Ubuntu Community Accomplishments

Merge lp:~kees/ubuntu-community-accomplishments/security-auditor into lp:~ubuntu-community-accomplishments-reviewers/ubuntu-community-accomplishments/0.1

  1. security-auditor
  2. Merge into 0.1
Proposed by Kees Cook
Status: Rejected
Rejected by: Rafał Cieślak
Proposed branch: lp:~kees/ubuntu-community-accomplishments/security-auditor
Merge into: lp:~ubuntu-community-accomplishments-reviewers/ubuntu-community-accomplishments/0.1
Diff against target: 33 lines (+22/-0)
2 files modified
accomplishments/ubuntu-community/en/verification-server-access.accomplishment (+16/-0)
scripts/ubuntu-community/verification-server-access.py (+6/-0)
To merge this branch: bzr merge lp:~kees/ubuntu-community-accomplishments/security-auditor
Reviewer Review Type Date Requested Status
Rafał Cieślak Disapprove
Review via email: mp+105399@code.launchpad.net

Description of the change

More accomplishments!

To post a comment you must log in.
lp:~kees/ubuntu-community-accomplishments/security-auditor updated
100. By Kees Cook

add an encouraging tip

Revision history for this message
Rafał Cieślak (rafalcieslak256) wrote :

Thanks for MP, Kees, though - as we have discussed - we'd rather not include this accomplishment in the official collection, as 1) it is not meant to be achievable, while we want all accomplishments to be possible to be accomplished, 2) it encourages people to break the server 3) does not result in a valuable activity in Ubuntu community.
However, I have to repeat that I really like your concept, and will store this idea for potential future use, as an original concept ;-)

review: Disapprove

Unmerged revisions

100. By Kees Cook

add an encouraging tip

99. By Kees Cook

perm bits

98. By Kees Cook

Introduce a security auditing accomplishment.

Preview Diff

[H/L] Next/Prev Comment, [J/K] Next/Prev File, [N/P] Next/Prev Hunk
1=== added file 'accomplishments/ubuntu-community/en/verification-server-access.accomplishment'
2--- accomplishments/ubuntu-community/en/verification-server-access.accomplishment 1970-01-01 00:00:00 +0000
3+++ accomplishments/ubuntu-community/en/verification-server-access.accomplishment 2012-05-10 22:13:20 +0000
4@@ -0,0 +1,16 @@
5+[accomplishment]
6+title=Verification Server Access
7+description=You have access to the Accomplishment Verification server
8+application=ubuntu-community
9+category=QA
10+icon=key.png
11+needs-signing=true
12+summary = The security of the Accomplishment Verification server is important for maintaining the integrity of the Accomplishment system.
13+ Reviewing the configurations and the software running the Accomplishment system can provide insight into areas where the security of
14+ the system can be improved. When a flaw is discovered, this trophy will be awarded.
15+steps: Review the Accomplishment Verification server software for security vulnerabilities.
16+ Demonstrate a vulnerability to someone on the Accomplishment team.
17+tips: Think outside the box.
18+pitfalls: The Accomplishment system is a shared service, so please do not break or disrupt it. Attempting a Denial-of-Service isn't going to gain access to the Accomplishment Verification server, so it should be avoided.
19+links: https://wiki.ubuntu.com/SecurityTeam/FAQ#Design
20+help = #ubuntu-hardened on Freenode
21
22=== added file 'accomplishments/ubuntu-community/trophyimages/key.png'
23Binary files accomplishments/ubuntu-community/trophyimages/key.png 1970-01-01 00:00:00 +0000 and accomplishments/ubuntu-community/trophyimages/key.png 2012-05-10 22:13:20 +0000 differ
24=== added file 'scripts/ubuntu-community/verification-server-access.py'
25--- scripts/ubuntu-community/verification-server-access.py 1970-01-01 00:00:00 +0000
26+++ scripts/ubuntu-community/verification-server-access.py 2012-05-10 22:13:20 +0000
27@@ -0,0 +1,6 @@
28+#!/usr/bin/python
29+import sys
30+
31+# If this can be changed to "0" during verification, you have access to
32+# the Accomplishment verification server.
33+sys.exit(0)

Subscribers

People subscribed via source and target branches

to all changes: