Page MenuHomeMiraheze
Feed Advanced Search

Thu, Jul 30

Southparkfan added a comment to T5788: Install the Aether, Discourse and Nimbus skins.

@Southparkfan Actually, Nimbus is blocked by Upstream per T5450#108244 (was already reviewed by Sam Wilson)

Thu, Jul 30, 22:04 · Configuration, Extensions
Southparkfan claimed T5788: Install the Aether, Discourse and Nimbus skins.

Nimbus approved, Aether not sure about one thing (P340). Discourse is declined since it's not maintained and I have some doubts about certain strategies used for the skin templating.

Thu, Jul 30, 21:43 · Configuration, Extensions
Southparkfan moved T5862: Adding the TwitterTag extension to the Hololive Fan Wiki from Review Needed to Reviewed Accepted on the Extensions board.
Thu, Jul 30, 21:29 · Configuration, Extensions
Southparkfan added a comment to T5862: Adding the TwitterTag extension to the Hololive Fan Wiki.

Approved.

Thu, Jul 30, 21:29 · Configuration, Extensions
Southparkfan moved T5815: Extension:JsCalendar from Review Needed to Reviewed Accepted on the Extensions board.
Thu, Jul 30, 21:27 · Configuration, Extensions
Southparkfan added a comment to T5815: Extension:JsCalendar.

Looks fine to me as well. Approved.

Thu, Jul 30, 21:27 · Configuration, Extensions
Southparkfan assigned T5750: File extensions + skin install to Paladox.

@Paladox, what was the reason this extension was declined as 'hard/impossible to install'?

Thu, Jul 30, 21:10 · Extensions, Configuration
Southparkfan claimed T5590: Extension Re-review Request: EmbedVideo.

Give me a few days to think about it.

Thu, Jul 30, 21:03 · Extensions
Southparkfan claimed T5477: Extension:RatePage.

One potential finding: https://phabricator.miraheze.org/P339

Thu, Jul 30, 20:59 · Extensions
Southparkfan added a comment to T5024: TinyMCE alongside or instead of VisualEditor.

The bundled version of TinyMCE has various vulnerabilities: https://snyk.io/test/npm/tinymce/4.6.4

Thu, Jul 30, 20:32 · Extensions

Wed, Jul 29

Southparkfan updated the task description for T5988: Review all custom domains with unusual rDNS entries.
Wed, Jul 29, 21:17 · SSL
Southparkfan assigned T5988: Review all custom domains with unusual rDNS entries to RhinosF1.
Wed, Jul 29, 21:17 · SSL
Southparkfan created T5988: Review all custom domains with unusual rDNS entries.
Wed, Jul 29, 21:12 · SSL
Southparkfan committed rPUPC7b684cd7dbcc: Change output of check_reverse_dns for IPs without PTR record (authored by Southparkfan).
Change output of check_reverse_dns for IPs without PTR record
Wed, Jul 29, 20:57
Southparkfan committed rPUPCb48e7e321f54: Replace DNS check with customised script (authored by Southparkfan).
Replace DNS check with customised script
Wed, Jul 29, 20:38

Wed, Jul 15

Southparkfan committed rPUPCa448260b48ba: Fix spelling mistake (authored by Southparkfan).
Fix spelling mistake
Wed, Jul 15, 14:49
Southparkfan committed rPUPC90776b62dd8d: Add NTP check (authored by Southparkfan).
Add NTP check
Wed, Jul 15, 14:47

Tue, Jul 14

Southparkfan committed rDNS0f75e23ddcbc: Switch cp8 to cp9 (authored by Southparkfan).
Switch cp8 to cp9
Tue, Jul 14, 23:20
Southparkfan committed R9:7fba7e4ae220: Add cp9 (authored by Southparkfan).
Add cp9
Tue, Jul 14, 23:16
Southparkfan edited P220 puppet install script.
Tue, Jul 14, 22:10
Southparkfan committed rPUPC81b730a22372: Add cp9 (authored by Southparkfan).
Add cp9
Tue, Jul 14, 22:08
Southparkfan moved T5714: Redesign implementation of adding own TLS certificates and CAs from Backlog to Site Reliability Engineering on the Goal-2020-Jul-Dec board.
Tue, Jul 14, 20:09 · Goal-2020-Jul-Dec, Site Reliability Engineering
Southparkfan claimed T5044: Setup centralised logging for services.
Tue, Jul 14, 15:41 · Goal-2020-Jul-Dec, Goal-2020-Jan-Jun, Site Reliability Engineering

Mon, Jul 13

Southparkfan claimed T5712: Investigate why the AAA Certificate Services root is mandatory.

Setting to priority to low, since it seems like this is expected behavior.

Mon, Jul 13, 18:23 · Site Reliability Engineering
Southparkfan claimed T5714: Redesign implementation of adding own TLS certificates and CAs.
Mon, Jul 13, 18:20 · Goal-2020-Jul-Dec, Site Reliability Engineering
Southparkfan lowered the priority of T5433: Evaluate regular SRE meetings from Normal to Low.
Mon, Jul 13, 18:17 · Site Reliability Engineering
Southparkfan claimed T5713: Create automated Icinga check for validity of all TLS certificates on system.
Mon, Jul 13, 18:17 · Monitoring, Site Reliability Engineering
Southparkfan moved T5877: Revise MariaDB backup strategy from Backlog to Site Reliability Engineering on the Goal-2020-Jul-Dec board.
Mon, Jul 13, 18:06 · Site Reliability Engineering, Database, Goal-2020-Jul-Dec

Fri, Jul 10

Southparkfan moved T5621: Extension review: Lingo from Review Needed to Reviewed Accepted on the Extensions board.
Fri, Jul 10, 15:01 · Configuration, Extensions
Southparkfan added a comment to T5621: Extension review: Lingo.

Approved.

Fri, Jul 10, 15:01 · Configuration, Extensions
Southparkfan assigned T4789: Extension review: FlowThread to Reception123.

Don't we already have many security reviewed extensions providing these features?

Fri, Jul 10, 14:42 · Extensions
Southparkfan moved T4419: Extension Review: TreeAndMenu from Review Needed to Reviewed Accepted on the Extensions board.
Fri, Jul 10, 14:41 · Extensions, Configuration
Southparkfan added a comment to T4419: Extension Review: TreeAndMenu.

Extension seems fine now.

Fri, Jul 10, 14:40 · Extensions, Configuration

Jul 6 2020

Southparkfan added projects to T5877: Revise MariaDB backup strategy: Database, Site Reliability Engineering.
Jul 6 2020, 17:50 · Site Reliability Engineering, Database, Goal-2020-Jul-Dec
Southparkfan triaged T5877: Revise MariaDB backup strategy as Normal priority.
Jul 6 2020, 17:31 · Site Reliability Engineering, Database, Goal-2020-Jul-Dec
Southparkfan moved T5537: Replace SaltStack with Cumin from Backlog to Site Reliability Engineering on the Goal-2020-Jul-Dec board.
Jul 6 2020, 16:48 · Goal-2020-Jul-Dec, Site Reliability Engineering
Southparkfan renamed T5537: Replace SaltStack with Cumin from Migrate to cumin to Replace SaltStack with Cumin.
Jul 6 2020, 16:43 · Goal-2020-Jul-Dec, Site Reliability Engineering
Southparkfan reopened T5537: Replace SaltStack with Cumin, a subtask of T5543: Reconfigure SaltStack or replace it with another tool, as Open.
Jul 6 2020, 16:43 · Security, Site Reliability Engineering
Southparkfan reopened T5537: Replace SaltStack with Cumin as "Open".
Jul 6 2020, 16:43 · Goal-2020-Jul-Dec, Site Reliability Engineering
Southparkfan added a project to T5537: Replace SaltStack with Cumin: Goal-2020-Jul-Dec.

Per T5543#114782. We're now using salt-ssh.

Jul 6 2020, 16:40 · Goal-2020-Jul-Dec, Site Reliability Engineering
Southparkfan closed T5543: Reconfigure SaltStack or replace it with another tool as Invalid.

In favor of T5537

Jul 6 2020, 16:39 · Security, Site Reliability Engineering
Southparkfan moved T5543: Reconfigure SaltStack or replace it with another tool from Backlog to Site Reliability Engineering on the Goal-2020-Jul-Dec board.
Jul 6 2020, 16:38 · Security, Site Reliability Engineering
Southparkfan moved T5105: Investigate and Implement basic Machine Learning concepts for automatic wiki creation from Backlog to Miraheze Extensions on the Goal-2020-Jul-Dec board.
Jul 6 2020, 16:38 · Goal-2020-Jul-Dec, Amanda Catherine, Goal-2020-Jan-Jun, CreateWiki
Southparkfan moved T5044: Setup centralised logging for services from Backlog to Site Reliability Engineering on the Goal-2020-Jul-Dec board.
Jul 6 2020, 16:38 · Goal-2020-Jul-Dec, Goal-2020-Jan-Jun, Site Reliability Engineering
Southparkfan moved T4016: Encrypt all traffic inside Miraheze Cluster from Backlog to Site Reliability Engineering on the Goal-2020-Jul-Dec board.
Jul 6 2020, 16:38 · Goal-2020-Jul-Dec, Goal-2019-Jul-Dec, Goal-2020-Jan-Jun, Site Reliability Engineering
Southparkfan moved T4017: Reconfigure TLS settings inside MariaDB from Backlog to Site Reliability Engineering on the Goal-2020-Jul-Dec board.
Jul 6 2020, 16:38 · Goal-2020-Jul-Dec, Goal-2019-Jul-Dec, Goal-2020-Jan-Jun, Site Reliability Engineering
Southparkfan moved T4019: Encrypt Redis traffic from Backlog to Site Reliability Engineering on the Goal-2020-Jul-Dec board.
Jul 6 2020, 16:38 · Goal-2020-Jul-Dec, Goal-2019-Jul-Dec, Goal-2020-Jan-Jun, Site Reliability Engineering
Southparkfan moved T5045: Setup LDAP and hook it into mail from Backlog to Site Reliability Engineering on the Goal-2020-Jul-Dec board.
Jul 6 2020, 16:38 · Goal-2020-Jul-Dec, Mail, Goal-2020-Jan-Jun, Site Reliability Engineering

Jul 1 2020

Southparkfan removed a member for CreateWiki: Southparkfan.
Jul 1 2020, 22:01
Southparkfan removed a member for Configuration: Southparkfan.
Jul 1 2020, 22:01
Southparkfan removed a member for DNS: Southparkfan.
Jul 1 2020, 22:01
Southparkfan removed a member for Services: Southparkfan.
Jul 1 2020, 22:01
Southparkfan edited projects for T4005: Execute external commands on MediaWiki servers inside sandboxes, added: Security; removed acl*security.
Jul 1 2020, 21:58 · Security, Goal-2020-Jul-Dec, Site Reliability Engineering, MediaWiki
Southparkfan edited projects for T5735: Audit user rights blacklist, added: Security; removed acl*security.
Jul 1 2020, 21:58 · Security, Configuration
Southparkfan edited projects for T5543: Reconfigure SaltStack or replace it with another tool, added: Security; removed acl*security.
Jul 1 2020, 21:56 · Security, Site Reliability Engineering
Southparkfan edited Description on Security.
Jul 1 2020, 21:55
Southparkfan set the image for Security to F1213614: fa-bug-red.png.
Jul 1 2020, 21:51
Southparkfan added a comment to T5624: Create responsible disclosure policy.

Would like to get this done in Q3 or Q4.

Jul 1 2020, 21:50 · Security, Site Reliability Engineering
Southparkfan raised the priority of T5624: Create responsible disclosure policy from Low to Normal.
Jul 1 2020, 21:47 · Security, Site Reliability Engineering
Southparkfan created Security.
Jul 1 2020, 21:47
Southparkfan edited Description on acl*security.
Jul 1 2020, 21:44
Southparkfan removed a member for acl*security: Owen.
Jul 1 2020, 21:43
Southparkfan removed a member for acl*security: Void.
Jul 1 2020, 21:43
Southparkfan renamed acl*security from Security to acl*security.
Jul 1 2020, 21:41

Jun 28 2020

Southparkfan added a comment to T4019: Encrypt Redis traffic.

Perhaps not the most realistic goal.

Jun 28 2020, 22:24 · Goal-2020-Jul-Dec, Goal-2019-Jul-Dec, Goal-2020-Jan-Jun, Site Reliability Engineering
Southparkfan added a project to T4017: Reconfigure TLS settings inside MariaDB: Goal-2020-Jul-Dec.
Jun 28 2020, 22:24 · Goal-2020-Jul-Dec, Goal-2019-Jul-Dec, Goal-2020-Jan-Jun, Site Reliability Engineering
Southparkfan reassigned T5543: Reconfigure SaltStack or replace it with another tool from Southparkfan to Paladox.

@Paladox Let's replace Salt with Cumin. Not necessarily because we can't secure Salt (as long as we don't open the ports to the internet anymore, we're fine), but since Cumin offers functionality we can benefit from. Goal for Q3/Q4?

Jun 28 2020, 14:57 · Security, Site Reliability Engineering
Southparkfan closed T5691: Renew miraheze.org domain as Resolved.
Jun 28 2020, 14:50 · Site Reliability Engineering

Jun 22 2020

Southparkfan raised the priority of T5691: Renew miraheze.org domain from Normal to High.
Jun 22 2020, 20:12 · Site Reliability Engineering
Southparkfan reassigned T5782: [Access Request] RhinosF1 for Mediawiki-Admins from Southparkfan to Reception123.

Fine with me.

Jun 22 2020, 19:55 · Site Reliability Engineering

Jun 17 2020

Southparkfan reassigned T5762: cp7 load check flapping from Southparkfan to RhinosF1.

I have moved the SHM log to RAM, so we should have reduced the I/O on most of the cache proxies. Is the result satisfactory?

Jun 17 2020, 17:27 · Site Reliability Engineering

Jun 16 2020

Southparkfan committed rDNSed69004f06a4: Repool cp[78] (authored by Southparkfan).
Repool cp[78]
Jun 16 2020, 22:38
Southparkfan committed rPUPC922785c167b0: Merge branch 'master' of github.com:miraheze/puppet (authored by Southparkfan).
Merge branch 'master' of github.com:miraheze/puppet
Jun 16 2020, 22:34
Southparkfan committed rPUPCe88ebe2d0d6a: Deploy new varnish cache system on cp[78] (authored by Southparkfan).
Deploy new varnish cache system on cp[78]
Jun 16 2020, 22:34
Southparkfan added a reverting change for rDNSc72e9bce0594: Revert "Add cp6, depool cp[78] for maintenance": rDNS836656ed8e56: Revert "Revert "Add cp6, depool cp[78] for maintenance"".
Jun 16 2020, 22:20
Southparkfan committed rDNS836656ed8e56: Revert "Revert "Add cp6, depool cp[78] for maintenance"" (authored by Southparkfan).
Revert "Revert "Add cp6, depool cp[78] for maintenance""
Jun 16 2020, 22:20
Southparkfan added a reverting change for rDNS19e138c166f1: Add cp6, depool cp[78] for maintenance: rDNSc72e9bce0594: Revert "Add cp6, depool cp[78] for maintenance".
Jun 16 2020, 21:57
Southparkfan committed rDNSc72e9bce0594: Revert "Add cp6, depool cp[78] for maintenance" (authored by Southparkfan).
Revert "Add cp6, depool cp[78] for maintenance"
Jun 16 2020, 21:57
Southparkfan committed rDNS19e138c166f1: Add cp6, depool cp[78] for maintenance (authored by Southparkfan).
Add cp6, depool cp[78] for maintenance
Jun 16 2020, 21:52
Southparkfan committed rPUPCfaf7399df28a: Put varnish shm log in RAM (authored by Southparkfan).
Put varnish shm log in RAM
Jun 16 2020, 21:45
Southparkfan claimed T5762: cp7 load check flapping.
Jun 16 2020, 20:56 · Site Reliability Engineering

Jun 9 2020

Southparkfan committed R9:4242ce3d94c1: Revert "Revert "dbt1 -> db8"" (authored by Southparkfan).
Revert "Revert "dbt1 -> db8""
Jun 9 2020, 15:02
Southparkfan added a reverting change for R9:3bc374d10e34: Revert "dbt1 -> db8": R9:4242ce3d94c1: Revert "Revert "dbt1 -> db8"".
Jun 9 2020, 15:02
Southparkfan added a reverting change for R9:7a80def22c2a: dbt1 -> db8: R9:3bc374d10e34: Revert "dbt1 -> db8".
Jun 9 2020, 14:59
Southparkfan committed R9:3bc374d10e34: Revert "dbt1 -> db8" (authored by Southparkfan).
Revert "dbt1 -> db8"
Jun 9 2020, 14:59
Southparkfan reassigned T5723: Findings of a Security Researcher on Discord from Southparkfan to Reception123.
Jun 9 2020, 14:23 · Amanda Catherine, acl*security
Southparkfan added a comment to T5724: Error 503 across Miraheze.

Status updates will be given via Twitter and the Discord announcements channel.

Jun 9 2020, 14:16 · Site Reliability Engineering, Amanda Catherine
Southparkfan added a comment to T5643: kkuttuwiki has enabled cloudflare workers and removed CSP headers.

@Paladox can this task be made public?

Jun 9 2020, 11:32 · Upstream, Site Reliability Engineering, acl*security

Jun 7 2020

Southparkfan added a project to T5714: Redesign implementation of adding own TLS certificates and CAs: Site Reliability Engineering.
Jun 7 2020, 18:54 · Goal-2020-Jul-Dec, Site Reliability Engineering
Southparkfan created T5714: Redesign implementation of adding own TLS certificates and CAs.
Jun 7 2020, 18:54 · Goal-2020-Jul-Dec, Site Reliability Engineering
Southparkfan created T5713: Create automated Icinga check for validity of all TLS certificates on system.
Jun 7 2020, 18:50 · Monitoring, Site Reliability Engineering
Southparkfan added a comment to T4017: Reconfigure TLS settings inside MariaDB.

For testing, @Paladox has enabled AES-NI on the MediaWiki servers and test2.

Jun 7 2020, 18:47 · Goal-2020-Jul-Dec, Goal-2019-Jul-Dec, Goal-2020-Jan-Jun, Site Reliability Engineering
Southparkfan created T5712: Investigate why the AAA Certificate Services root is mandatory.
Jun 7 2020, 18:46 · Site Reliability Engineering
Southparkfan created T5711: Wikis are partially created if MatomoAnalytics::addSite fails.
Jun 7 2020, 18:44 · MatomoAnalytics

Jun 6 2020

Southparkfan added a comment to T5614: Whitelist imgbox.com and googleusercontent.com so images can be shown.

No issues with those URLs.

Jun 6 2020, 20:30 · Puppet, Site Reliability Engineering

Jun 1 2020

Southparkfan added a comment to T5676: Mysql command line fail after recent cert change.

@Paladox I'll review soon. Thanks.

Jun 1 2020, 18:28 · Site Reliability Engineering
Southparkfan lowered the priority of T5676: Mysql command line fail after recent cert change from Unbreak Now! to Normal.

If this task only covers the ability to log in locally, sudo -i mysql --ssl=0 will work.

Jun 1 2020, 09:16 · Site Reliability Engineering

May 30 2020

AmandaCath awarded T5675: AddTrust External Root Certificate Expired a Dislike token.
May 30 2020, 14:22 · Site Reliability Engineering, Amanda Catherine

May 22 2020

Southparkfan changed the visibility for T5536: unattended-upgrades does not monitor third party repos.
May 22 2020, 20:36 · Site Reliability Engineering, acl*security
Southparkfan closed T5536: unattended-upgrades does not monitor third party repos as Resolved.

See T5542#109983 and https://github.com/miraheze/puppet/commit/a6a11fa6d6e118253cef822815daaba9e9d8c276.

May 22 2020, 20:36 · Site Reliability Engineering, acl*security