diff --git a/dl.yml b/dl.yml
index adef001..95ba083 100644
--- a/dl.yml
+++ b/dl.yml
@@ -89,7 +89,8 @@
 
               root /var/www/dl.afpy.org/;
 
-              add_header Content-Security-Policy "default-src 'none'; style-src 'unsafe-inline'";
+              add_header Content-Security-Policy "default-src 'none'; style-src 'unsafe-inline'; frame-ancestors 'self'";
+              add_header X-Content-Type-Options "nosniff";
 
               location /
               {