| 00:00:39 | *** lh has joined #openmrs |
| 00:05:06 | *** lh has quit IRC |
| 00:07:24 | *** lh has joined #openmrs |
| 00:11:29 | *** h3llborn has joined #openmrs |
| 00:21:50 | *** h3llborn has quit IRC |
| 00:29:48 | *** lh has quit IRC |
| 00:30:38 | *** lh has joined #openmrs |
| 00:48:36 | *** rajith has joined #openmrs |
| 00:59:16 | <rajith> hi wyclif |
| 01:04:34 | *** lh has quit IRC |
| 01:05:10 | *** lh has joined #openmrs |
| 01:11:18 | *** GitHub22 has joined #openmrs |
| 01:11:18 | <GitHub22> [openmrs-core] guilhermejccavalcanti opened pull request #260: TRUNK-3683 - Concept Map Types in the standard test dataset have the wrong uuids (master...TRUNK-3683) http://git.io/fY909w |
| 01:11:18 | *** GitHub22 has left #openmrs |
| 01:15:11 | <robbyoconnor> jkeiper: question |
| 01:15:40 | <robbyoconnor> Scripting Module and Data Integrity Module enhancements -- Groovy Module included? |
| 02:06:29 | *** harsz89 has joined #openmrs |
| 02:56:01 | *** jb360 has joined #openmrs |
| 04:39:12 | *** volodymyr has quit IRC |
| 04:39:12 | *** djazayeri has quit IRC |
| 04:39:12 | *** jkeiper has quit IRC |
| 04:39:12 | *** mcwere has quit IRC |
| 04:39:12 | *** nribeka has quit IRC |
| 04:39:12 | *** burke has quit IRC |
| 04:39:12 | *** ojwangantony has quit IRC |
| 04:39:12 | *** mseaton has quit IRC |
| 04:39:12 | *** akwatuha has quit IRC |
| 04:39:12 | *** sunbiz has quit IRC |
| 04:39:12 | *** cpower has quit IRC |
| 04:39:12 | *** docpaul has quit IRC |
| 04:39:12 | *** downey has quit IRC |
| 04:39:13 | *** suranga has quit IRC |
| 04:39:13 | *** ryates has quit IRC |
| 04:39:13 | *** surangak has quit IRC |
| 04:39:13 | *** suranga_ has quit IRC |
| 04:45:32 | *** rajith has quit IRC |
| 05:10:39 | *** harsz89 has quit IRC |
| 05:14:12 | *** harsz89 has joined #openmrs |
| 05:15:45 | *** rajith has joined #openmrs |
| 06:08:15 | *** h3llborn has joined #openmrs |
| 06:26:00 | *** h3llborn has quit IRC |
| 07:29:49 | *** rajith has quit IRC |
| 07:37:44 | *** davidpardz has quit IRC |
| 08:12:43 | *** magoo__ has joined #openmrs |
| 08:25:57 | *** magoo__ has quit IRC |
| 08:49:45 | *** rajith has joined #openmrs |
| 08:55:02 | *** rajith has quit IRC |
| 08:55:17 | *** harsz89 has quit IRC |
| 08:55:24 | *** rajith has joined #openmrs |
| 08:55:28 | *** harsz89 has joined #openmrs |
| 08:55:50 | *** rajith has quit IRC |
| 08:56:13 | *** rajith has joined #openmrs |
| 09:49:12 | *** garima has joined #openmrs |
| 09:50:36 | <garima> hi i am garima, GSOC 2013 aspirant |
| 09:50:54 | <garima> i am very much interested in your community |
| 09:51:57 | <garima> can someone tell me where are the introductory bugs? |
| 09:56:16 | <rajith> hi garima |
| 09:56:32 | <rajith> check this link https://tickets.openmrs.org/secure/IssueNavigator.jspa?mode=hide&requestId=10068 |
| 09:56:33 | <OpenMRSBot> <http://ln-s.net/8d9E> (at tickets.openmrs.org) |
| 09:57:01 | <garima> thankyou sir |
| 09:57:37 | <rajith> np :) |
| 10:01:19 | *** harsz89 has quit IRC |
| 10:03:47 | <rajith> garima, I'm sure you'd also need to look at these steps https://wiki.openmrs.org/display/docs/Getting+Started+as+a+Developer |
| 10:03:48 | <OpenMRSBot> <http://ln-s.net/8bkO> (at wiki.openmrs.org) |
| 10:05:02 | <garima> yes sir, the link was there at https://wiki.openmrs.org/display/RES/Summer+Of+Code+2013#SummerOfCode2013-Thinkingaboutapplying%3F |
| 10:05:25 | *** harsz89 has joined #openmrs |
| 10:05:44 | <garima> do i need to solve any bug, or a bug related to the project idea i am interested in? |
| 10:07:21 | *** lh has quit IRC |
| 10:07:55 | *** lh has joined #openmrs |
| 10:08:24 | <harsz89> hi garima |
| 10:08:43 | <garima> hello sir |
| 10:08:58 | <harsz89> sometimes you may not be able to find tickets which are related particular idea you interested in |
| 10:09:12 | <harsz89> if there are tickets you can move on with them |
| 10:10:00 | <harsz89> but i think you can do any tickets with status "ready to work" |
| 10:10:33 | <garima> thank you for reply |
| 10:10:51 | <garima> i am interested in writing the "Data Comparison" module |
| 10:10:51 | <harsz89> garima, :) |
| 10:11:28 | <harsz89> harsz89, better to get bit familiar with openMRS |
| 10:11:49 | <garima> i am on it |
| 10:11:53 | <garima> :) |
| 10:11:53 | <harsz89> garima, then will be easy to understand things |
| 10:12:03 | <harsz89> garima, :) |
| 10:17:43 | *** rowanseymour has joined #openmrs |
| 10:38:57 | *** draggonz has joined #openmrs |
| 11:02:39 | *** rowanseymour has quit IRC |
| 11:07:08 | *** k-joseph has joined #openmrs |
| 11:08:24 | *** rajith has quit IRC |
| 11:11:54 | *** k-joseph has quit IRC |
| 11:20:03 | *** draggonz has quit IRC |
| 11:22:09 | *** garima has quit IRC |
| 11:49:31 | *** rowanseymour has joined #openmrs |
| 11:50:25 | *** rowanseymour has quit IRC |
| 12:13:52 | *** jb360 has left #openmrs |
| 12:56:25 | *** rajith has joined #openmrs |
| 12:59:34 | *** lh has quit IRC |
| 13:10:09 | *** lh has joined #openmrs |
| 13:26:51 | *** k-joseph has joined #openmrs |
| 13:34:32 | *** rahul_ has joined #openmrs |
| 13:43:36 | *** volodymyr has joined #openmrs |
| 13:55:53 | <k-joseph> :) |
| 14:06:04 | *** k-joseph has quit IRC |
| 14:10:46 | *** rowanseymour has joined #openmrs |
| 14:14:13 | *** rahul_ has quit IRC |
| 14:19:01 | *** rowanseymour has quit IRC |
| 14:23:53 | *** downey has joined #openmrs |
| 14:23:53 | *** ChanServ sets mode: +o downey |
| 14:24:15 | *** jkeiper has joined #openmrs |
| 14:24:15 | *** ChanServ sets mode: +v jkeiper |
| 14:24:15 | *** docpaul has joined #openmrs |
| 14:24:15 | *** ChanServ sets mode: +o docpaul |
| 14:24:17 | *** nribeka has joined #openmrs |
| 14:24:17 | *** ChanServ sets mode: +v nribeka |
| 14:24:45 | *** burke has joined #openmrs |
| 14:24:45 | *** ChanServ sets mode: +o burke |
| 14:24:47 | *** cpower has joined #openmrs |
| 14:24:47 | *** ChanServ sets mode: +v cpower |
| 14:25:33 | *** djazayeri has joined #openmrs |
| 14:30:54 | *** mseaton has joined #openmrs |
| 14:30:54 | *** ChanServ sets mode: +v mseaton |
| 14:35:01 | *** ojwangantony has joined #openmrs |
| 14:35:20 | *** draggonz has joined #openmrs |
| 14:39:40 | *** mcwere has joined #openmrs |
| 14:40:47 | *** rowanseymour has joined #openmrs |
| 14:41:56 | *** akwatuha has joined #openmrs |
| 14:45:01 | *** suranga_ has joined #openmrs |
| 14:48:54 | *** surangak has joined #openmrs |
| 14:51:12 | *** suranga has joined #openmrs |
| 14:52:26 | *** rowanseymour has quit IRC |
| 14:59:34 | *** sunbiz has joined #openmrs |
| 14:59:34 | *** ChanServ sets mode: +v sunbiz |
| 15:00:01 | *** suranga__ has joined #openmrs |
| 15:01:01 | *** ryates has joined #openmrs |
| 15:07:15 | *** rahul_ has joined #openmrs |
| 15:17:19 | *** harsz89 has quit IRC |
| 15:17:42 | *** harshadura has joined #openmrs |
| 15:24:17 | *** rowanseymour has joined #openmrs |
| 15:24:51 | *** rowanseymour has quit IRC |
| 15:28:47 | *** harsz89 has joined #openmrs |
| 15:32:09 | *** harshadura has quit IRC |
| 15:38:44 | <rajith> mseaton, hi |
| 16:09:38 | *** lh has quit IRC |
| 16:10:22 | *** lh has joined #openmrs |
| 16:20:01 | *** sara has joined #openmrs |
| 16:30:58 | *** k-joseph has joined #openmrs |
| 16:33:06 | <k-joseph> :) |
| 16:40:02 | *** k-joseph has quit IRC |
| 16:41:42 | *** lh has quit IRC |
| 16:42:40 | *** lh has joined #openmrs |
| 16:44:53 | *** harshadura has joined #openmrs |
| 16:46:04 | *** harshadura has quit IRC |
| 16:46:59 | *** dammina has joined #openmrs |
| 16:51:17 | *** sara has quit IRC |
| 16:53:37 | *** draggonz_ has joined #openmrs |
| 16:53:47 | *** draggonz has quit IRC |
| 16:56:53 | *** k-joseph has joined #openmrs |
| 17:03:27 | *** dkayiwa has joined #openmrs |
| 17:03:53 | *** lh has quit IRC |
| 17:04:28 | *** lh has joined #openmrs |
| 17:35:00 | <k-joseph> :) |
| 17:37:32 | *** draggonz_ has quit IRC |
| 17:38:11 | *** draggonz has joined #openmrs |
| 17:39:38 | *** lh has quit IRC |
| 17:40:11 | *** lh has joined #openmrs |
| 17:44:37 | *** k-joseph has quit IRC |
| 17:49:25 | *** dammina has quit IRC |
| 17:49:38 | *** harshadura has joined #openmrs |
| 17:50:05 | *** ChanServ sets mode: +v harshadura |
| 17:58:59 | *** lh has quit IRC |
| 18:01:23 | *** lh has joined #openmrs |
| 18:11:23 | *** rajith has quit IRC |
| 18:25:32 | *** k-joseph has joined #openmrs |
| 18:30:52 | *** rahul_ has quit IRC |
| 18:47:41 | <k-joseph> :) |
| 19:19:32 | *** harshadura has quit IRC |
| 19:20:22 | *** k-joseph has quit IRC |
| 19:21:17 | *** dkayiwa has quit IRC |
| 19:23:06 | *** dkayiwa has joined #openmrs |
| 19:25:13 | *** harsz89 has quit IRC |
| 19:30:05 | *** surangak has quit IRC |
| 19:30:05 | *** suranga__ has quit IRC |
| 19:30:05 | *** suranga has quit IRC |
| 19:39:57 | *** suranga has joined #openmrs |
| 19:41:34 | *** surangak has joined #openmrs |
| 19:53:00 | *** surangak has quit IRC |
| 19:53:00 | *** suranga has quit IRC |
| 20:33:29 | *** downey has quit IRC |
| 20:33:29 | *** mseaton has quit IRC |
| 20:33:29 | *** ojwangantony has quit IRC |
| 20:33:29 | *** suranga_ has quit IRC |
| 20:33:29 | *** nribeka has quit IRC |
| 20:33:29 | *** akwatuha has quit IRC |
| 20:35:39 | *** nribeka has joined #openmrs |
| 20:35:39 | *** ChanServ sets mode: +v nribeka |
| 20:35:46 | *** mseaton has joined #openmrs |
| 20:35:46 | *** ChanServ sets mode: +v mseaton |
| 20:35:54 | *** ojwangantony has joined #openmrs |
| 20:36:15 | *** downey has joined #openmrs |
| 20:36:15 | *** ChanServ sets mode: +o downey |
| 20:36:28 | *** akwatuha has joined #openmrs |
| 20:36:52 | *** ojwangantony_ has joined #openmrs |
| 20:37:08 | *** downey_ has joined #openmrs |
| 20:37:08 | *** ChanServ sets mode: +o downey_ |
| 20:55:02 | *** draggonz has quit IRC |
| 21:22:47 | *** h3llborn has joined #openmrs |
| 21:23:05 | *** sydriz has joined #openmrs |
| 21:26:47 | <sydriz> Hi, is there anyone here who can help me report a bug in OpenMRS. Or let me know, if I don't need to report it. |
| 21:27:37 | <sydriz> I noticed that the generic deployment of OpenMRS does not filter user input for JavaScript injection. |
| 21:29:38 | <dkayiwa> sydriz: which one in particular did you try? |
| 21:31:12 | <sydriz> Through the Admin page for RelationshipType, I created a new RelationshipType object, where the AisToB field was "<script>alert("hello")<\script>". And that JavaScript was executed on the RelationshipType admin page, as well as on Patient Dashboard |
| 21:32:20 | <sydriz> Of course, that JavaScript is pretty simple, but I'm guessing someone can create an actual exploit for this. |
| 21:32:33 | <dkayiwa> sydriz: ok |
| 21:33:23 | <dkayiwa> sydriz: can you send out an email about it to the developers mailing list? |
| 21:35:30 | <sydriz> dkayiwa: I'm a University student, and doing this for an assignment. |
| 21:35:46 | <dkayiwa> sydriz: ok |
| 21:37:03 | <sydriz> dkayiwa: Can you please tell me where can I find the developer list? |
| 21:37:47 | <dkayiwa> sydriz: https://wiki.openmrs.org/display/RES/Mailing+Lists |
| 21:37:48 | <OpenMRSBot> <http://ln-s.net/8ZWD> (at wiki.openmrs.org) |
| 21:38:25 | *** nribeka has quit IRC |
| 21:38:25 | *** burke has quit IRC |
| 21:38:25 | *** jkeiper has quit IRC |
| 21:38:25 | *** cpower has quit IRC |
| 21:38:25 | *** docpaul has quit IRC |
| 21:38:25 | *** sunbiz has quit IRC |
| 21:38:25 | *** ryates has quit IRC |
| 21:39:00 | *** akwatuha has quit IRC |
| 21:39:00 | *** downey_ has quit IRC |
| 21:39:00 | *** mseaton has quit IRC |
| 21:39:00 | *** ojwangantony_ has quit IRC |
| 21:39:05 | *** downey has quit IRC |
| 21:39:05 | *** ojwangantony has quit IRC |
| 21:39:05 | *** volodymyr has quit IRC |
| 21:39:06 | *** djazayeri has quit IRC |
| 21:39:06 | *** mcwere has quit IRC |
| 21:39:20 | <sydriz> dkayiwa: So I just email at dev@openmrs.org ? |
| 21:39:49 | <dkayiwa> sydriz: after you have subscribed to it |
| 21:51:07 | *** h3llborn has quit IRC |
| 21:51:28 | <sydriz> dkayiwa: Thank you, I just sent the email. |
| 21:51:46 | <dkayiwa> sydriz: ok good |
| 21:58:13 | *** lh has quit IRC |
| 21:58:59 | <sydriz> dkayiwa: Is there anything else I should do? |
| 21:59:23 | <dkayiwa> sydriz: do you want to fix it? |
| 21:59:51 | *** lh has joined #openmrs |
| 22:00:32 | <sydriz> dkayiwa: Fixing such an issue is not a simple task. It's a major Langsec problem. |
| 22:02:41 | <dkayiwa> sydriz: ok |
| 22:02:59 | <dkayiwa> sydriz: so do you want to find another security issue? |
| 22:04:34 | <sydriz> dkayiwa: I think I may have another, but I need to test it first. |
| 22:05:10 | <dkayiwa> sydriz: ok |
| 22:05:54 | <sydriz> dkayiwa: It has the to do with the privileges required to view admin pages. |
| 22:07:16 | <dkayiwa> sydriz: ok |
| 22:09:21 | <sydriz> dkayiwa: Unless you have some suspicions that you would like for me test and report it if some flaw exists? |
| 22:11:29 | <dkayiwa> sydriz: not any at the moment |
| 22:17:09 | <sydriz> dkayiwa: I didn't test it, but do you know if OpenMRS filters against SQL Injection attacks? |
| 22:18:11 | <dkayiwa> sydriz: you need to test it :) |
| 22:27:09 | <sydriz> dkayiwa: Okay, simple SQL Injection attacks don't execute. |
| 22:27:28 | <sydriz> dkayiwa: Thank you for all your help today. |
| 22:28:25 | <dkayiwa> sydriz: yo welcome |
| 22:29:03 | *** sydriz has quit IRC |
| 22:30:18 | *** jb360 has joined #openmrs |
| 23:04:33 | *** dkayiwa has quit IRC |
| 23:44:22 | *** harsz89 has joined #openmrs |