Project Development Meeting (IF-2.33 10:00 - 12:00) - Minutes 2013-12-04

Present: Ian, Roger, Craig, Iain, George, Stephen, Alison, Neil, Tim (convener and minutes)

1. Minutes of last meeting

Accepted.

2. Matters arising

Update on actions from last meeting.

• Take to CSG policy on not archiving and just deleting accounts after grace period. [Action Alastair]
• Webmark Reform
  • Do a demo of prototype. Talk scheduled.
  • Do a talk on "connection pooling". Talk scheduled.
• Software Download Portal/Repository: Stage 1s
  • Need to raise awareness, e.g. blogging and telling incoming PhD students. Alison will add link from "new user" page on computing.help.
• Redevelop User Documentation
  • Submit the skeleton system status summary from Nagios project (for maintaining the status tab). [Action Stephen]
  • We should be getting emailed (annually?) when pages we own need to be reviewed. Turn this on. [Action Alison]
  • Run a scan of pages in www.dice and wiki.inf/DICE which need to be pulled into computing.help. Done fair bit, ongoing. [Action Chris]
  • Look at the support contact page to see if we can migrate into Drupal. [Action Alastair]
• Software Download Portal/Repository: Stage 1s, Redevelop User Documentation
  • Take to CEG for ratification. Done.
• Produce project sign-off checklist. Should include (among others) check boxes for end-user and technical documentation having been provided. Has been included in projects review proposals.
• Account reconciliation
  • Find email evidence for IS having changed UID values. Done.
• Streaming Media Service Requirements
  • Send draft document to IS for comments. Done.

New actions from this meeting:

• Account reconciliation
  • Can we use a trigger such as a host drop-off spanning map for a number of weeks to automate host key principal deletion (in some fashion) and could this be part of Prometheus? For consideration and comment. [Action Toby]
• Deploy Git/Gerrit as full services
  • Add security header to Git server as ssh will be accessable from outside ed. [Action Craig]
  • Use of AFS+SSH to solve end user managed access control means that iFriend write access to Git repositories for collaboration will probably not work as-is (would require full DICE account). Needs consideration (e.g. use https instead) but does not need to block this approach. [Action Craig]
• Review of OpenLDAP DICE client configuration
  • Investigate using SSSD minimal cacheing to protect against connectivity issues, although this may just be an action to create a separate project. [Action Ian]
• Securing School Web Servers
  • Sends notes from meeting to COs. [Action Neil]
• Options for two-factor authentication
  • Include investigation of whether OTP support can be done at the same time. Add to project descriptor. [Action George]
• Windows 7 Upgrade
  • Take to CEG for ratification. [Action Tim]

3. Approved Projects

See Activity with annotated comments from meeting.

4. Project Status Changes

• Intrusion Detection System - to Evaluation
• Produce a talks.cam not-a-service for trialling - to Evaluation
• Options for two-factor authentication - to Evaluation
• Windows 7 Upgrade - Signed Off
  • Split of effort would have been helpful (how much time on installs and how much on fixing AFS and other issues).
  • Would be interesting to compare effort with how long IS take to upgrade MDP machines.

• Streaming Media Service Requirements
  • To be Stalled pending IS proposals.

5. System Blog Articles

• Git

6. Technical Talk

Postponed until next meeting.

7. AOB

Next months meeting (Jan 1st) will be shifted one week to Jan 8th.

-- TimColles - 07 Jan 2014