-
Notifications
You must be signed in to change notification settings - Fork 685
Standup Notes 2019 07 18
Participants (alphabetical): Allie, Erik, Jen, John, Kevin, Kushal, Mickael, Nina (async), Ro
-
Jen: why is
make alltaking so long? do we know?- it could be sys-whonix does not have a connection or it is not running
- Allie: For me it was stuck on SecureDrop Workstation VM provisioning. When I added sd-journalist.sec file, it got unstuck. Similar situations has come up with multiple VMs. Ctrl+C should kill all workers. -> Need to check sd-journalist.sec existence (log issue) -> General audit of Salt / Makefile
-
Debrief from Tor meeting (see https://trac.torproject.org/projects/tor/wiki/org/meetings/2019Stockholm/Notes )
- Beyond v2/v3 discussions, other topics of interest included
- potential of using HTTPSEverywhere rules to have human-readable .onion names, maybe SD would ship those rules
- a lot of DoS attacks against .onion services, no mitigations yet
- Almost everyone highlights the SecureDrop use case as a positive example
- Branding discussions at Tor meeting -- who gets to use Tor/"Onion" names for what. Badges or other ways to communicate risks were discussed.
- Beyond v2/v3 discussions, other topics of interest included
-
Jen: v3 migration draft: https://docs.google.com/document/d/1DLMFY4GmVlGZGMZRd_F_Te3DkawQfT_eLbvYlG0aw0s/edit
-
Kushal: Need to talk about dh-virtualenv and how we are consuming it.
-
Kushal: Build logs storage for the final release builds (suggestion from rootconf)
-
Jen: HTTPS everywhere rulesets for SecureDrop (from Tor meeting discussion)
Yesterday:
- Finished PR for reply encryption
- Reviewed Mickael's PR re: submission key
Today:
- Continue on ^^
- Working on SSH timeout issue on Tails workstation
- Maybe start on network error handling
Blockers or Asks: None
Traveling
Yesterday:
- Posted SD advisory
- Misc. support issues
- Cont'd Source UI work
- Redmine docs changes
Today:
- Cont'd Source UI work
- SecureDrop Survey reminder
Blockers or Asks: None
Yesterday:
- packed up SF office
- a bit o digging re: tor onion service monitoring downtime
- wrote up v3 migration plan, did a quick spike running v2 and v3 onions alongside
- started writing tests for securedrop-client/issues/467, need to fix today
Today:
- mostly meetings
- fix tests for securedrop-client/issues/467
Blockers or Asks:
- none
Yesterday:
- Did file PR for dh-virtualenv: https://github.com/freedomofpress/securedrop/pull/4622
- Finished evince review
- Checked i18n_tool discrepancies; lgtm, so needs more investigation
Today:
- Addressing review of #4622
- sd-export printing review
Blockers or Asks:
- None
Yesterday:
- Reviewed 277
Today:
- Working on packaging up export scripts
Blockers or Asks: None
Today:
- Reviewed first round of the dh-virtualenv PR
- Started reviewing https://github.com/freedomofpress/securedrop-workstation/pull/283 (evince) stuck with the
make allstep for 4+ hours.
Tomorrow:
- More dh-virtualenv review
Blockers or Asks:
- Need to talk to John during engg meeting
- someday the make all will finish on qubes.
Yesterday:
- Work with Allie to get reply issue fixxes
Today:
- Pushed new builder image with Python 3 and deps required for John's dh-virtualenv PR. More CI fun remains.
- Working on USB pre-flight checks
- Static analysis for client Blockers or Asks: None
Yesterday:
- Bloodied head w/ Print/Export updates
Today:
- GETTING HAIRS DID!! (in portland + driving to/from)
- Will be working on continued print/export things
- Hoping to poke at Skeleton pattern stuff to have something for Monday AM
Blockers or Asks:
- Follow-up asks from Source UI UX meetin...
- Targeting an AUGUST 15TH ux-freeze for all things we're seeking to push in 1.0, including the Learn More/TL;DR page
- Kushal: CSS friend for 4500-3? :D
- David: Engage w/ peeps in other newsrooms to continue soliciting feedback on updated footer text and SD Risks TL;DR page (https://github.com/freedomofpress/securedrop-ux/issues/62).
- Erik: Tag #4575, #4572, #4509, #4511 w/ "Help Wanted"
- Erik: Tag #4511 w/ "Information Design
- Ro (maybe): Get #4510, #4457, and #4398 on the RoRadar?
Yesterday:
- PR for Redmine docs
Today:
- Instance verification
- SD hardware order
Blockers or Asks: None