We use password (passphrase) authentication, so overall security fully
depends on its strength. You @strong{should} use long, high-entropy
passphrases. Also remember to keep passphrase in temporary file and read
-it securely as described in @ref{Verifier}.
+it securely as described in @ref{Verifier, verifier}.
@item
-You must @strong{never} use one key for multiple clients.
+You must @strong{never} use the same key for multiple clients.
@item
You must use @strong{cryptographically good} pseudo random number