Monday, 2016-02-22

« Sunday, 2016-02-21 Index Tuesday, 2016-02-23 »
*** subscope has quit IRC00:27
*** salv-orl_ has joined #openstack-security00:42
*** salv-orlando has quit IRC00:45
*** austin987 has joined #openstack-security00:59
*** salv-orl_ has quit IRC01:00
*** markvoelker has joined #openstack-security01:09
*** markvoelker has quit IRC01:13
*** bpokorny has joined #openstack-security01:19
*** ccneill has joined #openstack-security01:28
*** elo has joined #openstack-security01:45
*** winterisLeaving has quit IRC01:50
*** winterIsLeaving has joined #openstack-security01:50
*** bpokorny has quit IRC01:53
openstackgerritStanislaw Pitucha proposed openstack/anchor: Don't track autogenerated files  https://review.openstack.org/28292801:53
*** ccneill has quit IRC01:59
openstackgerritStanislaw Pitucha proposed openstack/anchor: Anchor is source-only, so build common py2/py3 wheel  https://review.openstack.org/28293202:13
*** salv-orlando has joined #openstack-security02:38
*** salv-orlando has quit IRC02:41
*** salv-orlando has joined #openstack-security02:55
*** salv-orlando has quit IRC03:01
*** markvoelker has joined #openstack-security03:09
*** markvoelker has quit IRC03:14
*** yuanying has quit IRC03:20
*** salv-orlando has joined #openstack-security03:57
*** salv-orlando has quit IRC04:04
*** yuanying has joined #openstack-security04:10
*** diazjf has joined #openstack-security04:16
*** bpokorny has joined #openstack-security04:22
*** dave-mcc_ has joined #openstack-security04:24
*** dave-mccowan has quit IRC04:25
*** dave-mcc_ has quit IRC04:28
*** bpokorny has quit IRC04:30
*** dave-mccowan has joined #openstack-security04:40
*** tkelsey has joined #openstack-security04:50
*** tkelsey has quit IRC04:54
*** markvoelker has joined #openstack-security05:10
*** markvoelker has quit IRC05:15
openstackgerritEric Brown proposed openstack/bandit: Some use of ftplib is properly secure  https://review.openstack.org/28295205:32
*** diazjf has quit IRC05:33
*** dave-mccowan has quit IRC05:37
*** tonycc3 has joined #openstack-security05:42
*** ccneill has joined #openstack-security05:55
*** ccneill has quit IRC06:00
*** tonycc3 has quit IRC06:06
*** salv-orlando has joined #openstack-security06:11
openstackgerritEric Brown proposed openstack/bandit: Ignore all .coverage files and extensions  https://review.openstack.org/28296006:13
*** salv-orlando has quit IRC06:14
*** salv-orlando has joined #openstack-security06:54
*** salv-orlando has quit IRC07:02
openstackgerritAndreas Jaeger proposed openstack/security-doc: DO NOT MERGE: testing bindep-based jobs  https://review.openstack.org/28298007:08
*** markvoelker has joined #openstack-security07:11
*** markvoelker has quit IRC07:15
*** 16WAACT9V has joined #openstack-security07:22
*** liverpooler has joined #openstack-security07:22
*** 32NAACSNA has joined #openstack-security07:22
*** winterIsLeaving has quit IRC07:25
*** salv-orlando has joined #openstack-security07:40
*** subscope has joined #openstack-security07:51
*** subscope has quit IRC07:51
*** jamielennox is now known as jamielennox|away07:52
*** jamielennox|away is now known as jamielennox08:02
*** pcaruana has joined #openstack-security08:05
*** subscope has joined #openstack-security08:07
*** subscope has quit IRC08:17
*** salv-orlando has quit IRC08:25
*** subscope has joined #openstack-security08:26
*** liverpoo1er has joined #openstack-security08:30
*** 16WAACT9V has quit IRC08:31
*** 32NAACSNA has quit IRC08:31
*** liverpooler has quit IRC08:31
*** liverpooler has joined #openstack-security08:31
*** subscope has quit IRC08:40
*** tkelsey has joined #openstack-security08:52
*** tkelsey has quit IRC08:56
*** subscope has joined #openstack-security09:00
*** tkelsey has joined #openstack-security09:01
*** markvoelker has joined #openstack-security09:12
*** markvoelker has quit IRC09:16
*** subscope has quit IRC09:25
*** subscope has joined #openstack-security09:29
*** tkelsey has quit IRC09:52
*** tkelsey has joined #openstack-security10:22
*** salv-orlando has joined #openstack-security10:26
*** salv-orlando has quit IRC10:30
*** winterIsLeaving has joined #openstack-security10:35
*** liverpooler has quit IRC10:39
openstackgerritMerged openstack/bandit: Ignore all .coverage files and extensions  https://review.openstack.org/28296010:39
*** elo has quit IRC10:41
*** subscope has quit IRC10:57
*** markvoelker has joined #openstack-security11:12
*** markvoelker has quit IRC11:17
*** subscope has joined #openstack-security11:30
*** salv-orlando has joined #openstack-security11:33
*** sigmavirus24_awa has quit IRC11:39
*** z has quit IRC11:40
*** kun_huang has quit IRC11:40
*** fyxim has quit IRC11:40
*** evand has quit IRC11:41
*** evand has joined #openstack-security11:42
*** salv-orlando has quit IRC11:43
*** z has joined #openstack-security11:43
*** fyxim has joined #openstack-security11:43
*** kun_huang has joined #openstack-security11:43
*** subscope has quit IRC11:45
*** sigmavirus24_awa has joined #openstack-security11:45
*** subscope has joined #openstack-security11:45
openstackgerritTim Kelsey proposed openstack/bandit: Legacy blacklist data is missing some expexted fields  https://review.openstack.org/28193712:27
*** daniela1 has joined #openstack-security12:37
daniela1hola12:38
*** daniela1 has left #openstack-security12:39
*** salv-orlando has joined #openstack-security12:40
*** markvoelker has joined #openstack-security12:43
*** salv-orlando has quit IRC12:44
openstackgerritvenkatamahesh proposed openstack/security-doc: Replace existing rst markups with new ones  https://review.openstack.org/28306312:46
*** markvoelker has quit IRC12:47
*** winterIsLeaving has quit IRC12:48
openstackgerritvenkatamahesh proposed openstack/security-doc: Fix underline for heading  https://review.openstack.org/28307313:09
openstackgerritvenkatamahesh proposed openstack/security-doc: Fix lowercase 's' in "Image Service"  https://review.openstack.org/28307513:15
*** markvoelker has joined #openstack-security13:29
*** edmondsw has joined #openstack-security13:35
*** salv-orlando has joined #openstack-security13:45
*** salv-orlando has quit IRC13:52
*** subscope has quit IRC13:56
*** ninag has joined #openstack-security14:05
*** localloop127 has joined #openstack-security14:07
*** subscope has joined #openstack-security14:09
*** dave-mccowan has joined #openstack-security14:14
*** openstackgerrit has quit IRC14:17
*** openstackgerrit has joined #openstack-security14:17
*** salv-orlando has joined #openstack-security14:41
*** cjschaef has joined #openstack-security14:50
*** sigmavirus24_awa is now known as sigmavirus2414:59
*** diazjf has joined #openstack-security14:59
*** avarner has quit IRC15:07
*** avarner has joined #openstack-security15:07
*** avarner has quit IRC15:13
*** tmcpeak has joined #openstack-security15:13
*** diazjf1 has joined #openstack-security15:18
*** diazjf has quit IRC15:21
*** edtubill has joined #openstack-security15:24
*** timkennedy has joined #openstack-security15:26
*** jhfeng has joined #openstack-security15:28
openstackgerritTravis McPeak proposed openstack/bandit: Making config optional  https://review.openstack.org/27881815:35
*** localloop127 has quit IRC15:41
*** nkinder has joined #openstack-security15:50
tmcpeaksigmavirus24: got time to check this bad boy out? https://review.openstack.org/27881815:51
sigmavirus24If it's so bad, do you expect anything other than a -1? :P15:52
tmcpeak:#15:53
*** avarner has joined #openstack-security15:59
*** Oku_OS has joined #openstack-security16:11
*** browne has joined #openstack-security16:17
openstackgerritTravis McPeak proposed openstack/bandit: Making config optional  https://review.openstack.org/27881816:21
tmcpeaksigmavirus24: ^ :)16:22
*** pcaruana has quit IRC16:27
*** ccneill has joined #openstack-security16:28
openstackgerritEric Brown proposed openstack/bandit: Some use of ftplib is properly secure  https://review.openstack.org/28295216:29
openstackgerritvenkatamahesh proposed openstack/security-doc: Fix underline for heading  https://review.openstack.org/28307316:32
*** jmckind has joined #openstack-security16:32
openstackgerritvenkatamahesh proposed openstack/security-doc: Fix lowercase 's' in "Image service"  https://review.openstack.org/28307516:34
*** austin987 has quit IRC16:34
*** localloop127 has joined #openstack-security16:44
*** bpokorny has joined #openstack-security16:46
*** austin987 has joined #openstack-security16:49
*** bpokorny has quit IRC16:51
*** bpokorny has joined #openstack-security16:51
*** avarner has quit IRC16:56
*** browne has quit IRC17:02
*** mvaldes has joined #openstack-security17:09
*** ccneill has quit IRC17:09
*** uunsr has joined #openstack-security17:11
*** ccneill has joined #openstack-security17:15
*** ccneill has quit IRC17:17
*** ccneill has joined #openstack-security17:18
*** mvaldes1 has joined #openstack-security17:21
tmcpeaksigmavirus24, tkelsey: https://review.openstack.org/28295217:21
*** mvaldes has quit IRC17:21
*** mvaldes1 has quit IRC17:21
tkelseykk17:22
*** mvaldes has joined #openstack-security17:23
*** mvaldes1 has joined #openstack-security17:27
*** mvaldes has quit IRC17:30
*** avarner has joined #openstack-security17:32
*** jmckind has quit IRC17:34
*** subscope has quit IRC17:47
*** mvaldes has joined #openstack-security17:50
tmcpeaksigmavirus24: ready for a +A if you're so inclined: https://review.openstack.org/#/c/278818/17:53
*** mvaldes1 has quit IRC17:53
tmcpeakthanks buddy17:53
*** mvaldes has quit IRC17:56
*** pdesai has joined #openstack-security17:57
openstackgerritMerged openstack/bandit: Making config optional  https://review.openstack.org/27881817:57
*** sicarie has joined #openstack-security17:59
*** shelleea007 has joined #openstack-security18:00
shelleea007hello18:00
sicariehello18:00
pdesaihi18:00
elmikohi18:00
sicarieHow’s everyone doing this week?18:02
pdesaidoing good, how about you?18:03
elmikonot bad, finally starting to warm up a little here =)18:03
shelleea007super, how are you?18:03
sicarieSo, the first one we should talk about is this: https://bugs.launchpad.net/openstack-manuals/+bug/154324918:04
openstackLaunchpad bug 1543249 in openstack-manuals "Product endorsement in Passwords in Security Guide" [Low,Incomplete] - Assigned to Xing Chen (chen-xing)18:04
elmikosicarie: did you ever find an answer about using third party endorsements?18:05
sicarieYes, on the mailinglist loquacities (doc ptl) responded18:05
elmikoah, cool18:05
sicarieI was looking for her answer so I could respond directly, but I can’t find it18:06
sicarieAnyway, her statement was that we should remove the references18:06
*** browne has joined #openstack-security18:07
elmikoah, too bad, i thought that rob's response on the bug was pretty strong18:07
sicarieDiscussion was taken to the ml18:07
elmikothe regular -dev list?18:08
sicarieSo that was not brought up - I didn’t see it18:08
sicariehttp://lists.openstack.org/cgi-bin/mailman/listinfo/openstack-docs18:08
sicarieNope, the docs list18:08
sicarieI’ll pursue that - thanks elmiko I missed that comment18:09
sicarieThen there was one new bug: https://bugs.launchpad.net/openstack-manuals/+bug/154830218:10
openstackLaunchpad bug 1548302 in openstack-manuals "Use of :command: markup whereever necessary" [Undecided,New] - Assigned to venkatamahesh (venkatamaheshkotha)18:10
elmikoin general, i get the advice about leaving out third party recommendations, but he made some good points about the sec doc.18:10
sicarie+118:11
pdesaiwe could change the guide and use command wherever appropriate, but lets divide the patch into at least chapter level18:12
*** jmckind has joined #openstack-security18:12
sicariepdesai: +1 at the least chapter-level, preferably per-file?18:12
pdesaiper-file might end up in too many patches18:13
elmikoas for the chapter-level break up, what about something like this then https://review.openstack.org/#/c/283063 ?18:13
pdesaithis is more coarse, it all depends on how quickly the whole patch gets merged, otherwise will endup rebasing mutliple times and unnecessary reviews18:15
sicarieSo personally I think this is too much at once, maybe have a file number requirement?18:15
elmikowe might need to setup some sort of wiki page or something enumerating our sec-doc proceedures18:16
sicarie+118:16
pdesai+118:16
elmikoshall i take an action to look into a wiki page for us?18:17
sicarieI think it might be beneficial to outline the processes first - we can tack them onto the security wiki (or store them somewhere) until we know where to post them18:17
elmikomaybe add a README to the root of our sec-doc folder in the manuals repo?18:19
sicarieYeah, something like that18:19
pdesai+1 for README18:19
elmikothen we can at least vote and argue over it ;)18:20
sicarieheh18:20
pdesai:)18:20
sicarieelmiko: would you like to take a pass at that?18:20
elmikosicarie: sure, i'll toss out the first pitch18:21
sicariethanks!18:21
sicarieSo I’ll confirm the bug and post as wishlist18:22
elmikook, so just to be clear, i'll make a patch for a README.rst in the security-guide subdir of the security-doc repo. does that sound good to everyone?18:22
sicarie+118:22
pdesai+118:22
elmiko\o/ consensus18:23
sicariehehehe18:23
elmiko(unless shelleea007 wants to be a contrarian)18:23
sicariehehe, i think she’s good - we’re multitasking something that came up18:24
shelleea007nope i'm good18:24
sicarieWell, with that does anyone have something they’d like to discuss?18:24
sicarieAny reviews needed?18:24
elmikojust that one i linked, the others are much more focused18:25
sicarieSounds good, I’ll take a pass at that today18:27
elmikocool, i'll get some version of the readme up this week18:27
pdesaicool18:27
sicarieawesome, thanks everyone - see you next week!18:27
shelleea007se yall18:27
elmikotake care18:27
pdesaithank you everyone18:28
*** sicarie has quit IRC18:30
*** salv-orl_ has joined #openstack-security18:42
*** salv-orlando has quit IRC18:44
*** shelleea007 has quit IRC18:47
*** subscope has joined #openstack-security19:04
*** elo has joined #openstack-security19:07
*** ccneill has quit IRC19:13
*** ninag has quit IRC19:27
*** jmckind_ has joined #openstack-security19:28
*** ninag has joined #openstack-security19:28
*** jmckind_ has quit IRC19:29
*** ninag_ has joined #openstack-security19:29
*** ninag_ has quit IRC19:29
*** ninag_ has joined #openstack-security19:29
*** jmckind_ has joined #openstack-security19:30
*** jmckind has quit IRC19:31
*** ninag has quit IRC19:32
*** ninag_ has quit IRC19:34
*** ccneill has joined #openstack-security19:34
*** ninag has joined #openstack-security19:34
*** ninag has quit IRC19:39
*** tkelsey has quit IRC19:44
*** localloop127 has quit IRC19:54
*** localloop127 has joined #openstack-security20:00
*** dstanek has quit IRC20:20
*** Daviey has quit IRC20:20
*** bknudson_ has quit IRC20:20
*** bknudson has joined #openstack-security20:20
*** Daviey has joined #openstack-security20:20
*** dstanek has joined #openstack-security20:21
*** ninag has joined #openstack-security20:22
*** bknudson has quit IRC20:26
*** bknudson has joined #openstack-security20:36
*** tmcpeak has quit IRC20:37
*** tmcpeak has joined #openstack-security20:38
*** openstackgerrit has quit IRC20:47
*** openstackgerrit has joined #openstack-security20:47
*** ian_ott has joined #openstack-security21:15
*** jamielennox has quit IRC21:19
*** jamielennox has joined #openstack-security21:20
*** tkelsey has joined #openstack-security21:42
*** tkelsey has quit IRC21:46
*** edmondsw has quit IRC21:48
*** ian_ott has quit IRC22:18
*** localloop127 has quit IRC22:30
*** avarner_ has joined #openstack-security22:32
*** avarner has quit IRC22:32
*** edtubill has quit IRC22:40
*** ninag has quit IRC23:05
*** salv-orl_ has quit IRC23:08
*** salv-orlando has joined #openstack-security23:11
*** sigmavirus24 is now known as sigmavirus24_awa23:14
*** avarner_ has quit IRC23:17
*** avarner has joined #openstack-security23:17
*** cjschaef has quit IRC23:29
*** winterIsLeaving has joined #openstack-security23:31
*** avarner has quit IRC23:34
tmcpeakbrowne: blacklists don't have help, huh?23:35
brownetmcpeak: you mean each blacklist item?  there is help23:37
tmcpeakbrowne: there is?23:37
brownehttp://docs-draft.openstack.org/52/282952/2/check/gate-bandit-docs/132319e//doc/build/html/blacklists/blacklist_calls.html23:38
tmcpeakbrowne: wonder why its' not getting to here - http://docs.openstack.org/developer/bandit/plugins/index.html23:38
browneits under a separate blacklist topic23:38
brownehttp://docs-draft.openstack.org/52/282952/2/check/gate-bandit-docs/132319e//doc/build/html/blacklists/index.html23:38
tmcpeakbrowne: oooh23:39
tmcpeakok, got it23:39
brownebut yes, i should probably update the help to note that a test was removed from the blacklist imports23:40
brownesince we now have a gap at B40223:40
brownealso not sure whether we'll reuse these IDs ever23:40
brownebut since we haven't pushed a new version to PyPi yet, i guess we can re-number the IDs23:40
tmcpeakbrowne: yeah23:41
tmcpeakthe reason I'm asking is I'm implementing links to the doc in the HTML report23:41
tmcpeakour internal Bandit customer wants it23:41
brownemakes good sense23:42
brownei think it was on my wishlist23:42
browneanother is how to resolve a particular issue23:42
tmcpeakbrowne: yeah, they asked for that too23:42
tmcpeaklike what is the proper recommendation23:42
brownehaha23:43
brownemakes sense23:43
openstackgerritEric Brown proposed openstack/bandit: Some use of ftplib is properly secure  https://review.openstack.org/28295223:45
*** pdesai has quit IRC23:48
openstackgerritTravis McPeak proposed openstack/bandit: Removing duplicate Test ID in HTML report  https://review.openstack.org/28331023:49
openstackgerritEric Brown proposed openstack/bandit: Some use of ftplib is properly secure  https://review.openstack.org/28295223:49
*** subscope has quit IRC23:50
brownetmcpeak: is there any way Bandit can interpret the value of an arg to a function?  or would that require symbol-table goodness?23:54
tmcpeakbrowne: yeah it needs symbol table23:54
brownecrap23:54
« Sunday, 2016-02-21 Index Tuesday, 2016-02-23 »

Generated by irclog2html.py 2.14.0 by Marius Gedminas - find it at mg.pov.lt!