Monday, 2016-04-04

*** jass93 has quit IRC00:01
*** salv-orlando has joined #openstack-security00:02
*** jass93 has joined #openstack-security00:18
*** salv-orlando has quit IRC00:28
*** markvoelker has joined #openstack-security00:47
*** tmcpeak has joined #openstack-security01:05
*** salv-orlando has joined #openstack-security01:27
*** salv-orlando has quit IRC01:44
*** austin987 has quit IRC01:59
*** austin987 has joined #openstack-security02:08
*** tmcpeak has quit IRC02:32
*** tmcpeak has joined #openstack-security02:35
*** salv-orlando has joined #openstack-security03:03
*** salv-orlando has quit IRC03:13
*** markvoelker has quit IRC03:14
*** salv-orlando has joined #openstack-security03:22
*** jamielennox is now known as jamielennox|away03:27
*** salv-orlando has quit IRC03:27
*** tmcpeak has quit IRC03:35
*** jamielennox|away is now known as jamielennox03:37
*** dave-mcc_ has quit IRC03:49
*** jass93_ has joined #openstack-security04:02
*** jass93 has quit IRC04:03
*** markvoelker has joined #openstack-security04:15
*** markvoelker has quit IRC04:21
*** salv-orlando has joined #openstack-security04:42
*** salv-orlando has quit IRC04:45
*** elo has quit IRC04:45
*** elo has joined #openstack-security04:51
*** austin987 has quit IRC05:14
*** austin987 has joined #openstack-security05:37
*** liverpooler has joined #openstack-security06:01
*** salv-orlando has joined #openstack-security06:13
*** salv-orlando has quit IRC06:16
openstackgerritSharat Sharma proposed openstack/security-doc: [sec-guide] Link added to policies section
*** salv-orlando has joined #openstack-security07:17
*** browne has quit IRC07:17
*** agireud has quit IRC07:40
*** rcernin has joined #openstack-security07:43
*** agireud has joined #openstack-security07:43
*** tkelsey has joined #openstack-security07:48
*** salv-orlando has quit IRC07:53
*** salv-orlando has joined #openstack-security07:56
*** jamielennox is now known as jamielennox|away08:01
openstackgerritAlexey Ovchinnikov proposed openstack/security-doc: Shared File Systems service security guide fixes
*** mdavidson has quit IRC08:39
*** mdavidson has joined #openstack-security09:35
*** salv-orl_ has joined #openstack-security10:30
*** salv-orlando has quit IRC10:32
*** openstackgerrit has quit IRC10:48
*** openstackgerrit has joined #openstack-security10:48
*** krotscheck_vaca is now known as krotscheck11:13
*** ibravo has joined #openstack-security12:05
openstackgerritTim Kelsey proposed openstack/bandit: Adding accurate docs for new bandit config
*** markvoelker has joined #openstack-security12:15
*** edmondsw has joined #openstack-security12:24
*** salv-orl_ has quit IRC12:33
*** salv-orlando has joined #openstack-security12:34
*** salv-orlando has quit IRC12:38
*** Unterd0g has quit IRC12:46
*** zul has quit IRC12:48
*** Unterd0g has joined #openstack-security12:48
*** zul has joined #openstack-security12:50
*** diazjf has joined #openstack-security13:02
*** diazjf has quit IRC13:02
*** salv-orlando has joined #openstack-security13:11
*** cleong has joined #openstack-security13:27
*** cjschaef has joined #openstack-security13:45
*** jmckind has joined #openstack-security13:51
*** jmckind_ has joined #openstack-security13:54
*** jmckind has quit IRC13:58
*** avarner has joined #openstack-security13:58
*** sigmavirus24_awa is now known as sigmavirus2414:09
*** mvaldes has joined #openstack-security14:09
tkelseyhey sigmavirus24 got a bandit docs patch that could do with a look over if you have time14:15
*** tmcpeak has joined #openstack-security14:17
tkelseyhey tmcpeak14:17
sigmavirus24tkelsey: looking in a few14:20
tkelseysigmavirus24: thanks man14:20
* sigmavirus24 waits for gertty to sync14:21
*** jhfeng has joined #openstack-security14:22
*** edmondsw has quit IRC14:27
*** liverpooler has quit IRC14:35
*** rahulunair has joined #openstack-security14:41
tkelseysigmavirus24 tmcpeak proposed release announcement for bandit 1.0
*** browne has joined #openstack-security14:48
*** jmckind_ has quit IRC14:52
tkelseythanks sigmavirus2414:53
*** jmckind has joined #openstack-security14:53
sigmavirus24h2h tkelsey14:54
*** jmckind_ has joined #openstack-security14:55
*** jmckind has quit IRC14:58
tkelseyhi browne14:59
tkelseyif you have time please look over #link some docs needed fixing15:00
tkelseythen im going to make the release :D proposed announcement here
*** edmondsw has joined #openstack-security15:02
*** diazjf has joined #openstack-security15:04
*** sigmavirus24 is now known as sigmavirus24_awa15:04
*** sigmavirus24_awa is now known as sigmavirus2415:04
openstackgerritTim Kelsey proposed openstack/bandit: Adding accurate docs for new bandit config
tkelseybrowne: updated, thanks15:15
*** nkinder has joined #openstack-security15:27
*** salv-orlando has quit IRC15:42
*** ccneill has joined #openstack-security15:45
*** bpokorny has joined #openstack-security15:46
openstackgerritRahul U Nair proposed openstack/syntribos: Added payloads for keystone API
*** browne has quit IRC15:56
*** mvaldes has left #openstack-security15:57
ccneillhey rahulunair: did you get a chance to try these payloads against Keystone?15:58
rahulunairccneill: I was working on it all through Friday, for v3 except for getting token, none of the other requests are working, v2 apis worked fine mostly.15:59
ccneillhmm interesting15:59
rahulunairccneill:  for example when I tried this  request curl -sv -H "X-Auth-Token:$TOKEN" after getting the auth token16:00
rahulunairccneill: any idea why..?16:01
ccneillrahulunair: hmmm.. wondering if it has anything to do with the "" server?16:04
tmcpeaktkelsey: where we at with 1.0?16:05
rahulunairccneill: the weird part is i am able to get a token for v3, ..16:05
tmcpeakoh and geeze16:05
tkelseytmcpeak: one docs patch needs to merge, its got +W im waiting for the merge16:05
tmcpeakapparently I was scrolled up16:05
rahulunairccneill: any other request is failing.16:05
tkelseytmcpeak: then i'm going to push it16:06
tmcpeakso I didn't see any of today's messages :P16:06
tkelseyheh, well have a look over the proposed post:
tkelseymake sure i didnt miss anything important16:06
ccneillrahulunair: makes me wonder if the x-auth-token is causing a problem with the request when it hits your proxy... that's about all I can think of :\16:06
rahulunairccneill: :( .. wouldnt v2 also have a problem .. then. . but weirdly enough.. v2 works fine.. :o16:07
ccneillyeah, gotta say, I'm drawing a blank :(16:08
tmcpeaktkelsey: that looks good16:08
ccneillwonder if some v3 features are disabled on our AIO?16:08
tkelseytmcpeak:  thanks man16:09
rahulunairccneill: :(16:11
ccneillhave you looked in the web admin panel on the AIO instance to see if there are any hints there?16:12
*** ccneill_ has joined #openstack-security16:27
*** jmckind_ has quit IRC16:28
*** jmckind has joined #openstack-security16:29
*** ccneill has quit IRC16:29
*** barra204 has quit IRC16:32
*** mdong has joined #openstack-security16:34
*** salv-orlando has joined #openstack-security16:43
tkelseyhey anyone know if is cross posted to dev? (and if thats the list we should use for announcements)16:47
*** rcernin has quit IRC16:48
*** shelleea007 has joined #openstack-security16:48
sigmavirus24tkelsey: pick one or the other but don't use both16:49
sigmavirus24That said, -announce does not cross-post to -dev16:49
*** salv-orlando has quit IRC16:52
tmcpeaksigmavirus24: tkelsey: I'd go with dev16:52
sigmavirus24== tmcpeak16:53
sigmavirus24oslo tends to go to -dev16:53
sigmavirus24this is something more geared towards devs16:53
tmcpeak1799 downloads in the last day16:56
tmcpeak18335 downloads in the last week16:56
tmcpeak72966 downloads in the last month16:56
tmcpeakfor Bandit 0.17.316:56
tmcpeaka lot of it is probably CI but still16:56
tmcpeakactually CI should be mirrored...16:56
tmcpeakmaybe mirror pulls :P16:56
tkelseysigmavirus24 tmcpeak cool, thanks guys16:59
sigmavirus24mirrors do pulls17:00
tmcpeakdon't they?17:00
sigmavirus24but also if people are using bandit in their CI (e.g., Travis CI or Jenkins) it might pull each time17:00
elmikoheads up, we are about to do the sec-docs meeting17:00
openstackgerritMerged openstack/bandit: Adding accurate docs for new bandit config
tmcpeakokies, pipe down sigma :P17:00
* sigmavirus24 shuts up17:00
*** sicarie has joined #openstack-security17:01
sicariesorry, dialing-in to another meeting as well17:02
tkelseyok, well here goes, rolling 1.0 :)17:02
sicarieyay, tkelsey17:03
tkelseythankds sicarie17:03
sicarieno pdesai?17:04
* elmiko shrugs17:04
sicariei thought her vacation was last week?17:04
elmikonot my week to watch her ;)17:04
*** cjschaef has quit IRC17:04
sicariewell, I hope she’s enjoying it17:04
sicarieI don’t have anything17:04
sicarieWe had a few merges go through17:05
elmikoi've just been watching the few reviews we have up17:05
sicariebut it was all minor17:05
elmikoyea, same for the new reviews17:05
sicariewe had the release notes17:05
sicarieelmiko: i did do another blog post17:05
sicarieshelleea007 already took a look17:05
sicarieone of them is a quick blurb about the image signing17:05
elmikosicarie: saw that, +117:05
sicariethe other is an idea i’ve been playing with - but i think it needs quite a bit of work17:06
shelleea007yeah I made some recommendations17:06
sicarieyeah, I think i got through 2/3 of them and then got pulled away17:07
sicarieother than that I don’t have anything17:07
elmikono updates from me17:07
shelleea007yeah I have nothing17:08
elmikoare we gonna do a mini-meetup at summit?17:08
sicariewe probably should17:10
sicarieelmiko i’m guessing you’re staying for the design sessions as well?17:10
elmikoi'll be there all week17:11
sicarieyeah, i think it might be good to grab lunch after one of the security design sessions17:11
sicarieI’l start looking at the schedule and hope pdesai is here next week17:11
elmikothat /might/ work for me, need to check schedule but the sahara stuff and ossp stuff is heavily intermixed =(17:12
sicarieof course17:12
elmikoif folks will be there friday, it might make for easy meetup17:12
sicarieI’m leaving early afternoon, but i’ll be there in the morning17:12
elmikook, let's just send around some email and figure out a good time for everyone. we're a pretty small group17:13
sicariesounds good17:13
elmikothe main downside would be visibility to the outside comminity17:13
elmikonot sure if we need to do something more public, or just a small face-to-face to say hi and whatnot17:15
elmikomaybe we can talk about pdf stuff17:15
sicarieCool, i’ll send around an email and see if there’s a time that works for everyone17:15
elmikothanks =)17:15
sicarieawesome, thanks everyone!17:16
*** cjschaef has joined #openstack-security17:17
*** sicarie has quit IRC17:18
*** shelleea007 has quit IRC17:20
*** ccneill_ has quit IRC17:22
tkelsey1.0 rolled, email sent, time for scotch?17:28
tmcpeaktkelsey: awww yiss!17:28
tmcpeakcongrats man!17:29
tkelseyheh you to man, team effort :D
tmcpeaktkelsey: it on PyPI?17:29
tkelseywill be as soon as gerrit does its thing17:29
tmcpeakjust takes a few mins :)17:29
tkelseytag is pushed17:30
* elmiko raises glass for scotch17:42
tmcpeaktkelsey: looks like it still isn't up17:42
tmcpeakI've seen the process stall before..17:42
tkelseyyeah, the tag is on github, so its all OK from my end. Just need gerrit to get in gear17:43
tmcpeakyeah there is Bandit in the change queue17:43
tkelseyyup yup17:43
elmikonice, big ups to the bandit team! \o/17:43
tkelseythanks elmiko :)17:44
elmikoneed a :raise the roof: emoji ;)17:44
tkelseyhaha :)17:44
tkelseyfor sure17:44
*** ccneill_ has joined #openstack-security17:45
*** dave-mccowan has joined #openstack-security17:50
*** cjschaef has quit IRC17:52
*** mvaldes has joined #openstack-security17:52
tkelseyman gerrit is so slow :(17:56
tmcpeakyeah :(17:56
*** bpokorny has quit IRC17:59
tmcpeaksome of the stuff has been backed up for 3 hours17:59
tkelseyheh well its 7pm here so im not waiting around for it, will check back later18:00
tmcpeakfair enough18:01
tmcpeakthanks for all the work getting the release out18:01
tkelseyyou to man18:01
*** gmurphy has left #openstack-security18:04
*** diazjf has quit IRC18:05
*** tkelsey has quit IRC18:06
*** cjschaef has joined #openstack-security18:11
*** salv-orlando has joined #openstack-security18:11
*** jass93_ has quit IRC18:15
*** ccneill__ has joined #openstack-security18:18
*** ccneill__ is now known as ccneill18:19
*** ccneill_ has quit IRC18:21
ccneillrahulunair: did you get all the payloads working now? might be worthwhile to include that Accept: application/json header on all of them18:22
ccneill:\ sorry to be so picky on this PR... I know it's a pain to go update these 20392093 files18:22
rahulunairccneill: most of it..hopefully can check all and put a cr by today..18:23
rahulunairCcneill really need to get that scrapper working.. For long term ..18:25
ccneillrahulunair: agreed!18:25
ccneillrahulunair: we've learned our lesson - no more manual projects after this one haha18:25
rahulunairCcneill phew!!, yup!!18:26
*** salv-orlando has quit IRC18:27
ccneillbut now we know how badly we need the automation and can prioritize it appropriately18:27
rahulunairCcneill completely agree, I had started scrapping the api page,  the left it in midway..18:27
ccneillrahulunair: yeah, it will probably not be a trivial process, especially if the API docs differ significantly between projects..18:28
ccneillrahulunair: but I'd say it's a no-go for us to start trying to get support for Syntribos before we have something that's at least PRETTY GOOD at chomping on docs and spitting out requests18:29
*** bpokorny has joined #openstack-security18:30
*** salv-orlando has joined #openstack-security18:32
rahulunairCcneill yup,  I think one way is to scrape the specs page or directly the rst files,  less clutter in rst I guess18:32
ccneillrahulunair: yeah, that's probably a better approach than the HTML output. good call18:35
rahulunairCcneill what do you think?18:35
*** salv-orlando has quit IRC18:43
*** jmckind has quit IRC18:57
*** sigmavirus24 is now known as sigmavirus24_awa18:58
*** jmckind has joined #openstack-security18:58
*** sigmavirus24_awa is now known as sigmavirus2418:58
*** diazjf has joined #openstack-security19:00
*** salv-orlando has joined #openstack-security19:09
*** salv-orlando has quit IRC19:14
*** jass93 has joined #openstack-security19:14
*** salv-orlando has joined #openstack-security19:14
*** salv-orlando has quit IRC19:16
*** salv-orlando has joined #openstack-security19:16
*** salv-orlando has quit IRC19:17
*** salv-orlando has joined #openstack-security19:17
*** sigmavirus24 is now known as sigmavirus24_awa19:21
*** tkelsey has joined #openstack-security19:32
*** tkelsey has quit IRC19:36
*** shakamunyi has joined #openstack-security19:51
rahulunairccneill:  Figured out the issue I was having, some how when the auth token was obtained using awk, some hidden character kept in.. :o .. tried removing the content-type and it is working..19:54
ccneillthat darn awk, it tricks you into trusting it19:54
ccneillglad you got it figured out19:54
rahulunairccneill: yeah!!.. I had such high regards for awk (still have.. ) .. but this time.. tricked me..19:55
ccneillyeah, that's why I recommended jq. it can be pretty brittle when you're trying to select particular items at first, but it'll give you exactly what you want :)19:56
*** edtubill has joined #openstack-security19:56
rahulunairccneill:  yeah.. looks polished.. i checked it out... would be using it for parsing json from now on.19:57
*** shakamunyi has quit IRC19:57
*** OS-1234 has joined #openstack-security20:10
*** sigmavirus24_awa is now known as sigmavirus2420:17
*** OS-1234 has quit IRC20:22
*** azer1 has joined #openstack-security20:23
*** azer1 has left #openstack-security20:25
*** edmondsw has quit IRC20:26
*** elo has quit IRC20:32
*** elo has joined #openstack-security20:33
*** jass93_ has joined #openstack-security20:34
*** jass93 has quit IRC20:36
*** cleong has quit IRC20:43
*** mvaldes has quit IRC20:49
*** shakamunyi has joined #openstack-security20:53
openstackgerritCharles Neill proposed openstack/syntribos: Updating doc strings for core pieces of Syntribos
*** shakamunyi has quit IRC20:58
*** mvaldes has joined #openstack-security21:07
*** cjschaef has quit IRC21:16
*** mvaldes has quit IRC21:28
*** mdong has quit IRC21:31
*** bpokorny has quit IRC21:35
*** mdong has joined #openstack-security21:46
*** jass93_ has quit IRC21:51
*** mvaldes has joined #openstack-security21:55
*** edtubill has quit IRC21:58
*** mvaldes has left #openstack-security22:09
openstackgerritCharles Neill proposed openstack/syntribos: Updating doc strings for core pieces of Syntribos
*** tkelsey has joined #openstack-security22:12
*** eric_lopez has joined #openstack-security22:15
*** elo has quit IRC22:16
*** tkelsey has quit IRC22:18
*** sigmavirus24 is now known as sigmavirus24_awa22:20
*** jhfeng has quit IRC22:21
*** diazjf has quit IRC22:22
*** jmckind has quit IRC22:27
*** mdong has quit IRC22:27
*** markvoelker has quit IRC22:37
*** jass93 has joined #openstack-security22:48
*** avarner has quit IRC22:55
*** shakamunyi has joined #openstack-security23:03
openstackgerritOpenStack Proposal Bot proposed openstack/anchor: Updated from global requirements
*** shakamunyi has quit IRC23:16
*** salv-orlando has quit IRC23:21
openstackgerritRahul U Nair proposed openstack/syntribos: Added payloads for keystone API
*** shakamunyi has joined #openstack-security23:27
*** Guest5208 has joined #openstack-security23:29
*** shakamunyi has quit IRC23:31
*** ccneill has quit IRC23:32
*** Guest5208 has quit IRC23:37
*** markvoelker has joined #openstack-security23:37
*** shakamunyi has joined #openstack-security23:43
*** shakamunyi has quit IRC23:47

Generated by 2.14.0 by Marius Gedminas - find it at!