Friday, 2015-07-24

openstackgerrit	Stanislaw Pitucha proposed openstack/security-specs: Add Anchor spec for parsing backend change https://review.openstack.org/205328	00:05
Daviey	Just when i am about to go to bed viraptor submits something i want to read.	00:07
*** elo1 has joined #openstack-security		00:22
*** elo1 has joined #openstack-security		00:22
*** elo has quit IRC		00:26
*** tmcpeak has quit IRC		00:29
*** sigmavirus24_awa is now known as sigmavirus24		00:47
*** browne has joined #openstack-security		00:55
*** tmcpeak has joined #openstack-security		00:55
openstackgerrit	Merged openstack/security-doc: Updating Messaging section files to RST https://review.openstack.org/204880	00:57
*** bpokorny has quit IRC		01:18
openstackgerrit	Merged openstack/security-doc: Updating Management section files to RST https://review.openstack.org/205227	01:19
openstackgerrit	Merged openstack/security-doc: Convert tenant-data/case-studies to RST https://review.openstack.org/205303	01:19
openstackgerrit	Merged openstack/security-doc: Convert tenant-data/data-encryption to RST https://review.openstack.org/205298	01:19
openstackgerrit	Merged openstack/security-doc: Convert tenant-data/data-privacy-concerns to RST https://review.openstack.org/205297	01:19
*** markvoelker has joined #openstack-security		01:25
*** bknudson has quit IRC		01:58
*** sigmavirus24 is now known as sigmavirus24_awa		02:05
*** sweston has quit IRC		02:07
*** sweston has joined #openstack-security		02:08
*** y_sawai has joined #openstack-security		02:16
*** y_sawai has quit IRC		02:19
*** salv-orlando has joined #openstack-security		02:23
*** salv-orlando has quit IRC		02:27
*** bpokorny has joined #openstack-security		02:52
*** dave-mcc_ has joined #openstack-security		02:58
*** dave-mccowan has quit IRC		03:01
*** tmcpeak has quit IRC		03:14
*** sdake has quit IRC		03:28
*** sdake has joined #openstack-security		03:30
*** markvoelker has quit IRC		03:38
viraptor	Daviey: it's a good bedtime story :)	03:42
*** sdake has quit IRC		03:46
openstackgerrit	Merged openstack/security-doc: conversion of dashboard https section to rst https://review.openstack.org/205246	03:48
openstackgerrit	Merged openstack/security-doc: Uploading networking ch file https://review.openstack.org/204341	03:48
*** salv-orlando has joined #openstack-security		03:49
openstackgerrit	Merged openstack/security-doc: Conversion of Object Storage chapter to rst https://review.openstack.org/203965	03:55
*** salv-orlando has quit IRC		03:55
openstackgerrit	Merged openstack/security-doc: Convert tenant-data/key-management to RST https://review.openstack.org/205300	04:03
*** markvoelker has joined #openstack-security		04:03
*** bpokorny has quit IRC		04:06
*** dave-mcc_ has quit IRC		04:07
*** markvoelker has quit IRC		04:08
*** y_sawai has joined #openstack-security		04:46
*** y_sawai_ has joined #openstack-security		05:04
*** markvoelker has joined #openstack-security		05:04
*** y_sawai has quit IRC		05:06
*** y_sawai_ has quit IRC		05:06
*** markvoelker has quit IRC		05:09
*** pdesai has joined #openstack-security		05:09
openstackgerrit	Merged openstack/security-doc: Updating Identity section files to RST https://review.openstack.org/204435	05:10
*** pdesai has quit IRC		05:22
*** salv-orlando has joined #openstack-security		05:48
*** salv-orlando has quit IRC		05:55
*** y_sawai has joined #openstack-security		06:34
*** y_sawai has quit IRC		06:45
*** salv-orlando has joined #openstack-security		06:53
*** salv-orlando has quit IRC		06:57
*** markvoelker has joined #openstack-security		07:05
*** pcaruana has joined #openstack-security		07:10
*** markvoelker has quit IRC		07:10
*** pcaruana is now known as centos		07:13
*** centos is now known as Guest59730		07:13
*** Guest59730 is now known as pcaruana		07:13
*** browne has quit IRC		07:18
openstackgerrit	Stanislaw Pitucha proposed openstack/security-specs: Add Anchor spec for parsing backend change https://review.openstack.org/205328	07:39
*** salv-orlando has joined #openstack-security		08:20
*** salv-orlando has quit IRC		08:25
*** y_sawai has joined #openstack-security		08:43
*** y_sawai has quit IRC		08:50
*** markvoelker has joined #openstack-security		08:51
*** y_sawai has joined #openstack-security		08:52
*** markvoelker has quit IRC		08:56
openstackgerrit	Dave Walker proposed openstack/security-doc: Convert security-boundaries-and-threats to RST https://review.openstack.org/204774	09:05
*** salv-orlando has joined #openstack-security		09:22
*** y_sawai has quit IRC		09:26
*** tkelsey has joined #openstack-security		09:34
*** shohel has joined #openstack-security		09:42
*** airen has quit IRC		09:57
*** airen has joined #openstack-security		09:57
*** y_sawai has joined #openstack-security		09:58
*** y_sawai has quit IRC		09:59
*** y_sawai has joined #openstack-security		10:04
Daviey	viraptor: around?	10:07
*** y_sawai has quit IRC		10:13
*** y_sawai has joined #openstack-security		10:34
*** alex_klimov has joined #openstack-security		10:49
*** alex_klimov has quit IRC		10:49
*** alex_klimov has joined #openstack-security		10:49
*** markvoelker has joined #openstack-security		10:52
*** y_sawai has quit IRC		10:53
*** markvoelker has quit IRC		10:57
*** y_sawai has joined #openstack-security		11:00
*** openstackgerrit has quit IRC		11:01
*** openstackgerrit has joined #openstack-security		11:01
*** woodrow has quit IRC		11:26
*** woodrow has joined #openstack-security		11:26
openstackgerrit	Doug Chivers proposed openstack/security-doc: Update Compliance section to RST https://review.openstack.org/205099	11:39
openstackgerrit	Doug Chivers proposed openstack/security-doc: Migrated monitoring and logging section. https://review.openstack.org/205233	11:47
*** dave-mccowan has joined #openstack-security		11:49
openstackgerrit	Tim Kelsey proposed openstack/bandit: Adding documentation https://review.openstack.org/205499	11:53
openstackgerrit	Tim Kelsey proposed openstack/bandit: Adding documentation for configuration https://review.openstack.org/205501	12:05
openstackgerrit	Tim Kelsey proposed openstack/bandit: Adding test plugin docs https://review.openstack.org/205505	12:18
*** y_sawai_ has joined #openstack-security		12:18
openstackgerrit	Tim Kelsey proposed openstack/bandit: Adding documentation framework https://review.openstack.org/205499	12:19
openstackgerrit	Tim Kelsey proposed openstack/bandit: Adding documentation for configuration https://review.openstack.org/205501	12:19
openstackgerrit	Tim Kelsey proposed openstack/bandit: Adding test plugin docs https://review.openstack.org/205505	12:19
openstackgerrit	Tim Kelsey proposed openstack/bandit: Adding documentation for test plugins https://review.openstack.org/205505	12:21
*** y_sawai has quit IRC		12:21
openstackgerrit	Tim Kelsey proposed openstack/bandit: Adding documentation for test plugins https://review.openstack.org/205505	12:22
*** markvoelker has joined #openstack-security		12:25
*** bknudson has joined #openstack-security		12:48
*** browne has joined #openstack-security		13:12
*** salv-orlando has quit IRC		13:16
openstackgerrit	Tim Kelsey proposed openstack/bandit: Revised XML tests https://review.openstack.org/205527	13:27
*** sdake has joined #openstack-security		13:28
openstackgerrit	Tim Kelsey proposed openstack/bandit: Revised XML tests https://review.openstack.org/205527	13:28
*** sdake_ has joined #openstack-security		13:29
*** tristanC has quit IRC		13:31
*** tristanC has joined #openstack-security		13:32
*** sdake has quit IRC		13:32
*** tmcpeak has joined #openstack-security		13:39
*** sdake_ is now known as sdake		13:47
*** dg_ has joined #openstack-security		13:48
*** lexholden has joined #openstack-security		13:55
*** edmondsw has joined #openstack-security		13:56
*** browne has quit IRC		14:05
openstackgerrit	Michael McCune proposed openstack/security-doc: Updating Compute chapter to RST https://review.openstack.org/203916	14:14
*** sigmavirus24_awa is now known as sigmavirus24		14:23
*** browne has joined #openstack-security		14:27
*** tkelsey has quit IRC		14:32
*** voodookid has joined #openstack-security		14:32
*** tkelsey has joined #openstack-security		14:32
*** voodookid has quit IRC		14:36
*** voodookid has joined #openstack-security		14:51
openstackgerrit	Tim Kelsey proposed openstack/bandit: Revised XML tests https://review.openstack.org/205527	14:58
*** dave-mccowan has quit IRC		14:59
*** shohel has quit IRC		15:01
openstackgerrit	Doug Chivers proposed openstack/security-doc: Update Compliance section to RST https://review.openstack.org/205099	15:01
*** shohel has joined #openstack-security		15:01
*** tmcpeak has quit IRC		15:03
*** tmcpeak has joined #openstack-security		15:05
*** dwyde has joined #openstack-security		15:09
*** sicarie_ has joined #openstack-security		15:12
*** dave-mccowan has joined #openstack-security		15:12
*** timkennedy has joined #openstack-security		15:14
tmcpeak	can I bum some votes? :P http://email.openstack.org/wf/click?upn=KDXUwHsqj2QOekTYbWDSGOQec3b75Fovt3HVvm3PiyFsTeh9f03Hig50WTaMW6Vh9UXoSwNRuH08K4E0EcoOIkw4vHH2-2B8q1HiFESJ3lLmm-2BEuahFdFy-2FSYdBXlYcZZ2_V2BEvbXc0o40l556bQTVbAlCmltWg-2BJY2MWR67Oeg-2FTKvxZmZg9UHGe5Iis91f3NpbdsLrdXxcbI-2B5RAOcW4e6kXYsS7jDHDvBUystRco0Kz-2FJgbDlBXdKkkc4OjX-2FPnCPIIai03YgUYxfl9l4JaGmnQwNted8LWjT7b8Z6Agcf193EazU5k7XHmwveljNBrp474rggfIhcMmmuj	15:20
Daviey	tmcpeak: Hmm, it doesn't let you vote down?	15:21
tmcpeak	wow, that was a nasty URL, not malware, not rick-roll I promise :)	15:21
tmcpeak	Daviey: haha, actually 0 is the same as -1 we found out	15:21
Daviey	tmcpeak: Ah perfect, thanks	15:21
Daviey	tmcpeak: Although, that URL is 404'ing	15:22
tmcpeak	hah, dammit	15:22
tmcpeak	let me get a better one	15:22
tmcpeak	https://www.openstack.org/summit/tokyo-2015/vote-for-speakers/Presentation/3886	15:22
tmcpeak	without all the BS	15:22
tmcpeak	^	15:22
elmiko	lol	15:22
elmiko	nice looking talk	15:23
tmcpeak	thanks elmiko :)	15:23
Daviey	elmiko: Regarding the ^^^ header .. dg_ wants sicarie_ and I to arm wrestle over it. :)	15:23
elmiko	LOL	15:23
elmiko	the thing is, it really doesn't matter	15:23
sicarie_	Daviey: you were absolutely right about it - shoudl have been -'s	15:23
elmiko	rst processing the headers in order, so it just looks for a different type of header then makes that the next one on the list	15:24
sicarie_	ha, nice	15:24
elmiko	so, even putting ^^^^ there doesn't make h4, it still makes h3	15:24
Daviey	sicarie_: Oh, well.. i wrote that without reading the history - so i assumed i missed something.	15:24
openstackgerrit	Doug Chivers proposed openstack/security-doc: Update Compliance section to RST https://review.openstack.org/205099	15:24
elmiko	i still want to see the arm wrestling =)	15:24
sigmavirus24	https://www.openstack.org/summit/tokyo-2015/vote-for-speakers/presentation/5027 looks intriguing too	15:24
openstackgerrit	Michael McCune proposed openstack/security-doc: Updating Compute chapter to RST https://review.openstack.org/203916	15:25
elmiko	sigmavirus24: whaa...	15:25
*** y_sawai_ has quit IRC		15:25
*** y_sawai has joined #openstack-security		15:25
sigmavirus24	elmiko: yeah. I'm curious	15:25
*** y_sawai has quit IRC		15:25
elmiko	did you get a 400 off that page?	15:25
elmiko	oh, nvm. it reloaded	15:26
Daviey	tmcpeak: Here have a +3.	15:26
elmiko	if you guys are curious about something not specifically security related, https://www.openstack.org/summit/tokyo-2015/vote-for-speakers/presentation/5333 =)	15:27
sicarie_	elmiko: +3!	15:28
Daviey	sigmavirus24: That talk has a clickbaity title.. Might aswell say "Got Root? Industry secret, Security Teams tried to supress this talk!"	15:28
elmiko	sigmavirus24: i wonder if that "got root" talk has something to do with the horizon token vuln that was in the bug tracker	15:28
elmiko	sicarie_: tnx!	15:28
sigmavirus24	elmiko: Daviey yeah, like I said, curious but it sounds very ... oversold	15:29
sicarie_	So I’m curious has anyone here seen a plugmgrid talk that wasn’t a sales pitch? Every talk from them that I see is pitching their product, and I see a few registered talks, but I’m hesitant to vote on them because I think it’ll just be a demo…	15:29
elmiko	lol	15:29
sigmavirus24	sicarie_: I haven't watched one of their talks	15:29
elmiko	i have not	15:29
sigmavirus24	But they're pretty friendly	15:29
Daviey	elmiko: I'd hope not.. I thought we established that the token issue was mostly irrelevant to Horizon?	15:29
* sigmavirus24 worked the Rackspace booth which was next to their booth in Vancouver		15:29
elmiko	Daviey: ok, cool, it looked like that from the comments but i didn't know	15:29
Daviey	elmiko: I assumed that talk was about getting deeper access to API's that aren't network exposed.	15:30
sicarie_	sigmavirus24: definitely nice guys, but every talk is based on openstack, but plumgrid specific (and therefore not quite as useful)	15:30
sicarie_	guess I’ll just skip voting on them for now	15:30
Daviey	sicarie_: I had a meeting with them 18 months ago, expecting technical detail but was the wrong people..	15:31
Daviey	They bought me lunch, so I'm not complaining.	15:31
tmcpeak	Daviey: thank you sir :)	15:31
*** shohel has quit IRC		15:31
Daviey	tmcpeak: I think the address you want to share is, https://www.openstack.org/summit/tokyo-2015/vote-for-speakers/SaveRating/?id=5027&rating=3 (note the last parameter).. Not fully convinced it is a well designed system!	15:32
sigmavirus24	Daviey: lol	15:33
Daviey	oh dammit, that is for the clickbait talk.	15:33
tmcpeak	haha	15:33
tmcpeak	sketchy ;)	15:33
sigmavirus24	good job Daviey	15:33
elmiko	lol, awesome	15:34
dg_	lol	15:34
dg_	my next talk is going to have 'you wont guess what happened next' in the title	15:34
tmcpeak	dg_ : ++	15:34
Daviey	dg_: YES!	15:34
tkelsey	Daviey: lol	15:34
sicarie_	Cloud Vendors Hate Him!	15:35
tmcpeak	"The government doesn't want you to know these five things about securing OpenStack"	15:35
dg_	someone really needs to write a clickbait blocker	15:35
sicarie_	I have to stop myself from reflexively downvoting any “X is dead, long live X!”	15:36
Daviey	using simple tools such as /sbin/halt, we can show you how to make your deployment ultra secure.	15:36
sicarie_	haha	15:36
dg_	or at least a translator, to tell you what it really is, you know in case you REALLY need to know what happens next	15:36
elmiko	Daviey: LOL	15:36
dg_	Daviey +1	15:36
tmcpeak	Daviey: lol	15:37
openstackgerrit	Merged openstack/security-doc: Convert security-boundaries-and-threats to RST https://review.openstack.org/204774	15:38
sicarie_	Ouch: https://www.openstack.org/summit/tokyo-2015/vote-for-speakers/presentation/6189	15:38
sicarie_	(looking at the title & the 3rd speaker there)	15:39
Daviey	Things could be worse for OpenStack TBH, CloudStack recently made a change to their metadata service which cloud-init interprets to make every login password "HTTP/1.0 200 OK"... I am guessing that might cause some people to have a fun day.	15:39
sicarie_	wow	15:39
elmiko	dg_: minor nit on https://review.openstack.org/#/c/205233/	15:39
tmcpeak	Daviey: wut	15:40
elmiko	yea, wtf...	15:40
*** y_sawai has joined #openstack-security		15:42
elmiko	sicarie_: we are so close on the doc conversion, nicely done =)	15:43
sicarie_	elmiko: I’ll be happier when I don’t own most of the -1’s in my own queue :\	15:43
elmiko	lol, i hear ya	15:44
Daviey	sicarie_: Oh, i noticed there is a roadmap.xml attached to you I almost hijacked to get completion... but i wondered if you left it as it probably doesn't belong in tree?	15:44
sicarie_	Daviey dg_ elmiko: I’ll be in and out all day today, please feel free to hijack one of my patches	15:44
Daviey	It is an unreferenced TODO list, which makes more sense on a wiki IMO	15:45
elmiko	sicarie_: ack	15:45
sicarie_	Daviey: yes, I was going to hold off on that for the end, though if you wanted to take it and note that we’re planning a new leaf version by the next summit, you could	15:45
Daviey	sicarie_: You want it kept intree?	15:46
sicarie_	ehhh	15:46
sicarie_	undecided	15:46
sicarie_	I’d say add it, we can pull it later	15:47
*** y_sawai has quit IRC		15:47
sicarie_	let’s aim for the ‘convert everything as-is” bar	15:47
dg_	elmiko good spot!	15:48
Daviey	sicarie_: I assumed unreferenced rst files exploded the build. Do i need to add a line to index.rst for it?	15:49
dg_	sicarie_ thanks, but I'm going to finish up for the day fairly soon	15:49
sicarie_	+1 dg_ thanks for the help!	15:49
sicarie_	Daviey: in that case, let’s hold off on it - I’ll ping AJeager and see how critical it is	15:50
*** alex_klimov has quit IRC		15:52
openstackgerrit	Nathaniel Dillon proposed openstack/security-doc: Migrating Networking case studies https://review.openstack.org/205305	15:54
*** bpokorny has joined #openstack-security		15:56
openstackgerrit	Nathaniel Dillon proposed openstack/security-doc: Converting API endpoints section to RST https://review.openstack.org/203894	15:56
Daviey	sicarie_: Am i right in saying all content is now inflight, just blocking on niggles on review?	15:56
sicarie_	Daviey: I hope so :) I was going to address my -1’s and then validate the etherpad	15:56
Daviey	\o/	15:56
*** bitblt has joined #openstack-security		15:57
elmiko	sicarie_: i'll make a pass at the etherpad at the end of my day too. just for cleanup	15:57
sicarie_	elmiko: thanks!	15:57
Daviey	sicarie_: So, you need to use h4 here? https://review.openstack.org/#/c/203894/7/security-guide-rst/source/api-endpoints/api-endpoint-configuration-recommendations.rst -----> ^^^^^^^ <---	15:58
Daviey	?	15:58
sicarie_	line 54?	15:59
sicarie_	(and 67)	15:59
Daviey	yeah	16:00
Daviey	Unrelated, here is the CloudStack password issue - now Public - https://launchpad.net/bugs/1464253 (surprised nobody raised a CVE TBH)	16:01
openstack	Launchpad bug 1464253 in cloud-init (Ubuntu Vivid) "[SRU] CloudStack data source will always set password to "HTTP/1.0 200 OK" on CloudStack 4.5.1 and later" [Undecided,Fix committed] - Assigned to Dan Watkins (daniel-thewatkins)	16:01
sicarie_	Daviey: that was a comment by pdesai, I did not validate, but will make sure to check	16:02
openstackgerrit	Nathaniel Dillon proposed openstack/security-doc: Migrating Networking Architecture page https://review.openstack.org/205321	16:04
*** sdake has quit IRC		16:06
elmiko	Daviey: ooph on that bug	16:06
openstackgerrit	Nathaniel Dillon proposed openstack/security-doc: Updating Documentation section from DocBook to RST https://review.openstack.org/203933	16:07
sicarie_	elmiko: considering rst will convert it anyway, do we want to just merge and open a bug? https://review.openstack.org/#/c/205233/2	16:08
elmiko	yea, i don't mind. we can just merge and make another patch	16:09
Daviey	elmiko: I'm guessing it is unfixed in RHEL and friends, don't think it has been coordinated. :/	16:09
elmiko	Daviey: i was asking around some rh folks, sounds very inconvenient ;)	16:10
elmiko	sicarie_: once that merges, i'll make a patch	16:10
sicarie_	+1	16:10
sicarie_	elmiko: review? https://review.openstack.org/#/c/203916/	16:11
elmiko	i just don't want us to get sloppy because it's friday ;)	16:11
Daviey	elmiko: Good, i've done my good netcitzen by telling you and washing my hands of concern.	16:11
elmiko	Daviey: lol, +1	16:11
Daviey	sicarie_: Review inbound	16:12
elmiko	sicarie_: i feel a little slimy about +A on that one since i uploaded to last patch...	16:12
sicarie_	Daviey: thanks!	16:12
elmiko	oops, i workflowed that one	16:12
sicarie_	elmiko: cool, then I’ll do it	16:12
sicarie_	haha	16:12
sicarie_	nvm	16:12
sicarie_	I +2’d it just to show I’d looked at it as well	16:13
elmiko	cool	16:13
openstackgerrit	Doug Chivers proposed openstack/security-doc: Migrated monitoring and logging section. https://review.openstack.org/205233	16:13
sicarie_	Oh +1 dg_ thought you were done for the day :)	16:13
elmiko	oh nice, dg_ snuck a new patch in ;)	16:14
elmiko	cheers!	16:14
Daviey	Flooding in commits Friday afternoon.	16:14
elmiko	sicarie_: i'm gonna +A on that patch	16:14
sicarie_	elmiko: let’s start letting Jenkins verify before we +A	16:15
sicarie_	That got me in trouble yesterday :(	16:15
elmiko	sicarie_: yea, that's probably for the best	16:15
dg_	sicarie_ really want to get those two merged! Probably not going to pick up anything new, one of the anchor users pointed out there wasnt any example code or documentation on how to use Anchor with Keystone for auth. Quick straw poll showed that no-one has actually tried using anchor with keystone auth...	16:15
elmiko	gonna grab some lunch, i'll check the reviews when i get back	16:15
dg_	thanks elmiko	16:16
Daviey	If Jenkins doesn't Verify, it won't merge anyway. So it isn't that bad.	16:16
elmiko	Daviey: +1	16:16
Daviey	dg_: anchor users? Projects become less fun with users.	16:16
dg_	yeah turns out all our marketing has worked.	16:17
openstackgerrit	Merged openstack/security-doc: Update Compliance section to RST https://review.openstack.org/205099	16:17
Daviey	dg_: I'm thinking over the idea of a devstack plugin for Anchor, that would default to Keystone integration. What do you think?	16:19
openstackgerrit	Merged openstack/security-doc: Updating Compute chapter to RST https://review.openstack.org/203916	16:21
dg_	Daviey that would be awesome	16:23
*** bpokorny has quit IRC		16:23
dg_	would be very interesting to talk that over	16:23
*** bpokorny has joined #openstack-security		16:23
dg_	im planning on spinning up devstack on monday and integrating cathead and anchor, but we'll see how that goes, because Im deep in contract review for something else	16:24
*** lamisma has joined #openstack-security		16:25
lamisma	;-)	16:26
lamisma	;-):-[	16:26
lamisma	:	16:26
tmcpeak	dammit	16:27
lamisma	que lindo nombre	16:27
*** ChanServ sets mode: +o tmcpeak		16:28
*** lamisma was kicked by tmcpeak (lamisma)		16:28
Daviey	dg_: Oh, if it is already on your road map - carry on. :).. But if you want to bounce an idea, let me know.	16:28
elmiko	lol	16:28
*** ChanServ sets mode: -o tmcpeak		16:28
elmiko	tmcpeak: so, now we're getting smiley bombed?	16:28
tmcpeak	apparently, it's the new thing	16:29
elmiko	stay classy anonymous spanish spammers ;)	16:29
tmcpeak	lol	16:29
dg_	Daviey it'd be cool to talk over it, because I have never attempted to integrate something into devstack! I'll just be hacking something together to check it actually works, and probably patching cathead in the process	16:29
dg_	lets talk on monday, RL is calling	16:29
Daviey	o/, have a good one	16:30
sigmavirus24	I had an IRCop in here the other day who klined a bunch of those spammers	16:30
sigmavirus24	Including the ones who PM you spam links	16:30
dg_	Daviey thanks, you too	16:31
*** dg_ has quit IRC		16:31
tmcpeak	lamisma is spamming me emojis	16:31
*** evandown has quit IRC		16:32
*** evandown has joined #openstack-security		16:32
sigmavirus24	tmcpeak: in pms?	16:33
tmcpeak	yeah	16:33
tmcpeak	or was	16:33
sigmavirus24	tmcpeak: /ignore lamisma@!	16:33
tmcpeak	sigmavirus24: hmm, my client doesn't seem to understand that	16:34
tmcpeak	but yeah, good point	16:34
tmcpeak	ignore should work :)	16:34
sigmavirus24	don't you start spamming me emoji now tmcpeak =P	16:36
tmcpeak	haha	16:36
tmcpeak	you guys remember the command to fetch a review into a named local branch?	16:36
*** browne has quit IRC		16:37
tmcpeak	nevermind, got it	16:37
*** dwyde has quit IRC		16:38
sigmavirus24	tmcpeak: which command were you looking for?	16:38
sigmavirus24	review -d?	16:39
*** dwyde has joined #openstack-security		16:39
openstackgerrit	Nathaniel Dillon proposed openstack/security-doc: Updating Documentation section from DocBook to RST https://review.openstack.org/203933	16:43
*** dwyde has quit IRC		16:46
*** nkinder has joined #openstack-security		16:48
tmcpeak	I ended up just doing the git fetch in the review and then using git checkout -b to get it into a named branch	16:49
openstackgerrit	Nathaniel Dillon proposed openstack/security-doc: Migrating Networking Architecture page https://review.openstack.org/205321	16:51
*** voodookid has quit IRC		16:55
sicarie_	Daviey: I was mistaken, I have not done 3 of the networking sections	16:56
sicarie_	elmiko Daviey: care for one more conversion?	16:56
*** tkelsey has quit IRC		17:02
tmcpeak	Daviey: I do get your point about config, I guess the idea behind config should be: unless somebody would want to change it, it doesn't belong in config	17:05
tmcpeak	and you're right - which XML libraries are unsafe shouldn't change	17:05
tmcpeak	I'm curious about the performance aspect of it	17:05
Daviey	tmcpeak: I hadn't even thought of that part.	17:06
openstackgerrit	Nathaniel Dillon proposed openstack/security-doc: WIP Updating Network services section https://review.openstack.org/205624	17:06
*** sicarie_ has left #openstack-security		17:06
Daviey	sicarie_: I'm not leaping off my chair to do it.. but if it isn't done by later, i may well do.	17:06
*** voodookid has joined #openstack-security		17:10
openstackgerrit	Merged openstack/security-doc: Migrated monitoring and logging section. https://review.openstack.org/205233	17:14
openstackgerrit	Merged openstack/security-doc: Converting API endpoints section to RST https://review.openstack.org/203894	17:16
tmcpeak	Daviey: I think that was tkelsey's initial concern	17:18
tmcpeak	presumably his change improved performance	17:18
openstackgerrit	Merged openstack/security-doc: Migrating Networking case studies https://review.openstack.org/205305	17:19
Daviey	tmcpeak: Right, but i think it would be good to move the config hunks into the py file.	17:19
openstackgerrit	Priti Desai proposed openstack/security-doc: Migrating Networking section to RST https://review.openstack.org/205628	17:20
*** dwyde has joined #openstack-security		17:20
tmcpeak	Daviey: yeah, I think what you're saying makes sense, and I'm glad you brought it up, we don't want bandit.yaml to balloon	17:23
Daviey	cool	17:25
elmiko	sigmavirus24: what did you have in mind?	17:29
elmiko	oops, meant that for sicarie	17:30
*** browne has joined #openstack-security		17:30
*** tkelsey has joined #openstack-security		17:31
openstackgerrit	Priti Desai proposed openstack/security-doc: Updating Documentation section from DocBook to RST https://review.openstack.org/203933	17:33
*** tkelsey has quit IRC		17:36
openstackgerrit	Merged openstack/security-doc: Migrating Networking section to RST https://review.openstack.org/205628	17:44
tmcpeak	oh, this is cool (looks like most of you were added anyway) https://review.openstack.org/#/c/205629/1/specs/no-global-admin.rst	17:45
elmiko	interesting...	17:47
Daviey	sicarie: How come you are working with XML on https://review.openstack.org/#/c/205624/1 ?	17:50
*** dwyde has quit IRC		17:58
tmcpeak	elmiko: oh yeah, good with the spelling errors - I didn't even look at those - I mean I saw them but I was too focused on "what is he saying" :)	18:03
elmiko	tmcpeak: haha, yea i had to read it twice	18:04
elmiko	i just did some tweaking of the sahara policy stuff earlier in this cycle, so i was a little familiar with what adam is talking about.	18:04
elmiko	but it's still a bigger idea to understand	18:05
tmcpeak	yeah, I'm jumping feet first in (probs early next week) for that note I'm writing	18:06
elmiko	nice	18:06
elmiko	sicarie: i see i'm listed for case-studies-identity-management.xml (TODO), not sure what that refers to	18:10
openstackgerrit	Merged openstack/security-doc: Updating Documentation section from DocBook to RST https://review.openstack.org/203933	18:12
openstackgerrit	Merged openstack/security-doc: Migrating Networking Architecture page https://review.openstack.org/205321	18:20
openstackgerrit	Priti Desai proposed openstack/security-doc: Migrating Networking section to RST https://review.openstack.org/205642	18:21
openstackgerrit	Michael McCune proposed openstack/security-doc: fixing todo in compute chapter https://review.openstack.org/205644	18:21
openstackgerrit	Michael McCune proposed openstack/security-doc: fixing todo in instance management chapter https://review.openstack.org/205645	18:28
openstackgerrit	Priti Desai proposed openstack/security-doc: Updating Network services section https://review.openstack.org/205624	18:44
openstackgerrit	Michael McCune proposed openstack/security-doc: fixing todo in data processing chapter https://review.openstack.org/205669	18:45
openstackgerrit	Priti Desai proposed openstack/security-doc: Updating Network services section https://review.openstack.org/205624	18:46
elmiko	sicarie: if you get a moment, could use a review on https://review.openstack.org/#/c/205642	18:54
*** dwyde has joined #openstack-security		19:00
sicarie	elmiko: reviewed - I'll take a look at the idm case study thing	19:00
sicarie	Daviey: pdesai took it, I just attached you to the review	19:01
elmiko	sicarie: thanks, i can clear up a few TODOs once that networking one merges	19:02
elmiko	so... close....	19:03
openstackgerrit	Merged openstack/security-doc: fixing todo in compute chapter https://review.openstack.org/205644	19:08
openstackgerrit	Merged openstack/security-doc: Migrating Networking section to RST https://review.openstack.org/205642	19:08
*** KriSstaL has joined #openstack-security		19:13
openstackgerrit	Michael McCune proposed openstack/security-doc: fixing todos in data processing config section https://review.openstack.org/205680	19:13
*** tjt263 has joined #openstack-security		19:14
openstackgerrit	Michael McCune proposed openstack/security-doc: fixing todos in security services section https://review.openstack.org/205685	19:19
*** KriSstaL has left #openstack-security		19:20
*** bitblt has quit IRC		19:22
*** tkelsey has joined #openstack-security		19:32
*** tkelsey has quit IRC		19:37
*** lexholden has quit IRC		20:04
*** KriSstaL has joined #openstack-security		20:12
*** KriSstaL has left #openstack-security		20:15
*** dwyde has quit IRC		20:27
*** timkennedy has quit IRC		20:51
*** salv-orlando has joined #openstack-security		20:53
*** salv-orlando has quit IRC		20:58
*** edmondsw has quit IRC		21:06
*** sicarie_ has joined #openstack-security		21:32
*** tkelsey has joined #openstack-security		21:34
*** tkelsey has quit IRC		21:38
*** dave-mccowan has quit IRC		22:29
*** dave-mccowan has joined #openstack-security		22:46
*** voodookid has quit IRC		23:01
*** bpokorny_ has joined #openstack-security		23:04
*** bpokorny has quit IRC		23:07
*** tjt263_ has joined #openstack-security		23:14
*** markvoelker has quit IRC		23:15
*** tmcpeak has quit IRC		23:23
viraptor	Daviey: am now	23:26

Generated by irclog2html.py 2.14.0 by Marius Gedminas - find it at mg.pov.lt!