diff --git a/src/freedombone-utils-web b/src/freedombone-utils-web
index 80c7f5ee..d985f03f 100755
--- a/src/freedombone-utils-web
+++ b/src/freedombone-utils-web
@@ -134,6 +134,7 @@ function nginx_ssl {
     echo '    ssl_prefer_server_ciphers on;' >> $filename
     echo "    ssl_protocols $SSL_PROTOCOLS;" >> $filename
     echo "    ssl_ciphers '$SSL_CIPHERS';" >> $filename
+    echo "    add_header Content-Security-Policy \"default-src https:; script-src https: 'unsafe-inline'; style-src https: 'unsafe-inline'\";" >> $filename
     #nginx_stapling $1
 }