Date: Mon, 10 May 2004 23:53:09 +0200 From: Josef El-Rayes <josef@FreeBSD.org> To: Tom Rhodes <trhodes@FreeBSD.org> Cc: Robert Watson <rwatson@FreeBSD.org> Subject: Re: [REVIEW REQUEST]: New chapter on MAC (draft) Message-ID: <20040510215309.GA677@jenny.daemon.li> In-Reply-To: <20040510165153.37575e53@localhost> References: <20040510165153.37575e53@localhost>
next in thread | previous in thread | raw e-mail | index | archive | help
--XF85m9dhOBO43t/C Content-Type: multipart/mixed; boundary="CE+1k2dSO48ffgeK" Content-Disposition: inline --CE+1k2dSO48ffgeK Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Content-Transfer-Encoding: quoted-printable Tom Rhodes <trhodes@FreeBSD.org> wrote: > Hey FreeBSD-doc, >=20 > I've written a new chapter for the handbook on implementing the > MAC features in 5.X. It includes configuration, testing, module > description that augments the section we already have, and shows > examples of the policies. >=20 > I'm not worried about whitespace right now, only correctness in the > information presented, markup, and wording. hi tom! i had a look at your work and found 4 very minor mistakes. i attach my patch. greets, josef ps: looks very nice, both the framework and the documentation, looks like i have to test this soon :) --=20 Josef El-Rayes (__) Email: josef@daemon.li \\\'',)=20 Web: http://daemon.li/ \/ \ ^ FreeBSD: josef@FreeBSD.org .\._/_) --CE+1k2dSO48ffgeK Content-Type: text/plain; charset=us-ascii Content-Disposition: attachment; filename="chapter.sgml.diff" Content-Transfer-Encoding: quoted-printable --- chapter.sgml.orig Mon May 10 23:08:53 2004 +++ chapter.sgml Mon May 10 23:50:01 2004 @@ -24,14 +24,14 @@ <indexterm><primary>Mandatory Access Controls</primary></indexterm> =20 <para>With security requirements on a rise throughout much of the - the world, the demand for a more secure environment has + world, the demand for a more secure environment has increased. It is from this demand that the TrustedBSD project was founded with nothing more than security in mind. The - TrustedBSD project has aimed at developing userland utilities and ker= nel + TrustedBSD project aimes at developing userland utilities and kernel interfaces, based on the <acronym>POSIX</acronym>.1e standard, and me= rging it back to &os; 5.X. While still in the development stage, many of the features are nearing production stability. Some of - those include file system access control lists + those include file system Access Control Lists (<acronym>ACLs</acronym>) and Mandatory Access Control (<acronym>MAC</acronym>) mechanisms.</para> =20 @@ -1147,7 +1147,7 @@ =20 <para>The <acronym>MAC</acronym> version of the Low-watermark integrity policy, not to be confused with the older &man.lomac.4; - implementation, works almost identical to Biba but with a the + implementation, works almost identical to Biba but with the exception of using floating labels to support subject demotion via an auxiliary grade compartment. This secondary compartment takes the form of [auxgrade]. When assigning a @@ -1635,4 +1635,4 @@ sgml-always-quote-attributes: t sgml-parent-document: ("../book.sgml" "part" "chapter") End: ---> \ No newline at end of file +--> --CE+1k2dSO48ffgeK-- --XF85m9dhOBO43t/C Content-Type: application/pgp-signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.4 (FreeBSD) iQEVAwUBQJ/5xVnFItmnnbU8AQK0AAf/dxePMAKFPGNc2ACNNfcGU0+iwslwLQSc KAk1l2Gg1bpIzDsw0c1pS360e5k9RCDJ2S41rqcMsWSL7u6lq1W+kJwBCTzm0Y/l Z4rN/I5btgCFyh4PzId0SfYgXLlo/0NNFe9jD2OBrEcF8PF/ECYVg1dbXAWvwPNo gWXbfEpJpEahQOfTM1bIzx+AGx8cimqShcYWcJFaHfG1StTug/0X/ifppyq8CsJK avPCtra9lwUdfdDK4jYEVV6EFDS4rjBBwyfd7aSOgEwlJDeOCcE5UdNiN+OQ/l6v 5V6kxIPAzlhqLtrYNT2zeXpHA8ymH1iwIANnsMqMeJNhXvw12lxgPw== =QGqC -----END PGP SIGNATURE----- --XF85m9dhOBO43t/C--
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20040510215309.GA677>