ambassadors October 2011

ambassadors@lists.fedoraproject.org

45 participants
51 discussions

Fwd: IMPORTANT: Mandatory password and ssh key change by 2011-11-30
by Buddhike Kurera 14 Oct '11

14 Oct '11

---------- Forwarded message ---------- From: Kevin Fenzi <kevin(a)scrye.com> Date: Wed, Oct 12, 2011 at 10:14 PM Subject: Subject: IMPORTANT: Mandatory password and ssh key change by 2011-11-30 To: announce(a)lists.fedoraproject.org, devel-announce(a)lists.fedoraproject.org Subject: IMPORTANT: Mandatory password and ssh key change by 2011-11-30 Summary: All existing users of the Fedora Account System (FAS) at https://admin.fedoraproject.org/accounts are required to change their password and upload a NEW ssh public key before 2011-11-30. Failure to do so may result in your account being marked inactive. Passwords changed and NEW ssh public keys uploaded after 2011-10-10 will meet this requirement. Backgound and reasoning: This change event has NOT been triggered by any specific compromise or vulnerability in Fedora Infrastructure. Rather, we believe, due to the large number of high profile sites with security breaches in recent months, that this is a great time for all Fedora contributors and users to review their security settings and move to "best practices" on their machines. Additionally, we are putting in place new rules for passwords to make them harder to guess. New Password Rules: * Nine or more characters with lower and upper case letters, digits and punctuation marks. * Ten or more characters with lower and upper case letters and digits. * Twelve or more characters with lower case letters and digits * Twenty or more characters with all lower case letters. * No maximum length. Some Do's and Don'ts: * NEVER store your ssh private key on a shared or public system. * ALWAYS use a strong passphrase on your ssh key. * If you must store passwords, use an application specifically for this purpose like revelation, gnome-keyring, seahorse, or keepassx. * Regularly apply your operating system's security related updates. * Only use ssh agent forwarding when needed ( .ssh/config: "ForwardAgent no") * DO verify ssh host keys via dnssec protected dns. ( .ssh/config: "VerifyHostKeyDNS yes") * DO consider a seperate ssh key for Fedora Infrastructure. * Work with and use security features like SELinux and iptables. * Review the Community Standard Infrastructure security document (link below) Q&A: Q: My password and ssh private key are fine and secure! Can't I just skip this change? No. We believe the new guidelines above provide an added measure of security compared to the previous requirements. We want all users of our infrastructure to follow the new guidelines to improve one aspect of security across the systems they share. Awareness is also an aspect of good security. By requiring these changes, we also hope to maintain and improve awareness of the process for changing passwords and keys. Q: Can I just change my password and re-upload my same ssh public key? Or upload a bogus ssh public key and then re-upload my old one? A: No. We've installed safeguards to ensure that your new ssh public key is different from your old one. Additionally, some of our contributors may have had accounts on compromised high profile Linux sites recently, and we want to make sure no ssh private keys or passwords used in Fedora Infrastructure were obtained via those incidents. Q: This is a hassle. How often is this going to happen? A: The last mass password change in Fedora was more than 3 years ago. Absent a triggering event, these mass changes will be infrequent. Q: The new password length requirements/rules are too strict. How will I remember passwords that are that long? A: You can employ a password storage application (see above), or use a method like diceware (see below), or construct a memorable sentence or phrase. Q: How do I generate a new ssh key? How do I use it for just Fedora hosts? A: See http://fedoraproject.org/wiki/Cryptography and use a ~/.ssh/config file to match fedoraproject.org hosts for that key. Q: I never uploaded a ssh key to the Fedora Account System, nor am I in a group that needs one, do I still have to upload a new one? A: No. If you don't have a ssh public key uploaded or desire to do so, you can just change your password. More reading: http://infrastructure.fedoraproject.org/csi/security-policy/en-US/html-sing… https://fedoraproject.org/wiki/Infrastructure_mass_password_update http://xkcd.com/936/ http://www.iusmentis.com/security/passphrasefaq/ http://world.std.com/~reinhold/diceware.html http://fedoraproject.org/wiki/Cryptography -- announce mailing list announce(a)lists.fedoraproject.org https://admin.fedoraproject.org/mailman/listinfo/announce -- Regards, *Buddhike Chandradeepa Kurera(bckurera)* Fedora Ambassador Sri Lanka Event Liaison - Design Team *Email*: bckurera(a)fedoraproject.org | *IRC*: bckurera * *

5 4

Subsidy requests for FUDCon Blacksburg are now OOOOOPEN!
by Robyn Bergeron 13 Oct '11

13 Oct '11

Greetings, FUDCon friends, near and far: As you are probably aware, the 2012 North American FUDCon will be held in Blacksburg, Virginia, on the campus of Virginia Tech. If you are planning on attending, it's never too early to pre-register, and to start thinking about your travel plans. FUDCon Blacksburg will take place January 13-15, 2012. https://fedoraproject.org/wiki/FUDCon:Blacksburg_2012 I'm happy to announce that we are officially accepting subsidy requests for travel to Blacksburg. If you are requesting a subsidy, we just have a few steps that we ask you to follow: 1: Register on the FUDCon: Blacksburg wiki page in the pre-registration area. https://fedoraproject.org/wiki/FUDCon:Blacksburg_2012#Pre-registration 2: Put an X in the $$$ column. 3: Create a funding request ticket in the FUDCon trac at: https://fedorahosted.org/fudcon-planning/wiki/FundingRequest General information about being sponsored can be found at http://fedoraproject.org/wiki/Sponsoring_event_attendees . Requests are processed in a first-come, first-served manner, though generally prioritization is giving to local travel over international travel first. Requests will be reviewed by fellow Fedora community members at FUDCon subsidy request meetings over the next few weeks. The first subsidy meeting will take place on Wednesday, November 9th. The time and IRC channel will be announced as we approach that day. As always, participation both in planning as well as subsidy granting is ALWAYS welcome. Please join us on the fudcon-planning mailing list for information about meetings, as well as for general FUDCon updates, and see the "meetings" section of your FUDCon's wiki page for meeting information. Mailing list: https://admin.fedoraproject.org/mailman/listinfo/fudcon-planning FUDCon Blacksburg Meetings: https://fedoraproject.org/wiki/FUDCon:Blacksburg_2012#Meetings

1 0

APAC Bi-Weekly meeting on Saturday, October 15th, 2011
by Buddhike Kurera 12 Oct '11

12 Oct '11

Hello Folks, Just a short and late reminder of APAC bi-weekly meeting Date: 2011-09-10 Time: 04:00 UTC http://www.timeanddate.com/worldclock/fixedtime.html?year=2011&month=09&day… Channel: #fedora-meeting on irc.freenode.net Agenda: https://fedoraproject.org/wiki/Meeting:APAC_Ambassadors_2011-09-10 #Info Harish will be connecting with us LIVE from the China, Beijing FAD Looking forward to see many APAC FAms and other great FAms as well. Thanks -- Regards, *Buddhike Chandradeepa Kurera(bckurera)* Fedora Ambassador Sri Lanka Event Liaison - Design Team *Email*: bckurera(a)fedoraproject.org | *IRC*: bckurera * *

1 0

Latinoware 2011
by Igor Pires Soares 11 Oct '11

11 Oct '11

Hello FAms! I'm glad to announce that Fedora will be represented at the 8th Latin American Free Software Conference - Latinoware [1]. I'll deliver a talk entitled "Fedora Project: building an open, collaborative and transparent future" that intends to present our core values and shows our experiences as a global open source community. Also, our fellow ambassador Valentin Basel [2] from Argentina will deliver a talk and a hackfest, both intending to demonstrate how to use Fedora for robotics under an educational perspective. [1] https://fedoraproject.org/wiki/Latinoware_2011 [2] http://fedoraproject.org/wiki/User:Valentinbasel Regards, -- Igor Pires Soares Fedora Ambassador (Brazil) - Member of FAmSCo Fedora I18N/L10N QA https://fedoraproject.org/wiki/User:Igor

2 2

[Event Report] Fedora Activity Day II, COEP, Pune, India October 8, 2011
by Shakthi Kannan 10 Oct '11

10 Oct '11

Hi, In preparation to FUDCon, Pune 2011 [1], we had organized our second Fedora Activity Day (FAD) [2] at the FOSS Lab, College of Engineering, Pune, India [3] on Saturday, October 8, 2011. Thanks to COEP for hosting the FAD, and to Prof. Abhijit [4] for working with us in organizing the same. Saleem Ansari [5] had setup http://fudcon.in using Conference Organization Distribution [6], which we used it for registration at the venue. Prasad Pandit [7] started the day's proceedings with an introduction to Python [8]. Basic syntax, semantics of Python were covered, and we helped the participants in getting started in writing simple scripts. I then presented an overview of contributing to Fedora using the "i-want-2-do-project. tell-me-wat-2-do-fedora" [9] presentation, and the various communication channels that they need to be familiar with to work with the larger Fedora community. We had lunch at the COEP Boat Club [10] canteen. After lunch, Kashyap Chamarthy [11] presented KVM virtualization [12] in Fedora illustrating examples using libvirt and virt tools. Amit Shah [13] and Kashyap answered queries regarding virtualization. Saleem Ansari then presented an introduction to web development and Django [14], illustrating the use of model, view and template design. I concluded the day's sessions with an introduction to git using the "di-git-ally managing love letters" presentation [15]. Few photos taken at the event are available in my /gallery [16]. SK [1] FUDCon, Pune, India 2011. http://fedoraproject.org/wiki/FUDCon:India_2011 [2] Fedora Activity Day II. http://fedoraproject.org/wiki/FAD_Pune_2011 [3] College of Engineering, Pune, India. http://www.coep.org.in/ [4] Prof. Abhijit. http://www.coep.org.in/index.php?profile=abhijit.comp [5] Saleem Ansari. http://fedoraproject.org/wiki/User:Tuxdna [6] Conference Organization Distribution. http://usecod.com/ [7] Prasad Pandit. http://fedoraproject.org/wiki/User:Pjp [8] Introduction to Python by Prasad Pandit. http://pjp.dgplug.org/tools/introduction-python.pdf [9] i-want-2-do-project. tell-me-wat-2-do-fedora. http://shakthimaan.com/downloads.html#i-want-2-do-project-tell-me-wat-2-do [10] COEP Boat Club. http://coepboatclub.com/ [11] Kashyap Chamarthy. http://fedoraproject.org/wiki/User:Kashyapc [12] Virtualization in Fedora by Kashyap. http://kashyapc.fedorapeople.org/Presentations/virtualization-in-fedora.pdf [13] Amit Shah. http://fedoraproject.org/wiki/User:Amitshah [14] Introduction to Django by Saleem Ansari. https://github.com/tuxdna/conf_jmilug [15] di-git-ally managing love letters. http://shakthimaan.com/downloads.html#di-git-ally-managing-love-letters [16] Photos. http://www.shakthimaan.com/Mambo/gallery/album71 -- Shakthi Kannan http://www.shakthimaan.com

2 1

REMINDER French Fedora Meeting Today 1830UTC #fedora-meeting
by Mathieu Bridon 10 Oct '11

10 Oct '11

This mail is a reminder for today's meeting for the French speaking community. 2011-10-10 / 18:30 UTC IRC: freenode #fedora-meeting Ce mail est un rappel pour la réunion de la communauté francophone, qui aura lieu ce lundi (10 octobre) à 20h30 heure de Paris sur IRC (freenode) #fedora-meeting . L'ordre du jour est disponible depuis cette page : http://fedoraproject.org/wiki/Réunions_hebdomadaires_de_la_French_team N'hésitez pas à le modifier pour rajouter des sujets qui vous semblent intéressants. Merci de répondre à ce message en cas d'indisponibilité.

1 0

FAmSCo meeting minutes - 2011-10-08
by Igor Pires Soares 08 Oct '11

08 Oct '11

Hello folks! Here are the minutes and the log of today's FAmSCo meeting. Minutes: http://meetbot.fedoraproject.org/fedora-meeting/2011-10-08/fedora-meeting.2… Minutes (text): http://meetbot.fedoraproject.org/fedora-meeting/2011-10-08/fedora-meeting.2… Log: http://meetbot.fedoraproject.org/fedora-meeting/2011-10-08/fedora-meeting.2… Regards, -- Igor Pires Soares Fedora Ambassador (Brazil) - Member of FAmSCo Fedora I18N/L10N QA https://fedoraproject.org/wiki/User:Igor

1 0

EMEA ambassadors meeting 2011-10-05 minutes
by Christoph Wickert 08 Oct '11

08 Oct '11

This week was a good meeting because we had 13 people participating. Thanks everybody for coming! Minutes: http://meetbot.fedoraproject.org/fedora-meeting/2011-10-05/emea_ambassadors… Minutes (text): http://meetbot.fedoraproject.org/fedora-meeting/2011-10-05/emea_ambassadors… Log: http://meetbot.fedoraproject.org/fedora-meeting/2011-10-05/emea_ambassadors… Meet you again on Wednesday, October 19th (two weeks from now) at 20:00 UTC in #fedora-meeting! Regards, Christoph ==================================================== #fedora-meeting: EMEA ambassadors meeting 2011-10-05 ==================================================== Meeting started by cwickert at 20:02:01 UTC. The full logs are available at http://meetbot.fedoraproject.org/fedora-meeting/2011-10-05/emea_ambassadors… Meeting summary --------------- * role call (cwickert, 20:03:00) * Announcements (cwickert, 20:05:12) * No more ambassadors polos in EMEA left but we are going to place a new order soon (cwickert, 20:09:13) * ACTION: cwickert to make sure from now on we only get polos in the 'new' color because it matches the light blue on the Fedora logo (cwickert, 20:11:41) * Ambassadors Schedule (cwickert, 20:12:04) * ACTION: cwickert to make a poll on the media meeting time and announce it (cwickert, 20:17:03) * ACTION: gnokii to nag the design-team about F16 media artwork. we need it earlier this time (cwickert, 20:19:47) * LINK: http://lists.fedoraproject.org/pipermail/ambassadors/2011-August/018152.html (cwickert, 20:22:58) * please add your release events to https://fedoraproject.org/wiki/F16_release_events (cwickert, 20:23:42) * F16 media production (cwickert, 20:24:37) * Events (cwickert, 20:46:23) * Fedora 16 release is on 2011-11-08, so don't expect any F16 media for events till ~ 2011-11-20 (cwickert, 20:50:36) * ACTION: jsmith to send Fedora branded USB keys to delhage for fscons (cwickert, 20:51:43) * ACTION: sesivany to get a quote for branded USB keys (cwickert, 20:55:14) * Action items from previous meetings (cwickert, 20:57:01) * ACTION: cwickert to ask rel-eng how fast we can get the F16 ISOs (cwickert, 20:59:54) * Open floor (cwickert, 21:02:34) * Vote now for your favorite Fedora 17 release name at Vote now for your favorite Fedora 17 release name (cwickert, 21:03:58) * vote for the BEEFY MIRACLE!!! (cwickert, 21:04:13) * Vote now for your favorite Fedora 17 release name at https://admin.fedoraproject.org/voting/about/relnamef17 (cwickert, 21:06:22) * ACTION: sesivany and cwickert to investigate the chance of having a FAD or Mini-FUDCon at the Brno developer conference (cwickert, 21:09:32) Meeting ended at 21:16:25 UTC. Action Items ------------ * cwickert to make sure from now on we only get polos in the 'new' color because it matches the light blue on the Fedora logo * cwickert to make a poll on the media meeting time and announce it * gnokii to nag the design-team about F16 media artwork. we need it earlier this time * jsmith to send Fedora branded USB keys to delhage for fscons * sesivany to get a quote for branded USB keys * cwickert to ask rel-eng how fast we can get the F16 ISOs * sesivany and cwickert to investigate the chance of having a FAD or Mini-FUDCon at the Brno developer conference Action Items, by person ----------------------- * cwickert * cwickert to make sure from now on we only get polos in the 'new' color because it matches the light blue on the Fedora logo * cwickert to make a poll on the media meeting time and announce it * cwickert to ask rel-eng how fast we can get the F16 ISOs * sesivany and cwickert to investigate the chance of having a FAD or Mini-FUDCon at the Brno developer conference * delhage * jsmith to send Fedora branded USB keys to delhage for fscons * gnokii * gnokii to nag the design-team about F16 media artwork. we need it earlier this time * sesivany * sesivany to get a quote for branded USB keys * sesivany and cwickert to investigate the chance of having a FAD or Mini-FUDCon at the Brno developer conference * **UNASSIGNED** * (none)

2 1

Swag Bazaar
by Gianluca Sforna 08 Oct '11

08 Oct '11

Ok, given the good feedback I just created a draft info page for running a Swag Bazaar: https://fedoraproject.org/wiki/FUDCon_Swag_Bazaar Feel free to let me know how you would improve that (or just do it, it's a wiki after all) When we are happy with it we can surely link it from the general FUDCon organization wiki page. Cheers G. -- Gianluca Sforna http://morefedora.blogspot.com http://identi.ca/giallu - http://twitter.com/giallu

3 2

Special APAC FAD special meeting 2011 oct 08
by Buddhike Kurera 08 Oct '11

08 Oct '11

hello dear APAC Fams, The next APAC FAD Special meeting will be held on Day : Saturday, October 8th, 2011 Time : 04:00 UTC Place: #fedora-meeting on irc.freenode.net Please update the agenda[1] and it needs lot of love to be smart, please do update it as per the need. thanks for your time and looking forward to see you on Saturday. [1] https://fedoraproject.org/wiki/Meeting:APAC_Ambassadors_2011-10-08 -- Regards, *Buddhike Chandradeepa Kurera(bckurera)* Fedora Ambassador Sri Lanka Event Liaison - Design Team *Email*: bckurera(a)fedoraproject.org | *IRC*: bckurera * *

3 6

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

2007

2006

2005

ambassadors October 2011