From owner-p4-projects  Fri Jan 24 17:31: 9 2003
Delivered-To: p4-projects@freebsd.org
Received: by hub.freebsd.org (Postfix, from userid 32767)
	id 9A71737B405; Fri, 24 Jan 2003 17:31:05 -0800 (PST)
Delivered-To: perforce@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id 46D5937B401
	for <perforce@freebsd.org>; Fri, 24 Jan 2003 17:31:05 -0800 (PST)
Received: from repoman.freebsd.org (repoman.freebsd.org [216.136.204.115])
	by mx1.FreeBSD.org (Postfix) with ESMTP id D2F5B43E4A
	for <perforce@freebsd.org>; Fri, 24 Jan 2003 17:31:04 -0800 (PST)
	(envelope-from chris@freebsd.org)
Received: from repoman.freebsd.org (localhost [127.0.0.1])
	by repoman.freebsd.org (8.12.6/8.12.6) with ESMTP id h0P1V4bv064458
	for <perforce@freebsd.org>; Fri, 24 Jan 2003 17:31:04 -0800 (PST)
	(envelope-from chris@freebsd.org)
Received: (from perforce@localhost)
	by repoman.freebsd.org (8.12.6/8.12.6/Submit) id h0P1V4VE064440
	for perforce@freebsd.org; Fri, 24 Jan 2003 17:31:04 -0800 (PST)
Date: Fri, 24 Jan 2003 17:31:04 -0800 (PST)
Message-Id: <200301250131.h0P1V4VE064440@repoman.freebsd.org>
X-Authentication-Warning: repoman.freebsd.org: perforce set sender to chris@freebsd.org using -f
From: Chris Costello <chris@FreeBSD.org>
Subject: PERFORCE change 24159 for review
To: Perforce Change Reviews <perforce@freebsd.org>
Sender: owner-p4-projects@FreeBSD.ORG
Precedence: bulk
List-ID: <p4-projects.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo@FreeBSD.ORG?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo@FreeBSD.ORG?subject=subscribe%20p4-projects>
List-Unsubscribe: <mailto:majordomo@FreeBSD.ORG?subject=unsubscribe%20p4-projects>
X-Loop: FreeBSD.ORG

http://perforce.freebsd.org/chv.cgi?CH=24159

Change 24159 by chris@chris_holly on 2003/01/24 17:30:59

	o s/Network Associates Technology/Networks Associates Technology/
	o Add a part on kernel security (not written)
	o Add a part on userland security (not written)
	o Grow a vestigial "Organization of this Book" section

Affected files ...

.. //depot/projects/trustedbsd/doc/en_US.ISO8859-1/books/sec-arch/Makefile#3 edit
.. //depot/projects/trustedbsd/doc/en_US.ISO8859-1/books/sec-arch/book.sgml#7 edit
.. //depot/projects/trustedbsd/doc/en_US.ISO8859-1/books/sec-arch/chapters.ent#3 edit
.. //depot/projects/trustedbsd/doc/en_US.ISO8859-1/books/sec-arch/kernelsec/services.sgml#1 add
.. //depot/projects/trustedbsd/doc/en_US.ISO8859-1/books/sec-arch/userlandsec/interaction.sgml#1 add
.. //depot/projects/trustedbsd/doc/en_US.ISO8859-1/books/sec-arch/userlandsec/pure-userland.sgml#1 add

Differences ...

==== //depot/projects/trustedbsd/doc/en_US.ISO8859-1/books/sec-arch/Makefile#3 (text+ko) ====

@@ -36,7 +36,13 @@
 
 INSTALL_COMPRESSED?=	gz
 
-SRCS=		book.sgml
+SRCS=	book.sgml
+
+SRCS+=	introduction/security-defined.sgml
+SRCS+=	introduction/security-definitions.sgml
+SRCS+=	kernelsec/services.sgml
+SRCS+=	userlandsec/interaction.sgml
+SRCS+=	userlandsec/pure-userland.sgml
 
 SYMLINKS=	${DESTDIR} index.html sec-arch.html
 

==== //depot/projects/trustedbsd/doc/en_US.ISO8859-1/books/sec-arch/book.sgml#7 (text+ko) ====

@@ -92,7 +92,7 @@
     
     <copyright>
       <year>2003</year>
-      <holder>Network Associates Technology, Inc.</holder>
+      <holder>Networks Associates Technology, Inc.</holder>
     </copyright>
     
     <legalnotice>
@@ -173,7 +173,39 @@
     <section id="preface.organization">
       <title>Organization of this Book</title>
 
-      <para>...</para>
+      <para>This book is divided into three parts.  The first part,
+        <emphasis>Introduction</emphasis>, explains the purpose of
+        this document and introduces the reader to the definitions and
+        concepts that will be used throughout the document.  The
+        second part, <emphasis>Kernel Security</emphasis>, explains
+        the security mechanisms used in the kernel.  The third
+        section, <emphasis>Userland Security</emphasis>, explains the
+        security mechanisms defined and used entirely within
+        userland.</para>
+
+      <para><xref linkend="introduction">, Introduction</para>
+
+      <variablelist>
+        <varlistentry>
+          <term><xref linkend="introduction.security-defined">,
+            Security Defined</term>
+
+          <listitem>
+            <para>A discussion of the meaning of the term
+              <quote>security</quote></para>
+          </listitem>
+        </varlistentry>
+
+        <varlistentry>
+          <term><xref linkend="introduction.security-definitions">,
+            Security Definitions</term>
+
+          <listitem>
+            <para>Definitions of potentially unfamiliar terms that
+              will be used throughout the document.</para>
+          </listitem>
+        </varlistentry>
+      </variablelist>
     </section>
   </preface>
 
@@ -193,6 +225,35 @@
     &chap.introduction.security-defined;
     &chap.introduction.security-definitions;
   </part>
+
+  <part id="kernel-security">
+    <title>Kernel Security</title>
+
+    <partintro>
+      <para>This part of the FreeBSD Security Architecture Handbook
+        explains the security mechanisms used by the FreeBSD kernel,
+        their semantics, their usage, and their enforcement.</para>
+    </partintro>
+
+    &chap.kernel-security.services;
+  </part>
+
+  <part id="userland-security">
+    <title>Userland Security</title>
+
+    <partintro>
+      <para>This part of the FreeBSD Security Architecture Handbook
+        explains how userland programs interact with the kernel's
+        security services and how it makes use of kernel security
+        primitives in order to provide protections of its own model.
+        Additionally, purely userland concepts such as SSH (the Secure
+        Shell) and PAM (Pluggable Authentication Modules) will be
+        covered in this part.</para>
+    </partintro>
+
+    &chap.userland-security.interaction;
+    &chap.userland-security.pure-userland;
+  </part>
 </book>
 
 <!-- Keep this comment at the end of the file

==== //depot/projects/trustedbsd/doc/en_US.ISO8859-1/books/sec-arch/chapters.ent#3 (text+ko) ====

@@ -1,2 +1,7 @@
 <!ENTITY chap.introduction.security-defined	SYSTEM "introduction/security-defined.sgml">
 <!ENTITY chap.introduction.security-definitions	SYSTEM "introduction/security-definitions.sgml">
+
+<!ENTITY chap.kernel-security.services		SYSTEM "kernelsec/services.sgml">
+
+<!ENTITY chap.userland-security.interaction	SYSTEM "userlandsec/interaction.sgml">
+<!ENTITY chap.userland-security.pure-userland	SYSTEM "userlandsec/pure-userland.sgml">

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe p4-projects" in the body of the message