diff --git a/doc/security.mdwn b/doc/security.mdwn
index 0bc4c6e..12ae18d 100644
--- a/doc/security.mdwn
+++ b/doc/security.mdwn
@@ -21,8 +21,8 @@ That is only done when privdata/keyring.gpg exists. To set it up:
 
 In order to be secure from the beginning, when `propellor --spin` is used
 to bootstrap propellor on a new host, it transfers the local git repositry
-to the remote host over ssh. After that, the remote host knows the
-gpg key, and will use it to verify git fetches.
+to the remote host over ssh. After that, the host knows the gpg key, and
+will use it to verify git fetches.
 
 Since the propoellor git repository is public, you can't store
 in cleartext private data such as passwords, ssh private keys, etc.