Monday, 2015-04-13

« Sunday, 2015-04-12 Index Tuesday, 2015-04-14 »
*** jamielennox|away is now known as jamielennox00:06
*** dlitz has quit IRC00:08
*** dlitz has joined #openstack-security00:13
*** salv-orlando has quit IRC00:26
*** sdake has joined #openstack-security00:30
*** sdake_ has quit IRC00:34
*** sdake_ has joined #openstack-security00:46
*** tmcpeak has joined #openstack-security00:47
*** sdake has quit IRC00:49
*** sdake has joined #openstack-security00:52
*** sdake_ has quit IRC00:56
*** Kennan2 has joined #openstack-security02:02
*** Kennan has quit IRC02:03
*** Kennan has joined #openstack-security02:06
*** Kennan2 has quit IRC02:06
*** sdake_ has joined #openstack-security02:11
*** tmcpeak has quit IRC02:13
*** sdake has quit IRC02:14
*** salv-orlando has joined #openstack-security02:15
*** salv-orl_ has joined #openstack-security02:18
*** salv-orlando has quit IRC02:20
*** salv-orl_ has quit IRC02:49
*** subscope_ has joined #openstack-security03:12
*** sdake_ has quit IRC03:25
*** Guest41353 is now known as smuxx03:36
*** salv-orlando has joined #openstack-security03:39
*** salv-orlando has quit IRC04:02
*** subscope_ has quit IRC04:43
*** Kennan has quit IRC04:56
*** Kennan has joined #openstack-security04:57
*** aswadr has joined #openstack-security06:08
*** dave-mccowan has joined #openstack-security06:30
*** dave-mccowan has quit IRC06:34
*** Kennan has quit IRC06:46
*** Kennan has joined #openstack-security06:46
*** jamielennox is now known as jamielennox|away07:11
*** jamielennox|away is now known as jamielennox09:02
*** salv-orlando has joined #openstack-security09:04
*** salv-orlando has quit IRC09:07
*** aswadr has quit IRC09:14
openstackgerritZhenyu Zheng proposed openstack/security-doc: Fix grammatical mistakes in Networking architecture  https://review.openstack.org/17285709:39
openstackgerritZhenyu Zheng proposed openstack/security-doc: Fix grammatical mistakes in Networking architecture  https://review.openstack.org/17286109:54
openstackgerritZhenyu Zheng proposed openstack/security-doc: Fix grammatical mistakes in Networking architecture  https://review.openstack.org/17286409:58
*** markvoelker has joined #openstack-security09:59
openstackgerritZhenyu Zheng proposed openstack/security-doc: Fix grammatical mistakes in Networking architecture  https://review.openstack.org/17285710:09
*** sdake has joined #openstack-security10:09
*** markvoelker has quit IRC10:16
*** markvoelker has joined #openstack-security10:18
*** sdake_ has joined #openstack-security10:28
*** markvoelker has quit IRC10:29
*** sdake has quit IRC10:31
*** salv-orlando has joined #openstack-security10:35
*** sdake_ has quit IRC10:53
*** tmcpeak has joined #openstack-security10:59
*** sdake has joined #openstack-security12:00
*** sdake_ has joined #openstack-security12:01
*** sdake has quit IRC12:04
*** jamielennox is now known as jamielennox|away12:12
*** tmcpeak has quit IRC12:18
*** tmcpeak has joined #openstack-security12:18
*** salv-orl_ has joined #openstack-security12:20
*** salv-orlando has quit IRC12:24
*** sdake_ has quit IRC12:25
*** sdake has joined #openstack-security12:25
*** sdake_ has joined #openstack-security12:27
*** sdake has quit IRC12:31
*** bknudson has quit IRC12:51
*** markvoelker has joined #openstack-security12:52
*** markvoelker_ has joined #openstack-security12:54
*** markvoelker has quit IRC12:58
*** openstackgerrit has quit IRC13:00
*** openstackgerrit has joined #openstack-security13:03
*** bknudson has joined #openstack-security13:14
*** vozcelik has joined #openstack-security13:21
*** singlethink has joined #openstack-security13:33
*** vozcelik has quit IRC13:38
*** markvoelker_ has quit IRC13:46
*** sdake has joined #openstack-security13:59
*** sdake_ has quit IRC14:02
*** nkinder has joined #openstack-security14:04
*** dave-mccowan has joined #openstack-security14:09
*** sdake_ has joined #openstack-security14:18
*** sdake has quit IRC14:21
*** markvoelker has joined #openstack-security14:47
*** sdake has joined #openstack-security14:47
*** markvoelker_ has joined #openstack-security14:48
*** sdake_ has quit IRC14:50
*** voodookid has joined #openstack-security14:51
*** markvoelker has quit IRC14:52
*** markvoelker has joined #openstack-security14:52
*** markvoelker_ has quit IRC14:52
*** markvoelker has quit IRC14:58
*** bpokorny has joined #openstack-security15:00
*** sdake_ has joined #openstack-security15:07
*** dave-mccowan has quit IRC15:10
*** sdake has quit IRC15:13
*** dave-mccowan has joined #openstack-security15:30
*** singlethink has quit IRC15:48
*** markvoelker_ has joined #openstack-security15:53
*** markvoelker_ has quit IRC15:59
openstackgerritMerged openstack/security-doc: Fix grammatical mistakes in Networking architecture  https://review.openstack.org/17285716:00
*** bpokorny_ has joined #openstack-security16:06
*** bpokorny has quit IRC16:08
openstackgerritMichael McCune proposed openstack/security-doc: Minor grammar fix in Identity/Authorization sec.  https://review.openstack.org/17298116:12
*** singlethink has joined #openstack-security16:14
*** bpb has joined #openstack-security16:31
openstackgerritPriti Desai proposed openstack/security-doc: Restructuring sections from Identity chapter  https://review.openstack.org/17299216:34
*** pdesai has joined #openstack-security16:35
*** bknudson has quit IRC16:40
*** subscope_ has joined #openstack-security16:41
openstackgerritMerged openstack/security-doc: Fix run on sentence  https://review.openstack.org/17264316:49
*** bdpayne has joined #openstack-security16:51
*** bdpayne has quit IRC16:56
*** sicarie has joined #openstack-security16:59
pdesaiHi sicarie17:00
sicariepdesai: hello!17:00
pdesaiI am sorry i missed the meeting last week, was on spring break :)17:00
elmikonice!17:00
elmikogood reason to miss =)17:01
pdesaiyup :)17:01
sicarieNice - I wish I got a spring break. When I have a vacation it means my kids are home and wanting food/entertainment :(17:01
elmikohehe17:01
*** MikeL_ has joined #openstack-security17:01
pdesaihehe17:01
sicarieCool, so let's get started17:02
sicarieI want to give a shout out to pdesai who just submitted an Identity chapter structural update17:02
elmikoyea, just reviewed it17:02
sicarieAwesome, I have not had a chance to review yet17:02
sicariehttps://review.openstack.org/#/c/172992/17:02
sicarieelmiko: you just submitted a change as well, correct/17:03
elmikoyea, just a grammar tweak17:03
pdesaithanks, i have introduced a small intro to the chapter, not much new content17:03
elmikoi'm considering rebasing on pdesai change17:03
elmikopdesai: hmm, is the intro in the same review?17:03
pdesaiyup17:04
elmikook, i need to re-read then ;)17:04
pdesaiits in the ch_identity.xml17:04
elmikoi added this bug https://bugs.launchpad.net/openstack-manuals/+bug/144349517:04
openstackLaunchpad bug 1443495 in openstack-manuals "Chapter 6. Identity in OpenStack Security Guide - current, chapter introduction" [Undecided,New]17:04
elmikoit might be unnecessary though given the change17:04
pdesaiwe can merge both of these into single review request, as i have already added small intro, thoughts?17:05
sicarieelmiko: I like the bug being open, we can always close it out later17:06
elmikok17:07
pdesaiok17:07
elmikopdesai's change does address my issue from the bug though17:07
sicarieelmiko: which one? :)17:07
sicarieThe new bug, or your new change?17:07
elmikothe bug, https://bugs.launchpad.net/openstack-manuals/+bug/144349517:08
openstackLaunchpad bug 1443495 in openstack-manuals "Chapter 6. Identity in OpenStack Security Guide - current, chapter introduction" [Undecided,New]17:08
elmikothe old intro was a little odd17:08
*** subscope_ has quit IRC17:08
sicarie+117:08
elmikopdesai: could you add the closes-bug:1443495 to your patch?17:08
pdesaisure, i will add that in the commit message17:09
elmikothanks17:09
sicarieAwesome17:09
pdesaisure :)17:10
sicarieSo we have a few new bugs as well: https://bugs.launchpad.net/openstack-manuals/+bugs?field.tag=sec-guide17:10
sicarieHowever it looks like the doc core team has triaged them, which is very cool17:10
elmikothe 2 new undecideds i added today17:11
sicarieelmiko: are they tagged sec-guide?17:11
elmikoyes17:11
*** dave-mccowan has quit IRC17:11
elmikoat the bottom of the list you just linked ;)17:11
sicarieweird, they didn't pop up for me17:12
*** dave-mccowan has joined #openstack-security17:12
sicariewell: https://bugs.launchpad.net/openstack-manuals/+bug/144350017:12
openstackLaunchpad bug 1443500 in openstack-manuals "Chapter 6. Identity in OpenStack Security Guide - current, authentication section" [Undecided,New]17:12
elmikoyea, so i thought that section just plunges into a discussion of invalid logins and multi-factor stuff17:13
elmikomight be nice to have a small setup for those sub-sections17:13
pdesaiyup i agree17:13
sicarie+117:13
sicarieSo what do you guys think for importance?17:14
pdesailow17:14
elmikoyea, low/med17:14
pdesaior med17:14
sicarieYeah, i was thinking low17:15
elmikoworks for me17:15
pdesai+117:15
sicarieCool17:15
elmikohttps://bugs.launchpad.net/openstack-manuals/+bug/144351817:16
openstackLaunchpad bug 1443518 in openstack-manuals "Chapter 6. Identity in OpenStack Security Guide - current, authorization section" [Undecided,New]17:16
elmikothat's the other one17:16
elmikobasically, that second paragraph i call out sounds a little fishy17:16
elmikoi can't tell if the second and third sentences are examples or what17:16
sicarie+1 for sure17:16
elmikoin the doc conext it just reads weird17:17
pdesaialso, it has policy from block storage17:17
sicarieYeah17:17
pdesaiwhich i find weird17:17
elmikoin the Policies section, yea. that whole section could use some work17:17
pdesaiyup17:18
sicariehehe, yeah, this is a fun chapter17:18
elmikoi actually think if this authorization section is going to mention policy it should forward reference to it17:18
elmikosicarie: lol, yea17:18
sicarieSo I'd say when the examples are actually more confusing it should definitely be more of a 'medium'17:18
pdesaihehe, yeah forward reference sounds reasonable17:18
pdesaiyup med17:19
sicarieelmiko: could you expand on 'forward reference'? I'm not familiar with that term17:19
elmikoagreed about medium for confusing stuff17:19
elmikooh, i just meant that if the authorization section will talk about policy examples it should probably just have a link to the Policies section17:19
sicarie+117:19
elmikoand that section should contain the authoritative info17:19
sicarieYep17:19
elmikoi guess i just meant a link before the actual section has been covered17:20
sicarieYeah, and very clear examples17:21
pdesaiyeah17:21
elmikoi'm still working through the chapter, but i'm guessing i'll have more bugs along these lines17:21
sicarieelmiko: you read my mind, I was just about to ask17:22
elmikohehe17:22
sicarieIs there a bug open on this policy example?17:22
elmikonot yet17:22
elmikonot for the Policy section itself17:22
sicarieIs it on someone's list? (ie, can someone take that as an action?)17:22
pdesaii will take it17:22
elmikocool17:22
sicarieThanks!17:22
pdesaisure17:22
sicarieOkay, anything on bugs/reviews that I have not addressed?17:23
sicarieor have forgotten about?17:23
elmikonot that i can think of17:24
sicarieCool17:24
sicarieI did want to discuss a few things17:24
sicarieThe documentation team is moving stuff to rst format17:24
sicarieI volunteered us to move after 'Liberty'17:25
pdesaiwhat17:25
sicarieApparently there is general unhappiness with DocBook format17:25
pdesaiwow17:25
elmikoyea, big shift17:25
sicarieThe first big guide was migrated last week, and they're starting on the fringe guides17:25
sicarielower-impact guides17:25
sicarieshouldn't say 'fringe'17:26
sicarieSo for us17:26
sicarieThere is docbook automation tooling17:26
sicarieDo we want to invest in developing automation tooling for docbook when we are going to move off it in ~7 months?17:26
elmikoonly if folks have tons of free time ;)17:27
sicariespecifically around the end-of-chapter checklists17:27
sicarieHahaha17:27
pdesaii think we can wait17:27
pdesaihehe17:27
sicarieCool17:28
sicarieSo then the last thing I had was the Case Studies17:28
sicariehttps://etherpad.openstack.org/p/sec-guide-case-studies17:28
sicarieI've started the new sections at the bottom, working only on Alice's at the moment17:28
sicarieand thanks to MikeL_ the recommended workload is healthcare.gov17:28
elmikoyea, i owe you some comments about the data processing studies17:29
sicarieI think that's a very good federal workload with additional compliance implications - it'll give a good foil for Bob's Public cloud17:29
elmiko+117:29
MikeL_lol, my first contribution in a lon time and I didn't have to touch docbook...wonderful17:29
elmikolol!17:30
sicarieCool, well we have 1 minute so I just wanted to point that out and say I'm still open to discussion, but will probably start ot flesh out more of those sections at the bottom going based on that17:30
sicariePlease feel free to grab a section or recommend a different workload17:30
elmikoack17:30
sicarieAnything else?17:30
sicarie(in general?)17:30
pdesaido we have a session in summit? if not, we can grab a lunch17:31
sicarieI did ask for a fishbowl room for a secguide meeting17:31
pdesaicool17:32
elmikonice, that could be fun =)17:32
sicarieAs soon as I get word on that I'll be pinging around for availability17:32
pdesai+117:32
sicarieelmiko: will you be at the summit?17:32
sicariepdesai will you?17:32
pdesaiyup, coming17:32
sicariecool17:32
elmikoyea, i'll be there17:33
pdesainice17:33
sicariegreat17:33
sicarieSo yeah, hopefully we'll be able to sit down and do some good work face to face!17:33
sicarieThanks everyone! See you next week!17:33
pdesaithanks :)17:34
elmikothanks!17:34
*** MikeL_ has quit IRC17:36
*** browne has joined #openstack-security17:36
*** bknudson has joined #openstack-security17:48
*** markvoelker has joined #openstack-security17:56
*** mgagne_ is now known as mgagne17:58
*** markvoelker has quit IRC18:01
*** pdesai has quit IRC18:02
*** pdesai has joined #openstack-security18:07
*** edmondsw has joined #openstack-security18:09
*** bdpayne has joined #openstack-security18:19
*** tkelsey has joined #openstack-security18:48
*** bdpayne has quit IRC18:56
*** sicarie has quit IRC19:10
elmikopdesai: re: policy update stuff, check out this review too https://review.openstack.org/#/c/16685319:35
pdesaithanks elimko, we can point to this guide for further information on the policy engine19:39
elmikopdesai: yea, i was thinking something similar19:43
pdesaicool, i will add this review request in the bug description so that we can track it19:43
pdesaielmiko: created bug for policies: https://bugs.launchpad.net/openstack-manuals/+bug/144361519:49
openstackLaunchpad bug 1443615 in openstack-manuals "Chapter 6. Identity - Policies Section - rewrite this section" [Undecided,New]19:49
*** sdake has joined #openstack-security19:53
elmikopdesai: awesome!19:56
*** sdake_ has quit IRC19:56
openstackgerritPriti Desai proposed openstack/security-doc: Restructuring sections from Identity chapter  https://review.openstack.org/17299219:57
openstackgerritPriti Desai proposed openstack/security-doc: Restructuring sections from Identity chapter  https://review.openstack.org/17299220:00
*** pdesai has quit IRC20:15
*** pdesai has joined #openstack-security20:23
*** sdake_ has joined #openstack-security20:53
*** sdake has quit IRC20:57
*** markvoelker has joined #openstack-security20:59
*** tkelsey has quit IRC21:02
*** markvoelker has quit IRC21:03
*** pdesai has quit IRC21:46
*** dave-mccowan has quit IRC21:55
*** dave-mccowan has joined #openstack-security21:56
*** pdesai has joined #openstack-security21:56
*** markvoelker_ has joined #openstack-security22:00
*** nkinder has quit IRC22:05
*** bpb has quit IRC22:16
bknudsonpdesai: here's some more info on keystone policy: https://review.openstack.org/#/c/168521/22:32
bknudsonpdesai: also http://docs.openstack.org/developer/oslo.policy/api.html#module-oslo_policy.policy22:32
bknudsonnot sure why https://review.openstack.org/#/c/166853 is referencing keystone/openstack/common/policy.py since that doesn't exist anymore.22:33
*** singlethink has quit IRC22:42
*** bknudson has quit IRC23:02
*** pdesai has quit IRC23:04
*** jamielennox|away is now known as jamielennox23:22
*** dave-mccowan has quit IRC23:28
*** tmcpeak has quit IRC23:30
*** tmcpeak has joined #openstack-security23:32
*** bpokorny has joined #openstack-security23:36
*** bpokorny_ has quit IRC23:39
*** gabriela has joined #openstack-security23:48
gabrielaHOLIS23:48
*** markvoelker has joined #openstack-security23:49
*** markvoelker_ has quit IRC23:51
*** markvoelker_ has joined #openstack-security23:53
*** markvoelker_ has quit IRC23:54
*** voodookid has quit IRC23:55
*** markvoelker has quit IRC23:56
*** voodookid has joined #openstack-security23:57
*** salv-orl_ has quit IRC23:57
*** voodookid has quit IRC23:58
« Sunday, 2015-04-12 Index Tuesday, 2015-04-14 »

Generated by irclog2html.py 2.14.0 by Marius Gedminas - find it at mg.pov.lt!