projects / anni / blobdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | inline | side by side
total rebase
[anni] / docs / installation / netbsd_en.md
diff --git a/docs/installation/netbsd_en.md b/docs/installation/netbsd_en.md
old mode 100755 (executable)
new mode 100644 (file)
index 41b3b00..2ade7df
--- a/docs/installation/netbsd_en.md
+++ b/docs/installation/netbsd_en.md
@@ -123,6 +123,10 @@ Edit the defaults:
 * Change `ssl_certificate_key` to `/etc/nginx/tls/key`.
 * Change `example.tld` to your instance's domain name.
 
+### (Strongly recommended) serve media on another domain
+
+Refer to the [Hardening your instance](../configuration/hardening.md) document on how to serve media on another domain. We STRONGLY RECOMMEND you to do this to minimize attack vectors.
+
 ## Configuring acme.sh
 
 We'll be using acme.sh in Stateless Mode for TLS certificate renewal.
The code running on annihilation.social