Thursday, 2024-07-04

opendevreviewMatúš Jenča proposed openstack/kolla-ansible master: Add support for RabbitMQ internode tls  https://review.opendev.org/c/openstack/kolla-ansible/+/92138107:23
Core4032SvenKieske|OSISM[m] we have deployed ampq as kolla presents it, but our vulnerability scanner popped out a medium security breach, says "AMPQ service supports one or more authentication mechanism that allows credentials to be sent in clear text."  Should I make any changes, or does any openstack service rely on plain text auth?07:47
fricklerCore4032: it should be possible to deploy rabbitmq using TLS, but openstack clients will still use plaintext auth on top of that07:53
opendevreviewMatúš Jenča proposed openstack/kolla-ansible master: Add support for RabbitMQ internode tls  https://review.opendev.org/c/openstack/kolla-ansible/+/92138108:16
Core4032frickler thanks for the information..08:28
opendevreviewWill Szumski proposed openstack/kayobe master: Support running without root privileges  https://review.opendev.org/c/openstack/kayobe/+/92343009:08
opendevreviewIvan Halomi proposed openstack/kolla-ansible master: Fix podman healtcheck when not enabled  https://review.opendev.org/c/openstack/kolla-ansible/+/92323109:58
tafkamax<tafkamax> "Interesting the docs point out..." <- Not that proficient in DNS, but I am thinking that designate allows for extra rndc.key and rndc.conf. If I want to use my own DNS server that is not part of the integrated bind9 server that is spawned inside the designate container. I would need to add `allow-new-zones` to my separate DNS server. Also I think I would need to add to the rndc.conf the remote server address. So far I10:07
tafkamaxhave created RNDC conf that listens on 0.0.0.0 on the DNS server I wish the openstack would push the dns entries to. I have shared the rndc key also to the openstack conf, so it knows the key for authentication.10:07
tafkamax* to the openstack rndc.conf the10:09
opendevreviewMichal Nasiadka proposed openstack/kayobe master: Allow using Bifrost/Ironic introspection data MAC address  https://review.opendev.org/c/openstack/kayobe/+/92222510:13
opendevreviewMichal Nasiadka proposed openstack/kayobe master: Allow using Bifrost/Ironic introspection data MAC address  https://review.opendev.org/c/openstack/kayobe/+/92222510:22
opendevreviewMichal Nasiadka proposed openstack/kayobe master: Allow using Bifrost/Ironic introspection data MAC address  https://review.opendev.org/c/openstack/kayobe/+/92222510:24
opendevreviewMatúš Jenča proposed openstack/kolla-ansible master: Add Redis as caching backend for Keystone  https://review.opendev.org/c/openstack/kolla-ansible/+/90920110:47
opendevreviewWill Szumski proposed openstack/kayobe master: Support running without root privileges  https://review.opendev.org/c/openstack/kayobe/+/92343011:17
opendevreviewMatúš Jenča proposed openstack/kolla-ansible master: Add Redis as caching backend for Nova  https://review.opendev.org/c/openstack/kolla-ansible/+/90920311:25
opendevreviewWill Szumski proposed openstack/kayobe master: Support running without root privileges  https://review.opendev.org/c/openstack/kayobe/+/92343011:29
opendevreviewWill Szumski proposed openstack/kayobe master: Support running without root privileges  https://review.opendev.org/c/openstack/kayobe/+/92343011:32
opendevreviewMatúš Jenča proposed openstack/kolla-ansible master: Add Redis as caching backend for Placement  https://review.opendev.org/c/openstack/kolla-ansible/+/90922212:58
opendevreviewMichal Nasiadka proposed openstack/kayobe master: Allow using Bifrost/Ironic introspection data MAC address  https://review.opendev.org/c/openstack/kayobe/+/92222513:35
opendevreviewMichal Nasiadka proposed openstack/kayobe master: Allow using Bifrost/Ironic introspection data MAC address  https://review.opendev.org/c/openstack/kayobe/+/92222513:57
opendevreviewMichal Nasiadka proposed openstack/kayobe master: Allow using Bifrost/Ironic introspection data MAC address  https://review.opendev.org/c/openstack/kayobe/+/92222513:58
opendevreviewMichal Nasiadka proposed openstack/kayobe master: Allow using Bifrost/Ironic introspection data MAC address  https://review.opendev.org/c/openstack/kayobe/+/92222514:00
opendevreviewMichal Nasiadka proposed openstack/kayobe master: Allow using Bifrost/Ironic introspection data MAC address  https://review.opendev.org/c/openstack/kayobe/+/92222514:01
opendevreviewMichal Nasiadka proposed openstack/kayobe master: Allow using Bifrost/Ironic introspection data MAC address  https://review.opendev.org/c/openstack/kayobe/+/92222514:01
opendevreviewMatúš Jenča proposed openstack/kolla-ansible master: Add Redis as caching backend for Keystone  https://review.opendev.org/c/openstack/kolla-ansible/+/90920114:36
opendevreviewMichal Nasiadka proposed openstack/kayobe master: Allow using Bifrost/Ironic introspection data MAC address  https://review.opendev.org/c/openstack/kayobe/+/92222514:40
opendevreviewMichal Nasiadka proposed openstack/kolla-ansible master: CI: test interface names with dashes  https://review.opendev.org/c/openstack/kolla-ansible/+/79454514:43
opendevreviewMichal Nasiadka proposed openstack/kolla-ansible master: CI: test interface names with dashes  https://review.opendev.org/c/openstack/kolla-ansible/+/79454514:44
opendevreviewMichal Nasiadka proposed openstack/kolla-ansible master: CI: test interface names with dashes  https://review.opendev.org/c/openstack/kolla-ansible/+/79454514:45
opendevreviewWill Szumski proposed openstack/kayobe master: Support running without root privileges  https://review.opendev.org/c/openstack/kayobe/+/92343016:13
opendevreviewWill Szumski proposed openstack/kayobe master: Support running without root privileges  https://review.opendev.org/c/openstack/kayobe/+/92343017:02
opendevreviewMichal Nasiadka proposed openstack/kolla-ansible master: CI: test interface names with dashes  https://review.opendev.org/c/openstack/kolla-ansible/+/79454517:37
mmalchukmnasiadka can't proceed with release task. have an issues with notebook. could you please proceed yourself or assigne someone else. sorry17:55
opendevreviewMerged openstack/kolla-ansible master: Bullseye removal followup - remove from prechecks  https://review.opendev.org/c/openstack/kolla-ansible/+/92336418:48

Generated by irclog2html.py 2.17.3 by Marius Gedminas - find it at https://mg.pov.lt/irclog2html/!