Wednesday, 2016-07-06

« Tuesday, 2016-07-05 Index Thursday, 2016-07-07 »
*** austin987 has quit IRC00:07
*** salv-orlando has joined #openstack-security00:08
*** austin987 has joined #openstack-security00:20
*** salv-orlando has quit IRC00:22
*** salv-orlando has joined #openstack-security00:48
openstackgerritCharles Neill proposed openstack/syntribos: Converting to oslo.config for configuration  https://review.openstack.org/33793800:52
*** salv-orlando has quit IRC01:03
*** ccneill has quit IRC01:28
*** salv-orlando has joined #openstack-security01:29
*** salv-orlando has quit IRC01:45
*** deblike has quit IRC01:46
openstackgerritEric Brown proposed openstack/bandit: Add missing Python 3.5 classifier  https://review.openstack.org/33795301:57
*** elo has joined #openstack-security02:01
*** salv-orlando has joined #openstack-security02:11
*** jass93 has quit IRC02:24
*** salv-orlando has quit IRC02:26
*** jass93 has joined #openstack-security02:26
*** yuanying has quit IRC02:50
*** salv-orlando has joined #openstack-security02:52
*** salv-orlando has quit IRC03:07
*** LongyanG has quit IRC03:07
*** LongyanG has joined #openstack-security03:07
*** RabbitKing has joined #openstack-security03:14
*** RabbitKing has quit IRC03:25
*** salv-orlando has joined #openstack-security03:33
*** yuanying has joined #openstack-security03:49
*** salv-orlando has quit IRC03:49
*** salv-orlando has joined #openstack-security04:15
*** salv-orlando has quit IRC04:30
*** liverpooler has quit IRC04:34
*** salv-orlando has joined #openstack-security04:57
*** salv-orlando has quit IRC05:01
*** salv-orlando has joined #openstack-security05:06
*** pcaruana has joined #openstack-security06:05
*** rcernin has joined #openstack-security06:09
*** liverpooler has joined #openstack-security06:21
*** liverpooler has quit IRC06:39
*** liverpooler has joined #openstack-security06:39
*** salv-orlando has quit IRC07:10
*** tesseract- has joined #openstack-security07:21
*** salv-orlando has joined #openstack-security10:31
*** salv-orlando has quit IRC10:42
*** salv-orlando has joined #openstack-security10:45
*** salv-orl_ has joined #openstack-security11:59
*** salv-orlando has quit IRC12:01
*** salv-orl_ has quit IRC12:03
*** mhayden has quit IRC12:46
*** mhayden has joined #openstack-security13:03
*** mhayden has quit IRC13:03
*** mhayden has joined #openstack-security13:04
*** mhayden has quit IRC13:07
*** mhayden has joined #openstack-security13:09
*** cleong has joined #openstack-security13:21
*** sigmavirus_away is now known as sigmavirus13:24
*** M00nr41n has quit IRC13:29
*** ametts has joined #openstack-security13:33
*** deblike has joined #openstack-security13:56
*** diazjf has joined #openstack-security14:06
*** diazjf has quit IRC14:09
*** diazjf has joined #openstack-security14:19
*** jmckind has joined #openstack-security14:25
*** sdake has joined #openstack-security14:33
*** mvaldes has joined #openstack-security14:34
*** woodburn has joined #openstack-security14:39
*** unrahul has joined #openstack-security14:56
unrahulthanks ccneill14:56
*** diazjf has quit IRC15:01
*** diazjf has joined #openstack-security15:01
*** pcaruana has quit IRC15:06
*** yaya_ has joined #openstack-security15:09
*** rcernin has quit IRC15:10
*** aastha has joined #openstack-security15:13
unrahulHey aastha https://bugs.launchpad.net/syntribos/+bug/156309315:13
openstackLaunchpad bug 1563093 in syntribos "Wiki need to be changed, as the source file has been changed" [Undecided,Confirmed] - Assigned to Rahul U Nair (rahulunair)15:13
*** liverpooler has quit IRC15:15
*** deblike has quit IRC15:25
*** deblike has joined #openstack-security15:25
openstackgerritMerged openstack/bandit: Add missing Python 3.5 classifier  https://review.openstack.org/33795315:28
*** salv-orlando has joined #openstack-security15:34
*** diazjf has quit IRC15:41
*** ccneill has joined #openstack-security15:47
*** yaya_ has quit IRC15:47
*** rcernin has joined #openstack-security15:49
*** austin987 has quit IRC15:53
openstackgerritCharles Neill proposed openstack/syntribos: Converting to oslo.config for configuration  https://review.openstack.org/33793815:59
*** mdong has joined #openstack-security16:05
*** deblike has quit IRC16:13
ccneillunrahul, aastha: ^ there's the CR I'm working on currently16:39
ccneillhere's the interesting bit: https://review.openstack.org/#/c/337938/2/syntribos/config.py16:40
aasthathanks ccneill . will look at it.16:40
ccneillstill a few stray comments and stuff like that for me to clean up, but if you clone it and run it locally, it should all function at least16:41
unrahulthanks ccneill .16:49
*** tesseract- has quit IRC16:49
*** mdong has quit IRC17:03
*** mdong has joined #openstack-security17:06
*** browne has joined #openstack-security17:07
*** austin987 has joined #openstack-security17:32
openstackgerritRahul U Nair proposed openstack/syntribos: Made auth endpoint less brittle  https://review.openstack.org/33841917:37
unrahulhey ccneill mdong added a tiny logic to make the identity endpoint less brittle, could you please check it.17:40
ccneillsure thing17:40
ccneillit turns out I didn't fix the error in the identity extension >_<17:40
ccneillnice. that's a good call17:41
unrahul:D .. yup.. it was one of the last relevant *bug* in our glitches etherpad.17:52
*** sdake has quit IRC17:55
ccneillunrahul, mdong: patch to fix that stupid json bug in identity client (that I thought I already fixed, but didn't really) - https://review.openstack.org/#/c/338428/17:55
*** sdake has joined #openstack-security17:56
unrahulccneill: I didn't see that either17:59
*** mvaldes has quit IRC17:59
*** browne1 has joined #openstack-security18:00
*** browne has quit IRC18:00
*** sdake has quit IRC18:02
*** browne1 has quit IRC18:03
*** browne has joined #openstack-security18:05
*** diazjf has joined #openstack-security18:06
mdonggave a +2 to both of those patches18:06
ccneillshweet18:06
ccneillunrahul: I couldn't believe it when I saw it lol. I was so sure I'd taken care of it, but didn't notice the json() call18:07
ccneilland I haven't been testing against a legit identity endpoint so I didn't actually test to make sure it was working18:07
ccneill>_<18:07
ccneillnot testing cometh before a fall18:07
ccneillI'm gonna go grab some lunch, brb18:07
openstackgerritMerged openstack/syntribos: Made auth endpoint less brittle  https://review.openstack.org/33841918:08
*** mvaldes has joined #openstack-security18:08
*** sdake has joined #openstack-security18:08
*** sdake has quit IRC18:08
*** sdake has joined #openstack-security18:08
openstackgerritMerged openstack/syntribos: Fixes identity extension bug with json() call  https://review.openstack.org/33842818:11
*** salv-orlando has quit IRC18:12
unrahulneat mdong !18:30
unrahulccneill: hyeah.. I am writing unittest for some tests now, may be we can discuss about it in our team meeting.18:31
*** mdong has quit IRC18:35
*** mdong has joined #openstack-security18:35
*** diazjf has quit IRC18:36
*** diazjf has joined #openstack-security18:43
*** vinaypotluri has joined #openstack-security18:56
unrahulhey ccneill , the CR for the config, it is not up for review I guess, I have made some comments still..19:08
unrahulccneill: one of them is to move the strengh value to the constants.py19:08
unrahulso that if we decide to do something later, we could edit that one file rather than.. bunch of places, what do you think?19:09
*** deblike has joined #openstack-security19:11
ccneillunrahul: I don't know that we need constants there necessarily, since we want it to be a range from 0 to 1, but we do need some kind of scoring system19:13
unrahulccneill: oh yeah!, my bad.! forgot about that.19:13
ccneillunrahul: no worries, we haven't addressed it for a while because I wanted us to get more of the basics in place before we get fancy with it19:14
ccneillbut we're getting to the point where we'll want to integrate that in19:14
unrahulyup!.. so whats the idea, do you have something in your mind?19:14
ccneillprobably while we're working on converting checks to take test objects and refactoring our tests to use signals more efficiently with convenience methods19:14
ccneillI have a few thoughts19:14
*** diazjf has quit IRC19:17
ccneillbasically I'm thinking something like [0, 0.5) = LOW, [0.5, 1) = MEDIUM, 1.0 = HIGH19:22
ccneillwhere each check has its own way of determining its strength19:23
ccneillwe take all the "bad" signals, get their strengths, and modify the confidence of the issue appropriately19:23
ccneillwe might do something similar with confidence where you multiply the strength of the signal by some score to determine the confidence (i.e. if I have 2 signals, A & B, A = 1.0 strength, B = 0.5 strength, and A = 5 confidence, B = 10 confidence, I might get (1*5) + (0.5*10) = 10, so high confidence)19:25
unrahulmm.. that makes sense..the score would be based on the type of signal or the type of test..? , like a 500 error in an sql test will have a higher score..?19:27
ccneillbased on the type of test19:27
openstackgerritAastha Dixit proposed openstack/syntribos: Modifed README  https://review.openstack.org/33850919:30
unrahulccneill:  okay..19:34
*** mvaldes has quit IRC19:39
*** diazjf has joined #openstack-security19:41
*** zul has quit IRC19:51
*** mdong has quit IRC19:59
*** mvaldes has joined #openstack-security20:01
*** diazjf has quit IRC20:01
*** diazjf has joined #openstack-security20:02
*** deblike has quit IRC20:03
*** mdong has joined #openstack-security20:04
*** rcernin_ has joined #openstack-security20:06
*** rcernin_ has quit IRC20:10
*** sdake has quit IRC20:12
*** rcernin_ has joined #openstack-security20:15
*** rcernin_ has quit IRC20:19
*** sdake has joined #openstack-security20:19
*** rcernin_ has joined #openstack-security20:19
*** rcernin_ has quit IRC20:20
*** rcernin has quit IRC20:24
*** rcernin has joined #openstack-security20:25
*** rcernin has quit IRC20:38
*** rcernin has joined #openstack-security20:39
*** sdake has quit IRC20:53
*** sdake has joined #openstack-security21:03
*** rcernin has quit IRC21:03
*** rcernin has joined #openstack-security21:04
*** diazjf has quit IRC21:07
*** rcernin has quit IRC21:07
*** rcernin has joined #openstack-security21:07
*** mdong has quit IRC21:17
*** cleong has quit IRC21:22
*** ccneill has quit IRC21:26
*** mdong has joined #openstack-security21:31
*** mvaldes has quit IRC21:33
*** rcernin has quit IRC21:37
*** jmckind has quit IRC21:43
*** sigmavirus is now known as sigmavirus_away21:52
*** diazjf has joined #openstack-security21:56
*** salv-orlando has joined #openstack-security21:57
*** diazjf has quit IRC22:00
*** ametts has quit IRC22:02
*** ccneill has joined #openstack-security22:09
*** salv-orl_ has joined #openstack-security22:43
*** salv-orlando has quit IRC22:46
*** mdong has quit IRC22:56
*** zul has joined #openstack-security23:24
*** sdake has quit IRC23:43
« Tuesday, 2016-07-05 Index Thursday, 2016-07-07 »

Generated by irclog2html.py 2.14.0 by Marius Gedminas - find it at mg.pov.lt!