Wednesday, 2015-07-01

« Tuesday, 2015-06-30 Index Thursday, 2015-07-02 »
*** sdake has quit IRC00:29
*** sigmavirus24 is now known as sigmavirus24_awa00:58
*** elo has joined #openstack-security01:10
*** elo1 has joined #openstack-security01:10
*** elo2 has quit IRC01:13
*** elo has quit IRC01:14
*** tmcpeak has quit IRC01:24
*** hyakuhei has quit IRC01:31
*** hyakuhei has joined #openstack-security01:41
*** elo1 has quit IRC01:44
*** sdake has joined #openstack-security02:11
*** elo has joined #openstack-security02:32
*** jian5397 has joined #openstack-security02:38
*** elo has quit IRC02:43
*** hyakuhei has quit IRC03:44
*** hyakuhei has joined #openstack-security03:45
*** elo has joined #openstack-security03:47
*** tmcpeak has joined #openstack-security03:50
*** dave-mccowan has quit IRC04:09
*** jian5397 has quit IRC04:15
*** jian5397 has joined #openstack-security04:19
*** jian5397 has quit IRC04:33
*** browne1 has joined #openstack-security04:40
*** browne has quit IRC04:40
*** tmcpeak has quit IRC05:51
openstackgerritStanislaw Pitucha proposed stackforge/anchor: Implement saving certificate in memory  https://review.openstack.org/19743306:17
*** shohel has joined #openstack-security06:20
*** browne1 has quit IRC06:21
openstackgerritStanislaw Pitucha proposed stackforge/anchor: Implement saving certificate in memory  https://review.openstack.org/19743306:24
*** elo1 has joined #openstack-security08:04
*** elo1 has joined #openstack-security08:04
*** elo has quit IRC08:08
*** elo1 has quit IRC08:12
*** shohel has quit IRC08:31
*** shohel has joined #openstack-security08:31
*** jian5397 has joined #openstack-security09:16
*** elo has joined #openstack-security09:37
*** jian5397 has quit IRC09:40
*** jian5397 has joined #openstack-security09:43
*** shohel has quit IRC09:43
*** shohel has joined #openstack-security09:44
*** sdake has quit IRC09:46
*** jian5397 has joined #openstack-security09:48
*** jian5397 has quit IRC10:00
openstackgerritTim Kelsey proposed stackforge/bandit: Adding a test for partial paths in exec functions  https://review.openstack.org/19718010:07
openstackgerritMerged stackforge/anchor: Update documentation  https://review.openstack.org/19050310:57
*** rmarathu has joined #openstack-security12:12
*** dave-mccowan has joined #openstack-security12:13
*** markvoelker has quit IRC12:14
rmarathuHi all, anybody has any idea on bandit tool - security code analyzer? I would like to start using that and any inputs would be great on that? we are using RATS now and how beneficial to use Bandit against RATS? thanks in advance12:14
*** markvoelker has joined #openstack-security12:14
*** raginbajin has quit IRC12:18
*** raginbajin has joined #openstack-security12:19
*** edmondsw has joined #openstack-security12:32
*** bknudson has joined #openstack-security12:45
*** singlethink has joined #openstack-security12:59
*** vivcheri has joined #openstack-security13:10
elmikormarathu: hi, i'd start with the bandit wiki page and then work through the documentation, https://wiki.openstack.org/wiki/Security/Projects/Bandit13:19
rmarathuelmiko: hi and thank you for the update. I will check...13:22
*** browne has joined #openstack-security13:28
*** tmcpeak has joined #openstack-security13:53
*** jian5397 has joined #openstack-security13:57
*** jian5397 has quit IRC14:12
*** sigmavirus24_awa is now known as sigmavirus2414:12
*** jian5397 has joined #openstack-security14:12
*** localloop127 has joined #openstack-security14:17
*** jian5397 has left #openstack-security14:27
*** jian5397 has joined #openstack-security14:29
*** jian5397 has quit IRC14:30
*** voodookid has joined #openstack-security14:35
*** serverascode_ has joined #openstack-security14:39
*** gmurphy_ has joined #openstack-security14:46
*** woodrow has quit IRC14:46
*** serverascode has quit IRC14:46
*** gmurphy has quit IRC14:46
*** jian5397 has joined #openstack-security14:49
*** shohel has quit IRC14:54
*** serverascode_ is now known as serverascode14:56
*** dwyde has joined #openstack-security15:00
*** woodrow has joined #openstack-security15:04
sigmavirus24Congrats elmiko and tmcpeak15:12
tmcpeaksigmavirus24: thank you :)15:12
elmikosigmavirus24: tnx =)15:12
* sigmavirus24 does not envy either of you15:15
elmikolol15:16
*** shohel has joined #openstack-security15:17
*** shohel has quit IRC15:17
sigmavirus24I'm a security core reviewer for os-ansible-deployment (soon to be openstack-ansible) and while it hasn't been a high traffic position, it is a bit stressful15:17
tmcpeaksigmavirus24: I believe that ;)15:17
sigmavirus24Also, I'm now really going to insist on adding bandit to glance's gate15:17
tmcpeak+115:17
sigmavirus24Because someone just told someone else to use eval in parsing user input15:18
sigmavirus24And I got mad15:18
tmcpeakhaha, seems legit15:18
sigmavirus24glance currently has no bandit issues15:19
*** jian5397 has quit IRC15:19
tmcpeakahh cool, a good time to inject it in the gate then :)15:20
sigmavirus24Yep15:36
openstackgerritMichael McCune proposed openstack/security-doc: Add OSSN-0049  https://review.openstack.org/19441615:40
elmikodo you guys know what channel the devstack folks hangout in?15:43
*** singlethink has quit IRC15:44
sigmavirus24elmiko: in #openstack-infra or #openstack-qa15:45
elmikosigmavirus24: cool, thanks!15:45
sigmavirus24elmiko: I think dtroyer is everywhere though15:45
elmikohaha15:45
sigmavirus24also sdague15:45
elmikook, didn't realize they are the main contacts for devstack15:46
*** jian5397 has joined #openstack-security15:46
openstackgerritMichael McCune proposed openstack/security-doc: Add OSSN-0049  https://review.openstack.org/19441615:49
elmikothanks tmcpeak ;)15:49
tmcpeakelmiko: sure, other than that it looks good15:50
elmikocool, it's all details at this point lol15:50
*** elo1 has joined #openstack-security15:57
*** elo has quit IRC16:01
*** rmarathu has quit IRC16:01
*** singlethink has joined #openstack-security16:05
*** dwyde has left #openstack-security16:06
*** sdake has joined #openstack-security16:24
*** singleth_ has joined #openstack-security16:53
*** singlethink has quit IRC16:57
*** browne has quit IRC17:02
*** sigmavirus24 is now known as sigmavirus24_awa17:04
*** sdake_ has joined #openstack-security17:18
*** sdake has quit IRC17:21
*** sdake_ is now known as sdake17:39
*** dwyde has joined #openstack-security17:43
*** sdake has quit IRC17:44
*** singlethink has joined #openstack-security17:45
*** browne has joined #openstack-security17:45
*** sdake has joined #openstack-security17:46
*** singlet__ has joined #openstack-security17:48
*** singleth_ has quit IRC17:48
*** sdake has quit IRC17:48
*** sdake has joined #openstack-security17:49
*** singlethink has quit IRC17:51
*** deepika has joined #openstack-security17:53
*** browne has quit IRC18:01
*** browne has joined #openstack-security18:02
*** sigmavirus24_awa is now known as sigmavirus2418:06
*** sdake has quit IRC18:38
*** sdake has joined #openstack-security18:38
*** sdake_ has joined #openstack-security18:41
*** sdake has quit IRC18:44
*** jian5397 has quit IRC19:03
*** singlethink has joined #openstack-security19:15
*** singlet__ has quit IRC19:18
*** sdake has joined #openstack-security19:21
*** sdake has quit IRC19:23
*** sdake has joined #openstack-security19:23
*** sdake_ has quit IRC19:25
*** elo1 has quit IRC19:31
*** singlethink has quit IRC19:35
sigmavirus24tmcpeak: chair6 should the midcycle schedule be on https://wiki.openstack.org/wiki/Sprints ?19:48
tmcpeaksigmavirus24: yeah, for sure19:48
tmcpeakmaybe attract some more folks19:48
*** singlethink has joined #openstack-security19:56
*** vivcheri has quit IRC20:02
*** deepika has quit IRC20:19
*** openstackgerrit has quit IRC20:37
*** openstackgerrit has joined #openstack-security20:37
openstackgerritPriti Desai proposed openstack/security-specs: Initial Security Specs Repo  https://review.openstack.org/19773520:55
elmikotmcpeak: would you mind taking a look at nkinder's comments on https://review.openstack.org/#/c/194416/21:01
*** sdake_ has joined #openstack-security21:07
*** sdake has quit IRC21:09
openstackgerritPriti Desai proposed openstack/security-specs: Setup Security Specs Repo  https://review.openstack.org/19773521:27
*** edmondsw has quit IRC21:28
*** bknudson has quit IRC21:51
*** elo has joined #openstack-security21:53
*** singleth_ has joined #openstack-security21:56
*** localloop127 has quit IRC21:59
*** singlethink has quit IRC21:59
*** sdake_ is now known as sdake22:17
*** dwyde has quit IRC22:27
*** sdake is now known as sdake_22:29
*** singleth_ has quit IRC22:30
tmcpeakelmiko: sure22:40
openstackgerritPriti Desai proposed openstack/security-specs: Setup Security Specs Repo  https://review.openstack.org/19773522:41
elmikothanks, he brought a good point about including the code patch22:41
tmcpeakyeah, I know we went back and forth on that.  I think it's good to include for completeness, especially since upgrades can be so painful22:41
tmcpeaknkinder: you around?22:42
nkindertmcpeak: yep22:42
elmikoagreed, contentious issue ;)22:42
tmcpeakso yeah, on that OSSN, I recommended we add it just for people running now unsupported versions, like IceHouse22:42
nkindertmcpeak: any issue that has a fix can be manually backported.  I'm just not sure we want to call it out for operators as a recommendation.22:42
*** browne has quit IRC22:43
tmcpeakfor sure, but it won't be backported because of the 3 release support window22:43
tmcpeakwhat about if we call it out with a big old disclaimer?22:43
nkinderIt's all too easy to mess something up, or to have unintended consequences.22:43
nkinderThis fix is easy, but it still sets a precedent22:44
tmcpeakyeah, I see what you're saying22:44
tmcpeakhmm, yeah, I guess unsupported is unsupported for a reason, people haven't had time to do proper testing22:44
nkindertmcpeak: the OSSN has a link to the bug, where they can see the code for fixes22:45
tmcpeakyou're right, I guess we should remove it.  If anybody is adventurous enough to patch it themselves they can certainly find it22:45
nkinderif they want to go down that path, we give them enough rope to hang themselves with IMHO :)22:45
elmikohehe22:45
tmcpeakcool, yeah, good points.  I'm flip-flopping and now agree with you22:45
elmikook, so i can just drop the whole para+patch about fixing the code?22:45
tmcpeakyeah, sorry elmiko - I've created more work for you (again)22:46
elmikotmcpeak: no worries, i'm in for the long haul ;)22:46
tmcpeakhaha ok cool ;)22:46
openstackgerritMichael McCune proposed openstack/security-doc: Add OSSN-0049  https://review.openstack.org/19441622:49
elmikoet viola22:49
nkinderelmiko: awesome.  LGTM22:51
elmikothanks for all the help guys =)22:52
tmcpeakelmiko: great job22:53
*** sdake_ has quit IRC22:54
*** voodookid has quit IRC23:02
*** browne has joined #openstack-security23:39
« Tuesday, 2015-06-30 Index Thursday, 2015-07-02 »

Generated by irclog2html.py 2.14.0 by Marius Gedminas - find it at mg.pov.lt!