diff --git a/CHANGELOG.md b/CHANGELOG.md
index 1eae3da..fc380dd 100644
--- a/CHANGELOG.md
+++ b/CHANGELOG.md
@@ -2,6 +2,10 @@
 
 This project follows [semantic versioning](http://semver.org).
 
+### UNRELEASED
+
+- [changed] Changed documentation
+
 ### v2.0.0 (2020-10-30)
 
 - [added] **Add strong crypto, complete rewrite of crypto system**
diff --git a/README.md b/README.md
index fc64ff1..4eb136d 100644
--- a/README.md
+++ b/README.md
@@ -11,6 +11,14 @@ Tunneling traffic between two nodes can be as easy as:
 
        $> vpncloud -c REMOTE_HOST:PORT -p 'mypassword' --ip 10.0.0.1/24
 
+or as config file:
+
+       crypto:
+         password: mysecret
+       ip: 10.0.0.1
+       peers:
+         - REMOTE_HOST:PORT
+
 For more information, please see the [Website](https://vpncloud.ddswd.de) or the [Forum](https://groups.google.com/forum/#!forum/vpncloud).
 
 
diff --git a/assets/example.net.disabled b/assets/example.net.disabled
index 960cecc..bbc33e6 100644
--- a/assets/example.net.disabled
+++ b/assets/example.net.disabled
@@ -80,7 +80,7 @@ mode: normal
 # MAC address. The prefix length is the number of significant front bits that
 # distinguish the subnet from other subnets. Example: `10.1.1.0/24`.
 # Note: Several entries can be separated by spaces.
-#claims
+#claims:
 #  - 10.1.1.0/24
 
 # Whether to automatically claim the configured IP on tun devices
diff --git a/src/main.rs b/src/main.rs
index ccf61d1..2269948 100644
--- a/src/main.rs
+++ b/src/main.rs
@@ -156,7 +156,7 @@ fn setup_device(config: &Config) -> TunTapDevice {
     }
     if let Ok(val) = device.get_rp_filter() {
         if val != 1 {
-            warn!("Your networking configuration might be affected by a vulnerability (https://seclists.org/oss-sec/2019/q4/122), please change your rp_filter setting to 1 (currently {}).", val);
+            warn!("Your networking configuration might be affected by a vulnerability (https://vpncloud.ddswd.de/docs/security/cve-2019-14899/), please change your rp_filter setting to 1 (currently {}).", val);
         }
     }
     device
@@ -256,7 +256,10 @@ fn main() {
         try_fail!(fs::rename(&file, format!("{}.orig", file)), "Failed to rename original file: {:?}");
         info!("Writing new config back into {}", file);
         let f = try_fail!(File::create(&file), "Failed to open config file: {:?}");
-        try_fail!(fs::set_permissions(&file, fs::Permissions::from_mode(0o600)), "Failed to set permissions on file: {:?}");
+        try_fail!(
+            fs::set_permissions(&file, fs::Permissions::from_mode(0o600)),
+            "Failed to set permissions on file: {:?}"
+        );
         try_fail!(serde_yaml::to_writer(f, &new_config), "Failed to write converted config: {:?}");
         return
     }