Security Working Group meeting - Wednesday February 3
Joseph Reynolds
jrey at linux.ibm.com
Wed Feb 3 03:51:45 AEDT 2021
This is a reminder of the OpenBMC Security Working Group meeting
scheduled for this Wednesday February 3 at 10:00am PDT.
We'll discuss the following items on the agenda
<https://docs.google.com/document/d/1b7x9BaxsfcukQDqbvZsU2ehMq4xoJRQvLxxsDUWmAOI/edit>,
and anything else that comes up:
1. Continue to discuss APIs to disable HTTPS
https://gerrit.openbmc-project.xyz/c/openbmc/bmcweb/+/39006
<https://gerrit.openbmc-project.xyz/c/openbmc/bmcweb/+/39006>
2. Review Linux-PAM changes
https://gerrit.openbmc-project.xyz/c/openbmc/openbmc/+/40102
<https://gerrit.openbmc-project.xyz/c/openbmc/openbmc/+/40102> and
https://gerrit.openbmc-project.xyz/c/openbmc/phosphor-user-manager/+/39853
<https://gerrit.openbmc-project.xyz/c/openbmc/phosphor-user-manager/+/39853>
3. Discuss plans for IBM Enterprise system “service” login support.
3a. Implement restricted roles and restricted privileges per Redfish
spec DSP0266 1.12.0 aka 2020.4
https://www.dmtf.org/sites/default/files/standards/documents/DSP0266_1.12.0.pdf
<https://www.dmtf.org/sites/default/files/standards/documents/DSP0266_1.12.0.pdf>
3b. Story here: https://github.com/ibm-openbmc/dev/issues/1756
<https://github.com/ibm-openbmc/dev/issues/1756>
3c. Need a special REST API to require variable privileges:
https://github.com/ibm-openbmc/dev/issues/2875
<https://github.com/ibm-openbmc/dev/issues/2875>
4. Need help for
https://gerrit.openbmc-project.xyz/c/openbmc/bmcweb/+/39756
<https://gerrit.openbmc-project.xyz/c/openbmc/bmcweb/+/39756> ?
5. (Discord > OpenBMC > #yocto 2021-02-02) Security concerns using a
sstate cache.
Access, agenda and notes are in the wiki:
https://github.com/openbmc/openbmc/wiki/Security-working-group
<https://github.com/openbmc/openbmc/wiki/Security-working-group>
More information about the openbmc
mailing list