diff --git a/files/000-default.conf b/files/000-default.conf
index f4373bb..abadc54 100644
--- a/files/000-default.conf
+++ b/files/000-default.conf
@@ -1,5 +1,6 @@
 ServerTokens    Prod
 Header set X-Frame-Options: "sameorigin"
+Header always set X-XSS-Protection "1;  mode=block"
 
 <VirtualHost *:80>
     ServerAdmin _