Wednesday, 2016-08-17

« Tuesday, 2016-08-16 Index Thursday, 2016-08-18 »
dstanekccneill: i some ideas for a fix. maybe after these other bugs i'm working on00:01
*** ccneill has quit IRC00:16
*** vinaypotluri has quit IRC00:21
*** hockeynut has joined #openstack-security00:22
*** knangia has quit IRC00:31
*** hockeynut has quit IRC01:02
*** hockeynut has joined #openstack-security01:02
*** zhh has joined #openstack-security01:18
*** dave-mccowan has joined #openstack-security01:21
*** sdake has quit IRC02:13
*** sdake has joined #openstack-security02:13
*** elo has quit IRC02:19
*** yuanying has quit IRC02:50
*** elo has joined #openstack-security02:50
openstackgerritStanislaw Pitucha proposed openstack/bandit: Fix blacklist filtering  https://review.openstack.org/35577202:52
openstackgerritStanislaw Pitucha proposed openstack/bandit: Update defusedxml notification  https://review.openstack.org/35619903:15
openstackgerritStanislaw Pitucha proposed openstack/bandit: Update defusedxml notification  https://review.openstack.org/35619903:17
*** sdake has quit IRC03:34
*** jeisson has joined #openstack-security03:35
*** dave-mccowan has quit IRC03:38
*** jeisson has left #openstack-security03:38
*** yuanying has joined #openstack-security03:49
*** yuanying has quit IRC03:55
*** dikonoor has joined #openstack-security03:57
*** hockeynut has quit IRC04:03
*** yuanying has joined #openstack-security04:16
openstackgerritRahul U Nair proposed openstack/syntribos: Fixed a bug in runner  https://review.openstack.org/35621704:20
openstackgerritRahul U Nair proposed openstack/syntribos: Fixed a bug in runner  https://review.openstack.org/35621704:23
openstackgerritMerged openstack/syntribos: Fixed a bug in runner  https://review.openstack.org/35621704:42
*** yuanying_ has joined #openstack-security05:29
*** yuanying has quit IRC05:29
*** liverpooler has joined #openstack-security05:40
*** rcernin has joined #openstack-security05:46
*** zhh has quit IRC06:11
*** zhh has joined #openstack-security06:16
*** markvoelker has quit IRC07:00
*** tesseract- has joined #openstack-security07:00
*** jamielennox is now known as jamielennox|away07:45
*** markvoelker has joined #openstack-security08:00
*** markvoelker has quit IRC08:05
*** jamielennox|away is now known as jamielennox08:50
*** elo has quit IRC08:52
*** markvoelker has joined #openstack-security09:01
*** elo has joined #openstack-security09:02
*** markvoelker has quit IRC09:06
*** elo has quit IRC09:12
*** elo has joined #openstack-security09:13
*** jamielennox is now known as jamielennox|away09:43
*** elo has quit IRC09:46
*** elo has joined #openstack-security09:50
*** elo has quit IRC09:55
*** dikonoor has quit IRC09:56
*** openstack has joined #openstack-security10:16
*** sdake_ has quit IRC10:18
*** sdake_ has joined #openstack-security10:19
*** sdake has quit IRC10:19
*** shohel1 has joined #openstack-security11:13
*** shohel has quit IRC11:13
*** sdake_ is now known as sdake11:24
*** dave-mccowan has joined #openstack-security11:46
*** sdake_ has joined #openstack-security12:01
*** sdake has quit IRC12:05
*** sdake_ is now known as sdake12:05
*** markvoelker has joined #openstack-security12:09
*** jamielennox|away is now known as jamielennox12:11
*** elo has joined #openstack-security12:16
*** zhh has quit IRC12:33
*** jass93 has quit IRC12:38
*** Gr33nW0lf has joined #openstack-security13:20
*** Gr33nW0lf has quit IRC13:21
openstackgerritMerged openstack/bandit: Update defusedxml notification  https://review.openstack.org/35619913:21
*** cleong has joined #openstack-security13:33
*** edmondsw has joined #openstack-security13:37
*** ametts has joined #openstack-security13:40
*** shohel1 has quit IRC13:48
*** sdake has quit IRC13:50
*** mvaldes has joined #openstack-security13:58
*** sdake_ has joined #openstack-security14:01
*** _elmiko is now known as elmiko14:06
*** crystal has joined #openstack-security14:12
*** crystal is now known as Guest4885314:13
*** hockeynut has joined #openstack-security14:20
*** edtubill has joined #openstack-security14:35
hyakuheiinfo for the midcycle https://etherpad.openstack.org/p/barbican-security-midcycle-N14:36
*** diazjf has joined #openstack-security14:36
unrahulCcneill u @ibm?14:43
unrahulWe are waiting outside in the lobby14:44
*** diazjf has quit IRC14:44
hyakuheiHey. Fernando is on his way.14:44
unrahulAwesome hyakuhei!14:44
*** Guest48853 is now known as szh14:45
*** elo has quit IRC14:59
*** openstackgerrit has quit IRC15:03
*** openstackgerrit has joined #openstack-security15:04
*** mdong has joined #openstack-security15:07
*** diazjf has joined #openstack-security15:23
*** mdong has quit IRC15:27
*** mdong has joined #openstack-security15:28
*** vinaypotluri has joined #openstack-security15:30
*** szh has quit IRC15:31
hyakuheiunrahul so you're with the intel folks?15:31
*** kfarr has joined #openstack-security15:33
mdonghttps://etherpad.openstack.org/p/syntribos-overview15:33
vinaypotlurihttps://etherpad.openstack.org/p/syntribos-overview15:33
*** knangia has joined #openstack-security15:33
*** ccneill has joined #openstack-security15:33
*** tmcpeak has joined #openstack-security15:33
redrobothttps://hangouts.google.com/call/tcl3ze55djdrrgsjdml6jxe46ue15:34
redrobotccneill ^^15:34
*** aastha has joined #openstack-security15:36
*** rcernin has quit IRC15:58
*** sdake_ is now known as sdake16:00
*** sdake is now known as sdake_16:00
openstackgerritRobert Clark proposed openstack/security-analysis: Adding .DS_Store to .gitignore  https://review.openstack.org/35657416:07
*** Cormite has joined #openstack-security16:10
*** Cormite has quit IRC16:15
*** Cormite has joined #openstack-security16:15
*** Cormite has quit IRC16:22
openstackgerritMerged openstack/security-analysis: Adding .DS_Store to .gitignore  https://review.openstack.org/35657416:22
*** Cormite has joined #openstack-security16:22
*** Cormite has quit IRC16:23
*** Cormite has joined #openstack-security16:24
diazjfhttps://github.com/openstack/barbican/blob/master/doc/source/setup/dev.rst16:26
kfarrccneill, if you want to launch barbican w devstack, you can use a local.conf like this one: https://github.com/openstack/barbican/blob/master/devstack/local.conf.example16:27
kfarr^^ it only enables rabbit, mysql, keystone, and barbican (disables all others)16:27
kfarrand on line 4, should probably use stable/mitaka instead of stable/liberty.  or remove the stable/* part to download the latest master16:28
*** Cormite has quit IRC16:32
*** Cormite has joined #openstack-security16:32
*** tmcpeak has quit IRC16:40
*** diazjf has quit IRC16:41
*** mdong has quit IRC16:41
*** ccneill has quit IRC16:46
*** edtubill has quit IRC16:46
*** kfarr has quit IRC16:46
*** singlethink has joined #openstack-security16:55
*** tesseract- has quit IRC17:00
*** liverpooler has quit IRC17:07
*** mvaldes has quit IRC17:24
*** rcernin has joined #openstack-security17:26
*** hockeynut has quit IRC17:48
*** hockeynut has joined #openstack-security17:59
*** Gr33nW0lf has joined #openstack-security18:14
*** Gr33nW0lf has quit IRC18:17
*** mvaldes has joined #openstack-security18:28
*** mdong has joined #openstack-security18:35
*** ccneill has joined #openstack-security18:35
*** tmcpeak has joined #openstack-security18:36
*** Cormite has quit IRC18:36
*** liverpooler has joined #openstack-security18:38
*** tmcpeak1 has joined #openstack-security18:45
*** ametts has quit IRC18:45
hyakuheiOSSN bugs #link https://bugs.launchpad.net/ossn18:47
hyakuheiOSSN Process #link https://wiki.openstack.org/wiki/Security/Security_Note_Process18:47
hyakuheiOSSN list #link https://wiki.openstack.org/wiki/Security_Notes18:48
*** tmcpeak has quit IRC18:48
*** ametts has joined #openstack-security18:56
*** jamielennox has quit IRC19:06
*** edtubill has joined #openstack-security19:06
*** diazjf has joined #openstack-security19:09
*** jamielennox has joined #openstack-security19:09
tmcpeak1lhinds: around?19:10
*** Gr33nW0lf has joined #openstack-security19:10
*** Gr33nW0lf has quit IRC19:19
*** edmondsw has quit IRC19:28
hyakuheimichaelxin you around?19:32
hyakuheiI wanted to know what's up with https://bugs.launchpad.net/ossn/+bug/150784119:32
openstackLaunchpad bug 1507841 in OpenStack Security Notes "mongodb guest instance allows any user to connect" [Undecided,Confirmed] - Assigned to Michael Xin (michael-xin)19:32
*** liverpooler has quit IRC19:42
*** mvaldes has quit IRC19:52
openstackgerritTravis McPeak proposed openstack/security-doc: Adding author field to the OSSN template  https://review.openstack.org/35667819:57
*** mvaldes has joined #openstack-security20:00
*** diazjf has quit IRC20:01
openstackgerritRahul U Nair proposed openstack/syntribos: Adding a gitignore entry for dstore  https://review.openstack.org/35668420:04
openstackgerritDoug Chivers proposed openstack/security-analysis: Designate third-party security review artifacts  https://review.openstack.org/35602520:10
openstackgerritMerged openstack/security-doc: Adding author field to the OSSN template  https://review.openstack.org/35667820:14
hyakuheiGerrit is slow today.20:14
*** diazjf has joined #openstack-security20:15
openstackgerritRobert Clark proposed openstack/security-doc: Updating ML information  https://review.openstack.org/35668920:19
hyakuheitmcpeak1 ^^20:19
openstackgerritMerged openstack/security-doc: Updating ML information  https://review.openstack.org/35668920:34
*** rcernin has quit IRC20:40
*** cleong has quit IRC20:46
openstackgerritVinay Potluri proposed openstack/security-doc: Updated OSSN-0072  https://review.openstack.org/35671220:55
hyakuheitmcpeak1 elmiko lhinds ^^^ contribution from vinaypotluri - it's his first OSSN so play nice! :P20:56
vinaypotluri:)20:56
elmikohyakuhei: ack20:57
* elmiko starts sharpening his axe20:57
tmcpeak1vinaypotluri: awesome!20:57
vinaypotlurithank you tmcpeak1   :)20:58
*** edmondsw has joined #openstack-security20:58
*** edtubill has quit IRC21:02
hyakuheilhinds you here?21:04
elmikovinaypotluri: ok, added a few comments for you =)21:04
*** diazjf has quit IRC21:06
*** kfarr has joined #openstack-security21:09
*** diazjf has joined #openstack-security21:10
*** edtubill has joined #openstack-security21:11
*** kfarr has quit IRC21:13
openstackgerritAastha Dixit proposed openstack/syntribos: Sorting list of tests  https://review.openstack.org/35673521:16
hyakuheielmiko tmcpeak1 lhinds ^^^^21:19
hyakuheiI think we've got people stealing all lhinds bugs here....21:19
hyakuheiYay opensource :)21:20
hyakuheiI think because the bugs weren't marked as "in-progress" - I think I need to fix some docs.21:22
elmikohyakuhei: haven't been following syntribos dev, is that one lhinds reported?21:23
diazjfunrahul https://github.com/openstack/barbican/blob/master/doc/source/setup/dev.rst21:25
diazjfunrahul https://github.com/openstack/barbican/blob/master/doc/source/setup/keystone.rst21:26
vinaypotlurielmiko:  in the last comment you asked me if I can give an extended advice for an operator ...21:27
vinaypotlurido i need to mention the steps to disable ipv6 ?21:27
elmikoif that is most appropriate, in the past we have given code samples, or example configurations, something tangible to help the reader understand how to mitigate the described attack21:28
elmikoi don't the domain as well as you do, but reading that note made sense to me, but i was left wondering how i would implement what you suggest at the end21:29
elmiko*i don't know*21:29
elmikodoes that make sense?21:29
vinaypotluricool21:30
elmiko=)21:30
vinaypotluriwill update that21:30
vinaypotluri:)21:30
elmikothanks!21:30
vinaypotlurielmiko:   do you think adding a reference link to a stackoverflow page or any page also help ?21:31
elmikovinaypotluri: definitely, references are always appreciated when they fit21:32
vinaypotluriawesome21:33
unrahulthanks diazjf , trying to set it up now21:40
hyakuheiSo I've added some more process/documentation to https://wiki.openstack.org/wiki/Security/Security_Note_Process in response to the feedback we've had today. It's still a bit ropey in places and some text probably needs diagrams to help it along.21:42
*** mvaldes has quit IRC21:43
elmikohyakuhei++21:44
elmikohmm21:45
elmikomt21:45
*** edtubill has quit IRC21:51
*** diazjf has quit IRC21:51
*** ccneill has quit IRC21:56
hyakuheivinaypotluri unrahul et al - dinner info in the etherpad: https://etherpad.openstack.org/p/barbican-security-midcycle-N21:57
elmikototally forgot you all are at the midcycle... /me facepalm21:59
openstackgerritVinay Potluri proposed openstack/security-doc: Updated OSSN-0072  https://review.openstack.org/35671222:00
*** ametts has quit IRC22:04
*** mdong has quit IRC22:05
*** sdake_ has quit IRC22:06
*** tmcpeak1 has quit IRC22:08
openstackgerritMerged openstack/security-analysis: Adding templates for security review artifacts  https://review.openstack.org/35613022:15
*** elo has joined #openstack-security22:18
*** tmcpeak has joined #openstack-security22:21
*** sdake has joined #openstack-security22:21
*** hockeynut has quit IRC22:22
*** sdake has quit IRC22:38
unrahulThanks hyakuhei22:38
*** jass93 has joined #openstack-security22:47
*** singlethink has quit IRC22:59
*** elmiko is now known as _elmiko23:12
*** tmcpeak has quit IRC23:40
« Tuesday, 2016-08-16 Index Thursday, 2016-08-18 »

Generated by irclog2html.py 2.14.0 by Marius Gedminas - find it at mg.pov.lt!