PERFORCE change 24159 for review

Chris Costello chris at freebsd.org
Sat Jan 25 01:31:04 GMT 2003


http://perforce.freebsd.org/chv.cgi?CH=24159

Change 24159 by chris at chris_holly on 2003/01/24 17:30:59

	o s/Network Associates Technology/Networks Associates Technology/
	o Add a part on kernel security (not written)
	o Add a part on userland security (not written)
	o Grow a vestigial "Organization of this Book" section

Affected files ...

.. //depot/projects/trustedbsd/doc/en_US.ISO8859-1/books/sec-arch/Makefile#3 edit
.. //depot/projects/trustedbsd/doc/en_US.ISO8859-1/books/sec-arch/book.sgml#7 edit
.. //depot/projects/trustedbsd/doc/en_US.ISO8859-1/books/sec-arch/chapters.ent#3 edit
.. //depot/projects/trustedbsd/doc/en_US.ISO8859-1/books/sec-arch/kernelsec/services.sgml#1 add
.. //depot/projects/trustedbsd/doc/en_US.ISO8859-1/books/sec-arch/userlandsec/interaction.sgml#1 add
.. //depot/projects/trustedbsd/doc/en_US.ISO8859-1/books/sec-arch/userlandsec/pure-userland.sgml#1 add

Differences ...

==== //depot/projects/trustedbsd/doc/en_US.ISO8859-1/books/sec-arch/Makefile#3 (text+ko) ====

@@ -36,7 +36,13 @@
 
 INSTALL_COMPRESSED?=	gz
 
-SRCS=		book.sgml
+SRCS=	book.sgml
+
+SRCS+=	introduction/security-defined.sgml
+SRCS+=	introduction/security-definitions.sgml
+SRCS+=	kernelsec/services.sgml
+SRCS+=	userlandsec/interaction.sgml
+SRCS+=	userlandsec/pure-userland.sgml
 
 SYMLINKS=	${DESTDIR} index.html sec-arch.html
 

==== //depot/projects/trustedbsd/doc/en_US.ISO8859-1/books/sec-arch/book.sgml#7 (text+ko) ====

@@ -92,7 +92,7 @@
     
     <copyright>
       <year>2003</year>
-      <holder>Network Associates Technology, Inc.</holder>
+      <holder>Networks Associates Technology, Inc.</holder>
     </copyright>
     
     <legalnotice>
@@ -173,7 +173,39 @@
     <section id="preface.organization">
       <title>Organization of this Book</title>
 
-      <para>...</para>
+      <para>This book is divided into three parts.  The first part,
+        <emphasis>Introduction</emphasis>, explains the purpose of
+        this document and introduces the reader to the definitions and
+        concepts that will be used throughout the document.  The
+        second part, <emphasis>Kernel Security</emphasis>, explains
+        the security mechanisms used in the kernel.  The third
+        section, <emphasis>Userland Security</emphasis>, explains the
+        security mechanisms defined and used entirely within
+        userland.</para>
+
+      <para><xref linkend="introduction">, Introduction</para>
+
+      <variablelist>
+        <varlistentry>
+          <term><xref linkend="introduction.security-defined">,
+            Security Defined</term>
+
+          <listitem>
+            <para>A discussion of the meaning of the term
+              <quote>security</quote></para>
+          </listitem>
+        </varlistentry>
+
+        <varlistentry>
+          <term><xref linkend="introduction.security-definitions">,
+            Security Definitions</term>
+
+          <listitem>
+            <para>Definitions of potentially unfamiliar terms that
+              will be used throughout the document.</para>
+          </listitem>
+        </varlistentry>
+      </variablelist>
     </section>
   </preface>
 
@@ -193,6 +225,35 @@
     &chap.introduction.security-defined;
     &chap.introduction.security-definitions;
   </part>
+
+  <part id="kernel-security">
+    <title>Kernel Security</title>
+
+    <partintro>
+      <para>This part of the FreeBSD Security Architecture Handbook
+        explains the security mechanisms used by the FreeBSD kernel,
+        their semantics, their usage, and their enforcement.</para>
+    </partintro>
+
+    &chap.kernel-security.services;
+  </part>
+
+  <part id="userland-security">
+    <title>Userland Security</title>
+
+    <partintro>
+      <para>This part of the FreeBSD Security Architecture Handbook
+        explains how userland programs interact with the kernel's
+        security services and how it makes use of kernel security
+        primitives in order to provide protections of its own model.
+        Additionally, purely userland concepts such as SSH (the Secure
+        Shell) and PAM (Pluggable Authentication Modules) will be
+        covered in this part.</para>
+    </partintro>
+
+    &chap.userland-security.interaction;
+    &chap.userland-security.pure-userland;
+  </part>
 </book>
 
 <!-- Keep this comment at the end of the file

==== //depot/projects/trustedbsd/doc/en_US.ISO8859-1/books/sec-arch/chapters.ent#3 (text+ko) ====

@@ -1,2 +1,7 @@
 <!ENTITY chap.introduction.security-defined	SYSTEM "introduction/security-defined.sgml">
 <!ENTITY chap.introduction.security-definitions	SYSTEM "introduction/security-definitions.sgml">
+
+<!ENTITY chap.kernel-security.services		SYSTEM "kernelsec/services.sgml">
+
+<!ENTITY chap.userland-security.interaction	SYSTEM "userlandsec/interaction.sgml">
+<!ENTITY chap.userland-security.pure-userland	SYSTEM "userlandsec/pure-userland.sgml">
To Unsubscribe: send mail to majordomo at trustedbsd.org
with "unsubscribe trustedbsd-cvs" in the body of the message



More information about the trustedbsd-cvs mailing list