diff --git a/config/settings/production.py b/config/settings/production.py
index 6cd0db0..6be8331 100644
--- a/config/settings/production.py
+++ b/config/settings/production.py
@@ -43,7 +43,7 @@ SESSION_COOKIE_HTTPONLY = True
 CSRF_COOKIE_SECURE = True
 #disabledd so csrf works with ajax
 CSRF_COOKIE_HTTPONLY = False
-X_FRAME_OPTIONS = 'DENY'
+X_FRAME_OPTIONS = 'SAMEORIGIN'
 
 # SITE CONFIGURATION
 # ------------------------------------------------------------------------------
diff --git a/config/settings/stage.py b/config/settings/stage.py
index 157cb70..2ca202e 100644
--- a/config/settings/stage.py
+++ b/config/settings/stage.py
@@ -43,7 +43,7 @@ SESSION_COOKIE_HTTPONLY = True
 CSRF_COOKIE_SECURE = True
 #disabledd so csrf works with ajax
 CSRF_COOKIE_HTTPONLY = False
-X_FRAME_OPTIONS = 'DENY'
+X_FRAME_OPTIONS = 'SAMEORIGIN'
 
 # SITE CONFIGURATION
 # ------------------------------------------------------------------------------
diff --git a/mhackspace/static/sass/components/_wiki.scss b/mhackspace/static/sass/components/_wiki.scss
index f6f3e5e..e79ec1e 100644
--- a/mhackspace/static/sass/components/_wiki.scss
+++ b/mhackspace/static/sass/components/_wiki.scss
@@ -10,6 +10,7 @@
     margin: 50px;
     padding: 0;
     max-width: None;
+    position: absolute;
 }
 
 .modal-content {