X-Git-Url: https://sipb.mit.edu/gitweb.cgi/wiki.git/blobdiff_plain/e8f522e9bdbd22528fc1c394568c077777f5851c..5f1011ba89494ef18fec69ebae63e5a374556b08:/doc/safe-shell.mdwn

diff --git a/doc/safe-shell.mdwn b/doc/safe-shell.mdwn
index 4913abf..f2cf726 100644
--- a/doc/safe-shell.mdwn
+++ b/doc/safe-shell.mdwn
@@ -107,7 +107,7 @@ If you get filenames from the user or from shell globbing, or any other kind of
 
 Fixing this depends on what command you're running.
 
-For many, however, `--` is accepted to indicate that any options are done, and future arguments should be parsed as positional parameters --- even if they look like options. In the `sudo` example above, `sudo -u nobody -- "$@"` would avoid this attack (though obviously limiting this in the `sudo` configuration should be done as well).
+For many, however, `--` is accepted to indicate that any options are done, and future arguments should be parsed as positional parameters --- even if they look like options. In the `sudo` example above, `sudo -u nobody -- "$@"` would avoid this attack (though obviously limiting which users commands can be run as in the `sudo` configuration should be done as well).
 
 Another approach is to prefix each filename with `./`, if the filenames are expected to be in the current directory.