Release Wranglers Call - 17th March 2004.

Howard Greenwell h.greenwell at opengroup.org
Wed Mar 17 08:50:06 PST 2004 

All,

Attendees:

Jim Gettys
Egbert Eich
Howard Greenwell
Stuart Kreitman
Alan Coopersmith


Minutes:

1. Status

Egbert analysed list of patches from Alex D. Separated into individual 
reports. Sorted out the ones wanted for commit. Doing the build to make 
sure everything is OK, before he then commits the changes to the tree.

Has changes to commit to the TM branch. All the references to xfree86 
version have now been changed to "xorg" version. Should change name of 
binary, log file and config file.
Apart from these changes, no one has made any changes to the TM branch. 
Need to get moving for a release soon. Should not hesitate to complete work 
on this branch.

ICE-unix file issue looks worse than expected. More than just denial of 
service. Can get a man-in-the-middle attack. Need to get the owner of the 
directory right.
Behavoir should be that X should fail to progress if:
   1) the directory is not there, or
   2) if the directory is not owned by root, or
   3) if we cannot create a file owned by root within that directory.

Jim asked about PAM used by SUN and if this was an option to solve this 
problem. Stuart said quite complicated to get working.

Specific question is "can we use PAM to ensure that 'tmp/x11-unix' and 
'tmp/ICE-unix' have the correct ownership privileges?"
(Know cannot use VT switch).
Action: Stuart will speak with PAM experts at SUN, and Egbert with the PAM 
expert at SuSe.

More concern of attack against the ICE directory.
Egbert summarized that the change is not something for this release. Sleep 
commands are not of any use and can be removed for the release.
Egbert asked if this should fail. Agreed that should not fail, just keep 
same behavoir as before, but without sleep commands. Must get the problem 
fixed soon for next release.

Needs to be raised on the xorg_security list.
Agreed Mattais should probably be there from XFree86. Egbert will speak 
with him.
Egbert will send the name of the security expert for SuSe to be added to 
the list.
Action: Howard to follow up on getting new people on the security list from 
Red Hat, etc.

Commit messages are not being sent out. Need to have Kaleb look into the 
problem.
Action: Kaleb to look into why Egbert is not receiving Commit messages.

Alan mentioned that there was a break in the build of the TM branch. Egbert 
suggest libfreetype may be too old. Set "HasFreetype2=NO" to try to get 
around the problem.

Egbert has spoken with Chisato Yamauchi. How can we help Chisato get the 
attention of the Freetype project. Jim thinks best approach might be for 
Keith to speak with David Turner.
Action: Jim will speak with Keith so that he can intervene on the issue.

On Spam filtering for freedesktop, should probably speak with Daniel Stone.

Alan asked about the remaining IPv6 changes to be committed. Only real 
change is ServerInterpreted to go in. Jim thinks OK.
Agreed to Alan making the commits and then watching the tinderbox builds 
OK. Alan out of contact til Sunday. Egbert will check the build and back 
them out as necessary.

Howard.  
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://freedesktop.org/pipermail/release-wranglers/attachments/20040317/7691bf1e/attachment.html

More information about the release-wranglers mailing list