diff --git a/nginx/nginx.conf b/nginx/nginx.conf
index 683564e8..c5ec8cf7 100644
--- a/nginx/nginx.conf
+++ b/nginx/nginx.conf
@@ -3,6 +3,8 @@ server {
     charset utf-8;
 
     add_header X-Frame-Options DENY;
+    add_header X-Content-Type-Options nosniff;
+    add_header X-XSS-Protection "1; mode=block";
 
     location / {
         root /var/www/html;