Minutes of the MiniTOP on the 2011-08-23

Setting

The MiniTOP will be held via telco 22:00 CEST

Attendees: dirk, uli, ted, Michael, Marcus, Marc, Magu, Alex

Topics

(skip to agenda)

Action items from last meeting Meeting Action Items

Agenda

  1. Workshop - The List of open / running / unhandled bugs - Part I
    1. Working Session - Action Items to start
      1. x4 bug #841 Problems on cert login

        • needs 2nd review - Ted, done
          needs bundling, done

        • NEO: did restructuring (sql query to subroutine), (Update 2011-07-26), re-tested, reviewed
        • needs 2nd review, bundling
          • => Ted on Wed, not done

        x4 NEO: bug #841 Problems on cert login

        needs 2nd review - Ted, done
        needs bundled
        NEO will check to get sql query extracted
        needs pushing
        pushed to testserver
        Needs Review & testing

        {0}

  2. Froscon is over, whats with the 2 open action items?
    • dirk, Michael

      3. next: strategy for "New Roots & Escrow" - how does debian work?
      to contact, defered to Froscon (end of Aug), CCCcamp (around Aug 10th)

      {-}

      Michael

      weak keys: problems with cryptostick to test at Froscon with Juergen ?

      {-}

  3. Workshop - The List of open / running / unhandled bugs - Part II
    1. VBscript for Vista/Win7 (select keysize >= 1024)

    2. Advertising
        • bug #958

          Advertising, ADS Challenge

          {0}

        • CAcertInc/LogosForSale/Rules wiki link exist

        • "buy me" logo / "Logo For Sale" logo / "Monthly Auction on Logos" logo
        • Logos and Links exist, needs deployment to testserver
      1. google ads, nobody knows about
        • http://google.de/adsense/ - needs google account

          • ad client id: pab.*9860, email adress is needed
          • board member to write email request to Robert, Philipp, Philpp, Teus, ernie
          • contact google?
          • account recovery?
    3. Thawte Patch - PR strategy
      1. x2 Bug# 827 and bug #959 "Thawte" patch - Points-Count-Order-Change project - 2nd Review + deploy

        x2 bug #827 "Thawte" patch (still running)
        related bug #959

        needs 1 more test, needs 2nd review
        2nd review: also check -x
        tests done, 2nd review outstanding

        {0}
        {g}

        • bug #959 deployed

        • bug #827 awaiting response from critical team

        • next steps:
          1. preparing PR, support
          2. report from Wytze, Hans: review, rebundle
        • if the patch goes active, this needs support
          • wiki faq (existing page? thawte topic?)
          • blog (-> alex)

            • mailing list
            • press release? probably not at this state
          • Support: could be better, but is ok
            • Triage: where to forward Thawte patch requests?
            • add to Support team meeting agenda
          • patch review
            • 10.php / 15.php ranking differs
            • 15.php experience points links to assurer account
            • patch applied to testserver, patch to transfer to critical system
          • alex to prepare blog post
    4. Dirk reminder (from last meeting) assure someone patches (checkboxes)

      • Dirk

        DEV: bug #894 problems with check-boxes on website forms (Assure someone) -> a20091118.3

        {0}

    5. Bugs to Review #1, transfer to testserver
      • Dirk

        Advertising (from last board meeting), bug #958

        add changes as discussed in last meeting to testserver

        {0}

        uli

        bug #968 error logging cleanup (splitted bug #909)

        split 0000909: too many error messages logged - part II - general.php

        {0}

        uli

        bug #967

        Give an OA the oppertuntiy to check if a desiginated Organisation Admininistrator is a CAcert assurer

        {0}

        uli

        bug #882

        display Assurance when field in list of assurances received, assurances given by a user in admin console interface

        {0}

        uli

        bug #846 Join Form restructure, help link

        Better guidance of bonafide members in Join Form about Suffixes they doesn't have in their ID doxs (a20100207.2)

        {0}

        uli

        bug #794

        visibility over certificates for sysadm in account administration

        {0}

        Ted, uli

        bug #957 Resize the comment field on https://secure.cacert.org/account.php?id=27 so more information is visible

        new fix avail 2011-08-19

        {0}

    6. Bugs under testing:
      • Dirk, Michael, Ted

        bug #965 0000965: Outsource / fix Webdb text pages id=12, 13

        one more testing

        {0}

    7. Review bugs under testing (finished testing?) (Review 2?)
      • bug #910 Outsource board member list

        from Webdb to wiki (id=8) (Part II)

        {0}

        bug #955 change sort order Orga list

        Possibilty to change the sorting order for the organisation overview

        {0}

      • bug #966

        • tests ok, but the question is, is OrgAdmin allowed to remove other admins ? yes or no?

        • current scenario doesn't allow removal of other admin
        • NEO: reset testserver state to fix state before bugfix
        • NEO: re-add bug 966 to testserver
        • bug needs more work, selection currently clashes with language setting (Delete != Löschen)
        • general problem in /pages/account.php with process variable, transfer of "cancel" pushes any action
        • potential workaround to fix all "Cancel" requests available
    8. Needs review, transfer to Critical team, to bundle, to deploy
      • bug #940 help* to wiki

        Outsource Webdb text pages help.php?id=0..9 to wiki
        needs review, deploy

        {0}

    9. Needs development, deployment, discussion
      1. bug #835 Assurer challenge (on testserver)

        bug #835 Assurer challenge (on testserver)

        asssigned to Ted, set to needs work, CATS to install on ca-mgr1

        {0}

      2. bug #943 change OA admin/assurer text

        • bug #943 change OA admin/assurer text

          -> Ted, rejected, needs comment from OAO

          {-}

        • webdb names OrgAdmins as OrgAssurers and names OrgAssurers as OrgAdmins.

        • patch takes account about this issue
        • problem with menu link Org Admin .. is Org Assurers menu
          • but this menu includes one addtl. link "View" that is available for Org Admins
            • and Org Admins with master flag to add new admins
          • master flag is not described in OAP (!)

          • addtl master flag to revoke ?
          • rename to "Org Administration"
          • don't show menu to OrgAdmins

    10. Still awaiting response from Critical team
  4. strategy plans ... next: strategy for "New Roots & Escrow"

    1. idea: using indirect crl's ?
      • 2 crl's needed, one valid, one invalid crl server
      • more infos available ? who ?
        1. build testserver with special certs
        2. Magu, Michael to send instructions for test deployment
      • meetings ago we've defined Testing requirements and a potential testszenario
      • to remind every meeting
    2. policy group: define requirements
      • multimember escrow method ?
        • needs risk analyze
        • potential candidates ?
          • Marcus to contacted Benedikt, will contact Thomas K
          • Next step(s)
    3. how does debian work ?
      • defered to Froscon (end of Aug), CCCcamp (around Aug 10th)
    4. The Bjoern report
  5. CI (Update)
    • description to eclipse testpage, Webinar

    • deployment scenario:
      1. create testusers
      2. testing
      3. delete testusers
    • regression test for standard tests: eg 0,1,49,50,51,99,100,101 pts w/ and w/o CATS passed
    • reminder
  6. next meeting: Tuesday, August 30, 2011 22:00

Minutes

  1. x2 Bug# 827 and bug #959 "Thawte" patch - Points-Count-Order-Change project - 2nd Review + deploy

    • x2 bug #827 "Thawte" patch (still running)
      related bug #959

      needs 1 more test, needs 2nd review
      2nd review: also check -x
      tests done, 2nd review outstanding

      {0}
      {g}

      • bug #959 deployed

      • bug #827 awaiting response from critical team

      • next steps:
        1. preparing PR, support
        2. report from Wytze, Hans: review, rebundle
      • if the patch goes active, this needs support
        • wiki faq (existing page? thawte topic?)
        • blog (-> alex)

          • mailing list
          • press release? probably not at this state
        • Support: could be better, but is ok
          • Triage: where to forward Thawte patch requests?
          • add to Support team meeting agenda
        • patch review
          • 10.php / 15.php ranking differs
          • 15.php experience points links to assurer account
          • patch applied to testserver, patch to transfer to critical system
        • alex to prepare blog post
      • 15.php to push, 10.php ? to set active ? or not?
      • mailing to people: Ted, Florian F, PG, Wytze, Carsten L, Jeff F, Frank K (ask Marcus) 120 pts, Sebastian K
  2. bug #835 Assurer challenge (on testserver)

    • bug #835 Assurer challenge (on testserver)

      asssigned to Ted, set to needs work, CATS to install on ca-mgr1

      {0}

    • Ted needs access informations, configuration of IP
  3. Dirk - development
    • Dirk, Michael

      bug #827 and bug #959 Thawte patch/Points-Count-Order-Change project

      related bug 959: needs 1 more test, needs 2nd review / 2nd review: also check -x / tests done, needs 2nd review
      959 {g} reviewed, deployed
      827 {g} reviewed, deployment in 2 steps
      new fixes, reviewed, needs testing

      {g}
      {0}
      {g}

  4. Dirk - 2nd review
    • x4 NEO: bug #841 Problems on cert login

      needs 2nd review - Ted, done
      needs bundled
      NEO will check to get sql query extracted
      needs pushing
      pushed to testserver
      Needs Review & testing

      {0}

    • not started? not finished
  5. Michael - 2nd review
  6. Ted - reviewed
    • uli, ted

      bug #882

      display Assurance when field in list of assurances received, assurances given by a user in admin console interface

      {0}

      uli, ted

      bug #794

      visibility over certificates for sysadm in account administration

      {0}

      Ted, uli

      bug #957 Resize the comment field on https://secure.cacert.org/account.php?id=27 so more information is visible

      new fix avail 2011-08-19

      {0}

  7. bug #835 Assurer challenge (on testserver)

    • bug #835 Assurer challenge (on testserver)

      asssigned to Ted, set to needs work, CATS to install on ca-mgr1

      {0}

    • Ted needs an IP address
    • Uli to request dns entry for cats1.it-sls.de by Andreas
  8. Froscon is over, whats with the 2 open action items?
    • dirk, Michael

      3. next: strategy for "New Roots & Escrow" - how does debian work?
      to contact, defered to Froscon (end of Aug), CCCcamp (around Aug 10th)

      {o}

      • no success, people not avail at Froscon

      Michael

      weak keys: problems with cryptostick to test at Froscon with Juergen ?

      {g}

      • Magu has a stick, to meet with Michael

Fixed Action Items since last or within meeting


Action Items New

Action items: Meeting Action Items

Software/Assessment/ActionItems

Development, Deployment, Discussion

  • OAO, Ted

    bug #943 change OA admin/assurer text

    needs 2nd test -> Fabian, Marc, Alex? {g} / needs 2nd review -> Ted, rejected

    {-}

    uli, Ted

    bug #824 Org User cert fix Case study

    Organisation User Certificates: Need UI improvement for proper production usage

    {0}

    uli, ted

    bug #823 email address removal fix

    No warning when removing e-mail address from account that certificates will be revoked
    checked by 4, needs 2nd review, deploy
    rejected

    {-}

    inopiae

    bug #920 Join - single name only (eg Indonesian)

    details under bug number

    {0}

    uli

    bug #859 admin console interface

    feature request: show activity on an account in the admin interface
    rejected, certs login doesn't modify "modified" field

    {r}

    Michael

    bug #540

    p20111113 CPS #7.1.2 "Certificate Extensions" adjustments - testing
    uli, marcus: needs full cert create tests
    duplicate report to bug#978
    tested by 3, 2nd review done, transfered
    Ken reported: still has problems, bug kept open

    {0}

    gagern, NEO

    bug #440 Problem with subjectAltName (CSR, renew certs)

    There seems to be a problem with the subjectAltName. Dupes, missing entries, and more, rejected, needs further development

    {r}

    neo

    bug #1025 Domain Dispute issue

    disputes rc and rc2 var prob
    needs work

    {r}

    dirk

    bug #1054 0001054: Review the code regarding the new point calculation

    Thawte patch part II
    needs further work

    {r}

Software Assessors: Review 1 / add to cacert-devel, add to testserver

  • Software-Assessors task

Testing

  • Testers task

    neo

    bug #1004 Stats page improvement

    tested by 2, needs 2nd review

    {0}

    neo

    Bugs #1159 it might be possible to execute commands on the signing server

    {0}

    inopiae

    bug #1065 Wrong wording when sending mails during the assurance process

    {0}

    inopiae

    bug #1162 calcutate (the passwords) hash in php instead of in mysql

    create test scenarios for the software testers /!\
    Full testing /!\

    {0}

    inopiae

    bug #0028 Wrong language for you've been assured & [CAcert.org] Client Certificate emails

    {0}

    inopiae

    bug #988 TTP cap form deployment

    {0}

Software Assessors: 2nd Review, Bundle Package to Critical Team

  • Software-Assessors task

    Ted

    bug #500 Get contact mail adress after resolving test

    tested by 3, requires review

    {0}

    Ted

    bug #1140 Show if a test is passed in learnprogress

    tested by 3, requires review

    {0}

    magu

    bug #1131 Rename _all_ Policies from .php to .html and fix all links

    global policy directory maintenance and update

    {0}

    inopiae

    bug #1010 Reorder the view on organisation certificates

    tested by 3

    {0}

Software Assessors: Bundle Package to Critical Team

  • Software-Assessors task

    inopiae

    bug #1139 Add new fields to the database

    tests through #500 and #1140, 2nd review done, requires transfer

    {0}

Awaiting Response from Critical Team

  • inopiae

    bug #411 Wrong text is made into link

    {g}



Software/Assessment/20110823-S-A-MiniTOP (last edited 2011-09-22 23:58:19 by UlrichSchroeter)