These directives would not mitigate any protection hazard. These are seriously meant to force UA's to refresh unstable information, not retain UA's from remaining retaining information. The accepted respond to doesn't seem to work for IIS7+, going by the large number of questions about cache headers not remaining sent in https://andyq579xxp5.wannawiki.com/user