--- gvpe/doc/gvpe.5.pod	2008/09/01 06:06:11	1.9
+++ gvpe/doc/gvpe.5.pod	2013/07/10 01:51:40	1.10
@@ -52,7 +52,7 @@
 
 =head2 GVPE DESIGN GOALS
 
-=over 4 
+=over 4
 
 =item SIMPLE DESIGN
 
@@ -132,12 +132,11 @@
 
 =head2 MAXIMIZE SECURITY
 
-   ./configure --enable-hmac-length=16 --enable-rand-length=8 --enable-digest=sha1
+   ./configure --enable-hmac-length=16 --enable-rand-length=16 --enable-digest=sha384
 
 This uses a 16 byte HMAC checksum to authenticate packets (I guess 8-12
 would also be pretty secure ;) and will additionally prefix each packet
-with 8 bytes of random data. In the long run, people should move to
-SHA-256 and beyond).
+with 16 bytes of random data.
 
 In general, remember that AES-128 seems to be as secure but faster than
 AES-192 or AES-256, more randomness helps against sniffing and a longer