diff options
Diffstat (limited to 'docs/topics/security.txt')
| -rw-r--r-- | docs/topics/security.txt | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/docs/topics/security.txt b/docs/topics/security.txt index 0083d1b5bc..99f16078d0 100644 --- a/docs/topics/security.txt +++ b/docs/topics/security.txt @@ -65,7 +65,7 @@ control. :ref:`CSRF protection works <how-csrf-works>` by checking for a nonce in each POST request. This ensures that a malicious user cannot simply "replay" a form -POST to your Web site and have another logged in user unwittingly submit that +POST to your website and have another logged in user unwittingly submit that form. The malicious user would have to know the nonce, which is user specific (using a cookie). |