diff --git a/content/posts/linux/Slightly Improving Mailcow Security.md b/content/posts/linux/Slightly Improving Mailcow Security.md
index cee622646..192f088e3 100644
--- a/content/posts/linux/Slightly Improving Mailcow Security.md	
+++ b/content/posts/linux/Slightly Improving Mailcow Security.md	
@@ -30,7 +30,7 @@ smtpd_tls_mandatory_ciphers = high
 
 These security configurations can be added/modified in `data/conf/nginx/includes/site-defaults.conf`.
 
-## SSL Ciphers
+### SSL Ciphers
 
 Consider only supporting ciphers matching that of TLSv1.3:
 
@@ -38,9 +38,9 @@ Consider only supporting ciphers matching that of TLSv1.3:
 ssl_ciphers "ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-ECDSA-CHACHA20-POLY1305:ECDHE-ECDSA-AES128-GCM-SHA256";
 ```
 
-## HSTS
+### HSTS
 
-Consider adding `includeSubDomains;`to the HSTS configuration if all of your services are using HTTPS:
+Consider adding `includeSubDomains;` and `preload;` to the HSTS configuration if all of your services are using HTTPS:
 
 ```
 add_header Strict-Transport-Security "max-age=63072000; includeSubDomains; preload";