--- a/README	Mon Aug 17 08:22:24 2009 +0300
+++ b/README	Mon Aug 17 08:22:38 2009 +0300
@@ -1,4 +1,4 @@
-Malicious Attack Livid Termination Filter daemon (maltfilter) v0.13.1
+Malicious Attack Livid Termination Filter daemon (maltfilter) v0.14.0
 =====================================================================
 Programmed by Matti 'ccr' Hämäläinen <ccr@tnsp.org>
 (C) Copyright 2009 Tecnic Software productions (TNSP)
@@ -8,20 +8,27 @@
 
 About
 =====
-Automagic management script for adding and removing Netfilter/iptables
-filtering rules based on continuous logfile parsing for certain break-in
-and exploitation scanning attempts.
-
 Maltfilter daemon script continuously scans various system logfiles
-including auth.log, httpd logs, etc. for signs of malicious connections
+including auth.log, httpd logs, etc. for signs of malicious connections,
 break-in and exploitation attempts. The originating IP addresses of
 these connections are then blocked via Netfilter (iptables).
 
+Additionally Maltfilter can generate status reports (either continuously
+in daemon mode, or as once-run report), in plaintext and HTML formats.
+
+Since v0.14, there is also option for gathering "evidence" about certain
+PHP XSS exploit attempts into specified directory. These evidence files
+include the attempted exploit code (if found) and hosts which have tried
+to make your server run it.
+
+
 Requirements:
 
  - Perl 5.8 or later
  - Date::Parse (libtimedate-perl)
  - Net::IP (libnet-ip-perl)
+ - Net::DNS (libnet-dns-perl)
+ - LWP::UserAgent (libwww-perl)
 
 
 Installation
@@ -73,3 +80,4 @@
 You can also run "full" report generation via the "-f" option, in this
 special mode, no automatic weeding is performed, resulting in
 more data being shown.
+