X-Git-Url: https://sipb.mit.edu/gitweb.cgi/ikiwiki.git/blobdiff_plain/699024fa15c7ffadee5f4a600fe7a14a56f0496e..0fe24ee312f7b95448b7415ff4e33e757950fa3c:/doc/security.mdwn?ds=sidebyside

diff --git a/doc/security.mdwn b/doc/security.mdwn
index fa4480e19..73d98a3ae 100644
--- a/doc/security.mdwn
+++ b/doc/security.mdwn
@@ -10,7 +10,7 @@ to be kept in mind.
 
 # Probable holes
 
-_(THe list of things to fix.)_
+_(The list of things to fix.)_
 
 ## svn commit logs
 
@@ -62,7 +62,7 @@ this wiki, BTW.
 
 ## page locking can be bypassed via direct svn commits
 
-A [[lock]]ed page can only be edited on the web by an admin, but
+A locked page can only be edited on the web by an admin, but
 anyone who is allowed to commit direct to svn can bypass this. This is by
 design, although a subversion pre-commit hook could be used to prevent
 editing of locked pages when using subversion, if you really need to.
@@ -215,4 +215,5 @@ pages from source with some other extension.
 
 ## XSS attacks in page content
 
-ikiwiki supports [[HtmlSanitization]], though it can be turned off.
+ikiwiki supports protecting users from their own broken browsers via the
+[[plugins/htmlscrubber]] plugin, which is enabled by default.