=== JanC_ is now known as JanC
[01:48] <teward> sarnold: nice call on that 'security' nginx bug that wasnt a security issue OR a bug.
[01:49] <teward> bad for you though i know you're around. you may or may not have incoming.
[01:49]  * sarnold hides
[01:50] <sarnold> teward: it might still be a bug of some sort if whatever tool requests those certs was busted on the upgrade and didn't run or something
[01:50] <teward> sarnold: true, but Invalid for nginx and certbot/letsencrypt is a snap now so
[01:50] <sarnold> ah :)
[01:51] <teward> server team triage guideline for nginx when the issue is a non-package, local config issue is Invalid + general explanation based on the error in systemctl output
[01:51] <teward> it irks me people file these as security bugs tho >.<
=== JanC_ is now known as JanC
[02:04] <sarnold> yeah, you know how it goes, folks don't know if it is or isn't, and they want to do the right thing
[02:04] <sarnold> what *really* grinds my gears is the guys reporting "hey ftp.ubuntu.com is open" "yes, thats how we distribute ubuntu, thanks" "surely my hard work deserves rewards"
[02:24] <teward> sarnold: well we call those people certain unseemly words behind their backs so :p
[02:24] <teward> versus me where I just torture you with the reminders of the mailman3 MIR that made you rage xD
[02:25]  * sarnold flips a table
[02:25] <teward> **so which of us is worse :P**
[02:25] <sarnold> teward: honestly, the *first* time hearing from any of these guys is one thing, they're looking for security problems and reporting them.. but some of these dudes have zero reading comprehension and keep reporting non-issues and demanding payment for it over and over again..
=== JanC_ is now known as JanC
[02:27] <teward> sarnold: so reply to them with @canonical address saying "Canonical and Ubuntu do not have bug or security bounty programs, you will receive nothing if that is your intention."
[02:27] <teward> :P
[02:30] <sarnold> teward: every. single. time. I copy-and-paste the paragraph from https://ubuntu.com/security/disclosure-policy and give them the link every time and it makes no difference.
[02:31] <teward> *leaves the button that says "Ban With Orbital Strikes" on the ground in front of sarnold*
[02:32] <sarnold> hehe
[12:27] <ebarretto> ricotz, my colleague will be sponsoring it. Sorry for the delay on this, it has been a busy week, but hopefully monday it will be released. Thanks again for providing the debdiffs, it is very much appreciated! 
[12:55] <ricotz> ebarretto, thank you, and don't worry; I can imagine the workload coming due to esm-apps
[16:41] <ripa> I want to Host a MEA2N  (Mongo + Express + A2+ Node) Stack app on aws free tier...
[16:41] <ripa> I came across SELinux and Apparmor.
[16:41] <ripa> I understand SElinux is harder to config
[16:41] <ripa> Please advice
[17:44] <sdeziel> ripa: on Ubuntu, it will be simpler to stick with Apparmor as that's the default LSM
[17:45] <ripa> thanks.. i feel you are right..
[17:45] <ripa> i am reading up on apparmor profiles
[17:49] <ripa> learnt a new abbrev. LSM :)
[17:49] <ripa> thanks sdeziel
[17:51] <sdeziel> ripa: np, FYI some packages come with ready made profiles but it's usually easy to create your own