Security Working Group meeting - Wednesday June 24

Joseph Reynolds jrey at linux.ibm.com
Wed Jun 24 11:17:54 AEST 2020


This is a reminder of the OpenBMC Security Working Group meeting 
scheduled for this Wednesday June 24 at 10:00am PDT.

We'll discuss current development items, and anything else that comes up.

1. Is there interest in documenting privacy considerations (as personal 
data stored on the BMC's flash drive)?

2. Planning for dropbear 2020.79 configuration.

3. Proposal: Create new email address for OpenBMC security announcements:
  - openbmc at lists.ozlabs.org -- is for the community.
  - openbmc-security at lists.ozlabs.org -- is to report security 
vulnerabilities and the the OpenBMC security response team's private 
discussions of non-public vulnerabilities.
  - openbmc-public-security-announcements at lists.ozlabs.org -- could be 
for public security discussions, including announcements of OpenBMC 
security fixes

4. Discuss OpenBMC 2.8 security audit results and feedback for the 
release notes.


Access, agenda, and notes are in the wiki:

https://github.com/openbmc/openbmc/wiki/Security-working-group

- Joseph



More information about the openbmc mailing list