Friday, 2016-04-01

« Thursday, 2016-03-31 Index Saturday, 2016-04-02 »
*** salv-orlando has joined #openstack-security00:00
*** salv-orlando has quit IRC00:06
*** browne has quit IRC00:12
*** austin987 has quit IRC00:13
*** jass93 has quit IRC00:16
*** tmcpeak has quit IRC00:17
*** browne has joined #openstack-security00:17
*** austin987 has joined #openstack-security00:21
*** tmcpeak has joined #openstack-security00:25
*** markvoelker_ has quit IRC00:53
*** edmondsw has joined #openstack-security00:54
*** jass93 has joined #openstack-security01:03
*** mdong has joined #openstack-security01:10
*** browne has quit IRC01:12
*** rahulunair has quit IRC01:12
*** edmondsw has quit IRC01:30
*** mdong has quit IRC01:32
*** bpokorny has quit IRC02:06
*** tmcpeak has quit IRC02:24
*** yuanying has quit IRC02:51
*** bpokorny has joined #openstack-security03:09
*** krotscheck is now known as krotscheck_vaca03:20
*** markvoelker has joined #openstack-security03:47
*** yuanying has joined #openstack-security03:49
*** markvoelker_ has joined #openstack-security03:56
*** markvoelker has quit IRC03:56
*** jass93_ has joined #openstack-security04:02
*** jass93 has quit IRC04:02
*** bpokorny has quit IRC04:06
*** markvoelker_ has quit IRC04:33
*** markvoelker has joined #openstack-security04:33
*** markvoelker has quit IRC04:38
*** darrenwu has joined #openstack-security04:48
*** darrenwu has left #openstack-security04:48
*** rcernin has joined #openstack-security04:57
*** tpeoples is now known as tpeoples_vacatio05:23
*** tpeoples_vacatio is now known as tpeoplesvacation05:24
*** markvoelker has joined #openstack-security05:29
*** markvoelker has quit IRC05:37
openstackgerritOpenStack Proposal Bot proposed openstack/security-doc: Imported Translations from Zanata  https://review.openstack.org/30032406:26
*** browne has joined #openstack-security06:27
*** browne has quit IRC06:32
openstackgerritMerged openstack/security-doc: Imported Translations from Zanata  https://review.openstack.org/30032406:34
*** browne has joined #openstack-security06:39
*** browne has quit IRC06:44
*** browne has joined #openstack-security06:45
*** browne has quit IRC06:49
*** salv-orlando has joined #openstack-security07:05
*** browne has joined #openstack-security07:08
openstackgerritOpenStack Proposal Bot proposed openstack/security-doc: Updated from openstack-manuals  https://review.openstack.org/30033507:09
*** browne has quit IRC07:13
*** jamielennox is now known as jamielennox|away07:17
openstackgerritMerged openstack/security-doc: Updated from openstack-manuals  https://review.openstack.org/30033507:17
*** markvoelker has joined #openstack-security07:19
*** salv-orl_ has joined #openstack-security07:23
*** pcaruana has joined #openstack-security07:25
*** markvoelker has quit IRC07:25
*** salv-orlando has quit IRC07:26
*** tesseract has joined #openstack-security07:56
*** tesseract is now known as Guest9087707:56
*** tkelsey has joined #openstack-security07:58
openstackgerritTim Kelsey proposed openstack/bandit: Fixing a bug exposed with try, except, ... tests  https://review.openstack.org/30006808:42
*** amit213 has quit IRC08:49
*** markvoelker has joined #openstack-security09:11
*** markvoelker has quit IRC09:16
*** markvoelker has joined #openstack-security10:06
*** markvoelker has quit IRC10:12
*** hyakuhei_ has joined #openstack-security10:29
*** hyakuhei_ has quit IRC10:32
*** hyakuhei has joined #openstack-security10:44
hyakuheiSup ?10:56
*** markvoelker has joined #openstack-security11:02
*** markvoelker has quit IRC11:06
*** YoYo has joined #openstack-security11:18
*** YoYo has quit IRC11:19
*** ninag has joined #openstack-security12:08
*** dave-mccowan has joined #openstack-security12:32
*** ibravo has joined #openstack-security12:34
*** edmondsw has joined #openstack-security12:53
openstackgerritRobert Clark proposed openstack/security-doc: Adding OSSN-0064  https://review.openstack.org/30009112:56
*** jmckind has joined #openstack-security12:59
hyakuhei^ big rewrite, less jibberish now13:02
elmikoaww, but i love jibberish =(13:03
tkelseyelmiko: get my email?13:04
elmikotkelsey: yes, and i am aware of that issue13:06
elmikothose hardcoded values are actually overridden by the call that sets the credentials13:06
elmikobut...13:06
elmikowe do have an issue with hardcoded passwords, i'm working through them as sec.bugs13:06
elmikothanks for bringing it up though =)13:07
tkelseyok cool, well the only ones bandit found were the one in the patch and that one13:07
elmikoyea, the others are more sneaky13:07
tkelseyno problem, happy to help (so long as its actually helpful lol)13:07
elmikoit is13:07
elmikoit's just difficult because we are interacting with a lot of services that are deployed to the clusters, and we haven't always done a good job of sanitizing all the defaults for those services13:08
tkelseyi see, nothing is ever simple is it :)13:08
elmikoright13:08
tkelseygood luck getting into a good shape with it, if any good bandit tests come to mind im sure we can get them added to help13:09
tkelseyuntil then we can leave that test disabled13:09
elmikook, cool. or we can mark that case as nosec13:10
tkelseysure, that works to, its upto Sahara folks to asses if thats the right option. I didnt know enough when I looked at it13:10
tkelseyit sounds like nosec would be fine here13:11
*** cleong has joined #openstack-security13:11
elmikoyea, we'll (probably i'll) take another look and mark those as necessary13:11
tkelseycool, thanks elmiko :)13:11
elmikothanks to you as well =)13:11
openstackgerritRobert Clark proposed openstack/security-doc: Adding OSSN-0064  https://review.openstack.org/30009113:13
*** salv-orlando has joined #openstack-security13:23
*** salv-orl_ has quit IRC13:26
*** openstackgerrit has quit IRC13:33
*** openstackgerrit has joined #openstack-security13:33
*** salv-orlando has quit IRC13:35
*** cjschaef has joined #openstack-security13:40
*** markvoelker has joined #openstack-security13:47
*** markvoelker has quit IRC13:51
*** openstack has quit IRC13:58
*** openstack has joined #openstack-security13:58
*** mvaldes has joined #openstack-security13:59
*** sigmavirus24_awa is now known as sigmavirus2414:08
openstackgerritKATO Tomoyuki proposed openstack/security-doc: Update the title and URL for admin guide  https://review.openstack.org/30050814:14
openstackgerritKATO Tomoyuki proposed openstack/security-doc: Update the title and URL for admin guide  https://review.openstack.org/30050814:26
*** markvoelker has joined #openstack-security14:41
*** ametts has joined #openstack-security14:42
openstackgerritMerged openstack/security-doc: Update the title and URL for admin guide  https://review.openstack.org/30050814:44
*** sigmavirus24 is now known as sigmavirus24_awa14:44
*** sigmavirus24_awa is now known as sigmavirus2414:45
tkelseyhey sigmavirus24, I updated https://review.openstack.org/#/c/300068/ as suggested, mind taking a look?14:45
*** markvoelker has quit IRC14:47
sigmavirus24tkelsey: rogerwilco14:48
tkelseythanks man14:49
*** rahulunair has joined #openstack-security14:55
*** markvoelker has joined #openstack-security15:05
tkelseythanks sigmavirus2415:11
tkelseychair6: are you around?15:11
*** browne has joined #openstack-security15:20
tkelseyheh just abandoned a patch from Oct 16, 2014 :P15:21
openstackgerritRobert Clark proposed openstack/security-doc: Adding OSSN-0064  https://review.openstack.org/30009115:22
*** mdong has joined #openstack-security15:28
*** mdong has quit IRC15:32
*** mdong has joined #openstack-security15:34
openstackgerritMerged openstack/bandit: Fixing a bug exposed with try, except, ... tests  https://review.openstack.org/30006815:35
*** bpokorny has joined #openstack-security15:36
*** austin987 has quit IRC15:37
brownetkelsey:  looks like we are very close now with the integrations.  just sahara is failing.  are you working on a fix. or maybe the sahara team?15:40
browneERRORUnknown test found in profile: hardcoded_password15:40
tkelseybrowne: fix is submitted here https://review.openstack.org/#/c/300416/15:40
brownetkelsey: oh cool!15:41
brownevery very close to bandit 1.0 then.  yay15:42
tkelseyyup yup :)15:44
*** Guest90877 has quit IRC15:44
elmikotkelsey, browne, i'll try to point a few more sahara devs at that review15:45
brownethx elmiko15:45
tkelseyelmiko: awesome15:45
elmikoshould be able to get it merged soon15:45
tkelsey:)15:45
*** austin987 has joined #openstack-security15:51
*** ccneill has joined #openstack-security15:52
chair6here now tkelsey, but looks like you got it merged..15:54
tkelseychair6: ah yeah :) but thanks all the same15:55
tkelseypushing for 1.0 stuff hehe :)15:55
openstackgerritRahul U Nair proposed openstack/syntribos: Added payloads for keystone API  https://review.openstack.org/29903215:57
elmikotkelsey: 300416 is workflowed16:07
*** ibravo has quit IRC16:08
brownecool.  we might have a bandit release on April Fool's day16:09
chair6heh16:18
elmikoseems appropriate ;)16:23
tkelsey:)16:23
*** salv-orlando has joined #openstack-security16:25
*** cjschaef has quit IRC16:31
*** openstackgerrit has quit IRC16:31
*** rcernin has quit IRC16:32
*** jass93_ has quit IRC16:37
*** mvaldes has left #openstack-security16:40
*** pcaruana has quit IRC16:44
*** openstackgerrit has joined #openstack-security16:45
*** edmondsw has quit IRC16:50
*** bpokorny has quit IRC16:57
*** bpokorny has joined #openstack-security16:58
*** bpokorny has quit IRC16:59
*** bpokorny has joined #openstack-security17:00
chair6http://lists.openstack.org/pipermail/openstack-dev/2016-April/091168.html17:00
chair6fuel adding bandit to their own fuel-infra gates..17:00
*** ccneill has quit IRC17:19
tkelseystill waiting on Jenkins :(17:30
tkelseyoh wait, if fule have added bandit we should d it to the integration tests as well17:32
tkelsey*fuel17:32
sigmavirus24tkelsey: they're experimental17:32
sigmavirus24I would vote against adding them to the integration tests for now17:33
tkelseyok sounds good to me17:33
sigmavirus24Until they go full voting, I think it'll add noise to our gate jobs17:33
tkelsey+117:33
*** salv-orlando has quit IRC17:36
*** salv-orlando has joined #openstack-security17:45
*** cjschaef has joined #openstack-security17:49
browneargh, 300416 failed on gate17:51
*** markvoelker has quit IRC17:52
*** markvoelker has joined #openstack-security17:56
*** cjschaef has quit IRC18:05
*** bpokorny has quit IRC18:08
*** bpokorny has joined #openstack-security18:10
*** mvaldes has joined #openstack-security18:13
*** mvaldes has left #openstack-security18:15
*** ccneill has joined #openstack-security18:16
*** jass93 has joined #openstack-security18:20
*** mdong has quit IRC18:26
*** mdong has joined #openstack-security18:28
*** markvoelker has quit IRC18:31
*** edmondsw has joined #openstack-security18:32
*** tkelsey has quit IRC18:33
*** elo has quit IRC18:49
*** markvoelker has joined #openstack-security18:53
*** markvoelker has quit IRC18:53
*** markvoelker has joined #openstack-security18:54
*** markvoelker has quit IRC18:54
*** bpokorny has quit IRC18:54
*** markvoelker has joined #openstack-security18:54
*** cjschaef has joined #openstack-security19:03
*** salv-orlando has quit IRC19:07
*** mvaldes1 has joined #openstack-security19:11
*** cleong has quit IRC19:35
*** avarner__ has joined #openstack-security19:40
*** timkennedy has quit IRC19:42
*** avarner_ has quit IRC19:43
*** elo has joined #openstack-security19:48
*** salv-orlando has joined #openstack-security19:48
*** avarner__ has quit IRC19:53
*** avarner has joined #openstack-security19:57
*** tkelsey has joined #openstack-security20:06
*** bpokorny has joined #openstack-security20:07
*** tkelsey has quit IRC20:10
sigmavirus24browne: how did it fail on the gate?20:23
sigmavirus24It merged20:23
*** salv-orl_ has joined #openstack-security20:23
sigmavirus24oh I should have read the timestamp :P20:24
*** salv-orlando has quit IRC20:26
*** markvoelker has quit IRC20:37
*** browne has quit IRC20:41
*** browne has joined #openstack-security20:45
*** jass93 has quit IRC20:48
brownehttps://review.openstack.org/#/c/281560/ is passing!!!20:55
brownecan I get some +A and +W love?20:55
cjschaeflol20:56
browne^^ sigmavirus2420:56
*** austin987 has quit IRC20:57
chair6nice!20:57
sigmavirus24browne: hope my review comment wasn't too terrible :P20:57
brownesigmavirus24: haha20:57
sigmavirus24I'll take that as a "how rude!"20:58
brownenah, thick skin here20:58
*** elo has quit IRC21:00
openstackgerritMerged openstack/bandit: Ensure error exit codes fail integrations  https://review.openstack.org/28156021:02
sigmavirus24lol21:02
sigmavirus24browne: ^^21:02
*** jass93 has joined #openstack-security21:16
browneyay!!!21:22
brownetime to release bandit 1.0!21:22
sigmavirus24who does that?21:25
brownetmcpeak i believe21:30
*** mvaldes1 has left #openstack-security21:33
*** bpokorny has quit IRC21:43
*** cjschaef has quit IRC21:53
*** markvoelker_ has joined #openstack-security22:01
*** tkelsey has joined #openstack-security22:07
*** tkelsey has quit IRC22:11
*** jmckind has quit IRC22:12
*** sigmavirus24 is now known as sigmavirus24_awa22:13
*** edmondsw has quit IRC22:15
*** ninag has quit IRC22:16
*** browne has quit IRC22:28
*** ametts has quit IRC22:28
*** jass93 has quit IRC22:37
*** markvoelker_ has quit IRC22:39
*** austin987 has joined #openstack-security22:53
*** ccneill has quit IRC23:13
*** avarner has quit IRC23:24
« Thursday, 2016-03-31 Index Saturday, 2016-04-02 »

Generated by irclog2html.py 2.14.0 by Marius Gedminas - find it at mg.pov.lt!