=== maclin1 is now known as maclin
[15:00] <sil2100> o/
[15:00] <bdmurray> o/
[15:01] <teward> *randomly drops in*
[15:02] <rbasak> o/
[15:02] <sil2100> o/
[15:02] <rbasak> Do we have two more?
[15:02] <sil2100> bdmurray is here too
[15:02] <bdmurray> I'd expect cyphermox
[15:02] <sil2100> Yeah, all hope in cyphermox now
[15:02] <sil2100> ;)
[15:03] <micahg> o/
[15:03] <teward> long time no talk, micahg :P
[15:03] <teward> *returns to silent mode*
[15:04] <rbasak> Who's chairing?
[15:04] <sil2100> micahg: o/
[15:04] <sil2100> I think I chaired the last one, so I'd prefer someone else just for variation
[15:05] <rbasak> #startmeeting DMB
[15:05] <sil2100> rbasak: thanks!
[15:05] <rbasak> No bot?
[15:05] <sil2100> Oh, hm, no meetingology?
[15:05] <teward> i think the bot died o.O
[15:05] <teward> if need be I can take logs for you guys, I log everything anyways :p
[15:05] <rbasak> Who runs the bot?
[15:06] <sil2100> No idea, never though about it as it was always here
[15:07] <rbasak> Let's begin anyway. I'll just pretend the bot is here I guess.
[15:07] <rbasak> #topic Review of previous action items
[15:07] <teward> *starts logging to file*
[15:07] <rbasak> rbasak to reping Aron regarding his request (DONE)
[15:07] <rbasak> bdmurray, sil2100, rbasak to contact absentee DMB members (bdmurray: DONE, sil2100: DONE)
[15:07] <rbasak> cyphermox to send his self nomination again (DONE)
[15:07] <rbasak> rbasak to draft an argument for reducing quorum not head count (DONE)
[15:07] <rbasak> rbasak to handle flexiondotorg's request for adding mate-hud to the MATE package set
[15:07] <rbasak> I think cyphermox took this one in the end?
[15:08] <bdmurray> Yes, I believe he had a follow up question which has been unanswereed.
[15:09] <rbasak> From my logs I found:
[15:09] <rbasak> 20:32 <cyphermox> rbasak: I'll do it
[15:09] <rbasak> 20:33 <cyphermox> (done)
[15:09] <rbasak> in #ubuntu-release
[15:09] <rbasak> Ah, and I see the ML reply.
[15:09] <sil2100> Yeah, through e-mail he mentioned that this is an auto-generated packageset so yeah
[15:09] <rbasak> So I think we can treat the action done for now at least?
[15:09] <sil2100> +1
[15:09] <rbasak> flexiondotorg: please reply on the ML if you need a further action
[15:09] <bdmurray> Agreed
[15:10] <rbasak> #topic Package Set/Per Package Uploader Applications
[15:10] <rbasak> #subtopic teward - PPU for znc package - (Application)
[15:10] <rbasak> teward: o/
[15:10] <bdmurray> rbasak: Did you follow up with the absentee member you were going to?
[15:10] <teward> hiya!
[15:10] <rbasak> bdmurray: oh yes, I did, sorry.
[15:11] <bdmurray> rbasak: Lets do this application and then talk about the DMB itself.
[15:11] <rbasak> ack
[15:11] <sil2100> I must say that I did not have time to look at teward's application as it was submitted a few days before the meeting
[15:11] <teward> we can postpone it to next if you wish
[15:11] <rbasak> I had a look at it earlier.
[15:11] <teward> i realized after the fact i should've specified next meeting.
[15:11] <sil2100> So if we are to review the candidate I'd need some time to look into it
[15:11] <rbasak> While we're here, I did have some questions for teward about his application though.
[15:11] <rbasak> Clearing that up might help others consider the application perhaps?
[15:11] <teward> rbasak: feel free to ask, or send them my way via email :)
[15:11] <sil2100> teward: also, I generally see no endorsements for your application - who was the main sponsor of your uploads?
[15:12] <sil2100> We like endorsments
[15:12] <sil2100> A lot ;)
[15:12] <rbasak> teward: I looked and didn't see any recent upload sponsorships. Usually we expect those in any application.
[15:13] <rbasak> teward: and since usually we expect to grant upload access in order to unblock someone by no longer having to go by a sponsor, I wasn't really able to follow why you were applying.
[15:13] <rbasak> teward: so perhaps you could give us some more background on that please?
[15:14] <bdmurray> FWIW I don't see any SRUs of znc either.
[15:14] <teward> bdmurray: we'd be looking far back into history, to find those - the package has been stbale for the longest time, but is *old* in Ubuntu for the most part (devel is usually a bit behind on bugfixes)
[15:14] <teward> actually, can we move those questions to ML or next meeting?
[15:14] <teward> something just exploded at work and I have to go do emergency maintenance
[15:14] <rbasak> OK
[15:14] <rbasak> Let's postpone for now then.
[15:15] <teward> sorry to say "move to next meeting or ML"
[15:15] <rbasak> #agreed Applicaton postponed
[15:15] <sil2100> teward: sure, I guess it's even better since I'd like you to add a few missing bits to your application
[15:15] <sil2100> teward: let me get back to you on that later
[15:15] <teward> ack
[15:16] <teward> bdmurray: i'll dig for the 'latest' upload and SRU, there's been not many releases between history and now, though you'll find one in 2016-03-17 sponsored by rbasak for 1.6.3-1 to xenial-proposed.
[15:16] <teward> *disappears to do critical systems maintenance*
[15:16] <rbasak> No more applications, so we have ML requests and the more general DMB itself topic remaining
[15:16] <teward> I will have a copy of the IRC logs though if you need them.
[15:16] <rbasak> #topic Outstanding mailing list requests to assign
[15:18] <rbasak> I don't see any. Am I missing something?
[15:18] <rbasak> "packageset refresh for kubuntu"
[15:18] <rbasak> Did that happen?
[15:18] <sil2100> hm, can't remember anymore
[15:18] <sil2100> Are we still getting the diffs of those per cyphermox scripts?
[15:19] <rbasak> I'm not sure. It'd be nice if cyphermox were here to discuss it.
[15:19] <rbasak> Shall we postpone that one for now?
[15:19] <rbasak> So that's everything I think.
[15:20] <rbasak> #topic DMB itself
[15:20] <cyphermox> moo?
[15:20] <teward> rbasak: update: I'll retract my PPU request - the package is mostly stable and doesn't need much maintenance except syncs and occasional patching.
[15:20] <teward> most of which is security.
[15:20] <teward> sorry.
[15:20] <cyphermox> oh, the packageset diff
[15:20] <teward> so strike that from the agenda for future.
[15:20] <teward> cc: sil2100 ^
[15:20] <teward> (disappears)
[15:20] <rbasak> teward: OK, thanks. Note that if you keep having to do syncs, I think it's reasonable to ask for upload access so you can stop using a sponsor.
[15:21] <teward> rbasak: i'll discuss later at next PPU application when I have more endorsements and stuff - that's gonna be next quarter at this rate.
[15:21] <teward> *disappears again*
[15:21] <rbasak> So where are we with the DMB's status?
[15:22] <bdmurray> I was just looking at your last email rbasak
[15:22] <sil2100> We have 2 expiring nominations
[15:22] <sil2100> Both are covered by new candidates
[15:22] <bdmurray> Do the inactive members still want to be active?
[15:23] <bdmurray> Or rather I guess there are 3 topics re dmb status.
[15:23] <bdmurray> inactive members
[15:23] <bdmurray> dmb size
[15:23] <bdmurray> expiriing members
[15:23] <cyphermox> yep
[15:23] <cyphermox> I'm expiring again :0
[15:23] <sil2100> I talked with infinity and he's not interested in being active
[15:23] <sil2100> But he's expiring anyway
[15:23] <sil2100> cyphermox: but you nominated yourself right?
[15:23] <rbasak> micahg is intrested in being active (and he's here)
[15:24] <cyphermox> sil2100: I did
[15:24] <sil2100> So currently, cyphermox and infinity are expiring, but we have 2 candidates: cyphermox and jbicha
[15:24] <sil2100> So I guess both seats can be occupied ;)
[15:24] <sil2100> bdmurray: did you talk with BenC ?
[15:25] <bdmurray> yes and he wants to stay on
[15:25] <cyphermox> rbasak: as for the packageset update script, looks like I had forgotten to put the address back to t
[15:25] <sil2100> bdmurray: is there any chance he will be able to participate?
[15:25] <cyphermox> to the dmb, it was sent only to me this sunday
[15:25] <cyphermox> (one such report should be coming now)
[15:25] <sil2100> cyphermox: thanks!
[15:26] <bdmurray> sil2100: I thought he showed up at the last meeting but we didn't discuss anything
[15:26] <sil2100> Ok
[15:26] <sil2100> Maybe only the later time works for him
[15:26] <bdmurray> Maybe we should start taking attendence per your suggestion sil2100?
[15:26] <micahg> yeah, timing is an issue
[15:27] <bdmurray> I recall we tried to talk about that before but I felt like there were too many choices.
[15:27] <micahg> yeah
[15:27] <bdmurray> micahg: Maybe you can suggest what works for you with out timezones in consideration?
[15:28] <bdmurray> That'll reduce the number of choices we have to vote on.
[15:28] <sil2100> Yeah, I'm open to propositions for the timing but the current one works for me
[15:28] <micahg> well, right now I'm good with times, let's check with BenC maybe
[15:29] <bdmurray> Okay, since I talked to him before I'll do that.
[15:29] <sil2100> btw. question from DMB formalities as I don't want to look for it in wiki pages: if we have 2 DMB vacancies and 2 candidates, no voting is required, right?
[15:30] <micahg> in the past that's what we've done, but usually only when it's a reapply or they've already come close to winning an election from what I can remember
[15:30] <bdmurray> I don't know off the top of my head.
[15:31] <rbasak> Is it up to us to decide the method of picking members for expired seats? Or the TB's?
[15:32] <sil2100> Since cyphermox is re-applying, but jbicha is applying for the first time - but since there's no other candidates, voting doesn't seem to make sense?
[15:32] <rbasak> Ubuntu developers may wish to decide "none of the above". But I'm not aware that's ever been an option in the past.
[15:33] <rbasak> I'm also not aware of any mechanism to qualify nominations, unlike TB nominations.
[15:33] <bdmurray> I think sending a notification reminding people what will happen would be good as it may draw out another candidate/
[15:33] <rbasak> +1
[15:33]  * bdmurray went out in the woods and forgot how to type
[15:34] <sil2100> +1
[15:34] <bdmurray> sil2100: Do you mind doing that?
[15:34] <sil2100> bdmurray: the reminder about expirations? Sure
[15:35] <sil2100> You can assign me an action item
[15:35] <bdmurray> One the bot will record? ;-)
[15:35] <sil2100> ;)
[15:35] <sil2100> One that the person updating the agenda will record I guess ;p
[15:36] <rbasak> #action sil2100 to send out a DMB nomination reminder, including information about what happens if there are few nominations.
[15:39] <sil2100> bdmurray: as for attendence, I guess we might have overall attendence listed as per meeting logs, right?
[15:40] <bdmurray> sil2100: I'm not certain looking at historic information is necessary.
[15:40] <sil2100> Not sure if it makes sense to formalize the number of how many missed meetings in a row is required to start getting warned about possible 'expiration through inactivity'
[15:40] <bdmurray> #action bdmurray follow up with BenC regarding meeting times
[15:40] <sil2100> Anyway, hopefully it seems all better now with the attendence rate
[15:41] <bdmurray> maybe cyphermox can email us all the friday before? or is the calendar enough?
[15:43] <bdmurray> maybe we should also monitor meeting lack of attention
[15:44] <bdmurray> cyphermox: ?
[15:44] <cyphermox> err, sure?
[15:45] <cyphermox> I'm not sure how I can email the friday before expiring, there might not be time ;)
[15:45] <bdmurray> I don't know if its a great idea but I don't look at my Monday schedule on Friday normally so might forget.
[15:45] <cyphermox> it works for some expiry deadlines, but not all I think
[15:45] <cyphermox> or I mean, not meaningfully
[15:45] <bdmurray> cyphermox: I mean about the meeting time.
[15:46] <cyphermox> the calendar should be sending us reminders
[15:46] <bdmurray> okay
[15:46] <cyphermox> i would be crazy for me to create a calendar reminder for me to send a reminder
[15:47] <rbasak>  I really think that things to help people attend need to be driven by, or at least decided in association with, people who have the attendance issues. And they're not here.
[15:48] <bdmurray> heh
[15:48] <cyphermox> I think we're trying to fix a problem that we won't have provided the people in the board care.
[15:48] <cyphermox> ie. we can ping each other on IRC and that typically works for most things, does it not?
[15:49] <cyphermox> if you don't heed a calendar reminder and then a ping, you're either busy with something else or otherwise unable to attend
[15:50] <cyphermox> (or don't care, and then the CoC says you should be stepping down considerately)
[15:50] <bdmurray> Okay, so lets work on sorting out the expiring members and query Ben about a different meeting time.
[15:50] <bdmurray> I think we should still talk about what to do if quorum reaching is hard, but not necessarily act on it.
[15:50] <cyphermox> bdmurray: presumably people are still reachable, we can ask them if they still care, and do elections earlier
[15:52] <cyphermox> I mean, I agree that we need to have a plan or an idea what to do, but not sure there is any recurring action to do or process to install to enforce attendance. If we need to force attendance it means we're not staffed correctly in the first place
[15:54] <bdmurray> I didn't mean enforcing attendance rather being more proactive when members don't show up. "Hey, we missed you at the meeting is the time still okay? ..."
[15:54] <bdmurray> I think we let this lack of attendance issue go on for too long.
[15:54] <cyphermox> yes ok
[15:55] <bdmurray> I've got another meeting soon, anything else?
[15:55] <cyphermox> my point is, isn't that something we can sort at a meeting when it happens? let's say someone misses two meetings in a row without sending apology prior; we can hand an action to someone then
[15:56] <rbasak> That's pretty difficult when we don't have meetings because we haven't made quorum.
[15:56] <rbasak> Anyway, I think we've reached the useful end of this discussion.
[15:56] <bdmurray> Is there a rule that we can't have meeting if we don't have quorum? I think we can't just vote on stuff.
[15:57] <rbasak> I'm not sure we're going to reach consensus on this, so if there's any action that needs taking, perhaps we need to continue discussion the ML.
[15:57] <rbasak> Any objections to finishing the meeting now?
[15:57] <cyphermox> no
[15:57] <bdmurray> No
[15:57] <rbasak> #endmeeting
[15:57] <cyphermox> indeed, we can still have meeting, just can't vote
[15:57] <rbasak> I'll sort out the minutes.
[15:57] <sil2100> o/
[15:57] <cyphermox> o/
[15:58] <bdmurray> thanks rbasak!
[16:32] <tyhicks> hello
[16:32] <jdstrand> hi!
[16:32] <tyhicks> #startmeeting
[16:33] <mdeslaur> \o
[16:33] <tyhicks> no bot today
[16:34] <tyhicks> The meeting agenda can be found at:
[16:34] <tyhicks> [LINK] https://wiki.ubuntu.com/SecurityTeam/Meeting
[16:34] <tyhicks> [TOPIC] Weekly stand-up report
[16:34] <tyhicks> jdstrand: you're up
[16:34] <jdstrand> last week I was most busy getting through sprint outcomes and being responsive to snapd PRs. I also ended up being quite busy with several forum topics related to policy denials
[16:34] <jdstrand> this week I plan to:
[16:34] <jdstrand> - be responsive to snapd PRs
[16:34] <jdstrand> - review the big udev tagging PR
[16:34] <jdstrand> - pick up the wayland interface
[16:34] <jdstrand> - start working through a new (desktop?) interface for gnome-shell, plasma, sway
[16:34] <jdstrand> that's it from me. mdeslaur, you're up
[16:35] <mdeslaur> I'm in the happy place this week again
[16:35] <mdeslaur> I'm about to publish an imagemagick regression fix
[16:35] <mdeslaur> and I have rabbitmq-server updates to push out
[16:35] <mdeslaur> after that, I'll be going down the list, as usual
[16:35] <mdeslaur> that's about it
[16:35] <mdeslaur> sbeattie: tag, you're it
[16:36] <sbeattie> I'm in the happy place this week
[16:36] <sbeattie> I have an openjdk-8 regression update to publish
[16:36] <sbeattie> and presumably will have an openjdk-7 coming shortly
[16:37] <sbeattie> I have an embargoed issue
[16:37] <sbeattie> I'll go through the list looking for other issues.
[16:37] <sbeattie> I have a minor backlog of qrt issues to go through.
[16:37] <sbeattie> that's it for me.
[16:37] <sbeattie> tyhicks: over to you
[16:38] <tyhicks> I'm on community this week
[16:38] <tyhicks> I'll likely be responding to feedback from the seccomp logging kernel patches that I sent out last friday
[16:39] <tyhicks> I am going to look at the fscrypt tests that run as part of `make check` to determine which ones are appropriate to run as part of the package build
[16:39] <tyhicks> that'll hopefully allow me to upload the fscrypt package to artful
[16:39] <tyhicks> then I'll start looking at the PR for pam_fscrypt
[16:40] <tyhicks> I still need to familiarize myself with the LSM stacking patch set
[16:40] <tyhicks> that's it for me
[16:40] <tyhicks> jjohansen: you're up
[16:40] <jjohansen> I still working on revising the networking/unix socket patches for upstreaming
[16:40] <jjohansen> I need to spend some time looking at the 4.13 LSM stacking patches
[16:40] <jjohansen> and I also need to spend some time looking at the IMA namespacing thread
[16:41] <jjohansen> that is it for me sarnold you're up
[16:41] <sarnold> I'm on bug triage this week; I also hope to review an apparmor patch or two, and run down the MIRs as I can
[16:42] <sarnold> that's it for me, I didn't see chris coulson, nor ratliff, so I'm guessing leosilva?
[16:42] <leosilva> I worked in some updates last week, found/fixed a davfs2 issue with apache2 update
[16:42] <leosilva> today I want to publish them and during the week search for new updates to do
[16:42] <leosilva> that is for me.
[16:42] <leosilva> tyhicks: it's back toyou
[16:43] <tyhicks> thanks
[16:43] <tyhicks> [TOPIC] Highlighted packages
[16:43] <tyhicks> The Ubuntu Security team will highlight some community-supported packages that might be good candidates for updating and or triaging. If you would like to help Ubuntu and not sure where to start, this is a great way to do so.
[16:43] <tyhicks> See https://wiki.ubuntu.com/SecurityTeam/UpdateProcedures for details and if you have any questions, feel free to ask in #ubuntu-security. To find out other ways of helping out, please see https://wiki.ubuntu.com/SecurityTeam/GettingInvolved.
[16:43] <tyhicks> http://people.canonical.com/~ubuntu-security/cve/pkg/atril.html
[16:43] <tyhicks> http://people.canonical.com/~ubuntu-security/cve/pkg/libdigidoc.html
[16:43] <tyhicks> http://people.canonical.com/~ubuntu-security/cve/pkg/libjgroups-java.html
[16:43] <tyhicks> http://people.canonical.com/~ubuntu-security/cve/pkg/ldns.html
[16:43] <tyhicks> http://people.canonical.com/~ubuntu-security/cve/pkg/minizip.html
[16:43] <tyhicks> [TOPIC] Miscellaneous and Questions
[16:43] <tyhicks> Does anyone have any other questions or items to discuss?
[16:46] <tyhicks> jdstrand, mdeslaur, sbeattie, jjohansen, sarnold, leosilva: Thanks!
[16:46] <tyhicks> #endmeeting
[16:46] <mdeslaur> thanks tyhicks
[16:46] <jjohansen> thanks tyhicks
[16:46] <leosilva> thanks tyhicks!
[16:46] <sbeattie> tyhicks: thanks!
[16:48] <jdstrand> thanks tyhicks :)
[16:48] <sarnold> thanks tyhicks!
=== ogra_ is now known as ogra
=== JanC is now known as Guest68181
=== JanC_ is now known as JanC