1 files changed, 6 insertions, 4 deletions

diff --git a/content/posts/WIP-how-bsd-authentication-works/index.org b/content/posts/WIP-how-bsd-authentication-works/index.org
index f051248..9c6ddde 100644
--- a/content/posts/WIP-how-bsd-authentication-works/index.org
+++ b/content/posts/WIP-how-bsd-authentication-works/index.org
@@ -107,9 +107,9 @@
   descriptor 3.
 
   Some modules require an extra file descriptor to be passed in for
-  authentication. In these cases, an extra =-v fd=4= argument will be
-  passed. Theoretically this =fd= can be any number, but in practice
-  =fd=4= is hard-coded.
+  challenge/response authentication. In these cases, an extra =-v
+  fd=4= argument will be passed. Theoretically this =fd= can be any
+  number, but in practice =fd=4= is hard-coded.
 
 
   Most modules also have a hidden flag =-d=, which sets the back
@@ -305,7 +305,6 @@
    according to =BI_SETENV= and =BI_UNSETENV= instructions.
 
 ** auth_getvalue
-
    #+BEGIN_SRC c
    char *auth_getvalue(auth_session_t *as, char *what)
    #+END_SRC
@@ -317,6 +316,9 @@
    escape sequences in the value, and returns the newly created
    string.
 
+   For convenience, the function =auth_mkvalue= can be used inside of
+   the authentication module to create appropriately escaped values.
+
 * auth_open
 
   #+begin_src c