diff --git a/etc/nginx/conf.d/default.conf b/etc/nginx/conf.d/default.conf
index 045f051..74042d5 100644
--- a/etc/nginx/conf.d/default.conf
+++ b/etc/nginx/conf.d/default.conf
@@ -36,13 +36,16 @@ ssl_session_ticket_key session-ticket-keys/1.key;
 ## ssl_trusted_certificate
 ## ssl_stapling_file
 
-# Disable server tokens
-server_tokens off;
+# Cookie flags
+proxy_cookie_flags ~ secure;
 
 # Disable compression
 ## Mitigates oracle attacks
 gzip off;
 
+# Disable server tokens
+server_tokens off;
+
 server {
     listen ipv4_1:80 default_server;
     listen [ipv6_1]:80 default_server;