Thursday, 2015-02-19

« Wednesday, 2015-02-18 Index Friday, 2015-02-20 »
openstackgerritRobert Clark proposed stackforge/anchor: Fixed Tox Errors and added validation of domain unit tests  https://review.openstack.org/15720000:02
PaulMhttp://amoffat.github.io/sh/ < this is very clever, and totally terrifying00:11
openstackgerritMerged stackforge/anchor: Fixed Tox Errors and added validation of domain unit tests  https://review.openstack.org/15720000:14
PaulMhttp://www.cs.dartmouth.edu/~sergey/langsec/00:16
*** markvoelker has quit IRC00:19
hyakuheitkelsey: oi!00:19
*** voodookid has quit IRC00:20
*** _amrith_ is now known as amrith00:23
*** sicarie has quit IRC00:29
*** tmcpeak has quit IRC00:33
*** tmcpeak has joined #openstack-security00:35
*** sicarie has joined #openstack-security00:36
*** JAHoagie has quit IRC00:41
*** bdpayne has quit IRC00:42
*** tmcpeak has quit IRC00:43
openstackgerritBryan D. Payne proposed stackforge/anchor: Tests for certificate_ops.parse_csr  https://review.openstack.org/15721500:45
*** tkelsey has quit IRC00:49
*** hyakuhei has quit IRC00:51
*** PaulM has left #openstack-security00:52
*** markvoelker has joined #openstack-security00:52
*** browne has quit IRC00:53
*** ljfisher has quit IRC00:53
*** sicarie has quit IRC00:55
*** JAHoagie has joined #openstack-security00:56
*** bknudson has quit IRC00:58
*** markvoelker has quit IRC00:59
*** JAHoagie has quit IRC01:14
*** markvoelker has joined #openstack-security01:29
openstackgerritShellee Arnold proposed openstack/security-doc: Simple capitalization fix  https://review.openstack.org/15722902:01
*** salv-orlando has quit IRC02:40
*** ljfisher has joined #openstack-security02:54
*** bpokorny has quit IRC03:01
*** hyakuhei has joined #openstack-security03:02
*** salv-orlando has joined #openstack-security03:41
*** fletcher has joined #openstack-security03:52
openstackgerritRobert Clark proposed stackforge/anchor: Changed validator unit tests to use mock for network operations Also used textwrap to clean up certificate blocks  https://review.openstack.org/15725003:53
*** tkelsey has joined #openstack-security03:59
openstackgerritMerged stackforge/anchor: Make static password checking closer to constant time  https://review.openstack.org/15686004:01
openstackgerritRobert Clark proposed stackforge/anchor: Changed validator unit tests to use mock for network operations Also used textwrap to clean up certificate blocks  https://review.openstack.org/15725004:04
openstackgerritRobert Clark proposed stackforge/anchor: Changed validator unit tests to use mock for network operations  https://review.openstack.org/15725004:05
openstackgerritMerged stackforge/anchor: Tests for certificate_ops.parse_csr  https://review.openstack.org/15721504:06
*** JAHoagie has joined #openstack-security04:15
openstackgerritJamie Finnigan proposed stackforge/bandit: Further decorator changes and plugin migration  https://review.openstack.org/15725204:19
*** salv-orlando has quit IRC04:31
*** markvoelker has quit IRC04:42
*** markvoelker has joined #openstack-security04:42
openstackgerritJamie Finnigan proposed stackforge/bandit: Further decorator changes and plugin migration  https://review.openstack.org/15725204:43
*** markvoelker has quit IRC04:46
openstackgerritMerged stackforge/bandit: Removing un-reachable code  https://review.openstack.org/15718604:50
*** markvoelker has joined #openstack-security05:13
*** tkelsey has quit IRC05:17
*** markvoelker has quit IRC05:17
*** JAHoagie has quit IRC05:46
*** tkelsey has joined #openstack-security05:47
openstackgerritTim Kelsey proposed stackforge/anchor: Adding more tests against X509 certificates  https://review.openstack.org/15726005:50
openstackgerritJamie Finnigan proposed stackforge/bandit: Further decorator changes and plugin migration  https://review.openstack.org/15725205:58
openstackgerritOpenStack Proposal Bot proposed openstack/security-doc: Imported Translations from Transifex  https://review.openstack.org/15726406:01
*** markvoelker has joined #openstack-security06:13
*** salv-orlando has joined #openstack-security06:15
*** markvoelker has quit IRC06:18
*** tkelsey has quit IRC06:22
*** ljfisher has quit IRC06:39
openstackgerritRobert Clark proposed stackforge/anchor: Work correctly hmac.compare_digest isn't available  https://review.openstack.org/15727406:40
openstackgerritRobert Clark proposed stackforge/anchor: Work correctly if hmac.compare_digest isn't available  https://review.openstack.org/15727406:45
*** tkelsey has joined #openstack-security06:49
openstackgerritRobert Clark proposed stackforge/anchor: Work correctly if hmac.compare_digest isn't available  https://review.openstack.org/15727406:51
*** tkelsey has quit IRC07:03
*** JAHoagie has joined #openstack-security07:08
*** JAHoagie has quit IRC07:12
*** markvoelker has joined #openstack-security07:14
*** hyakuhei has quit IRC07:16
*** markvoelker has quit IRC07:19
*** salv-orlando has quit IRC07:26
*** fletcher has quit IRC07:30
*** browne has joined #openstack-security07:41
openstackgerritMerged openstack/security-doc: Imported Translations from Transifex  https://review.openstack.org/15726408:00
*** markvoelker has joined #openstack-security08:15
*** markvoelker has quit IRC08:20
*** browne has quit IRC08:20
*** salv-orlando has joined #openstack-security08:25
*** elo has joined #openstack-security08:32
*** salv-orlando has quit IRC08:52
*** salv-orlando has joined #openstack-security08:52
*** JAHoagie has joined #openstack-security09:08
*** JAHoagie has quit IRC09:13
*** markvoelker has joined #openstack-security09:16
*** markvoelker has quit IRC09:21
*** salv-orlando has quit IRC09:29
*** salv-orlando has joined #openstack-security09:33
*** plsph has joined #openstack-security09:56
*** markvoelker has joined #openstack-security10:17
*** markvoelker has quit IRC10:22
*** plsph has quit IRC11:01
*** JAHoagie has joined #openstack-security11:08
*** salv-orlando has quit IRC11:11
*** salv-orlando has joined #openstack-security11:12
*** JAHoagie has quit IRC11:12
*** markvoelker has joined #openstack-security11:18
*** markvoelker has quit IRC11:23
*** plsph has joined #openstack-security11:30
*** salv-orlando has quit IRC11:31
*** salv-orlando has joined #openstack-security11:31
*** JAHoagie has joined #openstack-security12:08
*** JAHoagie has quit IRC12:13
*** markvoelker has joined #openstack-security12:19
*** plsph has quit IRC12:20
*** markvoelker has quit IRC12:24
*** salv-orlando has quit IRC12:31
*** salv-orlando has joined #openstack-security12:31
*** salv-orlando has quit IRC12:40
*** salv-orlando has joined #openstack-security12:41
*** salv-orlando has quit IRC12:49
*** markvoelker has joined #openstack-security13:02
*** JAHoagie has joined #openstack-security13:08
*** JAHoagie has quit IRC13:12
*** markvoelker_ has joined #openstack-security13:42
*** markvoelker has quit IRC13:42
*** salv-orlando has joined #openstack-security13:50
*** dave-mccowan has joined #openstack-security13:58
*** JAHoagie has joined #openstack-security14:08
*** JAHoagie has quit IRC14:13
*** JAHoagie has joined #openstack-security14:17
*** browne has joined #openstack-security14:27
*** markvoelker_ has quit IRC14:38
*** salv-orlando has quit IRC14:39
*** markvoelker has joined #openstack-security14:39
*** salv-orlando has joined #openstack-security14:40
*** singlethink has joined #openstack-security14:40
*** browne has quit IRC14:56
*** elo has quit IRC15:03
*** hyakuhei has joined #openstack-security15:17
*** JAHoagie has quit IRC15:17
*** ljfisher has joined #openstack-security15:52
*** plsph has joined #openstack-security15:54
*** hyakuhei has quit IRC16:01
*** plsph has quit IRC16:03
*** elo has joined #openstack-security16:04
*** JAHoagie has joined #openstack-security16:06
*** tmcpeak has joined #openstack-security16:07
*** bpokorny has joined #openstack-security16:08
*** ljfisher has quit IRC16:11
openstackgerritMerged stackforge/bandit: Further decorator changes and plugin migration  https://review.openstack.org/15725216:16
*** plsph has joined #openstack-security16:18
*** plsph has quit IRC16:23
*** tmcpeak has quit IRC16:24
*** openstackgerrit has quit IRC16:36
*** openstackgerrit has joined #openstack-security16:36
*** ljfisher has joined #openstack-security16:49
*** hyakuhei has joined #openstack-security16:50
*** tkelsey has joined #openstack-security16:51
*** salv-orlando has quit IRC16:52
*** fletcher has joined #openstack-security17:02
*** tmcpeak has joined #openstack-security17:06
*** tmcpeak has quit IRC17:07
*** tmcpeak1 has joined #openstack-security17:07
*** gmurphy has joined #openstack-security17:09
hyakuheiBad Lenovo - BAD! http://www.bbc.com/news/technology-3153302817:10
*** browne has joined #openstack-security17:21
openstackgerritBryan D. Payne proposed stackforge/anchor: Ensure constant time compare works on older Python  https://review.openstack.org/15745517:22
openstackgerritShellee Arnold proposed openstack/security-doc: Fixes for grammatical errors  https://review.openstack.org/15745617:22
*** bknudson has joined #openstack-security17:26
hyakuheihttps://etherpad.openstack.org/p/ossg-summit-abstracts17:31
*** bdpayne has joined #openstack-security17:31
*** pdesai has joined #openstack-security17:32
*** dg_ has joined #openstack-security17:32
*** dave-mccowan has quit IRC17:33
*** ukbelch has joined #openstack-security17:33
hyakuheibdpayne: https://review.openstack.org/#/projects/openstack/security-doc,dashboards/important-changes:review-inbox-dashboard < I find this helps a lot17:37
openstackgerritMerged stackforge/anchor: Ensure constant time compare works on older Python  https://review.openstack.org/15745517:37
hyakuheibdpayne: https://etherpad.openstack.org/p/ossg-summit-abstracts17:38
bdpayneGood times -- http://www.zdnet.com/article/lenovo-accused-of-pushing-superfish-self-signed-mitm-proxy/17:39
chair6even gooder times .. http://blog.erratasec.com/2015/02/extracting-superfish-certificate.html17:43
*** salv-orlando has joined #openstack-security17:52
*** bpokorny_ has joined #openstack-security17:58
*** bpokorny has quit IRC18:01
openstackgerritMerged stackforge/anchor: Changed validator unit tests to use mock for network operations  https://review.openstack.org/15725018:01
openstackgerritMerged openstack/security-doc: Simple capitalization fix  https://review.openstack.org/15722918:10
openstackgerritMerged openstack/security-doc: Cleaned up introduction to SSL/TLS section  https://review.openstack.org/15714918:10
openstackgerritRobert Clark proposed stackforge/anchor: Adding more tests against X509 certificates  https://review.openstack.org/15726018:11
*** dg_ has quit IRC18:16
openstackgerritRob Fletcher proposed stackforge/bandit: Adds JSON output functionality  https://review.openstack.org/15747618:17
*** dg_ has joined #openstack-security18:18
bdpaynehyakuhei Could you review https://review.openstack.org/#/c/157146/?18:26
openstackgerritPriti Desai proposed openstack/security-doc: Adding Security Checklist  https://review.openstack.org/15716418:27
chair6ooo, bandit has an lwn article.. http://lwn.net/SubscriberLink/633494/c8396b387347f9a5/18:29
openstackgerritTim Kelsey proposed stackforge/anchor: Wrapping test data more cleanly  https://review.openstack.org/15748318:33
openstackgerritShellee Arnold proposed openstack/security-doc: Fixes for ambiguity in text  https://review.openstack.org/15748418:35
*** bpokorny has joined #openstack-security18:41
hyakuhei#link https://github.com/hyakuhei/OSSG-Security-Practices18:41
hyakuhei#link https://etherpad.openstack.org/p/ossg-security-practices18:42
*** bpokorny_ has quit IRC18:44
*** salv-orlando has quit IRC18:57
openstackgerritRob Fletcher proposed stackforge/bandit: Adds JSON output functionality  https://review.openstack.org/15747619:07
*** elo1 has joined #openstack-security19:13
*** elo has quit IRC19:16
*** bpokorny_ has joined #openstack-security19:18
*** bpokorny has quit IRC19:21
openstackgerritShellee Arnold proposed openstack/security-doc: Fixes for grammatical errors  https://review.openstack.org/15745619:21
*** elo has joined #openstack-security19:27
openstackgerritMerged openstack/security-doc: Update TLS config recommendations  https://review.openstack.org/15714619:27
*** ljfisher has quit IRC19:28
*** elo1 has quit IRC19:29
openstackgerritRob Fletcher proposed stackforge/bandit: Adds JSON output functionality  https://review.openstack.org/15747619:29
*** elo1 has joined #openstack-security19:30
*** bpokorny has joined #openstack-security19:31
*** salv-orlando has joined #openstack-security19:32
*** elo has quit IRC19:33
openstackgerritShellee Arnold proposed openstack/security-doc: Fixes for ambiguity in text  https://review.openstack.org/15748419:33
openstackgerritRob Fletcher proposed stackforge/bandit: Adds JSON output functionality  https://review.openstack.org/15747619:33
*** ljfisher has joined #openstack-security19:34
*** bpokorny_ has quit IRC19:34
openstackgerritNathaniel Dillon proposed openstack/security-doc: Reworked filters section to highlight security details.  https://review.openstack.org/15596319:41
*** nkinder is now known as nkinder_away19:46
*** elo1 has quit IRC19:48
*** elo1 has joined #openstack-security19:49
openstackgerritRob Fletcher proposed stackforge/bandit: Adds JSON output functionality  https://review.openstack.org/15747619:51
*** dg_ has quit IRC19:53
*** bpokorny_ has joined #openstack-security20:03
openstackgerritNathaniel Dillon proposed openstack/security-doc: Reworked filters section to highlight security details.  https://review.openstack.org/15596320:04
*** bpokorny has quit IRC20:06
*** dave-mccowan has joined #openstack-security20:12
*** elo2 has joined #openstack-security20:14
*** elo1 has quit IRC20:16
*** coasterz is now known as coreybits20:19
*** tkelsey has quit IRC20:20
openstackgerritNathaniel Dillon proposed openstack/security-doc: Reworked filters section to highlight security details.  https://review.openstack.org/15596320:21
openstackgerritRob Fletcher proposed stackforge/bandit: Adds JSON output functionality  https://review.openstack.org/15747620:27
*** elo2 has quit IRC20:39
ljfisherSummary of our rootwrap discussions: https://etherpad.openstack.org/p/ossg-rootwrap20:41
*** tkelsey has joined #openstack-security20:42
*** bpokorny has joined #openstack-security20:54
*** bpokorny_ has quit IRC20:57
*** dg_ has joined #openstack-security21:18
dg_bdpayne http://bikebuilder.brompton.com/21:18
bdpaynedg_ don't tempt me21:24
*** dg_ has quit IRC21:39
openstackgerritBryan D. Payne proposed stackforge/anchor: Tests for validate_csr in certificate_ops  https://review.openstack.org/15754121:51
openstackgerritShellee Arnold proposed openstack/security-doc: Fix for lack of punctuation  https://review.openstack.org/15754421:54
*** sicarie has joined #openstack-security22:00
sicariebdpayne: #link https://review.openstack.org/#/c/155963/22:00
openstackgerritMichael McCune proposed openstack/security-doc: Adding data processing chapter  https://review.openstack.org/15505222:01
*** bpokorny has quit IRC22:01
openstackgerritPriti Desai proposed openstack/security-doc: Enhancement with Additional ways to configure SSL  https://review.openstack.org/15755022:07
openstackgerritNathaniel Dillon proposed openstack/security-doc: Reworked filters section to highlight security details.  https://review.openstack.org/15596322:08
openstackgerritTravis McPeak proposed stackforge/bandit: Adding file discovery and directory exclusion  https://review.openstack.org/15755222:09
openstackgerritBryan D. Payne proposed stackforge/anchor: Tests for validate_csr in certificate_ops  https://review.openstack.org/15754122:14
*** singlethink has quit IRC22:15
*** tmcpeak1 has quit IRC22:16
openstackgerritEric Brown proposed stackforge/bandit: Add INFO check for any use of rootwrap  https://review.openstack.org/15755622:20
*** sicarie has quit IRC22:20
*** tmcpeak has joined #openstack-security22:20
*** sicarie has joined #openstack-security22:21
*** bpokorny has joined #openstack-security22:21
*** bpokorny has quit IRC22:22
*** bpokorny has joined #openstack-security22:22
openstackgerritNathaniel Dillon proposed openstack/security-doc: Reworked filters section to highlight security details.  https://review.openstack.org/15596322:27
openstackgerritTravis McPeak proposed stackforge/bandit: Adding file discovery and directory exclusion  https://review.openstack.org/15755222:27
openstackgerritEric Brown proposed stackforge/bandit: Add INFO check for any use of rootwrap  https://review.openstack.org/15755622:29
openstackgerritEric Brown proposed stackforge/bandit: Add INFO check for any use of rootwrap  https://review.openstack.org/15755622:31
sicarie#link https://defcon.org/images/defcon-22/dc-22-presentations/Mcmillan/DEFCON-22-Paul-Mcmillan-Attacking-the-IOT-Using-timing-attacks.pdf22:32
openstackgerritRob Fletcher proposed stackforge/bandit: Adds JSON output functionality  https://review.openstack.org/15747622:36
openstackgerritRob Fletcher proposed stackforge/bandit: Adds JSON output functionality  https://review.openstack.org/15747622:39
openstackgerritPriti Desai proposed openstack/security-doc: Enhancement - Additional ways to configure SSL  https://review.openstack.org/15755022:40
*** hyakuhei has quit IRC22:45
*** hyakuhei has joined #openstack-security22:48
openstackgerritBryan D. Payne proposed stackforge/anchor: Cleanup parse_csr code in certificate_ops module  https://review.openstack.org/15757022:52
*** hyakuhei has quit IRC22:54
*** hyakuhei has joined #openstack-security22:56
*** bpokorny has quit IRC23:17
*** sicarie has quit IRC23:27
*** bpokorny has joined #openstack-security23:28
*** sicarie has joined #openstack-security23:28
*** PaulM has joined #openstack-security23:29
PaulMhttps://github.com/PaulMcMillan/2014_ekoparty/tree/master/hue < code from the talk I just gave23:29
PaulMthe readme more or less tells you how to get things working, the presentation is a level up from that23:30
PaulMThis file is a good example of what a successful run looks like. You can see the KS values jumping around a bit, then settling down as they converge https://github.com/PaulMcMillan/2014_ekoparty/blob/master/preso/SUCCESS223:31
PaulMhttps://github.com/PaulMcMillan/2014_ekoparty/blob/master/preso/SUCCESS2#L322-L350 - you can see here how the p-values for everything compared to guess 6 are low, while most of the other comparisons have fairly high values23:32
openstackgerritMerged stackforge/anchor: Adding more tests against X509 certificates  https://review.openstack.org/15726023:34
openstackgerritMerged stackforge/anchor: Tests for validate_csr in certificate_ops  https://review.openstack.org/15754123:34
openstackgerritMerged stackforge/anchor: Cleanup parse_csr code in certificate_ops module  https://review.openstack.org/15757023:34
*** bpokorny has quit IRC23:36
*** salv-orlando has quit IRC23:39
*** bdpayne has quit IRC23:39
openstackgerritMerged stackforge/bandit: Add INFO check for any use of rootwrap  https://review.openstack.org/15755623:39
openstackgerritBryan D. Payne proposed stackforge/anchor: Make tox flake8 setup a little more strict  https://review.openstack.org/15759823:40
*** salv-orlando has joined #openstack-security23:40
openstackgerritTravis McPeak proposed stackforge/bandit: Adding file discovery and directory exclusion  https://review.openstack.org/15755223:45
*** PaulM has left #openstack-security23:46
*** tmcpeak has quit IRC23:47
*** markvoelker has quit IRC23:49
*** hyakuhei has quit IRC23:49
*** browne has quit IRC23:52
*** ljfisher has quit IRC23:52
*** sicarie has quit IRC23:53
*** ukbelch has quit IRC23:53
*** bknudson has quit IRC23:53
*** tkelsey has quit IRC23:55
*** fletcher has quit IRC23:57
*** pdesai has quit IRC23:58
« Wednesday, 2015-02-18 Index Friday, 2015-02-20 »

Generated by irclog2html.py 2.14.0 by Marius Gedminas - find it at mg.pov.lt!