[rs-commit] r128 - in /rs-manual/trunk/src/site: fml/faq.fml xhtml5/faq.xhtml5 xhtml5/index.xhtml5
rs-commit at redwax.eu
rs-commit at redwax.eu
Wed Oct 30 02:09:27 CET 2019
Author: minfrin at redwax.eu
Date: Wed Oct 30 02:09:26 2019
New Revision: 128
Log:
Add an initial frequently asked questions.
Added:
rs-manual/trunk/src/site/xhtml5/faq.xhtml5
Removed:
rs-manual/trunk/src/site/fml/faq.fml
Modified:
rs-manual/trunk/src/site/xhtml5/index.xhtml5
Removed: rs-manual/trunk/src/site/fml/faq.fml
==============================================================================
--- rs-manual/trunk/src/site/fml/faq.fml (original)
+++ rs-manual/trunk/src/site/fml/faq.fml (removed)
@@ -1,27 +0,0 @@
-<?xml version="1.0"?>
-<faqs xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns="http://maven.apache.org/FML/1.0"
- xsi:schemaLocation="http://maven.apache.org/FML/1.0 http://maven.apache.org/xsd/fml-1.0.xsd"
- id="General FAQ">
- <part id="General">
- <faq id="where">
- <question>Where did Maven come from?</question>
- <answer>
- <p>
- Maven was created by a group of software developers who were tired
- of wasting their time fiddling around with builds and wanted to get
- down to brass tacks and actually develop software!
- </p>
- </answer>
- </faq>
- <faq id="why">
- <question>Why is Maven so wildly popular?</question>
- <answer>
- <p>
- Maven saves you so much time in your software development efforts that
- you will have time to learn a second language, relax ten hours a
- day, and train for that marathon you've always wanted to run!
- </p>
- </answer>
- </faq>
- </part>
-</faqs>
Added: rs-manual/trunk/src/site/xhtml5/faq.xhtml5
==============================================================================
--- rs-manual/trunk/src/site/xhtml5/faq.xhtml5 (added)
+++ rs-manual/trunk/src/site/xhtml5/faq.xhtml5 Wed Oct 30 02:09:26 2019
@@ -0,0 +1,97 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<!DOCTYPE html>
+<html xmlns="http://www.w3.org/1999/xhtml" lang="en">
+ <head>
+ <title>FAQ</title>
+ <meta name="description" content="Frequently Asked Questions." />
+ </head>
+ <body>
+
+ <section class="spotlight style2 orient-right content-align-left image-position-left" id="introduction">
+ <div class="content null">
+ <h2>Frequently Asked Questions</h2>
+ <p>Here are some frequently asked questions, with answers.</p>
+ </div>
+ <div class="image">
+ <img src="images/candles-purple.jpg" alt="" />
+ </div>
+ </section>
+
+ <section class="wrapper style1 align-center"
+ id="introduction">
+ <div class="content inner index align-left">
+
+ <section>
+ <div class="content none">
+
+ <dl>
+ <dt>Why was Redwax written?</dt>
+ <dd>
+ <p>
+ For a long time the issuing and manipulation of certificates has been served
+ by command line tools offered by projects such as OpenSSL. Over time however,
+ many certificate based operations have moved to the World Wide Web, and the
+ need has arisen for a standard set of web based server tools to build
+ certificate authorities for the web. The Redwax server was built to meet
+ this need.
+ </p>
+ </dd>
+ <dt>Why does Redwax Server take the form of Apache HTTP server modules?</dt>
+ <dd>
+ <p>
+ To be secure, a certificate authority needs to have a small
+ code footprint and small attack surface. Apache httpd is a modular
+ server, and so can be hardened by removing unnecessary code and
+ features.
+ </p>
+ <p>
+ There must be no gaps in the defined behaviour of the certificate
+ authority. Many language bindings, libraries and frameworks allow
+ loose and insufficiently well defined bindings between components,
+ leading to injection attacks. Apache httpd's hook mechanism offers a
+ well defined and complete interface between modular components, with
+ no side effects.
+ </p>
+ <p>
+ The underlying framework of a certificate authority requires heritage.
+ Apache httpd has been scrutinised and audited for over two decades, and
+ is therefore a safe foundation on which to build a secure service.
+ </p>
+ <p>
+ To exist, a certificate authority needs to be usable. Apache httpd is
+ widely deployed and widely understood, and the concepts used within
+ Apache httpd are carried through into the Redwax Server.
+ </p>
+ </dd>
+ <dt>Does Redwax Server need OpenSSL?</dt>
+ <dd>
+ <p>
+ At the present time, many Redwax Server implementation modules rely on
+ OpenSSL in order to perform secure operations.
+ </p>
+ <p>
+ The core <code>mod_ca</code> module however does not depend on any
+ specific security library, OpenSSL or otherwise.
+ </p>
+ <p>
+ Each hook requires the passing
+ of standard DER encoded security objects like certificates and
+ certificate sign requests. This allows two Redwax server modules
+ backed by different security libraries to be linked within the same
+ server, and allows security modules to be linked together using low
+ level generic mechanisms such as Unix Domain Sockets, pipes or data
+ diodes, and can potentially run on separate physical hardware.
+ </p>
+ </dd>
+ </dl>
+
+ </div>
+ </section>
+
+ </div>
+ </section>
+
+
+ </body>
+</html>
+
Modified: rs-manual/trunk/src/site/xhtml5/index.xhtml5
==============================================================================
--- rs-manual/trunk/src/site/xhtml5/index.xhtml5 (original)
+++ rs-manual/trunk/src/site/xhtml5/index.xhtml5 Wed Oct 30 02:09:26 2019
@@ -45,6 +45,18 @@
</div>
</section>
+ <section class="spotlight style1 orient-right content-align-left image-position-left" id="userguide">
+ <div class="content null">
+ <h2>Other Topics</h2>
+ <ul class="alt">
+ <li><a href="faq.html">Frequently Asked Questions</a></li>
+ </ul>
+ </div>
+ <div class="image">
+ <img src="images/candles-orange.jpg" alt="" />
+ </div>
+ </section>
+
</body>
</html>
More information about the rs-commit
mailing list