===================================================================
RCS file: /cvsrepo/anoncvs/cvs/www/62.html,v
retrieving revision 1.28
retrieving revision 1.29
diff -c -r1.28 -r1.29
*** www/62.html	2017/10/02 19:43:51	1.28
--- www/62.html	2017/10/02 20:47:29	1.29
***************
*** 177,184 ****
  	<a href="https://man.openbsd.org/csh.1">csh(1)</a> and
  	<a href="https://man.openbsd.org/mail.1">mail(1)</a>
  	were rewritten to cope with the removal.
!     <li><a href="https://www.openbsd.org/innovations.html">New mitigations</a>
!         were added, Kernel Address Randomized Link (KARL) and Trapsleds.
      </ul>
  <p>
  
--- 177,195 ----
  	<a href="https://man.openbsd.org/csh.1">csh(1)</a> and
  	<a href="https://man.openbsd.org/mail.1">mail(1)</a>
  	were rewritten to cope with the removal.
!     <li>Trapsleds, a new mitigation that significantly reduces the amount of
!         nops in the instruction stream, converting them to traps, eliminating
!         many potentially useful gadgets.
!     <li>Kernel Address Randomized Link (KARL), a new "link-kit" allows the .o
!         files of the kernel to be relinked in a random order, creating a unique
!         kernel for each boot.
!     <li>Like with libc previously,
!         <a href="https://man.openbsd.org/rc.8">rc(8)</a> re-links libcrypto on
!         startup, placing the objects in a random order.
!     <li>In addition to libcrypto, to deter code reuse exploits,
!         <a href="https://man.openbsd.org/rc.8">rc(8)</a> re-links
!         <a href="https://man.openbsd.org/ld.so.1">ld.so</a> on
!         startup, placing the objects in a random order.
      </ul>
  <p>