Add a stub todo list to help keep track of current TrustedBSD development

progress.  There is a bit of work to be done here but in the end it may
help.  This is not hooked up to the build yet, it should be fleshed out
a bit more first.

Discussed with:	rwatson (phone and email)

en/projects/mac/Makefile

@@ -0,0 +1,14 @@
+# $FreeBSD$
+
+.if exists(../Makefile.conf)
+.include "../Makefile.conf"
+.endif
+.if exists(../Makefile.inc)
+.include "../Makefile.inc"
+.endif
+
+DOCS=	index.sgml
+
+DATA=	docbook.css
+
+.include "${WEB_PREFIX}/share/mk/web.site.mk"

en/projects/mac/docbook.css

@@ -0,0 +1,161 @@
+/*
+ * Copyright (c) 2003 The FreeBSD Documentation Project
+ * All rights reserved.
+ *
+ * Redistribution and use in source and binary forms, with or without
+ * modification, are permitted provided that the following conditions
+ * are met:
+ * 1. Redistributions of source code must retain the above copyright
+ *    notice, this list of conditions and the following disclaimer.
+ * 2. Redistributions in binary form must reproduce the above copyright
+ *    notice, this list of conditions and the following disclaimer in the
+ *    documentation and/or other materials provided with the distribution.
+ *
+ * THIS SOFTWARE IS PROVIDED BY THE AUTHOR AND CONTRIBUTORS ``AS IS'' AND
+ * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
+ * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
+ * ARE DISCLAIMED.  IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE
+ * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
+ * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
+ * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
+ * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
+ * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
+ * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
+ * SUCH DAMAGE.
+ *
+ * $FreeBSD$
+ */
+
+BODY ADDRESS {
+	line-height: 1.3;
+	margin: .6em 0;
+}
+
+BODY BLOCKQUOTE {
+	margin-top: .75em;
+	line-height: 1.5;
+	margin-bottom: .75em;
+}
+
+HTML BODY {
+	margin: 1em 8% 1em 10%;
+	line-height: 1.2;
+}
+
+.LEGALNOTICE {
+	font-size: small;
+	font-variant: small-caps;
+}
+
+BODY DIV {
+	margin: 0;
+}
+
+DL {
+	margin: .8em 0;
+	line-height: 1.2;
+}
+
+BODY FORM {
+	margin: .6em 0;
+}
+
+H1, H2, H3, H4, H5, H6,
+DIV.EXAMPLE P B,
+.QUESTION,
+DIV.TABLE P B,
+DIV.PROCEDURE P B {
+	color: #990000;
+}
+
+BODY H1 {
+	margin: .8em 0 0 -4%;
+	line-height: 1.3;
+}
+
+BODY H2 {
+	margin: .8em 0 0 -4%;
+	line-height: 1.3;
+}
+
+BODY H3 {
+	margin: .8em 0 0 -3%;
+	line-height: 1.3;
+}
+
+BODY H4 {
+	margin: .8em 0 0 -3%;
+	line-height: 1.3;
+}
+
+BODY H5 {
+	margin: .8em 0 0 -2%;
+	line-height: 1.3;
+}
+
+BODY H6 {
+	margin: .8em 0 0 -1%;
+	line-height: 1.3;
+}
+
+BODY HR {
+	margin: .6em
+}
+
+BODY IMG.NAVHEADER {
+	margin: 0 0 0 -4%;
+}
+
+OL {
+	margin: 0 0 0 5%;
+	line-height: 1.2;
+}
+
+BODY P {
+	margin: .6em 0;
+	line-height: 1.2;
+}
+
+BODY PRE {
+	margin: .75em 0;
+	line-height: 1.0;
+	color: #461b7e;
+}
+
+BODY TD {
+	line-height: 1.2
+}
+
+BODY TH {
+	line-height: 1.2;
+}
+
+UL, BODY DIR, BODY MENU {
+	margin: 0 0 0 5%;
+	line-height: 1.2;
+}
+
+HTML {
+	margin: 0; 
+	padding: 0;
+}
+
+
+.FILENAME {
+	color: #007a00;
+}
+
+BODY H1, BODY H2, BODY H3, BODY H4, BODY H5, BODY H6 {
+	margin-left: 0
+} 
+
+.GUIMENU, .GUIMENUITEM, .GUISUBMENU,
+.GUILABEL, .INTERFACE, .GUIBUTTON,
+.SHORTCUT, .SHORTCUT .KEYCAP {
+	background-color: #F0F0F0;
+}
+
+.ACCEL {
+	background-color: #F0F0F0;
+	text-decoration: underline;
+} 

en/projects/mac/index.sgml

@@ -0,0 +1,134 @@
+<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" [
+<!ENTITY base CDATA "../..">
+<!ENTITY date "$FreeBSD$">
+<!ENTITY title "TrustedBSD MAC TODO list">
+<!ENTITY % includes SYSTEM "../../includes.sgml"> %includes;
+<!ENTITY % developers SYSTEM "../../developers.sgml"> %developers;
+<!-- Status levels -->
+<!ENTITY status.merge "<font color=orange>Needs&nbsp;Merged</font>">
+<!ENTITY status.done "<font color=green>Done</font>">
+<!ENTITY status.wip "<font color=blue>In&nbsp;progress</font>">
+<!ENTITY status.new "<font color=red>Not&nbsp;done</font>">
+]>
+
+<html>
+&header;
+
+<h1>Current Status</h1>
+
+<p>This is a TODO list for the TrustedBSD Project.  Items are listed in
+  their current condition along with an informational note and current
+  task handler.  This is considered an addendum to the
+  <a href="http://www.TrustedBSD.org/">TrustedBSD website</a>.</p>
+
+<br>
+<br>
+
+<h3>Mandatory Access Control</h3>
+
+<table border=1 width="100%">
+  <tr><th>Issue</th><th>Status</th><th>Responsible</th><th>Description</th>
+      </tr>
+
+  <tr>
+    <td>devfs(8) changes</td>
+    <td>&status.merge;</td>
+    <td>&a.rwatson;</td>
+    <td>devfs changes to pass complete paths of objects into
+	MAC Framework for label initialization.</td>
+  </tr>
+
+  <tr>
+    <td>Regression tests</td>
+    <td>&status.wip;</td>
+    <td>&a.trhodes;</td>
+    <td>Regression tests should be present for all MAC modules.
+	These should exist in /usr/src/tools/regression/security/MODULE_NAME.</td>
+  </tr>
+
+  <tr>
+    <td>mac_bsdextended(4) first match</td>
+    <td>&status.done;</td>
+    <td>&a.trhodes;</td>
+    <td>The file system firewall capabilities provided by the
+	mac_bsdextended(4) security policy module should be
+	fixed to honor on a first match basis.</td>
+  </tr>
+</table>
+
+<h3>TrustedBSD Audit framework</h3>
+
+<table border=1 width="100%">
+  <tr><th>Issue</th><th>Status</th><th>Responsible</th><th>Description</th></tr>
+  <tr>
+    <td>STUB TABLE</td>
+    <td>--</td>
+    <td>--</td>
+    <td>--</td>
+  </tr>
+</table>
+
+<h3>Security Enhanced BSD (SEBSD)</h3>
+
+<table border=1 width="100%">
+  <tr><th>Issue</th><th>Status</th><th>Responsible</th><th>Description</th>
+      </tr>
+
+  <tr>
+    <td>STUB TABLE</td>
+    <td>--</td>
+    <td>--</td>
+    <td>--</td>
+  </tr>
+</table>
+
+<h3>Security-Enhanced Darwin (SEDarwin)</h3>
+
+<table border=1 width="100%">
+  <tr><th>Issue</th><th>Status</th><th>Responsible</th><th>Description</th>
+      </tr>
+  <tr>
+    <td>Missing hook: chdir() syscall
+    <td>--</td>
+    <td>--</td>
+    <td>--</td>
+  </tr>
+</table>
+
+<h3>TrustedBSD Documentation Issues</h3>
+
+<table border=1 width="100%">
+  <tr><th>Issue</th><th>Status</th><th>Responsible</th><th>Description</th>
+  </tr>
+
+  <tr>
+    <td>Consistent module text</td>
+    <td>&status.wip;</td>
+    <td>&a.trhodes;</td>
+    <td>The handbook MAC chapter should use "security policy module"
+	consistently as not to confuse users.</td>
+  </tr>
+
+  <tr>
+    <td>MAC chapter bibliography</td>
+    <td>&status.new;</td>
+    <td>&a.trhodes</td>
+    <td>The handbook MAC chapter should have a bibliography to point
+	users to other texts.  Robert is going to send Tom a list
+	that he thinks would be sufficiant.</td>
+  </tr>
+
+  <tr>
+    <td>MAC chapter numeric label descriptions</td>
+    <td>&status.wip;</td>
+    <td>&a.trhodes;</td>
+    <td>The handbook MAC chapter describes the low, equal and high
+	labels; however, it should also discuss the numeric label
+	settings.</td>
+  </tr>
+</table>
+
+    &footer;
+
+  </body>
+</html>