Thomas Bergens
tjbergens@knights.ucf.edu
COP4331 - Processes for Object Oriented Software Development - Fall 2014
Group 8 - CLASP Password Manager
Project Name: CLASP Password Manager
Team Website: http://www.cs.ucf.edu/courses/cop4331/fall2014/cop4331-8/
Webpages for Other Team Members:
| Date | Activity |
|---|---|
| 09/15/2014 | Provisioned and deployed a VPS environment for development of the Web Service and other needs |
| 09/19/2014 | The High-Level Design was updated with the start of a "Crypto Crash Course to later be integrated into design documents. |
| 09/16/2014 | Created individual accounts for team members for SSH access. A number of hours were spent locking down the server by performing essential updates and configuration changes. |
| 09/24/2014 | The "Shellshock" BASH bug was disclosed. CentOS had an initial patch deployed on repositories within hours and the VPS was updated accordingly. |
| 09/26/2014 | Crypto Crash Course was moved into it's own document to be used for populating the design documents at a later time. Numerous contributions were made to Crypto Crash Course and the High-level Design documents. |
| 09/28/2014 | Opened Group Discussion regarding Web Service choices and implementation concerns. |
| 09/29/2014 | Selected Django with the Django REST Framework to be used for the Web Service. Spent ~4 hours reviewing documentation and tutorial material. |
| Date | Progress and Status |
|---|---|
| 09/26/2014 | Laptop screen hinge broke rendering it unusable until replacement part came in. Recitation had been reserved by the team to work on the project. I decided to work from my desktop throughout this time period and ended up working well into the late afternoon. The past week was mostly spent researching possible frameworks for the web service portion of the project that would be suitable for the team. A "Shellshock" bug for BASH was disclosed this week. While our server is not vulnerable to the initial disclosure, further auditing has revealed several potentially severe vulnerabilities in BASH that have yet to see a patch. While we currently have no public facing service open on the known attack vectors, this is something the team is keeping an eye on as the central point of the project is security. |
| Date | Issue | Resolution |
|---|---|---|
| 09/26/2014 | Laptop screen hinge broke rendering it unusable until replacement part came in. | Worked from my desktop during the time period of our Team Meeting, and extended well into the late afternoon. |
| Date | Defect |
|---|---|
| Date | Comment |
|---|---|
This page last modified by Thomas Bergens (tjbergens@knights.ucf.edu) on October 21, 2014.
Please do not reproduce this page.