To Software Software - To Software-Assessment - Software/Assessment - To previous meeting - To next meeting

Minutes of the MiniTOP on the 2011-04-26

Setting

The MiniTOP will be held via telco 22:00 CEST

Attendees: Marcus, Dirk, Michael, Uli

Topics

new items in last meeting:

Uli: to write request to Markus, Andreas to create new cacert1 image and set url for download
Ted: bug#918 patches to block weak keys by michael, needs to be reviewed
Michael: Bug #637 Weak Password, file dispute regarding 2nd step: to fix current effected accounts, to be handled under arbitration
Uli: added patch bug#637 onto testserver, update testers portal, notify tester group
Michael: Bug#921 review on Wed and add to testserver
Uli: add patch bug#921 onto testserver, update testers portal, notify tester group, publish blog post "Easter Eggs"
Ted, Markus, Dirk: Bug#897 2nd review
Uli: tester to inform regarding class3 certs creation in mailing regarding bug#921

Action items from last meeting Meeting Action Items
triage test on CATS (Update)
New Testserver Image 2011-04-21
New bug report (Wytze): Bug #922 "CAcert application code problem causing missing 'certificate about to expire' messages"
State Testserver Update, Current Patches on Testserver, current running Arbitrations:
- Arbitration case a20110312.1 Weak keys
- Arbitration case a20110419.1 Bug #637: Weak Passwords
- "Thawte" patch Bug# 827 Points-Count-Order-Change project
- Prepare Easter Eggs Bug# 921 Policies repository migration
strategy plans ...
- strategy for: "Certificates Class3" problem and "New Roots & Escrow" - proposal to board
Policy Repository migration plan (Ian, u60) (based on bug #671 discussion)
CI app.test (Update)
next meeting: Tuesday, May 3, 2011 22:00

Minutes

walking thru finished action items
Software-Testing - problem to find -active- testers
triage test on CATS - no Update
New bug report (Wytze): Bug #922 "CAcert application code problem causing missing 'certificate about to expire' messages"
- one table not in use (domcerts, domlink (to allow multiple domains in one cert))
- email cert is linked to user-id, server cert is linked to domain id
- removal of domain -> links to certs issued
- solution by wytze doesn't counts removal of certs on domain revocation
- code needs reviewed corrected, to solve this problem
- table.domlink needs to be filled, domid column in table.domcerts to be removed
- State / Priority: Major, High, Open, New
strategy plans ...
- strategy for: "Certificates Class3" problem and "New Roots & Escrow" - proposal to board
- test group doesn't work
- 2 strategies:
  1. wait for testgroup
  2. Software-Assessment project team telco on upcoming Sunday starting 19:00
- verification with crl
Policy Repository migration plan (Ian, u60) (based on bug #671 discussion)
- one dir for draft and policy state
- use subdirs with symbolic links for differenciate wip, draft, policy state
- use textfile with filenames and marker W,D,P `?
- using svn branch ?
- make valid html
bugs.cacert.org
- migration plans, next steps
  1. Michael: talk with guys from sonance
  2. or add VM on it-sls
next meeting: Tuesday, May 3, 2011 22:00

Fixed Action Items since last Meeting

Uli	to write request to Markus, Andreas to create new cacert1 image and set url for download	{+}
Uli	create new cacert1 image and set url for download	{+}
Ted	review: bug#918 patches to block weak keys by michael	{+}
Michael	Bug #637 Weak Password, file dispute regarding 2nd step: to fix current effected accounts, to be handled under arbitration	{+}
Uli	added patch bug#637 onto testserver, update testers portal, notify tester group	{+}
Michael	review: Bug#921 (move PP to /Policy/ and link corrections in policies) on Wed and add to testserver	{+}
Uli	after adding patch bug#921 onto testserver, update testers portal, notify tester group, publish blog post "Easter Eggs"	{+}
Uli	tester to inform regarding class3 certs creation in mailing regarding bug#921	{+}
Uli, Michael	Update Overview Projects Board topics for SA (Update)	{+}

Action Items New

Dirk, Uli: Next Board Meeting: Software-Testing - problem to find -active- testers
Dirk, Michael, Uli: strategy for: "Certificates Class3" problem and "New Roots & Escrow" - proposal to board, working session on Sunday
Uli: Policy Repository migration plan, updating

Action items: Meeting Action Items

Software/Assessment/ActionItems

all	proposed Apache config SSLCipherSuite settings for CAcert SSL enabled infrastructure systems see also BEAST migration https://community.qualys.com/blogs/securitylabs/2011/10/17/mitigating-the-beast-attack-on-tls Proposal from Sysadm list 2013-09-06	{0}
SA	documentation server cert design concept to SystemAdministration/Systems/Development/Prepare	{0}
all	review Software patches Update Cycle	{0}
BenBE, Marcus	documentation: developer git repos under github bug #1131 history @ github CAcertOrg @ github started under Software/Assessment/Documentation/UpdateCycle/step1	{0}
NEO	BenBe: request: htttps header on bugtracker bug #1116	{0}
all	read x509 guide	{0}
all	bug#1068 blog problem (also relates to community) debian lenny - edge - squeeze upgrades needed alternate: new server with squeeze, install wordpress, transfer domain workaround: configure your FF FAQ/BrowserClients	{g}
uli	Experience points for ATE attendance check board motions and/or trigger if not yet passed	{0}
uli	Infrastructure separation, to contact secure-u (Frank, Mario, Ted, Sebastian) for discussion, prepare a plan, started 2011-12-18 current state: see Funding Landing Page May 2013: tk-server sponsoring, tk-server rcvd, deployment: WIP, project not yet finished	{0}
All	1. next: strategy for "New Roots & Escrow" - using indirect crl's ? indirect CRL: RFC 5280 http://tools.ietf.org/html/rfc5280 (chapter 5) - test deployment	{0}
dirk, Michael	3. next: strategy for "New Roots & Escrow" - how does debian work? to contact, deferred to next events (?) next round: picked up by Benedikt new proposal 2013-06-02	{0}
Uli, Michael	Documentation Bugs.cacert.org Review, documentation I (bugs handbook) svg files to convert to jpg or png	{0}

Development, Deployment, Discussion

OAO, Ted	bug #943 change OA admin/assurer text	needs 2nd test -> Fabian, Marc, Alex? {g} / needs 2nd review -> Ted, rejected	{-}
uli, Ted	bug #824 Org User cert fix Case study	Organisation User Certificates: Need UI improvement for proper production usage	{0}
uli, ted	bug #823 email address removal fix	No warning when removing e-mail address from account that certificates will be revoked checked by 4, needs 2nd review, deploy rejected	{-}
inopiae	bug #920 Join - single name only (eg Indonesian)	details under bug number	{0}
uli	bug #859 admin console interface	feature request: show activity on an account in the admin interface rejected, certs login doesn't modify "modified" field	{r}
Michael	bug #540	p20111113 CPS #7.1.2 "Certificate Extensions" adjustments - testing uli, marcus: needs full cert create tests duplicate report to bug#978 tested by 3, 2nd review done, transfered Ken reported: still has problems, bug kept open	{0}
gagern, NEO	bug #440 Problem with subjectAltName (CSR, renew certs)	There seems to be a problem with the subjectAltName. Dupes, missing entries, and more, rejected, needs further development	{r}
neo	bug #1025 Domain Dispute issue	disputes rc and rc2 var prob needs work	{r}
dirk	bug #1054 0001054: Review the code regarding the new point calculation	Thawte patch part II needs further work	{r}

Software Assessors: Review 1 / add to cacert-devel, add to testserver

Software-Assessors task

Testing

Testers task

neo	bug #1004 Stats page improvement	tested by 2, needs 2nd review	{0}
neo	Bugs #1159 it might be possible to execute commands on the signing server		{0}
inopiae	bug #1065 Wrong wording when sending mails during the assurance process		{0}
inopiae	bug #1162 calcutate (the passwords) hash in php instead of in mysql	create test scenarios for the software testers $/!\$ Full testing $/!\$	{0}
inopiae	bug #0028 Wrong language for you've been assured & [CAcert.org] Client Certificate emails		{0}
inopiae	bug #988 TTP cap form deployment		{0}

Software Assessors: 2nd Review, Bundle Package to Critical Team

Software-Assessors task

Ted	bug #500 Get contact mail adress after resolving test	tested by 3, requires review	{0}
Ted	bug #1140 Show if a test is passed in learnprogress	tested by 3, requires review	{0}
magu	bug #1131 Rename _all_ Policies from .php to .html and fix all links	global policy directory maintenance and update	{0}
inopiae	bug #1010 Reorder the view on organisation certificates	tested by 3	{0}

Software Assessors: Bundle Package to Critical Team

Software-Assessors task

inopiae

bug #1139 Add new fields to the database

tests through #500 and #1140, 2nd review done, requires transfer

{0}

Awaiting Response from Critical Team

inopiae

bug #411 Wrong text is made into link

{g}

CategorySoftwareAssessment

CategorySoftwareAssessment

Software/Assessment/20110426-S-A-MiniTOP (last edited 2011-09-23 00:09:22 by UlrichSchroeter)