From owner-freebsd-doc@FreeBSD.ORG Mon May 19 13:10:26 2003 Return-Path: Delivered-To: freebsd-doc@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 1E70137B401 for ; Mon, 19 May 2003 13:10:26 -0700 (PDT) Received: from sixshooter.v6.thrupoint.net (sixshooter.v6.thrupoint.net [65.242.152.6]) by mx1.FreeBSD.org (Postfix) with ESMTP id 6021243FAF for ; Mon, 19 May 2003 13:10:25 -0700 (PDT) (envelope-from jpb@sixshooter.v6.thrupoint.net) Received: from sixshooter.v6.thrupoint.net (localhost.v6.thrupoint.net [127.0.0.1]) by sixshooter.v6.thrupoint.net (Postfix) with ESMTP id BC2C94D02 for ; Mon, 19 May 2003 16:10:24 -0400 (EDT) Received: (from jpb@localhost)h4JKAOGr036152 for doc@FreeBSD.org; Mon, 19 May 2003 16:10:24 -0400 (EDT) Date: Mon, 19 May 2003 16:10:24 -0400 From: Jim Brown To: doc@FreeBSD.org Message-ID: <20030519201024.GD35860@sixshooter.v6.thrupoint.net> Mail-Followup-To: doc@FreeBSD.org References: Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: User-Agent: Mutt/1.4.1i Subject: Re: Adding new top-level section to Developer's Handbook: System Architecture? X-BeenThere: freebsd-doc@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Documentation project List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 19 May 2003 20:10:26 -0000 * Robert Watson [2003-05-19 14:54]: > > As part of the Network Associates Laboratories CBOSS contract with DARPA > to improve FreeBSD system security, we have a task to write a FreeBSD > Security Architecture. We're preparing to make the first draft of this > document available -- it provides a high level view of how security > services in the kernel and userland operate, talks about bullet security > features, adaptation of FreeBSD security to particular tasks, etc. Right > now, our thought is to make it a chapter in the Developer's Handbook. > Unfortunately, it wasn't immediately clear where it should go. Today, the > structure of the document is: > > I Basics > II Inter-Process Communication > III Kernel > > "FreeBSD Security Architecture" fits poorly into any of these categories: > it's not basic, it's not IPC (although it talks a bit about IPC), and it's > not strictly kernel since it talks fairly extensively about the > integration of the user security elements. My first pass temptation was > to change the format to be more like the following: > > I Basics > II Inter-Process Communication > III High-Level Architecture > IV Kernel > > And stick in the secarch chapter as the (currently) sole section of III. > > At some point, I'd also like to copy the SMP arch document into this tree, > although that's more strictly a kernel thing. > > I'm not sure adding a High Level Architecture section is the long term > solution. The long term solution might be to break it into two books -- > one on developing/debugging FreeBSD, and the other on developing/debugging > on FreeBSD. Or perhaps an Architecture/design book separate from a Did you mean "developing/debugging FreeBSD 4.x" and "developing/debugging FreeBSD 5.x"? Works for me. > practices and procedures book. > > Regardless, would anyone object to my taking the above described strategy > for the time being, when I bring in the current draft? (Extraneous bike shed comments rethought and deleted :-) > > Robert N M Watson FreeBSD Core Team, TrustedBSD Projects > robert@fledge.watson.org Network Associates Laboratories > > _______________________________________________ > freebsd-doc@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-doc > To unsubscribe, send any mail to "freebsd-doc-unsubscribe@freebsd.org" > Best Regards, jpb ===