From 0627c6a20c59fec5d4b010ce03ef411837acba2d Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?St=C3=A9phane=20Lesimple?= <stephane.lesimple@corp.ovh.com>
Date: Thu, 5 Nov 2020 17:28:45 +0000
Subject: [PATCH] chore: update readme

---
 README.md | 7 ++++---
 1 file changed, 4 insertions(+), 3 deletions(-)

diff --git a/README.md b/README.md
index c8dae6e..2ac3767 100644
--- a/README.md
+++ b/README.md
@@ -1,4 +1,4 @@
-![](https://user-images.githubusercontent.com/218502/96882661-d3b21e80-147f-11eb-8d89-a69e37a5870b.png)
+![The Bastion Logo](https://user-images.githubusercontent.com/218502/96882661-d3b21e80-147f-11eb-8d89-a69e37a5870b.png)
 
 The Bastion
 ===========
@@ -134,14 +134,15 @@ Even with the most conservative, precautionous and paranoid coding process, code
 ## Auditability
 
 - Bastion administrators must use the bastion's logic to connect to itself to administer it (or better, use another bastion to do so), this ensures auditability in all cases
-* Every access and action (wether allowed or denied) is logged with:
+* Every access and action (whether allowed or denied) is logged with:
     * `syslog`, which should also be sent to a remote syslog server to ensure even bastion administrators can't tamper their tracks, and/or
     * local `sqlite3` databases for easy searching
+* Every session is recorded with `ttyrec`, helper scripts are provided to encrypt and push these records on a remote escrow filer
 * This code is used in production in several PCI-DSS, ISO 27001, SOC1 and SOC2 certified environments
 
 ## Related
 
-- [ovh-ttyrec](https://github.com/ovh/ovh-ttyrec) - A terminal (tty) recorder
+- [ovh-ttyrec](https://github.com/ovh/ovh-ttyrec) - An enhanced but compatible version of ttyrec, a terminal (tty) recorder
 
 ## License