diff --git a/conf/nginx.conf b/conf/nginx.conf
index acd3d92..7e382d0 100644
--- a/conf/nginx.conf
+++ b/conf/nginx.conf
@@ -7,6 +7,10 @@ location / {
 
   #client_max_body_size 50M;
 
+  more_set_headers "X-Frame-Options: SAMEORIGIN";
+  more_set_headers "X-XSS-Protection: 1; mode=block";
+  more_set_headers "X-Content-Type-Options: nosniff";
+
   location = /favicon.ico { access_log off; log_not_found off; }
   location = /robots.txt  { access_log off; log_not_found off; }