| 5 Sep 2024 |
|  @necoarc:transfem.dev removed their display name Neco-Arc. | 03:49:32 |
| @necoarc:transfem.dev removed their profile picture. | 03:49:32 |
| @necoarc:transfem.dev left the room. | 03:49:32 |
 hexa | https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-45506 | 16:23:24 |
| hexa | * https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-45506 haproxy | 16:23:28 |
| hexa | I'm bumping release-24.05 to 2.9.10, can someone take master. i have to run | 16:23:48 |
| hexa | https://github.com/NixOS/nixpkgs/pull/339840 | 16:25:27 |
| hexa | https://groups.google.com/g/golang-announce/c/K-cEzDeCtpc | 18:05:50 |
| 6 Sep 2024 |
 sugi | forgejo is going to need an update to 8.0.3 or 7.0.9 | 16:56:18 |
| sugi | * forgejo is going to need an update to 8.0.3 or 7.0.9 (https://codeberg.org/forgejo/forgejo/milestone/8231) | 16:59:42 |
| hexa | emily, adamcstephens | 17:01:01 |
| hexa | (pretty sure they are aware) | 17:01:10 |
| hexa | * (pretty sure they are aware, but still) | 17:01:14 |
 emily | (wrong emily?) | 17:01:17 |
| emily | emily: | 17:01:19 |
| hexa | E_TOOMANYEMILIES | 17:01:32 |
| hexa | * E_TOOMANYEMILYS | 17:01:42 |
 networkException | M_NOT_ENOUGH_EMILYS | 17:26:36 |
 @adam:robins.wtf | merged | 21:26:16 |
| 7 Sep 2024 |
| hexa | https://seclists.org/tcpdump/2024/q3/3 | 03:30:00 |
 Markus Theil | After fixing some build issues of systemd dependencies, the OpenSSL update is now ready for review from my side: https://github.com/NixOS/nixpkgs/pull/339614 | 09:20:38 |
| Markus Theil | OpenSSL increased the default security level from version line to version line: https://docs.openssl.org/1.1.1/man3/SSL_CTX_set_security_level/
With OpenSSL 3.2+ the default is 2. | 09:27:56 |
| Markus Theil | Should we define this to a lower default or should users deal with it? | 09:28:19 |
| Markus Theil | 3.0.x used level 1. | 09:29:53 |
| emily | In reply to @mtheil:scs.ems.host
Should we define this to a lower default or should users deal with it? let's not opt in to worse security, users can deal with it unless it causes mass breakage | 10:44:16 |
| emily | not even mail servers should be using SSL 3.0 or 1024-bit RSA | 10:45:25 |
| emily | (let's move this to the non triage room though?) | 10:46:53 |
|  @vincenttc:matrix.org left the room. | 16:19:37 |
 qubitnano | https://community.ui.com/releases/Security-Advisory-Bulletin-042-042/c4f68b56-cdc4-4128-b2cb-5870209d1704 | 16:19:42 |
| qubitnano | Just need to backport 8.4 to 24.05 and drop unifi7, right? | 16:25:41 |
