16:33 <sbeattie> #startmeeting
16:33 <meetingology> Meeting started Mon May 20 16:33:51 2013 UTC.  The chair is sbeattie. Information about MeetBot at http://wiki.ubuntu.com/meetingology.
16:33 <meetingology> 
16:33 <meetingology> Available commands: #accept #accepted #action #agree #agreed #chair #commands #endmeeting #endvote #halp #help #idea #info #link #lurk #meetingname #meetingtopic #nick #progress #rejected #replay #restrictlogs #save #startmeeting #subtopic #topic #unchair #undo #unlurk #vote #voters #votesrequired
16:33 <sbeattie> The meeting agenda can be found at:
16:33 <sbeattie> [LINK] https://wiki.ubuntu.com/SecurityTeam/Meeting
16:34 <sbeattie> Since jdstrand and mdeslaur are off today, I'm chairing.
16:35 <sbeattie> There's no announcements or actions to review this week.
16:35 <sbeattie> [TOPIC] Weekly stand-up report
16:35 <sbeattie> I'll go first.
16:35 <sbeattie> Once again I'm focused on apparmor stuff this week.
16:35 <sbeattie> I'll be working on the items for the security-s-appisolation-sdk blueprint.
16:36 <sbeattie> I also have a bit of stuff for upstream, including irritating jjohansen with design discussions.
16:36 <sbeattie> That's pretty much it for me. tyhicks: you're up
16:36 <tyhicks> I'm focused on https://blueprints.launchpad.net/ubuntu/+spec/security-s-appisolation-dbus-performance this week
16:37 <tyhicks> I've got a little more benchmarking that I should finish up today
16:37 <tyhicks> then I'll push the dbus rule syntax discussion a little more to completion
16:38 <tyhicks> and I may also get started on the aa_log() libapparmor function
16:38 <tyhicks> that's it for me
16:38 <tyhicks> jjohansen: you're up
16:38 <jjohansen> well I am chipping away at my blueprints as well
16:38 <jjohansen> https://blueprints.launchpad.net/ubuntu/+spec/appdev-s-appisolation-signals-ipc-ptrace
16:38 <jjohansen> https://blueprints.launchpad.net/ubuntu/+spec/security-s-appisolation-extended-conditionals
16:39 <jjohansen> and of course arguing with sbeattie ;)
16:40 <jjohansen> hopefully we can get the dbus, and default profile discussions completed this week and move onto the next set of arguments
16:40 <jjohansen> sarnold: your up
16:40 <sarnold> I'm on triage this week
16:41 <sarnold> I've also got a back-burner project to take the fedora zlib environment variable thing for openssl -- some pci auditors are failing folks with postfix and tls for the flaw, and just providing them a way around rather than arguing seems like the best move
16:42 <sarnold> local packages are built, just need some testing and building with the intention of aiming for -security-proposed, I believe
16:42 <sarnold> front-burner is apparmor patch review for whoever can feed me patches :) (I think I've still got ~12 left from john's most recent patch flood)
16:42 <sarnold> chrisccoulson: your turn
16:43 <chrisccoulson> this week, i'm mostly focusing on https://blueprints.launchpad.net/ubuntu/+spec/client-1303-webkit-maintenance
16:43 <chrisccoulson> i shouldn't need to do any updates this week \o/
16:43 <sbeattie> yay
16:43 <chrisccoulson> er
16:43 <jjohansen> sarnold: I'm sorry your queue is getting low I'll make sure to top it up again
16:44 <chrisccoulson> actually, there will be a fix for bug 1180227, but that's trivial
16:44 <ubottu> bug 1180227 in firefox (Ubuntu) "Missing AppArmor rule for Firefox 21" [High,Fix committed] https://launchpad.net/bugs/1180227
16:44 <chrisccoulson> that's me :)
16:44 <sbeattie> cool
16:44 <sbeattie> [TOPIC] Highlighted packages
16:44 <sbeattie> The Ubuntu Security team will highlight some community-supported packages that might be good candidates for updating and or triaging. If you would like to help Ubuntu and not sure where to start, this is a great way to do so.
16:44 <sbeattie> See https://wiki.ubuntu.com/SecurityTeam/UpdateProcedures for details and if you have any questions, feel free to ask in #ubuntu-security. To find out other ways of helping out, please see https://wiki.ubuntu.com/SecurityTeam/GettingInvolved.
16:44 <sbeattie> http://people.canonical.com/~ubuntu-security/cve/pkg/xml-light.html
16:44 <sbeattie> http://people.canonical.com/~ubuntu-security/cve/pkg/boinc.html
16:44 <sbeattie> http://people.canonical.com/~ubuntu-security/cve/pkg/beaker.html
16:44 <sbeattie> http://people.canonical.com/~ubuntu-security/cve/pkg/gnugk.html
16:44 <sbeattie> http://people.canonical.com/~ubuntu-security/cve/pkg/xpdf.html
16:45 <sbeattie> [TOPIC] Miscellaneous and Questions
16:45 <sbeattie> Does anyone have any other questions or items to discuss?
16:45 <sbeattie> 
16:45 * micahg-work will save his ranting about Chromium for another week perhaps
16:45 <sbeattie> heh.
16:47 <sbeattie> Alright, doesn't look like it.
16:47 <sbeattie> ChrisCoulson, jjohansen, sarnold, tyhicks: thanks!
16:47 <sbeattie> #endmeeting