===================================================================
RCS file: /cvsrepo/anoncvs/cvs/www/33.html,v
retrieving revision 1.1
retrieving revision 1.2
diff -u -r1.1 -r1.2
--- www/33.html	2003/03/25 21:50:10	1.1
+++ www/33.html	2003/03/25 21:54:34	1.2
@@ -78,6 +78,7 @@
 <a href="http://www.trl.ibm.com/projects/security/ssp">ProPolice</a>
 stack protection technology into the system compiler. This protection is
 enabled by default.
+<p>
 
 <li>W^X (pronounced: "W or X") binaries on ELF architectures. This is
 a fine-grained memory permissions layout, ensuring that memory which can be
@@ -85,7 +86,8 @@
 This raises the bar on potential buffer overflows and other attacks.
 <p>
 
-<li>Still more reduction in setuid binaries.
+<li>Still more reduction in setuid and setgid binaries, and more chroot
+use throughout the system.
 <p>
 
 <li>The X window system uses privilege separation, for better security.
@@ -359,7 +361,7 @@
 alt="OpenBSD"></a> 
 <a href="mailto:www@openbsd.org">www@openbsd.org</a>
 <br><small>
-$OpenBSD: 33.html,v 1.1 2003/03/25 21:50:10 miod Exp $
+$OpenBSD: 33.html,v 1.2 2003/03/25 21:54:34 deraadt Exp $
 </small>
 
 </body>