diff --git a/engine/security/security.md b/engine/security/security.md
index dc761f7e26..dbc14f3649 100644
--- a/engine/security/security.md
+++ b/engine/security/security.md
@@ -197,7 +197,7 @@ to the host.
 This won't affect regular web apps; but malicious users will find that
 the arsenal at their disposal has shrunk considerably! By default Docker
 drops all capabilities except [those
-needed](https://github.com/docker/docker/blob/master/oci/defaults_linux.go),
+needed](https://github.com/docker/docker/blob/master/oci/defaults_linux.go#L62-L77),
 a whitelist instead of a blacklist approach. You can see a full list of
 available capabilities in [Linux
 manpages](http://man7.org/linux/man-pages/man7/capabilities.7.html).