Monday, 2015-05-04

« Sunday, 2015-05-03 Index Tuesday, 2015-05-05 »
*** sdake_ has joined #openstack-security00:07
*** sdake has quit IRC00:11
*** markvoelker has joined #openstack-security00:21
*** markvoelker has quit IRC00:25
*** bpokorny has joined #openstack-security00:34
*** salv-orlando has joined #openstack-security00:47
*** salv-orlando has quit IRC00:50
*** salv-orlando has joined #openstack-security01:05
*** salv-orlando has quit IRC01:12
*** markvoelker has joined #openstack-security01:21
*** sdake has joined #openstack-security01:24
*** sdake_ has quit IRC01:26
*** markvoelker has quit IRC01:26
*** sdake_ has joined #openstack-security01:27
*** sdake has quit IRC01:30
*** markvoelker has joined #openstack-security02:22
*** markvoelker has quit IRC02:27
*** sdake_ is now known as sdake02:44
*** salv-orlando has joined #openstack-security02:56
*** salv-orlando has quit IRC03:01
*** salv-orlando has joined #openstack-security03:14
*** salv-orlando has quit IRC03:19
*** markvoelker has joined #openstack-security03:23
*** markvoelker has quit IRC03:27
*** bpokorny has quit IRC03:51
openstackgerritMichael Simo proposed openstack/security-doc: Reworded sentence in chapter 7 of security-guide  https://review.openstack.org/17802103:56
*** markvoelker has joined #openstack-security04:24
*** markvoelker has quit IRC04:28
*** markvoelker has joined #openstack-security05:24
*** markvoelker has quit IRC05:29
*** salv-orlando has joined #openstack-security05:53
*** salv-orlando has quit IRC05:56
*** salv-orlando has joined #openstack-security05:59
*** salv-orlando has quit IRC05:59
openstackgerritAnthony Chow proposed openstack/security-doc: Bug fix for 1447655.  Modify paragraph for better grammer and clarity as requested by the ticket.  https://review.openstack.org/17970106:03
*** salv-orlando has joined #openstack-security06:11
*** salv-orlando has quit IRC06:15
*** sdake_ has joined #openstack-security06:22
*** sdake has quit IRC06:25
*** sdake_ is now known as sdake06:35
*** salv-orl_ has joined #openstack-security06:45
*** sdake has quit IRC07:21
*** markvoelker has joined #openstack-security07:26
*** markvoelker has quit IRC07:30
*** aswadr has joined #openstack-security07:50
*** markvoelker has joined #openstack-security08:27
*** markvoelker has quit IRC08:31
*** asrangne has joined #openstack-security09:11
*** salv-orlando has joined #openstack-security09:13
*** salv-orl_ has quit IRC09:13
*** aswadr has quit IRC09:13
*** markvoelker has joined #openstack-security09:27
*** markvoelker has quit IRC09:32
*** salv-orlando has quit IRC09:43
*** salv-orl_ has joined #openstack-security09:46
*** salv-orlando has joined #openstack-security09:50
*** salv-orl_ has quit IRC09:53
*** salv-orl_ has joined #openstack-security10:31
*** salv-orlando has quit IRC10:34
*** asrangne has quit IRC10:43
*** salv-orl_ has quit IRC10:46
*** salv-orlando has joined #openstack-security10:47
*** salv-orlando has quit IRC11:23
*** tmcpeak has joined #openstack-security11:48
*** markvoelker has joined #openstack-security11:50
*** dave-mccowan has joined #openstack-security12:10
*** salv-orlando has joined #openstack-security12:24
*** salv-orlando has quit IRC12:37
*** sdake has joined #openstack-security12:57
*** bknudson has quit IRC13:01
*** _elmiko is now known as elmiko13:07
*** elmiko has joined #openstack-security13:08
*** nkinder has quit IRC13:15
*** sdake_ has joined #openstack-security13:31
*** singlethink has joined #openstack-security13:32
*** bknudson has joined #openstack-security13:33
*** sdake has quit IRC13:34
*** L0aD1nG has joined #openstack-security13:41
L0aD1nGhello what is this channel about?13:41
elmikofor discussions about openstack security related topics13:43
*** edmondsw has joined #openstack-security13:49
*** singleth_ has joined #openstack-security13:49
L0aD1nGwhat is the definition of "openstack security" then??13:49
*** singlethink has quit IRC13:53
elmikonot sure what you mean13:58
elmikoL0aD1nG: http://security.openstack.org/ maybe that helps13:59
L0aD1nGelmiko: so openstack is a cloud service13:59
L0aD1nG?13:59
L0aD1nGand here is the security related discussions about it?14:00
elmikoyou might want to start here, http://docs.openstack.org/14:00
elmikoit's a collection of opensource services used for creating cloud infrastructures14:00
L0aD1nGohh14:01
elmiko(and in this sense services==applications)14:01
L0aD1nGyea14:01
L0aD1nGthanks a lot14:01
elmikonp14:01
*** dave-mccowan has quit IRC14:03
*** zz_naotok has quit IRC14:04
*** zz_naotok has joined #openstack-security14:06
*** nkinder has joined #openstack-security14:07
L0aD1nGcya around elmiko14:09
*** L0aD1nG has left #openstack-security14:09
elmikotmcpeak: you may find this interesting14:14
elmikotmcpeak: https://bugzilla.redhat.com/show_bug.cgi?id=121785714:14
openstackbugzilla.redhat.com bug 1217857 in Package Review "Review Request: bandit - A framework for performing security analysis of Python source code" [Medium,New] - Assigned to nobody14:14
elmikoa coworker proposed bandit for inclusion in fedora14:15
*** dave-mccowan has joined #openstack-security14:15
tmcpeakelmiko: checking14:16
*** salv-orlando has joined #openstack-security14:16
tmcpeakelmiko: awesome!!14:16
elmikotmcpeak: yea, i thought you'd find that amusing =)14:18
elmikoi guess he's been running it against of system level stuff he's using too14:19
tmcpeakthe more the merrier :) we love to see people using it14:19
*** salv-orlando has quit IRC14:32
*** voodookid has joined #openstack-security14:37
*** dwyde has joined #openstack-security14:37
openstackgerritVictor Howard proposed openstack/security-doc: Dashboard in Security Guide Bad Sentence  https://review.openstack.org/17980214:55
*** sdake has joined #openstack-security15:01
*** dwyde has quit IRC15:01
*** sdake__ has joined #openstack-security15:03
*** sdake_ has quit IRC15:03
*** sdake has quit IRC15:07
openstackgerritVictor Howard proposed openstack/security-doc: Added detail to the allowed hosts section  https://review.openstack.org/17981015:11
*** bpokorny has joined #openstack-security15:15
*** singleth_ has quit IRC15:36
*** salv-orlando has joined #openstack-security15:41
*** salv-orlando has quit IRC16:12
*** singlethink has joined #openstack-security16:13
*** yeison has joined #openstack-security16:22
*** yeison has left #openstack-security16:22
*** yeison has joined #openstack-security16:27
*** yeison has left #openstack-security16:27
*** sdake__ is now known as sdake16:58
*** salv-orlando has joined #openstack-security17:30
*** singleth_ has joined #openstack-security17:30
*** singlethink has quit IRC17:34
*** salv-orlando has quit IRC17:39
*** singlethink has joined #openstack-security17:58
*** singleth_ has quit IRC18:02
*** sdake_ has joined #openstack-security18:30
*** sdake has quit IRC18:34
*** sdake_ is now known as sdake18:34
*** voodookid has quit IRC18:39
*** dwyde has joined #openstack-security18:45
*** subscope_ has joined #openstack-security18:49
*** sdake_ has joined #openstack-security19:09
*** sdake has quit IRC19:13
*** salv-orlando has joined #openstack-security19:22
*** salv-orlando has quit IRC19:33
*** singlethink has quit IRC19:35
*** singlethink has joined #openstack-security19:37
openstackgerritTravis McPeak proposed stackforge/bandit: Adding /usr/local/etc/bandit/ to paths for Bandit config checking  https://review.openstack.org/17989419:38
*** dlitz has quit IRC19:49
*** singleth_ has joined #openstack-security20:00
*** bpokorny_ has joined #openstack-security20:02
*** singlethink has quit IRC20:03
*** bpokorny has quit IRC20:04
*** dwyde_ has joined #openstack-security20:07
*** subscope_ has quit IRC20:08
*** dwyde has quit IRC20:09
*** dwyde_ is now known as dwyde20:09
tmcpeakdstufft: you around?20:22
dstuffttmcpeak: hi20:28
*** jraim has quit IRC20:30
*** jraim has joined #openstack-security20:33
*** sdake has joined #openstack-security20:45
tmcpeakdstufft: hi, still there?20:48
tmcpeakhad some questions about how to properly package a config file20:48
tmcpeakfor Bandit20:48
dstufftsure20:48
dstufftthe answer might not be very good though :)20:48
tmcpeaklol20:48
tmcpeakthat's what I've seen so far20:49
*** singlethink has joined #openstack-security20:49
tmcpeakI mean not from you but packaging in general20:49
tmcpeakso Bandit requires a config file to run20:49
*** sdake_ has quit IRC20:49
tmcpeakwe do some checks in the local directory, and the user's directory to allow them to override20:49
tmcpeakbut we're somewhat confused about where it will be installed when we do pip install20:50
tmcpeakif it is in a virtual environment it goes to the virtualenv etc directory, which works fine20:50
tmcpeakif it isn't in a virtual environment it seems to *sometimes* go to /usr/local/etc/bandit and sometimes not20:50
tmcpeakis it system dependent?20:50
*** sdake_ has joined #openstack-security20:52
*** singleth_ has quit IRC20:52
*** browne has joined #openstack-security20:53
brownetmcpeak: In bandit.yaml, where is the wordlist/default-passwords file?  Is this something each exploiter of bandit should create?20:55
*** salv-orlando has joined #openstack-security20:55
tmcpeakbrowne: no… that's probably another thing we haven't packaged correctly20:55
tmcpeakit's supposed to come with Bandit, although I'm sure the binary install isn't setting that up20:55
*** sdake has quit IRC20:56
browneoh, i don't see it in the bandit source tree either20:56
tmcpeakhmm, really?20:56
browneoh, wait, yes, i did find, sorry20:56
tmcpeakcool20:56
browneok, so I think it'll try to load that file using the relative path in bandit.yaml, which will fail for most other projects20:58
browneguess i'll open a bug20:58
tmcpeakbrowne: cool, please do20:59
tmcpeakdstufft: if you have any pointer on the above, I'll greatly appreciate it21:03
dstuffttmcpeak: oh you're using data files?21:03
tmcpeakdstufft: we currently have this, https://github.com/stackforge/bandit/blob/master/setup.cfg#L2621:03
tmcpeakwhich doesn't seem to fulfill all of our hopes and dreams21:04
dstufftyea...21:04
dstufftdata files don't really work in the general case21:04
dstufftI mean21:04
dstufftit works in that we'll put the file somewhere21:04
dstufftthat somewhere might not be where you expect21:04
tmcpeakdstufft: yeah, I've kind of seen taht21:04
tmcpeakwhat's best practice?21:04
dstufftgenerally I recommend using package_data where possible21:04
dstufftat least until we make data files work sanely21:05
tmcpeakdstufft: something like this: http://stackoverflow.com/questions/13288188/how-to-properly-define-package-data-in-setup-py ?21:05
dstuffttmcpeak: yea that looks right, not sure how to translate that to pbr exactly, but something like that21:06
dstufftit'll be *inside* the bandit package then21:06
tmcpeakok cool, I think that's what we want21:06
tmcpeakdstufft: awesome, thank you.  I'll give that a shot21:06
dstufftso you'll do something like os.path.join(os.path.dirname(__file__), "default.yml") to get it21:06
dstufftor if you want to support zip stuff, you can use pkgutil.get_data21:06
tmcpeakdstufft: perfect21:06
tmcpeakdstufft: also, welcome to the dark side :P21:07
dstufftwhich dark side is this21:07
tmcpeakHP21:07
dstufftthere are many dark sides, and I'm in more than one21:07
dstufftoh!21:07
dstufftyes :D21:07
tmcpeakwhich office you in?21:08
dstufftmy living room21:08
tmcpeakexcellent :)21:08
dstufftI mean, there's the king of prussia office like 5-10 minutes away, and the wayne office like 20 minutes away21:08
dstufftbut I have no intention of spending time there once I get my I9 form done21:09
tmcpeakhaha, that's an above industry average commute ;)21:09
dstufftwho wants to wear pants while they're working anyways21:09
tmcpeak+121:10
tmcpeakdstufft: thanks for the pointer!21:10
dstufftAt least, I assume HP frowns on not wearing pants if you're in the office21:10
dstuffttmcpeak: no problem!21:10
*** bpokorny has joined #openstack-security21:11
*** bpokorny_ has quit IRC21:15
*** dave-mccowan has quit IRC21:51
*** dwyde has quit IRC22:24
*** dlitz has joined #openstack-security22:27
*** elmiko is now known as _elmiko22:28
*** nkinder has quit IRC22:35
*** singlethink has quit IRC22:42
*** bknudson has quit IRC22:44
*** sdake has joined #openstack-security23:04
*** sdake_ has quit IRC23:08
*** tmcpeak has quit IRC23:17
*** dave-mccowan has joined #openstack-security23:56
*** nkinder has joined #openstack-security23:58
*** sdake_ has joined #openstack-security23:59
« Sunday, 2015-05-03 Index Tuesday, 2015-05-05 »

Generated by irclog2html.py 2.14.0 by Marius Gedminas - find it at mg.pov.lt!