Tuesday, 2014-07-08

« Monday, 2014-07-07 Index Wednesday, 2014-07-09 »
*** ved_lad has quit IRC00:28
*** jg10 has joined #openstack-security02:50
*** jg10 has left #openstack-security02:50
*** bdpayne has joined #openstack-security04:42
*** voodookid has joined #openstack-security05:02
*** bdpayne has quit IRC05:19
*** bdpayne has joined #openstack-security05:27
*** voodookid has quit IRC05:39
openstackgerritOpenStack Proposal Bot proposed a change to openstack/security-doc: Imported Translations from Transifex  https://review.openstack.org/10536406:10
*** bdpayne has quit IRC06:12
openstackgerritA change was merged to openstack/security-doc: Imported Translations from Transifex  https://review.openstack.org/10536406:28
*** mariaalejandrafa has joined #openstack-security06:41
*** j03h has joined #openstack-security13:07
*** bknudson has joined #openstack-security13:13
*** voodookid has joined #openstack-security13:26
*** j03h has quit IRC13:55
*** j03h has joined #openstack-security13:55
*** voodookid has quit IRC14:11
*** paulmo has joined #openstack-security14:28
*** j03h has left #openstack-security15:32
*** bknudson has quit IRC15:38
*** voodookid has joined #openstack-security15:55
*** bdpayne has joined #openstack-security16:40
*** tmcpeak has joined #openstack-security16:43
*** voodookid has quit IRC16:57
*** bdpayne has quit IRC17:03
*** ved_lad has joined #openstack-security17:04
*** bdpayne has joined #openstack-security17:28
*** bdpayne_ has joined #openstack-security17:30
*** bdpayne has quit IRC17:34
*** bdpayne_ has quit IRC18:12
*** bdpayne has joined #openstack-security18:13
tmcpeakhave you guys ever seen/heard of this:18:13
tmcpeakhttp://www.defensecode.com/public/DefenseCode_Unix_WildCards_Gone_Wild.txt18:13
tmcpeak?18:13
paulmoNope but that is interesting reading18:16
tmcpeakyeah good stuff huh?18:16
tmcpeakI was thinking it might be good for a gate test18:16
paulmoThat chown one was like… woe! :)18:17
tmcpeakhaha yeah!18:19
paulmo… and that "-rf" file… ugh18:19
tmcpeakyeah! cool stuff :)18:21
paulmoMakes me want to write my own linux commands suddenly18:25
tmcpeakhahaha, make the problem worse :)18:25
paulmoThat is a very likely outcome18:29
*** voodookid has joined #openstack-security18:41
*** voodookid has quit IRC20:18
*** tmcpeak has left #openstack-security21:02
*** tmcpeak has joined #openstack-security21:03
tmcpeakso… for dangerous file permissions, what do you guys think we want to look at?21:09
tmcpeakI'm thinking only the "world" part, and what, RWX, RW...?21:10
*** ved_lad has quit IRC21:25
*** voodookid has joined #openstack-security21:42
bdpayneworld write is an immediate red flag, in my book21:48
bdpayneworld read, only on sensitive data21:48
bdpaynethat is... it is only a red flag on sensitive data21:48
tmcpeakbdpayne: so for our automated gate checking21:50
tmcpeakacceptable values for W: 1?, 4, 5?21:51
bdpayneI haven't been following that work too closely... can you tell if the file has sensitive data in it?21:51
tmcpeakbdpayne: nope, it's a line by line check21:52
bdpayneFor example, reading it and looking for key material or ??21:52
bdpayneahh21:52
bdpayneso I would just flag anything that is world writable21:52
tmcpeakok cool21:52
bdpaynethat should have zero false positives21:52
tmcpeakyeah, that's what we're going for21:52
tmcpeakzero false positives21:52
tmcpeakcool, thanks21:52
*** voodookid has quit IRC22:03
*** tmcpeak has quit IRC22:05
*** tmcpeak has joined #openstack-security22:10
*** ved_lad has joined #openstack-security22:44
*** paulmo has quit IRC23:06
*** ved_lad has quit IRC23:12
*** bdpayne has quit IRC23:24
*** bdpayne has joined #openstack-security23:26
*** voodookid has joined #openstack-security23:34
*** bdpayne has quit IRC23:37
*** voodookid has quit IRC23:49
« Monday, 2014-07-07 Index Wednesday, 2014-07-09 »

Generated by irclog2html.py 2.14.0 by Marius Gedminas - find it at mg.pov.lt!