<dd>This is just a random string. When you change a password, the server
checks that the request includes a copy of this nonce, as a protection
against
-<a href='http://en.wikipedia.org/wiki/Cross-site_request_forgery'><em>cross-site
+<a href="http://en.wikipedia.org/wiki/Cross-site_request_forgery"><em>cross-site
request forgery</em></a> attacks.
<dt>Tag
behavioural advertising scheme?</h2>
<p>That’s tricky. I could tell you that this program is
-<a href='http://www.gnu.org/philosophy/free-sw.html'>free software</a>, and
+<a href="http://www.gnu.org/philosophy/free-sw.html">free software</a>, and
that you can
<a href="~={script}H/~={package}H-~={version}H.tar.gz">">download its
source code</a> and check for yourself.