. '''To Software''' '''[[Software|Software]]''' - '''To Software-Assessment - ''' '''[[Software/Assessment|Software/Assessment]]''' - '''To [[Software/Assessment/20110920-S-A-MiniTOP|previous meeting]]''' - '''To [[Software/Assessment/20111004-S-A-MiniTOP|next meeting]]''' ---- = Minutes of the MiniTOP on the 2011-09-27 = == Setting == The MiniTOP will be held via telco 22:00 CEST Attendees: uli, marcus, dirk, michael, alex == Topics == (skip to agenda) Action items from last meeting '''[[Software/Assessment/ActionItems|Meeting Action Items]]''' == Agenda == 1. '''Software-Assessors blockage''' - The List of open / running / unhandled bugs - Part I 1. [[https://bugs.cacert.org/view.php?id=827|bug #827]] patch || Dirk, Michael || [[https://bugs.cacert.org/view.php?id=827|bug #827]] and [[https://bugs.cacert.org/view.php?id=959|bug #959]] Thawte patch/Points-Count-Order-Change project || related bug 959: needs 1 more test, needs 2nd review / 2nd review: also check -x / tests done, needs 2nd review<
>959 {g} reviewed, deployed <
>827 {g} reviewed, deployment in 2 steps<
>deployed, report from Wytze || {g} <
> {0} || * request by Joost for variable fields * next steps: 1. preparing PR, support (see below) 1. Thawte Patch - PR strategy * alex to prepare blog post * if the patch goes active, this needs support * wiki faq (existing page? thawte topic?) * blog (-> alex) * mailing list * press release? probably not at this state * Support: could be better, but is ok * Triage: where to forward Thawte patch requests? * add to Support team meeting agenda 1. reviewed last meeting. needs transfer to critical team * transfer to critical team, done. * mailing to people: Ted, Florian F, PG, Wytze, Carsten L, Jeff F, Frank K (ask Marcus) 120 pts, Sebastian K, done. * report by Wytze: problem with Unknown, Trusted Third Parties, Assurances before 2006 (0,0) * blog post or mail ? -> both * last review by dirk (at checkin) * "Deleted before Verification" together with "Thawte", needs updated * old tverify automatic procedure /tverify/index.php stores userid=0 into the notary table * if user gets deleted, userid doesn't exist, results in same text * if username empty -> deleted before verification, if userid=0 name=system, support console email field -> empty * dirk needs results from arbitration [[https://wiki.cacert.org/Arbitrations/a20100822.1|a20100822.1]] request to magu 1. New proposal: scripted mailing for 0:0 F2F cases with detailed instructions 1. get information how many 0:0 cass we have ? * info from last years arbitration [[Arbitrations/a20100822.1|a20100822.1]] ? (documentation is not yet avail) * Lambert as Arbitrator, Martin as Case Manager and dirk in role as SA as Claimant should know the answer 1. is it possible to update 15.php script to signal the 0:0 F2F assurance cases ?!? eg by color blue or background color light yellow ? 1. to prepare an arbitration process for a scripted mailing announcement a. to the assuree's who may loose points caused by 0:0 cases a. to the assurers, who can re-apply their assurance over assuree's with the 0:0 problem 1. PR work - Alex proposal (Update?) 1. thawte patch - blog post 1. newsletter mailings 1. thawte patch details 1. infos about thawte points removal 1. infos about points counting 1. infos from last meeting: Alex prepared an article * 150 pts -> rewrite * "Diese von der CA Thawte vergebenen Punkte können schon seit geraumer Zeit ..." * points cannot be verified * these points will be revoked * "nicht mehr beruecksichtigt" * Update ? Text proposal ? 1. Questions from last meeting: 1. support: template for replys? * uli to create faq page * done: [[FAQ/NewPointsCount]] 1. dirk: when will 827 goes to production ? * michael: will check this week 1. New function to TMS - edit notary table record * [[https://bugs.cacert.org/view.php?id=980|bug #980]] * infos from last meeting * testers needs editing individual notary records: fields "method", "awarded", "points" * easier to create notary records with testserver (add F2F), and edit existing record, doesn't need to check for assurer-from, assuree-to and so on * Update? 1. Translingo . [[https://translations.cacert.org]] ([[http://translations.cacert.org/]]) (replacement for translingo) . the translingo.cacert.org had been in operation far longer, so I think it is possible that some users migrated to translingo.cacert.org, without telling us. . I would suggest to mass-mail the email addresses of the translation-project leaders in the translingo database, to inform them, and to ask them to speak up if they still need it * last foreign uploads 2008 on about 13 + cacert projects * whohas translingo server console access? * mario * req for console access for michael to contact project leaders, Updates? * Transfer In, Transfer Out problems * Update from new deployment ? * opened for: create an account can now be started 1. Dirks workqueue - The List of open / running / unhandled bugs 1. VBscript for Vista/Win7 (select keysize >= 1024) - '''reminder''' to dirk || x^1^ Dirk, new [[https://bugs.cacert.org/view.php?id=964|bug#964]]<
>DEV: [[https://bugs.cacert.org/view.php?id=918|bug#918 (Part II)]] ([[Arbitrations/a20110312.1|a20110312.1]]) Weak keys: /pages/account/.. 4.php, 17.php to combine ? (/includes/keygen.php) '''DEV''' || current state: test /account/4.php added to testserver<
>Marcus will do detailed tests on Wed<
>some references added to [[https://bugs.cacert.org/view.php?id=964|bug#964]] || {-} || * as part of * x^1^ Arbitration case [[Arbitrations/a20110312.1|a20110312.1]] Weak keys [[https://bugs.cacert.org/view.php?id=918|bug #918]] / [[https://bugs.cacert.org/view.php?id=954|bug #954]] / [[https://bugs.cacert.org/view.php?id=964|bug#964]] * Current state: || {g} || pre mailing sent || || {g} || keys revocation script to bulk revoke weak keys, new [[https://bugs.cacert.org/view.php?id=954|bug #954]], finished || || {-} || dirk: DEV: [[Arbitrations/a20110312.1|a20110312.1]] [[https://bugs.cacert.org/view.php?id=918|bug#918]] Weak keys: /pages/account/.. 4.php, 17.php to combine ? (/includes/keygen.php) '''DEV''' <
>vbscript needs to be improved with select box key size and lower limit to 2048 (based on [[https://wiki.mozilla.org/CA:MD5and1024]])<
>Api CertEnroll (MS crypto provider)<
>new [[https://bugs.cacert.org/view.php?id=964|bug#964]]<
>current state: test /account/4.php added to testserver<
>Marcus will do detailed tests on Wed<
>some references added to [[https://bugs.cacert.org/view.php?id=964|bug#964]] || || {g} || Weak keys blog post, published || || {g} || Weak keys article published by Hanno(July 28), link is in CAcert's blog post (July 30) || || {b} || weak keys: problems with cryptostick (to test at [[events/FrOSCon2011|Froscon]] with Juergen ?) || * cert enroll infos under [[https://bugs.cacert.org/view.php?id=964|bug#964]] * vista and win7 works with other engine !CryptoAPI (?) => Cryptography API: Next Generation * [[http://msdn.microsoft.com/en-us/library/aa833130%28v=VS.85%29.aspx]] * Marcus: added notes for Win7 [[https://bugs.cacert.org/view.php?id=964#c2249]] * Update (3rd week) ? 1. Advertising 1. Prepare Advertising fix for testserver - '''reminder''' to dirk || Dirk || Advertising (from last board meeting), [[https://bugs.cacert.org/view.php?id=958|bug #958]] || add changes as discussed in last meeting to testserver || {0} || * [[CAcertInc/LogosForSale/Rules]] wiki link exist * "buy me" logo / "Logo For Sale" logo / "Monthly Auction on Logos" logo * Logos and Links exist, needs deployment to testserver * Update (4th week) ? 1. bug#824 0000824: Organisation User Certificates: Need UI improvement for proper production usage (case study) * Working session to remove from testserver 1. Bugs to Review #1, transfer to testserver - Currently '''6''' || uli || [[https://bugs.cacert.org/view.php?id=977|bug #977]] admin console text fix || admin console Sysadmin - find domain - lists 2 tables - one for user accounts, one for org accounts, naming issue || {0} || || uli || [[https://bugs.cacert.org/view.php?id=967|bug #967]] OA isassurer check || Give an OA the oppertuntiy to check if a desiginated Organisation Admininistrator is a CAcert assurer || {0} || || uli || [[https://bugs.cacert.org/view.php?id=859|bug #859]] admin console interface || feature request: show activity on an account in the admin interface, new update /!\ || {0} || || uli || [[https://bugs.cacert.org/view.php?id=855|bug #855]] admin console interface "unknown" + "empty" assurance method fields, needed for correct testing on testserver || admin console lists "empty" and "Unknown" assurance types on listing given Assurances || {0} || || uli || [[https://bugs.cacert.org/view.php?id=823|bug #823]] email address removal fix || No warning when removing e-mail adres from acount that certificates will be revoked || {0} || || inopiae || [[https://bugs.cacert.org/view.php?id=981|bug #981]] OA overview (dupe of [[https://bugs.cacert.org/view.php?id=943|bug #943]]) || New layout of view for Organisation Administraors in account/id35 || {0} || 1. Bugs under testing: - Currently '''11''' || Ted, uli || [[https://bugs.cacert.org/view.php?id=957|bug #957]] Resize the comment field on [[https://secure.cacert.org/account.php?id=27]] so more information is visible || last update 2011-08-19<
>tested 3 times<
>ready to deploy? || {0} || || uli, Michael || [[https://bugs.cacert.org/view.php?id=966|bug #966]] cancel doesn't cancel but processes instead || potential workaround to fix all "Cancel" requests available<
>addtl. individual fixes<
>last update 2011-08-30<
>3 times tested<
>ready to deploy? || {0} || || Dirk || [[https://bugs.cacert.org/view.php?id=894|bug#894]] assure someone patches (checkbox) || (incl wot.php changes)<
>needs more tests || {0} || || uli, Ted || [[https://bugs.cacert.org/view.php?id=824|bug #824]] Org User cert fix || Organisation User Certificates: Need UI improvement for proper production usage<
>working session: needs to be removed from testserver || {0} || || uli, ted, dirk || [[https://bugs.cacert.org/view.php?id=882|bug #882]] || display Assurance when field in list of assurances received, assurances given by a user in admin console interface<
>last update 2011-09-13<
>needs more tests || {0} || || uli, ted || [[https://bugs.cacert.org/view.php?id=968|bug #968]] error logging cleanup (splitted bug #909) || split 0000909: too many error messages logged - part II - general.php<
>create certs,certs,certs<
>2 sessions: 2011-09-21 + 2011-09-25<
>more tests needed<
>create certs,certs,certs,certs<
>create client, server, gpg keys, org client and server certs || {0} || || uli, ted || [[https://bugs.cacert.org/view.php?id=975|bug #975]] admin console interface (2) || report potential database inconsistency in SE console (debug infos)<
>needs more tests || {0} || || uli<
>Done: Ted, Micael<
>!ToDo: Ted, dirk || [[https://bugs.cacert.org/view.php?id=846|bug #846]] Join Form restructure, help link || Better guidance of bonafide members in Join Form about Suffixes they doesn't have in their ID doxs (a20100207.2)<
>Michael added fixes, so 2nd review needed again<
>new update 2011-09-13, needs complete re-test || {0} || || uli, ted || [[https://bugs.cacert.org/view.php?id=794|bug #794]] || visibility over certificates for sysadm in account administration, new update 2011-09-24 || {0} || || uli, Ted || [[https://bugs.cacert.org/view.php?id=965|bug #965]] 0000965: Outsource / fix Webdb text pages id=12, 13 || addtl. id=37, id=38, new update 2011-09-25 || {0} || || uli, ted || [[https://bugs.cacert.org/view.php?id=789|bug #789]] OA edit domain fix || Editing domain for organisations does not work<
>new update 2011-09-26 || {0} || 1. Needs 2nd review + transfer to Critical team, to bundle, to deploy - Currently '''1''' || moh<
>Done: Ted<
>!ToDo: Michael, dirk || [[https://bugs.cacert.org/view.php?id=596|bug #596]] certs list advanced || display ser# in certs overview lists || {0} || 1. Needs development, deployment, discussion 1. [[https://bugs.cacert.org/view.php?id=835|bug #835]] Migrate CATS onto testserver || [[https://bugs.cacert.org/view.php?id=835|bug #835]] Assurer challenge (on testserver) || asssigned to Ted, CATS to install on ca-mgr1, awaiting deployment || {0} || 1. [[https://bugs.cacert.org/view.php?id=943|bug #943]] change OA admin/assurer text || [[https://bugs.cacert.org/view.php?id=943|bug #943]] change OA admin/assurer text || -> Ted, rejected, needs comment from OAO || {-} || * webdb names OrgAdmins as OrgAssurers and names OrgAssurers as OrgAdmins. * patch takes account about this issue * problem with menu link Org Admin .. is Org Assurers menu * but this menu includes one addtl. link "View" that is available for Org Admins * and Org Admins with master flag to add new admins * master flag is not described in OAP (!) * addtl master flag to revoke ? * rename to "Org Administration" * don't show menu to OrgAdmins * dupe bug# 981 1. strategy plans ... next: strategy for "New Roots & Escrow" 1. idea: using indirect crl's ? * 2 crl's needed, one valid, one invalid crl server * more infos available ? who ? 1. build testserver with special certs 1. Magu, Michael to send instructions for test deployment * indirect CRL: RFC 5280 [[http://tools.ietf.org/html/rfc5280]] (chapter 5) * meetings ago we've defined Testing requirements and a potential testszenario * to remind every meeting * Michael: testserver environment deployment 1. policy group: define requirements * multimember escrow method ? * needs risk analyze * potential candidates ? * Marcus to contacted Benedikt, will contact Thomas K * Next step(s) 1. how does debian work ? * defered to Froscon (end of Aug), CCCcamp (around Aug 10th) 1. CI (Update) 1. [[http://live.eclipse.org/node/1031|description to eclipse testpage]], [[http://adobedev.adobe.acrobat.com/p4101brizwr/|Webinar]] * deployment scenario: 1. create testusers 1. testing 1. delete testusers * regression test for standard tests: eg 0,1,49,50,51,99,100,101 pts w/ and w/o CATS passed * reminder 1. Jubula Test-Tool (by Michael) - update? * [[http://www.eclipse.org/jubula/download.php]] * instructions see under [[Software/Assessment/20110830-S-A-MiniTOP#Minutes|Minutes meeting 2011-08-30]] * test deployment needs to be continued by software testers 1. next meeting: Tuesday, October 4, 2011 22:00 == Minutes == 1. '''Software-Assessors blockage''' - The List of open / running / unhandled bugs - Part I 1. [[https://bugs.cacert.org/view.php?id=827|bug #827]] patch || Dirk, Michael || [[https://bugs.cacert.org/view.php?id=827|bug #827]] and [[https://bugs.cacert.org/view.php?id=959|bug #959]] Thawte patch/Points-Count-Order-Change project || related bug 959: needs 1 more test, needs 2nd review / 2nd review: also check -x / tests done, needs 2nd review<
>959 {g} reviewed, deployed <
>827 {g} reviewed, deployment in 2 steps<
>deployed, report from Wytze || {g} <
> {0} || * request by Joost for variable fields * next steps: 1. preparing PR, support (see below) 1. Thawte Patch - PR strategy * alex to prepare blog post * if the patch goes active, this needs support * wiki faq (existing page? thawte topic?) * blog (-> alex) * mailing list * press release? probably not at this state * Support: could be better, but is ok * Triage: where to forward Thawte patch requests? * add to Support team meeting agenda 1. reviewed last meeting. needs transfer to critical team * transfer to critical team, done. * mailing to people: Ted, Florian F, PG, Wytze, Carsten L, Jeff F, Frank K (ask Marcus) 120 pts, Sebastian K, done. * report by Wytze: problem with Unknown, Trusted Third Parties, Assurances before 2006 (0,0) * blog post or mail ? -> both * last review by dirk (at checkin) * "Deleted before Verification" together with "Thawte", needs updated * old tverify automatic procedure /tverify/index.php stores userid=0 into the notary table * if user gets deleted, userid doesn't exist, results in same text * if username empty -> deleted before verification, if userid=0 name=system, support console email field -> empty * dirk needs results from arbitration [[https://wiki.cacert.org/Arbitrations/a20100822.1|a20100822.1]] request to magu 1. New proposal: scripted mailing for 0:0 F2F cases with detailed instructions 1. get information how many 0:0 cass we have ? * info from last years arbitration [[Arbitrations/a20100822.1|a20100822.1]] ? (documentation is not yet avail) * Lambert as Arbitrator, Martin as Case Manager and dirk in role as SA as Claimant should know the answer 1. is it possible to update 15.php script to signal the 0:0 F2F assurance cases ?!? eg by color blue or background color light yellow ? 1. to prepare an arbitration process for a scripted mailing announcement a. to the assuree's who may loose points caused by 0:0 cases a. to the assurers, who can re-apply their assurance over assuree's with the 0:0 problem 1. dirk: 15.php can be easily upgraded - not only color also italic 1. PR work - Alex proposal (Update?) 1. thawte patch - blog post 1. newsletter mailings 1. thawte patch details 1. infos about thawte points removal 1. infos about points counting 1. infos from last meeting: Alex prepared an article * 150 pts -> rewrite * "Diese von der CA Thawte vergebenen Punkte können schon seit geraumer Zeit ..." * points cannot be verified * these points will be revoked * "nicht mehr beruecksichtigt" * Update ? Text proposal ? * No update 1. Questions from last meeting: 1. support: template for replys? * uli to create faq page * done: [[FAQ/NewPointsCount]] 1. dirk: when will 827 goes to production ? * michael: will check this week * delayed cause working on translation server deployment * patches on testserver that needs to be removed: bug #824 and bug #900 1. Translingo . [[https://translations.cacert.org]] ([[http://translations.cacert.org/]]) (replacement for translingo) . the translingo.cacert.org had been in operation far longer, so I think it is possible that some users migrated to translingo.cacert.org, without telling us. . I would suggest to mass-mail the email addresses of the translation-project leaders in the translingo database, to inform them, and to ask them to speak up if they still need it * last foreign uploads 2008 on about 13 + cacert projects * whohas translingo server console access? * mario * req for console access for michael to contact project leaders, Updates? * Transfer In, Transfer Out problems * Update from new deployment ? * opened for: create an account can now be started * Michaael current state: * import and export routine works * script to incorporate updates needs fixed 1. New function to TMS - edit notary table record * [[https://bugs.cacert.org/view.php?id=980|bug #980]] * infos from last meeting * testers needs editing individual notary records: fields "method", "awarded", "points" * easier to create notary records with testserver (add F2F), and edit existing record, doesn't need to check for assurer-from, assuree-to and so on * Update? * No Update 1. Dirks workqueue - The List of open / running / unhandled bugs 1. VBscript for Vista/Win7 (select keysize >= 1024) - '''reminder''' to dirk || x^1^ Dirk, new [[https://bugs.cacert.org/view.php?id=964|bug#964]]<
>DEV: [[https://bugs.cacert.org/view.php?id=918|bug#918 (Part II)]] ([[Arbitrations/a20110312.1|a20110312.1]]) Weak keys: /pages/account/.. 4.php, 17.php to combine ? (/includes/keygen.php) '''DEV''' || current state: test /account/4.php added to testserver<
>Marcus will do detailed tests on Wed<
>some references added to [[https://bugs.cacert.org/view.php?id=964|bug#964]] || {-} || * as part of * x^1^ Arbitration case [[Arbitrations/a20110312.1|a20110312.1]] Weak keys [[https://bugs.cacert.org/view.php?id=918|bug #918]] / [[https://bugs.cacert.org/view.php?id=954|bug #954]] / [[https://bugs.cacert.org/view.php?id=964|bug#964]] * Current state: || {g} || pre mailing sent || || {g} || keys revocation script to bulk revoke weak keys, new [[https://bugs.cacert.org/view.php?id=954|bug #954]], finished || || {-} || dirk: DEV: [[Arbitrations/a20110312.1|a20110312.1]] [[https://bugs.cacert.org/view.php?id=918|bug#918]] Weak keys: /pages/account/.. 4.php, 17.php to combine ? (/includes/keygen.php) '''DEV''' <
>vbscript needs to be improved with select box key size and lower limit to 2048 (based on [[https://wiki.mozilla.org/CA:MD5and1024]])<
>Api CertEnroll (MS crypto provider)<
>new [[https://bugs.cacert.org/view.php?id=964|bug#964]]<
>current state: test /account/4.php added to testserver<
>Marcus will do detailed tests on Wed<
>some references added to [[https://bugs.cacert.org/view.php?id=964|bug#964]] || || {g} || Weak keys blog post, published || || {g} || Weak keys article published by Hanno(July 28), link is in CAcert's blog post (July 30) || || {b} || weak keys: problems with cryptostick (to test at [[events/FrOSCon2011|Froscon]] with Juergen ?) || * cert enroll infos under [[https://bugs.cacert.org/view.php?id=964|bug#964]] * vista and win7 works with other engine !CryptoAPI (?) => Cryptography API: Next Generation * [[http://msdn.microsoft.com/en-us/library/aa833130%28v=VS.85%29.aspx]] * Marcus: added notes for Win7 [[https://bugs.cacert.org/view.php?id=964#c2249]] * Update (3rd week) ? * no update * has not started the virtual machine * Question from Marcus: did someone contacted illuminat? * No * Marcus: to contact illuminat 1. Advertising 1. Prepare Advertising fix for testserver - '''reminder''' to dirk || Dirk || Advertising (from last board meeting), [[https://bugs.cacert.org/view.php?id=958|bug #958]] || add changes as discussed in last meeting to testserver || {0} || * [[CAcertInc/LogosForSale/Rules]] wiki link exist * "buy me" logo / "Logo For Sale" logo / "Monthly Auction on Logos" logo * Logos and Links exist, needs deployment to testserver * Update (4th week) ? * no update 1. bug#824 0000824: Organisation User Certificates: Need UI improvement for proper production usage (case study) * Working session to remove from testserver * applies also to bug #900 {{{ principle process 1. branch "testserver-mods" auschecken 2. release reinmergen 3. neuer branch "testserver" ab diesem Punkt (also nicht ab release sondern testserver-mods) 4. bug tracker durchgehen und nur die bugs die nicht als untauglich zurückgewiesen wurden in den testserver mergen 5. vergewissern dass alles korrekt ist 6. branch testserver auf origin pushen 7. auf dem testserver den branch testserver vom origin holen und auschecken }}} 1. Current tests on testserver problems 1. bug #966 cancel doesn't cancel but processes instead * 824 needs removed first 1. bug#894 assure someone patches (checkbox) * problem seen is related to ttp admin * ttpadmin has not seen user f2f (!) 1. strategy plans ... next: strategy for "New Roots & Escrow" * no update 1. CI (Update) - Jubula Test-Tool (by Michael) - update? * no update 1. Alex forwarded heise text ssl prob * ssl implementation with openSSL is attack possible * solutions: 1. gnuTLS 2. use RC4 instead of AES? * upgrade of apache servers ? * Links * [[http://www.heise.de/newsticker/meldung/Erste-Loesungen-fuer-SSL-TLS-Schwachstelle-1349687.html]] * Links within this articel: * [1] [[http://www.phonefactor.com/blog/slaying-beast-mitigating-the-latest-ssltls-vulnerability.php]] * [2] [[http://www.openssl.org/~bodo/tls-cbc.txt]] * [3] [[http://news.ycombinator.com/item?id=3015498]] * [4] [[http://netifera.com/research/beast/]] * [5] [[http://blog.g-sec.lu/2011/09/ssltls-hardening-and-compatibility.html]] * [6] [[http://www.phonefactor.com/resources/CipherSuiteMitigationForBeast.pdf]] * [7] [[https://src.chromium.org/viewvc/chrome?view=rev&revision=90643]] * [8] [[http://www.openssl.org/~bodo/tls-cbc.txt]] 1. Working sessions: * Testserver reset to git status - cacert, reapply active patches * add Bug 827 - add marker for 0 awarded / 0 points records in 15.php * add Bug 882 - add marker for 0 awarded / 0 points records in new calculation in admin console * add Bug 985 - move translingo to translation project - language settings in webdb * Bug 824 removed * Bug 900 removed ==== Fixed Action Items since last or within meeting ==== || Uli || to create faq wiki page "Thawte patch / new points count" || [[FAQ/NewPointsCount]] || {g} || || Done: Ted<
>!ToDo: Dirk, Michael || [[https://bugs.cacert.org/view.php?id=940|bug #940]] Outsource Webdb text pages help.php?id=0..9 to wiki || needs 2nd review, deploy || {g} || || Done: Ted<
>!ToDo: Dirk, Michael || [[https://bugs.cacert.org/view.php?id=910|bug #910]] 0000910: Outsource board member list from Webdb to wiki (id=8) (Part II) || needs 2nd review, deploy || {g} || || Done: Ted, Michael || [[https://bugs.cacert.org/view.php?id=955|bug #955]] Possibilty to change the sorting order for the organisation overview || || {g} || ---- ==== Action Items New ==== Action items: '''[[Software/Assessment/ActionItems|Meeting Action Items]]''' <> ---- . CategorySoftwareAssessment