In T5788#117129, @AmandaCath wrote:@Southparkfan Actually, Nimbus is blocked by Upstream per T5450#108244 (was already reviewed by Sam Wilson)
- Queries
- All Stories
- Search
- Advanced Search
- Transactions
- Transaction Logs
Feed Advanced Search
Advanced Search
Advanced Search
Thu, Jul 30
Thu, Jul 30
Nimbus approved, Aether not sure about one thing (P340). Discourse is declined since it's not maintained and I have some doubts about certain strategies used for the skin templating.
Southparkfan moved T5862: Adding the TwitterTag extension to the Hololive Fan Wiki from Review Needed to Reviewed Accepted on the Extensions board.
Approved.
Southparkfan moved T5815: Extension:JsCalendar from Review Needed to Reviewed Accepted on the Extensions board.
Looks fine to me as well. Approved.
@Paladox, what was the reason this extension was declined as 'hard/impossible to install'?
Give me a few days to think about it.
One potential finding: https://phabricator.miraheze.org/P339
The bundled version of TinyMCE has various vulnerabilities: https://snyk.io/test/npm/tinymce/4.6.4
Wed, Jul 29
Wed, Jul 29
Southparkfan updated the task description for T5988: Review all custom domains with unusual rDNS entries.
Southparkfan committed rPUPC7b684cd7dbcc: Change output of check_reverse_dns for IPs without PTR record (authored by Southparkfan).
Change output of check_reverse_dns for IPs without PTR record
Southparkfan committed rPUPCb48e7e321f54: Replace DNS check with customised script (authored by Southparkfan).
Replace DNS check with customised script
Wed, Jul 15
Wed, Jul 15
Fix spelling mistake
Add NTP check
Tue, Jul 14
Tue, Jul 14
Switch cp8 to cp9
Add cp9
Add cp9
Mon, Jul 13
Mon, Jul 13
Setting to priority to low, since it seems like this is expected behavior.
Southparkfan moved T5877: Revise MariaDB backup strategy from Backlog to Site Reliability Engineering on the Goal-2020-Jul-Dec board.
Fri, Jul 10
Fri, Jul 10
Southparkfan moved T5621: Extension review: Lingo from Review Needed to Reviewed Accepted on the Extensions board.
Approved.
Don't we already have many security reviewed extensions providing these features?
Southparkfan moved T4419: Extension Review: TreeAndMenu from Review Needed to Reviewed Accepted on the Extensions board.
Extension seems fine now.
Jul 6 2020
Jul 6 2020
Southparkfan added projects to T5877: Revise MariaDB backup strategy: Database, Site Reliability Engineering.
Southparkfan moved T5537: Replace SaltStack with Cumin from Backlog to Site Reliability Engineering on the Goal-2020-Jul-Dec board.
Southparkfan renamed T5537: Replace SaltStack with Cumin from Migrate to cumin to Replace SaltStack with Cumin.
Southparkfan reopened T5537: Replace SaltStack with Cumin, a subtask of T5543: Reconfigure SaltStack or replace it with another tool, as Open.
Per T5543#114782. We're now using salt-ssh.
In favor of T5537
Southparkfan moved T5543: Reconfigure SaltStack or replace it with another tool from Backlog to Site Reliability Engineering on the Goal-2020-Jul-Dec board.
Southparkfan moved T5044: Setup centralised logging for services from Backlog to Site Reliability Engineering on the Goal-2020-Jul-Dec board.
Southparkfan moved T4016: Encrypt all traffic inside Miraheze Cluster from Backlog to Site Reliability Engineering on the Goal-2020-Jul-Dec board.
Southparkfan moved T4017: Reconfigure TLS settings inside MariaDB from Backlog to Site Reliability Engineering on the Goal-2020-Jul-Dec board.
Southparkfan moved T4019: Encrypt Redis traffic from Backlog to Site Reliability Engineering on the Goal-2020-Jul-Dec board.
Southparkfan moved T5045: Setup LDAP and hook it into mail from Backlog to Site Reliability Engineering on the Goal-2020-Jul-Dec board.
Jul 1 2020
Jul 1 2020
Southparkfan edited projects for T4005: Execute external commands on MediaWiki servers inside sandboxes, added: Security; removed acl*security.
Southparkfan edited projects for T5735: Audit user rights blacklist, added: Security; removed acl*security.
Southparkfan edited projects for T5543: Reconfigure SaltStack or replace it with another tool, added: Security; removed acl*security.
Would like to get this done in Q3 or Q4.
Jun 28 2020
Jun 28 2020
Perhaps not the most realistic goal.
Southparkfan reassigned T5543: Reconfigure SaltStack or replace it with another tool from Southparkfan to Paladox.
@Paladox Let's replace Salt with Cumin. Not necessarily because we can't secure Salt (as long as we don't open the ports to the internet anymore, we're fine), but since Cumin offers functionality we can benefit from. Goal for Q3/Q4?
Jun 22 2020
Jun 22 2020
Southparkfan reassigned T5782: [Access Request] RhinosF1 for Mediawiki-Admins from Southparkfan to Reception123.
Fine with me.
Jun 17 2020
Jun 17 2020
I have moved the SHM log to RAM, so we should have reduced the I/O on most of the cache proxies. Is the result satisfactory?
Jun 16 2020
Jun 16 2020
Repool cp[78]
Southparkfan committed rPUPC922785c167b0: Merge branch 'master' of github.com:miraheze/puppet (authored by Southparkfan).
Merge branch 'master' of github.com:miraheze/puppet
Southparkfan committed rPUPCe88ebe2d0d6a: Deploy new varnish cache system on cp[78] (authored by Southparkfan).
Deploy new varnish cache system on cp[78]
Southparkfan committed rDNS836656ed8e56: Revert "Revert "Add cp6, depool cp[78] for maintenance"" (authored by Southparkfan).
Revert "Revert "Add cp6, depool cp[78] for maintenance""
Southparkfan committed rDNSc72e9bce0594: Revert "Add cp6, depool cp[78] for maintenance" (authored by Southparkfan).
Revert "Add cp6, depool cp[78] for maintenance"
Southparkfan committed rDNS19e138c166f1: Add cp6, depool cp[78] for maintenance (authored by Southparkfan).
Add cp6, depool cp[78] for maintenance
Put varnish shm log in RAM
Jun 9 2020
Jun 9 2020
Revert "Revert "dbt1 -> db8""
Southparkfan added a reverting change for R9:3bc374d10e34: Revert "dbt1 -> db8": R9:4242ce3d94c1: Revert "Revert "dbt1 -> db8"".
Southparkfan added a reverting change for R9:7a80def22c2a: dbt1 -> db8: R9:3bc374d10e34: Revert "dbt1 -> db8".
Revert "dbt1 -> db8"
Southparkfan reassigned T5723: Findings of a Security Researcher on Discord from Southparkfan to Reception123.
Status updates will be given via Twitter and the Discord announcements channel.
Southparkfan added a comment to T5643: kkuttuwiki has enabled cloudflare workers and removed CSP headers.
@Paladox can this task be made public?
Jun 7 2020
Jun 7 2020
For testing, @Paladox has enabled AES-NI on the MediaWiki servers and test2.
Jun 6 2020
Jun 6 2020
Southparkfan added a comment to T5614: Whitelist imgbox.com and googleusercontent.com so images can be shown.
No issues with those URLs.
Jun 1 2020
Jun 1 2020
@Paladox I'll review soon. Thanks.
Southparkfan lowered the priority of T5676: Mysql command line fail after recent cert change from Unbreak Now! to Normal.
If this task only covers the ability to log in locally, sudo -i mysql --ssl=0 will work.
May 30 2020
May 30 2020
AmandaCath awarded T5675: AddTrust External Root Certificate Expired a Dislike token.
May 22 2020
May 22 2020
Southparkfan changed the visibility for T5536: unattended-upgrades does not monitor third party repos.