===================================================================
RCS file: /cvsrepo/anoncvs/cvs/www/62.html,v
retrieving revision 1.28
retrieving revision 1.29
diff -u -r1.28 -r1.29
--- www/62.html	2017/10/02 19:43:51	1.28
+++ www/62.html	2017/10/02 20:47:29	1.29
@@ -177,8 +177,19 @@
 	<a href="https://man.openbsd.org/csh.1">csh(1)</a> and
 	<a href="https://man.openbsd.org/mail.1">mail(1)</a>
 	were rewritten to cope with the removal.
-    <li><a href="https://www.openbsd.org/innovations.html">New mitigations</a>
-        were added, Kernel Address Randomized Link (KARL) and Trapsleds.
+    <li>Trapsleds, a new mitigation that significantly reduces the amount of
+        nops in the instruction stream, converting them to traps, eliminating
+        many potentially useful gadgets.
+    <li>Kernel Address Randomized Link (KARL), a new "link-kit" allows the .o
+        files of the kernel to be relinked in a random order, creating a unique
+        kernel for each boot.
+    <li>Like with libc previously,
+        <a href="https://man.openbsd.org/rc.8">rc(8)</a> re-links libcrypto on
+        startup, placing the objects in a random order.
+    <li>In addition to libcrypto, to deter code reuse exploits,
+        <a href="https://man.openbsd.org/rc.8">rc(8)</a> re-links
+        <a href="https://man.openbsd.org/ld.so.1">ld.so</a> on
+        startup, placing the objects in a random order.
     </ul>
 <p>