2026 19:21:07 GMT; Secure
Set-Cookie: __Host-ss=sUpjA_DyY0; Path=/; Expires=Mon, 23 Nov 2026 19:21:07 GMT; HttpOnly; Secure; SameSite=Strict
Set-Cookie: locale=ja; Path=/; Domain=dropbox.com; Expires=Fri, 22 Nov 2030 19:21:07 GMT
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-Permitted-Cross-Domain-Policies: none
X-Xss-Protection: 1; mode=block
Date: Sun, 23 Nov 2025 19:21:07 GMT
Strict-Transport-Security: max-age=31536000; includeSubDomains
Server: envoy
Cache-Control: no-cache, no-store
Alt-Svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
Content-Encoding: gzip
Vary: Accept-Encoding
X-Dropbox-Response-Origin: far_remote
X-Dropbox-Request-Id: 7a61ed1897c84a91a3c3d67869235ea3
Transfer-Encoding: chunked