Friday, 2014-08-22

« Thursday, 2014-08-21 Index Saturday, 2014-08-23 »
*** ptd has joined #openstack-security00:59
*** dmccowan has quit IRC02:46
*** elo1 has joined #openstack-security03:22
*** elo1 has quit IRC03:24
*** elo1 has joined #openstack-security03:26
*** ved_lad has joined #openstack-security04:59
*** ved_lad has quit IRC05:04
*** ved_lad has joined #openstack-security05:07
*** ved_lad has quit IRC05:42
*** voodookid has joined #openstack-security05:49
*** voodookid has quit IRC05:59
openstackgerritOpenStack Proposal Bot proposed a change to openstack/security-doc: Imported Translations from Transifex  https://review.openstack.org/11618306:06
openstackgerritA change was merged to openstack/security-doc: Imported Translations from Transifex  https://review.openstack.org/11618306:56
*** jamielennox is now known as jamielennox|away08:29
*** zz_naotok has quit IRC08:50
*** zz_naotok has joined #openstack-security08:51
*** ptd has quit IRC10:29
*** dmccowan has joined #openstack-security12:33
*** dmccowan_ has joined #openstack-security12:39
*** dmccowan has quit IRC12:40
*** dmccowan_ is now known as dmccowan12:40
openstackgerritStanislaw Pitucha proposed a change to openstack/security-doc: OSSN-0023 Keystone logs tokens at INFO levels  https://review.openstack.org/11497112:55
*** paulmo has joined #openstack-security13:10
*** nkinder has quit IRC13:19
*** bknudson has quit IRC13:24
*** bknudson has joined #openstack-security13:48
*** dmccowan has quit IRC13:57
*** nkinder has joined #openstack-security14:07
*** dmccowan has joined #openstack-security14:11
*** voodookid has joined #openstack-security14:40
*** bknudson has quit IRC14:52
*** elo1 has quit IRC15:01
*** bknudson has joined #openstack-security15:36
openstackgerritStanislaw Pitucha proposed a change to openstack/security-doc: OSSN-0023 Keystone logs tokens at INFO levels  https://review.openstack.org/11497115:36
*** tmcpeak has joined #openstack-security15:57
*** openstackgerrit has quit IRC16:34
*** bknudson has quit IRC16:54
*** bdpayne has joined #openstack-security16:55
*** rlpple has joined #openstack-security17:07
*** elo1 has joined #openstack-security17:11
*** openstackgerrit has joined #openstack-security17:30
*** bknudson has joined #openstack-security17:58
*** rlpple has quit IRC18:34
*** gabriela2 has joined #openstack-security18:54
*** elo1 has quit IRC18:59
gabriela2hello18:59
*** nkinder has quit IRC19:01
*** gabriela2 has left #openstack-security19:06
*** gabriela3 has joined #openstack-security19:35
*** ChanServ sets mode: +b *!~GABRIELA@186.89.124.20419:35
*** gabriela3 was kicked by ChanServ (User is banned from this channel)19:35
*** dmccowan has quit IRC19:52
*** gabriela2 has joined #openstack-security20:02
*** gabriela2 has left #openstack-security20:16
*** voodookid has quit IRC20:24
*** voodookid has joined #openstack-security20:25
tmcpeakumm, should we just block 186.* ? :\20:38
bdpayneso the op CR hasn't merged yet20:38
bdpayneonce we get there, I can be proactive about killing the nicks as they appear20:39
bdpayneI'd rather now block IP ranges unless we really need to20:39
bdpaynedue to potential false positive issues20:39
tmcpeakright20:39
tmcpeakyeah, I think blocking whole ranges is bad20:39
tmcpeakbdpayne: btw, met Paul20:39
tmcpeakdamn smart dude20:39
bdpayneah cool... you went to the OWASP thing?20:39
bdpayneyeah, he's good people :-)20:40
tmcpeakyeah, actually both presentations were pretty good20:40
tmcpeakthere was his, which was super cool, good demo, and then a dude from Netflix Security team20:40
bdpayneyou saw that Paul commented on the Horizon XSS issue as well?20:40
tmcpeakyeah, his comment was *on point*20:40
bdpayneheh20:41
tmcpeakI was talking to him about getting some time at the summit to get it all sorted out20:41
tmcpeakI think it would be well worth it20:41
tmcpeakonce we get stuff sorted out we could start running some XSS scanning tool in the gate test, and some of the anti patterns gmurphy had mentioned in bandit20:43
bdpayneyeah, that would be nice20:44
bdpaynethe trick is getting the right people together to make it happen20:45
tmcpeakright, he's definitely one of them, gmurphy would be good as well, and then the people that have +2 for Horizon20:45
bdpayneunfortunately, I don't believe that Paul is going to Paris20:45
tmcpeakaww bummer20:46
tmcpeakany chance we could video chat him in?20:46
tmcpeakhe's Django core dev, so he'd be very very helpful to have for it20:46
bdpayneyeah, if something really comes together on this effort, I may be able to change that20:47
bdpaynebut, it would need to formalize quickly20:47
tmcpeakcool20:47
tmcpeakwell have a chat with him, he'd probably know the people to pull together20:47
tmcpeakIMO it's well worth getting this solved once and for all20:47
bdpayneif it doesn't happen in paris, depending on where the necessary devs live, we may be able to have a mini bay-area meetup to hack out a solution shortly after the summit20:51
tmcpeakoh yeah, good idea20:51
bdpaynein fact, that could be better (if the devs are out here) anyway, because the summit is always so busy20:51
tmcpeakyeah, I think you're right20:51
tmcpeakcarving off time at the summit might be tough20:51
*** dmccowan has joined #openstack-security21:02
*** nkinder has joined #openstack-security21:11
*** elo1 has joined #openstack-security21:57
*** bdpayne_ has joined #openstack-security22:00
*** bdpayne has quit IRC22:00
*** Spitfire55 has joined #openstack-security22:01
*** Spitfire55 has quit IRC22:06
*** elo1 has quit IRC22:25
openstackgerritJim Hoagland proposed a change to openstack/security-doc: Improve wording of Object Storage chapter para  https://review.openstack.org/11515222:34
*** bdpayne_ has quit IRC22:37
*** bdpayne has joined #openstack-security22:37
*** bdpayne_ has joined #openstack-security22:39
openstackgerritJim Hoagland proposed a change to openstack/security-doc: Improve wording of Object Storage chapter para  https://review.openstack.org/11515222:42
*** bdpayne has quit IRC22:42
*** voodookid has quit IRC22:53
*** voodookid has joined #openstack-security23:35
« Thursday, 2014-08-21 Index Saturday, 2014-08-23 »

Generated by irclog2html.py 2.14.0 by Marius Gedminas - find it at mg.pov.lt!