From Fedora Project Wiki

< FWN‎ | Beats
 
(14 intermediate revisions by 2 users not shown)
Line 8: Line 8:
Contributing Writer:  [[HuzaifaSidhpurwala|Huzaifa Sidhpurwala]]
Contributing Writer:  [[HuzaifaSidhpurwala|Huzaifa Sidhpurwala]]


=== CSI (Security Policy) Help  ===
=== Intrusion update ===
[[MikeMcGrath| Mike McGrath]] sent a link <ref>https://www.redhat.com/archives/fedora-announce-list/2009-March/msg00010.html</ref> to the list about the intrusion which was sent to the fedora-announce-list earlier.<ref>https://www.redhat.com/archives/fedora-infrastructure-list/2009-March/msg00277.html</ref>


[[FrankChiulli|Frank Chiulli]] said[1] on the @fedora-infrastructure-list that he had implemented the CSI Security policy and he was seeing some strange messages in the logs and asked if someone could help him with that.
Mike said that he was waiting to discuss authentication mechanisms for the fedora-servers, Since passwords+ssh keys are not the most secure authentication mechanism. Also it seems that fedora does not have the budget for any RSA token like system for authentication.


[1] https://www.redhat.com/archives/fedora-infrastructure-list/2009-February/msg00000.html
There was a lot of discussion on this thread, with various people proposing different authentication mechanisms which could be used.


[[MikeMcGrath|Mike McGrath]] replied [2] to that saying that he suspected that before he was blocking these messages but did not notice.
[[Dennis Gilmore|DennisGilmore]] started a similar thread about Auth Mechanims<ref>https://www.redhat.com/archives/fedora-infrastructure-list/2009-March/msg00294.html</ref> on which he discussed using etoken or Yubikey for authentication.
It was a two factor authentication and therefore was more secure than passphrase or ssh keys.


[2] https://www.redhat.com/archives/fedora-infrastructure-list/2009-February/msg00001.html
<references/>
 
[[SethVidal|Seth Vidal]] said [3] that those are Windows/Samba/CIFS messages and if you have samba and/or windows running on the same network you will notice those.
 
[3] https://www.redhat.com/archives/fedora-infrastructure-list/2009-February/msg00002.html
 
 
=== Calendaring system? ===
[[AdamWilliamson|Adam Williamson]] introduced [4] himself on the list saying that he was  new in the Fedora QA department at Red Hat, his job is to drive community involvement in Fedora QA.
 
[4] https://www.redhat.com/archives/fedora-infrastructure-list/2009-February/msg00060.html
 
He further said that something that would be nice to have for QA community is a public calendar system where dates of events like test days can be published.

Latest revision as of 04:36, 6 April 2009

Infrastructure

This section contains the discussion happening on the fedora-infrastructure-list

http://fedoraproject.org/wiki/Infrastructure

Contributing Writer: Huzaifa Sidhpurwala

Intrusion update

Mike McGrath sent a link [1] to the list about the intrusion which was sent to the fedora-announce-list earlier.[2]

Mike said that he was waiting to discuss authentication mechanisms for the fedora-servers, Since passwords+ssh keys are not the most secure authentication mechanism. Also it seems that fedora does not have the budget for any RSA token like system for authentication.

There was a lot of discussion on this thread, with various people proposing different authentication mechanisms which could be used.

DennisGilmore started a similar thread about Auth Mechanims[3] on which he discussed using etoken or Yubikey for authentication. It was a two factor authentication and therefore was more secure than passphrase or ssh keys.

  1. https://www.redhat.com/archives/fedora-announce-list/2009-March/msg00010.html
  2. https://www.redhat.com/archives/fedora-infrastructure-list/2009-March/msg00277.html
  3. https://www.redhat.com/archives/fedora-infrastructure-list/2009-March/msg00294.html
Retrieved from "https://fedoraproject.org/w/index.php?title=FWN/Beats/Infrastructure&oldid=95341"