diff --git a/src/middleware/csp.ts b/src/middleware/csp.ts
index f97fc9a..8875847 100644
--- a/src/middleware/csp.ts
+++ b/src/middleware/csp.ts
@@ -10,8 +10,8 @@ const csp = (): AppMiddleware => {
       'upgrade-insecure-requests',
       `script-src 'self'`,
       `connect-src 'self' blob: ${Conf.localDomain} ${wsProtocol}//${host}`,
-      `media-src 'self' ${Conf.mediaDomain}`,
-      `img-src 'self' data: blob: ${Conf.mediaDomain}`,
+      `media-src 'self' https:`,
+      `img-src 'self' data: blob: https:`,
       `default-src 'none'`,
       `base-uri 'self'`,
       `frame-ancestors 'none'`,