diff --git a/nginx/configs/security.conf b/nginx/configs/security.conf
index 4222e61..c4d3368 100644
--- a/nginx/configs/security.conf
+++ b/nginx/configs/security.conf
@@ -1,8 +1,6 @@
 # security headers
-add_header X-XSS-Protection          "0" always;
 add_header X-Content-Type-Options    "nosniff" always;
-add_header X-Frame-Options           "sameorigin" always;
 add_header Referrer-Policy           "same-origin" always;
-#add_header Content-Security-Policy   "default-src 'self' http: https: ws: wss: data: blob: 'unsafe-inline'; frame-ancestors 'self';" always;
+add_header X-Frame-Options           "sameorigin" always;
 add_header Permissions-Policy        "interest-cohort=()" always;
 add_header Strict-Transport-Security "max-age=63072000; includeSubDomains; preload" always;
diff --git a/nginx/configs/ssl.conf b/nginx/configs/ssl.conf
index 85bf7e4..876192f 100644
--- a/nginx/configs/ssl.conf
+++ b/nginx/configs/ssl.conf
@@ -2,8 +2,4 @@
 ssl_certificate /etc/ssl/nadeko.net/fullchain.ec.crt;
 ssl_certificate_key /etc/ssl/nadeko.net/nadeko.net.ec.key;
 
-# RSA
-#ssl_certificate /etc/ssl/fullchain.crt;
-#ssl_certificate_key /etc/ssl/nadeko.net.key;
-
 include configs/sslConfig.conf;
diff --git a/nginx/nginx.conf b/nginx/nginx.conf
index afbf79c..dfafe50 100644
--- a/nginx/nginx.conf
+++ b/nginx/nginx.conf
@@ -3,7 +3,6 @@ worker_processes auto;
 worker_rlimit_nofile 65535;
 pid /run/nginx.pid;
 
-# Include modules
 include /etc/nginx/modules-enabled/*.conf;
 
 events {
@@ -31,7 +30,6 @@ http {
 
 	# MIME
 	include mime.types;
-	#default_type application/octet-stream;
 
 	# SSL
 	include configs/ssl.conf;
@@ -47,14 +45,6 @@ http {
 	# maximum time between packets nginx is allowed to pause when sending the client data
 	send_timeout 10s;
 
-	#client_body_buffer_size 32k;
-	#client_max_body_size 2m;
-
-	#open_file_cache max=1024 inactive=10s;
-	#open_file_cache_valid 60s;
-	#open_file_cache_min_uses 2;
-	#open_file_cache_errors on;
-
 	# PERFORMANCE / ASYNC I/O
 	aio threads=default;
 	aio_write on;