14:21:47 <d-caf> #startmeeting Security Team Meeting - Agenda: https://fedoraproject.org/wiki/Security_Team_meetings 14:21:47 <zodbot> Meeting started Thu Feb 11 14:21:47 2016 UTC. The chair is d-caf. Information about MeetBot at http://wiki.debian.org/MeetBot. 14:21:47 <zodbot> Useful Commands: #action #agreed #halp #info #idea #link #topic. 14:21:47 <zodbot> The meeting name has been set to 'security_team_meeting_-_agenda:_https://fedoraproject.org/wiki/security_team_meetings' 14:22:03 <d-caf> #meetingname Fedora Security Team 14:22:03 <zodbot> The meeting name has been set to 'fedora_security_team' 14:22:13 <d-caf> #topic Roll Call 14:22:21 * d-caf 14:22:47 <linuxmodder> .hello corey84 14:22:48 <zodbot> linuxmodder: corey84 'Corey Sheldon' <sheldon.corey@gmail.com> 14:24:41 <linuxmodder> Sparks ? 14:25:02 <d-caf> I believe he is out all month 14:25:09 <d-caf> Astradeus: You still there? 14:26:25 <linuxmodder> seems not :( 14:26:59 <d-caf> ok, then... 14:27:09 <d-caf> #info Participants are reminded to make liberal use of #info #link #help in order to make the minutes "more better" 14:27:29 <d-caf> #topic Follow up on last week's tasks 14:27:55 <d-caf> There was no real meeting last week, and old tasks are those not here, and I ahve not heard updates 14:28:10 <d-caf> #action pjp to give a status update on security policy in the wiki (carried over) 14:28:19 <d-caf> #action Sparks to figure out how FST members can get access to Fedora security bugs (carried over) 14:28:30 <d-caf> #action Sparks to follow up on meeting locations to verify their availability. (carried over) 14:28:33 <Astradeus> d-caf: only partly :/ 14:29:00 <d-caf> Astradeus: understood 14:29:09 <d-caf> Anyone know of any udpates on he above action? 14:30:48 <d-caf> ok, moving on 14:30:56 <d-caf> #topic Fedora Security Team FAD 14:31:00 <d-caf> #topic Fedora Security Team FAD 14:31:34 <d-caf> Sparks actually took on an action last time, on this but I haven't heard anything yet, anyone else have an udpate? 14:32:16 <d-caf> #info Sparks going to press ahead with the 4 March date and use the 11 March date as a backup for the FAD. 14:33:08 <d-caf> and continueing on.. 14:33:15 <d-caf> #topic Outstanding BZ Tickets 14:34:27 <d-caf> I don't have the nice summary that sparks usually does but mhayden did run the numbers this morning 14:34:47 <d-caf> +Tickets by Severity-+-------+---------+ 14:34:47 <d-caf> | Severity | Tickets | Owned | Unowned | 14:34:47 <d-caf> +----------+---------+-------+---------+ 14:34:47 <d-caf> | medium | 480 | 39 | 441 | 14:34:47 <d-caf> | low | 182 | 13 | 169 | 14:34:50 <d-caf> | high | 57 | 20 | 37 | 14:34:52 <d-caf> +----------+---------+-------+---------+ 14:35:23 <linuxmodder> at least that high number is droppign 14:40:06 <d-caf> still a lot of work there 14:40:31 <d-caf> an there was that recent one that hit the mailing list, which appears it was never communicated to redhat/fedora before public annouce? 14:41:50 <linuxmodder> missed that one in the recent ml flood from several sub projects 14:42:22 <d-caf> Yes, did the mailing list get hosed up or something? 14:42:33 <d-caf> noticed a nearly 24 hour delay in my response 14:43:10 <linuxmodder> mailman had some funky-ness last week iirc 14:43:19 <linuxmodder> or was it hyperkitty can't recall 14:44:11 <d-caf> anything else bug related? 14:44:19 <linuxmodder> not that I've seen 14:44:56 <d-caf> #topic Open floor discussion/questions/comments 14:45:01 <d-caf> Ok, anything else? 14:45:43 <linuxmodder> nah not from me 14:46:00 <d-caf> Oh, the vulnerability that came in late was this thread: https://lists.fedoraproject.org/archives/list/security-team@lists.fedoraproject.org/thread/NI3KU625TGETFINCQLUQY65PVQBVHMYG/ 14:46:12 <d-caf> #link https://lists.fedoraproject.org/archives/list/security-team@lists.fedoraproject.org/thread/NI3KU625TGETFINCQLUQY65PVQBVHMYG/ 14:46:32 <d-caf> ok, well, guess that's it 14:47:15 <Astradeus> maybe the issue with the fedora-release would be something to discuss? 14:47:25 <d-caf> #endmeeting