Security Team Meeting minutes for 2016-07-21
by Eric Christensen
======================================================================================================
#fedora-meeting: Security Team Meeting - Agenda:
https://fedoraproject.org/wiki/Security_Team_meetings
======================================================================================================
Meeting started by Sparks at 14:05:26 UTC. The full logs are available
at
https://meetbot.fedoraproject.org/fedora-meeting/2016-07-21/fedora_securi...
.
Meeting summary
---------------
* Roll Call (Sparks, 14:05:32)
* Windows/OS X Tools in F25 (Sparks, 14:20:25)
* LINK:
https://lists.fedoraproject.org/archives/list/security@lists.fedoraprojec...
(zoglesby, 14:23:08)
* Outstanding BZ Tickets (Sparks, 14:27:27)
* Open floor discussion/questions/comments (Sparks, 14:37:04)
Meeting ended at 14:50:22 UTC.
Action Items
------------
Action Items, by person
-----------------------
* **UNASSIGNED**
* (none)
People Present (lines said)
---------------------------
* Sparks (26)
* zoglesby (18)
* danrm (9)
* Astradeus (8)
* linuxmodder (5)
* zodbot (5)
* jtaylor90 (2)
14:05:26 <Sparks> #startmeeting Security Team Meeting - Agenda:
https://fedoraproject.org/wiki/Security_Team_meetings
14:05:26 <zodbot> Meeting started Thu Jul 21 14:05:26 2016 UTC. The
chair is Sparks. Information about MeetBot at
http://wiki.debian.org/MeetBot.
14:05:26 <zodbot> Useful Commands: #action #agreed #halp #info #idea
#link #topic.
14:05:26 <zodbot> The meeting name has been set to
'security_team_meeting_-_agenda:_https://fedoraproject.org/wiki/security_t...'
14:05:30 <Sparks> #meetingname Fedora Security Team
14:05:30 <zodbot> The meeting name has been set to 'fedora_security_team'
14:05:32 <Sparks> #topic Roll Call
14:05:33 * Sparks
14:06:01 * jtaylor90 is here
14:07:38 <danrm> hi all!
14:12:14 <Astradeus> hi, /me is partially here :/
14:12:40 <danrm> why partially?
14:12:54 <Astradeus> have to work in parallel
14:12:55 <Sparks> zoglesby: Do you have anything further on the
Apprenticeship?
14:12:59 <Astradeus> fixing stuff^^
14:13:15 <linuxmodder> .hello linuxmodder
14:13:16 <zodbot> linuxmodder: linuxmodder 'Corey W Sheldon'
<sheldon.corey(a)openmailbox.org>
14:13:20 <linuxmodder> (late)
14:13:50 <linuxmodder> Sparks, seemed fine for me when I went through it
14:14:11 <linuxmodder> had a email to the list with a few thoughts a few
weeks ago otherwise nothing
14:14:20 <linuxmodder> Astradeus, like?
14:15:35 <Astradeus> samba & ldap & latex
14:15:43 <Astradeus> and two separate windows problems^^
14:15:55 <Astradeus> kinda multitasking right now
14:17:27 <zoglesby> I said I was here, and then looked away
14:18:07 <zoglesby> A new person posted to the list, I keep meaning to
reply and start the Apprenticeship process, but have not done so yet.
14:18:38 <danrm> Yes, I posted the last friday
14:19:07 <zoglesby> danrm: welcome! good to see you at the meeting.
Sorry that I have not followed up with you yet
14:20:02 <danrm> no problem, I am happy to be here
14:20:21 <Sparks>
14:20:25 <Sparks> #topic Windows/OS X Tools in F25
14:20:28 <Sparks> Any update here?
14:20:43 <zoglesby> I never heard anything back on the Windows builds
14:22:07 <zoglesby> and now I can't find the email, one sec so I can link it
14:22:12 <Sparks> Could you ping them?
14:23:08 <zoglesby>
https://lists.fedoraproject.org/archives/list/security@lists.fedoraprojec...
14:23:18 <zoglesby> Sure, I will do that today or tomorrow
14:27:27 <Sparks> #topic Outstanding BZ Tickets
14:27:46 <Sparks> Anyone have anything bug-wise to discuss?
14:28:42 <zoglesby> yep, one sec
14:29:21 <zoglesby> Do we need to talk about
https://lists.fedoraproject.org/archives/list/security@lists.fedoraprojec...
14:29:32 <zoglesby> Email about gpg, etc.
14:29:49 * Sparks was just reading that thread
14:32:25 <Sparks> Looks like everything is sorted there.
14:33:18 <zoglesby> okay, just wanted to make sure others where happy
about the outcome
14:35:58 <Sparks> Any other concerns?
14:37:04 <Sparks> #topic Open floor discussion/questions/comments
14:37:08 <Sparks> Anyone have anything?
14:37:14 <jtaylor90> not me
14:37:30 <zoglesby> I am out on vacation for the next two weeks
14:37:52 <Sparks> woot!
14:38:06 <danrm> I have one
14:38:07 <zoglesby> I put it on the fedora vacation calendar, and made a
note that if I was working on anything security related with anyone to
contact Sparks
14:38:43 <danrm> whats next for me in terms to advance in the
contribution process?
14:39:00 <Sparks> zoglesby: Gee, thanks.
14:39:41 <Sparks> danrm: We have been working on an Apprenticeship
"certification". Perhaps you could start working through that and give
us feedback on it.
14:40:00 <danrm> ok, I like it!
14:40:35 <zoglesby> danrm: take a look at
https://fedoraproject.org/wiki/Security_Team_Apprenticeship
14:40:53 <zoglesby> start asking questions in #fedora-security-team
14:41:50 <danrm> ok, thanks!
14:42:00 <Sparks> Anything else?
14:44:27 <zoglesby> I got nothing
14:46:55 <Sparks> I can tell you that I'm woefully behind in all duties
in FST
14:47:12 <zoglesby> We know
14:47:17 <zoglesby> :P
14:47:21 <Sparks> ugh
14:47:55 <Astradeus> aren't we all?
14:48:26 <Astradeus> i also had plans for more stuff than i actually do^^
14:48:56 <danrm> lol
14:50:01 <Sparks> Okay, well I guess we can close this meeting. Thank
you all for joining.
14:50:04 <Sparks> Welcome danrm
14:50:18 <Sparks> Everyone have a good week and I'll print you all next
week!
14:50:22 <Sparks> #endmeeting
7 years, 4 months
Fedora Security Team Report - 2016-07-21
by Major Hayden
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256
__ _
/ _| ___ __| | ___ _ __ __ _
| |_ / _ \/ _` |/ _ \| '__/ _` | Fedora Security Team Report
| _| __/ (_| | (_) | | | (_| | Report date: 2016-07-21 08:43:08.466971
|_| \___|\__,_|\___/|_| \__,_| Data from: 2016-07-21
- -------------------------------------------------------------------------------
+Tickets by Priority----+-------+---------+
| Priority | Tickets | Owned | Unowned |
+-------------+---------+-------+---------+
| medium | 547 | 39 | 508 |
| low | 179 | 13 | 166 |
| high | 88 | 23 | 65 |
| unspecified | 3 | 2 | 1 |
+-------------+---------+-------+---------+
+Tickets by Status---+-------+---------+
| Status | Tickets | Owned | Unowned |
+----------+---------+-------+---------+
| NEW | 750 | 67 | 683 |
| ON_QA | 35 | 6 | 29 |
| ASSIGNED | 26 | 4 | 22 |
| MODIFIED | 6 | 0 | 6 |
+----------+---------+-------+---------+
+Tickets by Severity-+-------+---------+
| Severity | Tickets | Owned | Unowned |
+----------+---------+-------+---------+
| medium | 547 | 39 | 508 |
| low | 179 | 13 | 166 |
| high | 91 | 25 | 66 |
+----------+---------+-------+---------+
+Tickets by Component-----+-------+---------+
| Component | Tickets | Owned | Unowned |
+---------------+---------+-------+---------+
| mingw-libxml2 | 15 | 0 | 15 |
| ImageMagick | 13 | 0 | 13 |
| bugzilla | 13 | 1 | 12 |
| imlib2 | 12 | 0 | 12 |
| mingw-jasper | 12 | 0 | 12 |
| jasper | 12 | 0 | 12 |
| mingw-libtiff | 11 | 0 | 11 |
| glib2 | 10 | 0 | 10 |
| moodle | 9 | 1 | 8 |
| libxml2 | 9 | 0 | 9 |
+---------------+---------+-------+---------+
+Tickets by Distro Version-+-------+---------+
| Distro Version | Tickets | Owned | Unowned |
+----------------+---------+-------+---------+
| el6 | 291 | 38 | 253 |
| 23 | 253 | 14 | 239 |
| el5 | 98 | 22 | 76 |
| epel7 | 88 | 3 | 85 |
| 24 | 82 | 0 | 82 |
| rawhide | 5 | 0 | 5 |
+----------------+---------+-------+---------+
- --
Major Hayden
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2
iQIcBAEBCAAGBQJXkNMXAAoJEHNwUeDBAR+xe3QP/2pXjN/vxER2PMbEpH1GuvK1
GdQv5pBpLFe0leh8VxBHMM67XAAC4Dv2/bwDoGmguPcGhhEOhdMgORXwI2lb3fXH
DqpfFXsHWxkteVQJfXRLRTAhqyEvvFQ5qh4HAmO21oxKj9ZUlVh276gruDPW+1+x
FjbN8u2d7fR8PD/kifO8/eKQmivRHb8lr5zl2GXg5plERCHwbc10tMEfILo1vhiW
Filo+2vLJpxAF3zWATzLIyv/6IbfOBPWp2nNaslIdBWqjKU7mTzeTlAAZNvkLGFi
6W9Vo7dfd4nN4kNnUnYWGSSxpS6VYxOFov+/xLhdUBIykfynGkiAD/91a05NdPhm
FtUXM5m/gocZVfpZaLxxV8WUO7TbJ6/AQufpM/g183dkoHiO3MRwhUvgpHAAFiMS
l0HzSntcKRBJr5YfeyIoPJSplUsf4Cjttn2HZHLM2xjRhXmzVpaJavUxFgYnUTQI
eFrAPYiEiKcASShEgeJLzzbLarT86ESQCZvj+mFOhQkbNoDTkG/zGsEZa4WcPxlO
upcjlfT10OjNTPGy4YvGbBPjKaiBRgDkUTcX5E0oh/jyec1JNNCsqUAnZa0jfuEa
QSRQcIKl4AJ6fxPP9mBLMjVB25e2piR3nnMyN+QBA9LGpE55wfRcQeDk1pAE3c08
XUNYnNB9vVdfKmDnsAUi
=p+8a
-----END PGP SIGNATURE-----
7 years, 4 months
Introduction - Dan R
by dan rm
Hi my name is Daniel Reyes, danrm!
My interest are wide, starting with all infosec related topics and data
science. I did my M.C.S. in the cibersecurity lab at my institution, IPN
in Mexico to be specific, during my degree I was more involved in
netsec, but code audit and patching is definitely something that I want
to learn.
I wan to to join to the fedora security team in order to contribute to
the open source community doing what I like most and make the open
source world more secure. Additionally, Fedora was my preferred
distribution since 5 years ago, and I like It's goals and Its efforts
to lead in the linux world.
I hope to be accepted as a contributor and apprentice.
Regards.
7 years, 4 months
