Move comparison with OpenVPN to Features section

Signed-off-by: Sergey Matveev <stargrave@stargrave.org>

diff --git a/README b/README
index f2c0d6693bd4657d4dbc047d81693fc5c5cab2c4..26a6cb46c3ab6a8565c74ae54b06727d33c51eaa 100644 (file)
--- a/README
+++ b/README
@@ -6,6 +6,21 @@ govpn is simple secure virtual private network daemon.
 It uses DH-EKE for mutual zero-knowledge authentication and
 authenticated encrypted transport. It runs under GNU/Linux and FreeBSD.
 
+FEATURES
+
+* GNU/Linux and FreeBSD support
+* IPv6 compatible
+* Encrypted and authenticated transport
+* Relatively fast handshake
+* Replay attack protection
+* Perfect forward secrecy (if long-term pre-shared keys are compromised,
+  no captured traffic can be decrypted anyway)
+* Mutual two-side authentication (noone will send real network interface
+  data unless the other side is authenticated)
+* Zero knowledge authentication (pre-shared key is not transmitted in
+  any form between the peers, not even it's hash value)
+* Built-in rehandshake and heartbeat features
+
 DESCRIPTION
 
 All packets captured on network interface are encrypted, authenticated
@@ -33,17 +48,6 @@ Also you can provide up and down scripts that will be executed after
 either connection is initiated (up-script in background), or is went
 down. The first argument for them is an interface name.
 
-COMPARISON TO OpenVPN
-
-* Faster handshake
-* Perfect-forward secrecy (if long-term pre-shared keys are compromised,
-  no captured traffic can be decrypted anyway)
-* Mutual two-side authentication (noone will send real network interface
-  data unless the other side is authenticated)
-* Zero-knowledge authentication (pre-shared key is not transmitted in
-  any form between the peers, not even it's hash value)
-* Fully IPv6 compatible
-
 CONSOLE OUTPUT LEGEND
 
 B -- bad or timeouted UDP packet (maybe network is inactive)