X-Git-Url: http://git.squeep.com/?a=blobdiff_plain;f=docs%2Fdocs%2Fconfiguration%2Fhardening.md;fp=docs%2Fdocs%2Fconfiguration%2Fhardening.md;h=3011812fc8d5f244f6242e0c967a0e12312f8dff;hb=f90552f62e7a7b3414e57387f97741b9b253d0e1;hp=182a54422b3bdfc532f3f3ca770cbac39a39a0bc;hpb=fb5f846e8caac4c4b2335e5b89697e0de6ee58b2;p=akkoma

diff --git a/docs/docs/configuration/hardening.md b/docs/docs/configuration/hardening.md
index 182a54422..3011812fc 100644
--- a/docs/docs/configuration/hardening.md
+++ b/docs/docs/configuration/hardening.md
@@ -23,7 +23,7 @@ This sets the `secure` flag on Akkoma’s session cookie. This makes sure, that
 
 This will send additional HTTP security headers to the clients, including:
 
-* `X-XSS-Protection: "1; mode=block"`
+* `X-XSS-Protection: "0"`
 * `X-Permitted-Cross-Domain-Policies: "none"`
 * `X-Frame-Options: "DENY"`
 * `X-Content-Type-Options: "nosniff"`