telecon today

Gallagher James jgallagher at opendap.org
Mon Apr 30 13:19:53 PDT 2007 

All: Sorry, in my haste I sent out the notice of our development  
group's teleconference to the opendap-tech list. In fact, anyone _is_  
welcome to join the teleconference, but you might find it fairly  
boring and I don't generally announce it for that reason. These are  
also intended to be very informal with goal of clearing away things  
are presenting stumbling blocks for us. We don't decide on things so  
much as report on what's happened. To cut down on the admin overhead,  
we don't take notes, except that I often jot down a personal to-do  
list lest I forget something.

You can guess what figured big at today's meeting... With that in  
mind, what follows is a short summary of the security issues.

On Apr 30, 2007, at 11:27 AM, Roy Mendelssohn wrote:

> Oops, just got this.  Can you put out a summary when completed.


We will be coordinating with US-CERT on the security breach. It seems  
mostly in hand, but some sites still may need to be notified. We're  
working on an interim security plan until a working group can get a  
more formal one in place. US-CERT will work with agency CIRTs and has  
a guide to help people whose machines were affected. We (opendap) had  
a machine that was broken into - some people were concerned that it  
was the machine that holds our development code, it wasn't - and that  
break-in provided a good baseline for the cleanup people will need to  
do. It appears to be very limited and easy although I want to  
communicate more with US-CERT before I make that a formal statement.

Other things:

We have tested the new patch to Hyrax and it fixes the issues with  
concurrency. The server has been tested to over a million accesses.

Progress on a WCS gateway is good.

The PyDAP code seems to fit the bill for getting data off of an  
opendap server and into a RDB - a project one attendee is working on.

We are going to move forward with a semantics working group.

I have been working on the Working Group Terms of Reference.

James
--
James Gallagher                jgallagher at opendap.org
OPeNDAP, Inc                   406.723.8663

More information about the Opendap-tech mailing list