-
Notifications
You must be signed in to change notification settings - Fork 686
Standup Notes 2021 02 10
Erik Moeller edited this page Feb 11, 2021
·
1 revision
Participants (alphabetical): Allie, Conor, Erik, John, Kevin, Kushal, Mickael, Ro
-
Assignments
- Reminder: Please overcommunicate and assign yourself to tickets, comment w/ status updates. Best ensure comms related to a ticket are on the ticket.
-
Tech meeting tomorrow
- +1 to cancel: Erik, Kushal, Conor, John
- +1 to hold:
-
https://github.com/freedomofpress/securedrop/issues/5782
- (Conor) Will enforce same behavior as on Xenial, PR later today
Current release blockers:
-
https://github.com/freedomofpress/securedrop/issues/5778 (ossec agent issue)
- (Partial fix in branch; Mickael will continue to investigate)
-
https://github.com/freedomofpress/securedrop/pull/5780 (iptables issue)
- (Review underway; Conor will continue to investigate)
- There's an OSSEC/iptables test rather reliably failing here, Conor is looking into it (there was a similar test error where the test code was wrong, and we had to update it for this particular case iirc).
Yesterday:
-
quick mention of issues i ran into with focal install (
grsec: denied modification of grsecurity sysctl value), but i'm able to send messages/replies from ji and si now, do we want screenshots of how to disable secure boot for our docs?- intentional grsec behavior
-
had to manually install aptitude
- should be fixed in develop, see https://github.com/freedomofpress/securedrop/pull/5712/commits/004dc3c684194006448485583a9b38641ef750a9
Today:
- add EOL warning https://github.com/freedomofpress/securedrop/issues/5688
Blockers or Asks:
- None, THANK YOU Mickael for all your help
Yesterday:
- iptables review
- testinfra qubes support, thanks John and Kushal. merged: https://github.com/freedomofpress/securedrop/pull/5712
Today:
- finish iptables-persistent review, particularly that persnickety failing test https://github.com/freedomofpress/securedrop/pull/5780
- finializing docs for 5.4 kernel process https://github.com/freedomofpress/kernel-builder
- review of sshd changes https://github.com/freedomofpress/securedrop/pull/5666
Blockers or Asks:
- Focal release upgrade issue, reproducible? https://github.com/freedomofpress/securedrop/issues/5781 Seems related to https://github.com/freedomofpress/securedrop/issues/5782
- Universe channel spike, worthwhile? If so who's working on that?
Yesterday:
- Follow-up to Joan's contributor guide improvements; curated some issues across repos as "good first issue" / "help wanted"
- Chat w/ SimplySecure & Nina about collaboration via UXFund
- Started on securedrop-admin update check logic
Today:
- Poke further at SDW logic for dispVMs
- Continue on secureedrop-admin update check
Blockers or Asks: None
Yesterday:
- focal
- ux meeting
Today:
- focal universe inventory
- i18n_tool tickets if time
Blockers or Asks:
- none
Yesterday:
- Safe Deletion
- Qubes setup
Today:
- Support call
- Fresh install / docs
Blockers or Asks: None
Today:
- https://github.com/freedomofpress/securedrop/pull/5780
- commented on https://github.com/freedomofpress/securedrop/pull/5712
- the CI is failing as the interface name is different on Focal
- kicked the otherjob for xenial which was timed out.
- Updated the branch for https://github.com/freedomofpress/securedrop/issues/5778 for part 1, ossec-agentd now can connect to server Tomorrow:
- as required Blockers or Asks:
- https://github.com/freedomofpress/securedrop/pull/5677 someone can please review
Yesterday:
- Reviewed / commented security fix
- safe deletion meeting
- re-reviewed https://github.com/freedomofpress/securedrop/pull/5777
- Reviewed https ruleset changes + docs Today: -review (new) kernel build scripts
- take a look at https://github.com/freedomofpress/securedrop/issues/5778
Blockers or Asks:
- none
Yesterday:
- Support comms + meetings
- Updates to Icinga (new instances/v3)
- fw research
Today:
- Debian template sadness (resolved)
- Support contract language tweak (cc: Erik)
- Support comms
- new instance installation is in progress, will be supporting later this week :)
- Workstation install lurking this afternoon
Blockers or Asks:
- Erik: could you look at the (very small) language change to support contract so I can send today to an instance?