From b86bf07d57b1d54143b4fcd8e52838ba0b43cff8 Mon Sep 17 00:00:00 2001
From: "E.M. Makat" <29872150+emmakat@users.noreply.github.com>
Date: Tue, 21 Jan 2020 23:58:40 -0800
Subject: [PATCH] Fix spelling of 'guarantee' (#1703)

---
 security.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/security.md b/security.md
index bc980808..3b51f235 100644
--- a/security.md
+++ b/security.md
@@ -95,7 +95,7 @@ Domain policy records allow recipient MTAs to detect when the _domain_ part of o
 
 ### User Policy
 
-While domain policy records prevent other servers from sending mail with a "From:" header that matches a domain hosted on the box (see above), those policy records do not guarnatee that the user portion of the sender email address matches the actual sender. In enterprise environments where the box may host the mail of untrusted users, it is important to guard against users impersonating other users.
+While domain policy records prevent other servers from sending mail with a "From:" header that matches a domain hosted on the box (see above), those policy records do not guarantee that the user portion of the sender email address matches the actual sender. In enterprise environments where the box may host the mail of untrusted users, it is important to guard against users impersonating other users.
 
 The box restricts the envelope sender address (also called the return path or MAIL FROM address --- this is different from the "From:" header) that users may put into outbound mail. The envelope sender address must be either their own email address (their SMTP login username) or any alias that they are listed as a permitted sender of. (There is currently no restriction on the contents of the "From:" header.)