sync deps and sandbox info

author: Omar Polo <op@omarpolo.com> 2021-01-27 10:52:37 +0000
committer: Omar Polo <op@omarpolo.com> 2021-01-27 10:52:37 +0000
commit: 42650adec078a7d3e885afbafa1fa4406d4823fb (patch)
tree: 9e05109f7ed1243edc2c46f25ce85c9b7680c231 /README.md
parent: 909ea500a4ccb227e1be09f046499d59f2898143 (diff)
1 files changed, 5 insertions, 5 deletions
diff --git a/README.md b/README.md
index abb16a5..7329dae 100644
--- a/README.md
+++ b/README.md
@@ -49,9 +49,9 @@ Please consult the [manpage](gmid.1) for more information.
 
 ## Building
 
-gmid depends on a POSIX libc and libtls (provided either by LibreSSL
-or libretls).  At build time, flex and yacc (or GNU bison) are also
-needed.
+gmid depends on a POSIX libc, OpenSSL/LibreSSL and libtls (provided
+either by LibreSSL or libretls).  At build time, flex and yacc (or GNU
+bison) are also needed.
 
 The build is as simple as
 
@@ -115,8 +115,8 @@ This way, is still possible to execute CGI scripts without
 restrictions even in the presence of a sandbox.
 
 On OpenBSD, the listener process runs with the `stdio recvfd rpath
-inet` pledges and has `unveil(2)`ed only the directories that it
-serves; the executor has `stdio sendfd proc exec` as pledges.
+inet` pledges, the executor has `stdio sendfd proc exec` as pledges;
+both have unveiled only the served directories.
 
 On FreeBSD, the executor process is sandboxed with `capsicum(4)`.
author	Omar Polo <op@omarpolo.com>	2021-01-27 10:52:37 +0000
committer	Omar Polo <op@omarpolo.com>	2021-01-27 10:52:37 +0000
commit	42650adec078a7d3e885afbafa1fa4406d4823fb (patch)
tree	9e05109f7ed1243edc2c46f25ce85c9b7680c231 /README.md
parent	909ea500a4ccb227e1be09f046499d59f2898143 (diff)