[16:40] <tyhicks> hello
[16:40] <mdeslaur> \o
[16:40] <tyhicks> #startmeeting
[16:40] <meetingology> Meeting started Mon Jun 29 16:40:41 2015 UTC.  The chair is tyhicks. Information about MeetBot at http://wiki.ubuntu.com/meetingology.
[16:40] <meetingology> Available commands: action commands idea info link nick
[16:40] <tyhicks> The meeting agenda can be found at:
[16:40] <tyhicks> [LINK] https://wiki.ubuntu.com/SecurityTeam/Meeting
[16:41] <tyhicks> [TOPIC] Announcements
[16:41] <tyhicks> Thanks to Thomas Ward (teward) for help on security updates (14.04 and 14.10) for the community supported putty (LP: #1467631) last week. Your work is very much appreciated and will keep Ubuntu users secure. Great job! :)
[16:41] <tyhicks> [TOPIC] Weekly stand-up report
[16:41] <tyhicks> mdeslaur: you're up
[16:41] <mdeslaur> I'm about to publish an embargoed issue in a half hour
[16:41] <mdeslaur> and I'm currently working on php5 updates
[16:41] <mdeslaur> I have a ca-certificates issue to look into
[16:42] <mdeslaur> and this week is a short week because of a national holiday on wednesday
[16:42] <mdeslaur> that's it for me this week
[16:42] <mdeslaur> sbeattie, you're up
[16:43] <sbeattie> I'm on community this week
[16:43] <sbeattie> I'm poking again at gcc-pie
[16:44] <sbeattie> and I've got more apparmor patches to review.
[16:44] <sbeattie> that's pretty much my week
[16:44] <sbeattie> tyhicks: all yours
[16:44] <tyhicks> I've got an embargoed issue
[16:45] <tyhicks> oh, I'm on bug triage this week
[16:45] <tyhicks> I have some work tracking improvements to do for better integration with the ubuntu-cve-tracker
[16:45] <tyhicks> and I hope to get back to AppArmor userspace support for kernel keyring mediation
[16:45] <tyhicks> that's it for me
[16:45] <tyhicks> sarnold: you're up
[16:47] <sarnold> oh man you guys went quickly :)
[16:47] <sarnold> I'm on CVE triage this week
[16:48] <sarnold> I'm also working on the ppc64-diag follow-on MIR audits
[16:48] <sarnold> I might also handle a few smaller apparmor patch reviews
[16:48] <sarnold> I think that's it for me, chrisccoulson?
[16:49] <chrisccoulson> I've got Mozilla updates this week. I also need to get Oxide 1.7.9 published, and I'm expecting Chromium too
[16:49] <chrisccoulson> I've got to do some work to make the Firefox packaging buildable again as well
[16:50] <chrisccoulson> Other than that, I'll be working through Oxide bugs. I'm currently working on bug 1410753, which I have an initial working implementation of (https://code.launchpad.net/~chrisccoulson/oxide/new-user-agent-override-api)
[16:50] <chrisccoulson> That's me done
[16:50] <tyhicks> thanks!
[16:51] <tyhicks> [TOPIC] Highlighted packages
[16:51] <tyhicks> The Ubuntu Security team will highlight some community-supported packages that might be good candidates for updating and or triaging. If you would like to help Ubuntu and not sure where to start, this is a great way to do so.
[16:51] <tyhicks> See https://wiki.ubuntu.com/SecurityTeam/UpdateProcedures for details and if you have any questions, feel free to ask in #ubuntu-security. To find out other ways of helping out, please see https://wiki.ubuntu.com/SecurityTeam/GettingInvolved.
[16:51] <tyhicks> http://people.canonical.com/~ubuntu-security/cve/pkg/krb5-appl.html
[16:51] <tyhicks> http://people.canonical.com/~ubuntu-security/cve/pkg/flightgear.html
[16:51] <tyhicks> http://people.canonical.com/~ubuntu-security/cve/pkg/ruby-rack1.4.html
[16:51] <tyhicks> [TOPIC] Miscellaneous and Questions
[16:51] <tyhicks> http://people.canonical.com/~ubuntu-security/cve/pkg/mosh.html
[16:51] <tyhicks> http://people.canonical.com/~ubuntu-security/cve/pkg/linkchecker.html
[16:51] <tyhicks> Does anyone have any other questions or items to discuss?
[16:51] <teward> o/ tyhicks: Thanks for the acknowledgement of my putty patches!  Glad to help out, especially since I know quite a few people who use PuTTY on Ubuntu, and this keeps them secure too!  :)
[16:51] <teward> (that's all :) )
[16:51] <tyhicks> thanks again, teward :)
[16:51] <teward> you're welcome!
[16:52] <tyhicks> mdeslaur, sbeattie, sarnold, ChrisCoulson: Thanks!
[16:52] <tyhicks> #endmeeting
[16:52] <meetingology> Meeting ended Mon Jun 29 16:52:49 2015 UTC.
[16:52] <meetingology> Minutes:        http://ubottu.com/meetingology/logs/ubuntu-meeting/2015/ubuntu-meeting.2015-06-29-16.40.moin.txt
[16:52] <mdeslaur> thanks tyhicks!
[16:53]  * M-nealmcb \o
[16:53]  * M-nealmcb  is lurking via the Matrix protocol from matrix.org
[16:53] <sarnold> thanks tyhicks :)
[16:53] <sbeattie> thanks tyhicks
[16:53] <teward> ... that on-join messages read as spam  o.o
[16:53] <teward> sorry, offtopic :)
[16:54] <sarnold> M-nealmcb: heh, your client sent this on join, it'd probably be worth disabling it: Mon 29 09:52:17  * M-nealmcb  is lurking via the Matrix protocol from matrix.org
[16:54] <nealmcb> sarnold: here I am via irssi.  I sent that on purpose
[16:55] <nealmcb> Wanted to see how I would show up that way - i.e.   M-nealmcb [nealmcb__m@gateway/shell/matrix.org/x-wmmrihwbfxszzzco] has joined #ubuntu-meeting
[16:57] <teward> nealmcb: use #test next time
[16:57] <teward> on-join msgs tend to set of alerts on some people's clients, like mine, configured to alert me to misbehavers in some channels
[16:57] <teward> (onjoin floods for instance)
[16:58] <teward> (for testing things, #test or a test channel of your own design tends to help)
[16:58] <teward> just a suggestion :)
[16:59] <nealmcb> teward: thanks - didn't mean to interrupt, and #test is a good idea.  But just to be clear, my on-join message was just the normal one with that interesting gateway id.  Then I sent my wave and "lurking" message just to say hi to my old buddies on Ubuntu....
[17:00] <teward> nealmcb: ah, OK, it showed up in the same two seconds which is why my scripts alerted me xD
[17:00] <teward> I should probably shut that off for here though xD
[17:02] <nealmcb> aha - good to know ;)  The matrix gateway does joins immediately prior to the first message, just to avoid flooding in other ways at other times.  we'll see how matrix.org goes - quite a challenge to roll out a new messaging protocol, especially without pissing off irc users ;)
[17:02] <teward> :)