[ViewVC] Diff of: cvs/gvpe/doc/gvpe.5

Comparing gvpe/doc/gvpe.5 (file contents):
Revision 1.1 by pcg, Fri Jun 11 15:56:12 2004 UTC vs.
Revision 1.2 by pcg, Thu Nov 11 17:41:55 2004 UTC

 .\}
 .rm #[ #] #H #V #F C
 .\" ========================================================================
 .\"
 .IX Title "GVPE 5"
-.TH GVPE 5 "2004-06-11" "1.7" "GNU Virtual Private Ethernet"
+.TH GVPE 5 "2004-09-18" "1.7" "GNU Virtual Private Ethernet"
 .SH "NAME"
 GNU\-VPE \- Overview of the GNU Virtual Private Ethernet suite.
 .SH "DESCRIPTION"
 .IX Header "DESCRIPTION"
 \&\s-1GVPE\s0 is a suite designed to provide a virtual private network for multiple
 \&   ./configure --enable-hmac-length=16 --enable-rand-length=8 --enable-digest=sha1
 .Ve
 .PP
 This uses a 16 byte \s-1HMAC\s0 checksum to authenticate packets (I guess 8\-12
 would also be pretty secure ;) and will additionally prefix each packet
-with 8 bytes of random data.
+with 8 bytes of random data. In the long run, people should move to
+\&\s-1SHA\-224\s0 and beyond, but support in openssl is missing as of writing this
+document.
 .PP
 In general, remember that \s-1AES\-128\s0 seems to be more secure and faster than
 \&\s-1AES\-192\s0 or \s-1AES\-256\s0, more randomness helps against sniffing and a longer
 \&\s-1HMAC\s0 helps against spoofing. \s-1MD4\s0 is a fast digest, \s-1SHA1\s0 or \s-1RIPEMD160\s0 are
 better, and Blowfish is a fast cipher (and also quite secure).

-–
+Removed lines
-+
+Added lines
-<
+Changed lines
->
+Changed lines