diff --git a/.docker/docker-compose.yml b/.docker/docker-compose.yml
index 489048c7..a72c0b14 100644
--- a/.docker/docker-compose.yml
+++ b/.docker/docker-compose.yml
@@ -41,5 +41,5 @@ services:
       - "./nginx/nginx.conf:/etc/nginx/nginx.conf:ro"
       - "./nginx/sites:/etc/nginx/sites:ro"
       - "./nginx/certs:/etc/nginx/certs:ro"
-      - "./nginx/modules:/etc/nginx/modules:ro"
+      - "./nginx/extra_modules:/etc/nginx/extra_modules:ro"
       - "../webserver/web/static:/etc/nginx/web/static:ro"
diff --git a/.docker/nginx/extra_modules/ngx_http_brotli_filter_module.so b/.docker/nginx/extra_modules/ngx_http_brotli_filter_module.so
new file mode 100755
index 00000000..e49e99ba
Binary files /dev/null and b/.docker/nginx/extra_modules/ngx_http_brotli_filter_module.so differ
diff --git a/.docker/nginx/extra_modules/ngx_http_brotli_static_module.so b/.docker/nginx/extra_modules/ngx_http_brotli_static_module.so
new file mode 100755
index 00000000..67a52123
Binary files /dev/null and b/.docker/nginx/extra_modules/ngx_http_brotli_static_module.so differ
diff --git a/.docker/nginx/modules/ngx_http_brotli_filter_module.so b/.docker/nginx/modules/ngx_http_brotli_filter_module.so
deleted file mode 100755
index 7a709fbc..00000000
--- a/.docker/nginx/modules/ngx_http_brotli_filter_module.so
+++ /dev/null
@@ -1,3 +0,0 @@
-version https://git-lfs.github.com/spec/v1
-oid sha256:19004802b2f0d29c4f9c4067ec2beff164641652512b068acc86eb8f17382d3a
-size 830576
diff --git a/.docker/nginx/modules/ngx_http_brotli_static_module.so b/.docker/nginx/modules/ngx_http_brotli_static_module.so
deleted file mode 100755
index 1945d8c9..00000000
--- a/.docker/nginx/modules/ngx_http_brotli_static_module.so
+++ /dev/null
@@ -1,3 +0,0 @@
-version https://git-lfs.github.com/spec/v1
-oid sha256:d08fc4544fcae4f500967764364fa04a7adb8f0826b6f7c6df185c89a8a0e952
-size 10432
diff --git a/.docker/nginx/nginx.example.conf b/.docker/nginx/nginx.example.conf
index 0ef9a53b..f207bcc9 100644
--- a/.docker/nginx/nginx.example.conf
+++ b/.docker/nginx/nginx.example.conf
@@ -1,8 +1,8 @@
 # NOTE: change this based on your machine (equal to # CPU cores)
 worker_processes 2;
 
-load_module modules/ngx_http_brotli_static_module.so;
-load_module modules/ngx_http_brotli_filter_module.so;
+load_module extra_modules/ngx_http_brotli_static_module.so;
+load_module extra_modules/ngx_http_brotli_filter_module.so;
 
 events {
   # NOTE: change this based on your machine (ulimit -n)
@@ -31,8 +31,7 @@ http {
   brotli_comp_level 4;
   brotli_types text/plain text/css application/javascript application/json image/svg+xml application/xml+rss;
 
-  # TODO: TLS security
-  # ssl_dhparam /etc/ssl/dhparam.pem;
+  ssl_dhparam /etc/ssl/dhparam.pem;
 
   ssl_protocols TLSv1.3 TLSv1.2;
   ssl_ciphers 'TLS_AES_256_GCM_SHA384:TLS_CHACHA20_POLY1305_SHA256:ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-CHACHA20-POLY1305:ECDHE-RSA-CHACHA20-POLY1305:ECDHE-ECDSA-AES256-SHA384:ECDHE-RSA-AES256-SHA384:ECDHE-ECDSA-AES256-SHA:ECDHE-RSA-AES256-SHA';