diff --git a/sites/angestoepselt/httpd.conf b/sites/angestoepselt/httpd.conf
index 2e17696..926105e 100644
--- a/sites/angestoepselt/httpd.conf
+++ b/sites/angestoepselt/httpd.conf
@@ -7,6 +7,10 @@ include "@lighttpd@/share/lighttpd/doc/config/conf.d/mime.conf"
 server.document-root = "@site@"
 index-file.names = ( "index.html" )
 
+setenv.set-response-header += (
+	"Content-Security-Policy" => "default-src 'self'; script-src 'self' 'unsafe-inline'; frame-ancestors 'none'",
+)
+
 url.redirect = (
 	# These are redirects from the old site - keep them so we don't hurt any
 	# search engine indexes!