diff --git a/_data/toc.yaml b/_data/toc.yaml
index d4f2dac18f..3e68755a56 100644
--- a/_data/toc.yaml
+++ b/_data/toc.yaml
@@ -1128,8 +1128,8 @@ manuals:
       title: Install on Ubuntu
     - path: /engine/install/binaries/
       title: Install binaries
-    - path: /engine/install/linux-postinstall/
-      title: Optional post-installation steps
+  - path: /engine/install/linux-postinstall/
+    title: Optional post-installation steps
   - path: /engine/release-notes/
     title: Release notes
   - sectiontitle: Previous versions
diff --git a/go/attack-surface.md b/go/attack-surface.md
new file mode 100644
index 0000000000..e3d70e9a99
--- /dev/null
+++ b/go/attack-surface.md
@@ -0,0 +1,6 @@
+---
+# Details about the "Docker Daemon attack surface". This redirect is currently
+# used in warnings printed by the Docker Engine, and in the installation script
+# at "get.docker.com"
+redirect_to: /engine/security/#docker-daemon-attack-surface
+---
diff --git a/go/daemon-access.md b/go/daemon-access.md
new file mode 100644
index 0000000000..29ac0a5d21
--- /dev/null
+++ b/go/daemon-access.md
@@ -0,0 +1,5 @@
+---
+# Details about how to give "non-root" users access to a privileged Docker Daemon
+# This redirect is currently in the installation script at "get.docker.com"
+redirect_to: /engine/install/linux-postinstall/#manage-docker-as-a-non-root-user
+---