Page MenuHomeDevCentral
Feed Advanced Search

Advanced Search
Use Results
Hide Query

Nov 6 2016

dereckson moved T853: Deploy a Let's encrypt certificate to the Mumble server from In progress to Backlog on the User-Dereckson board.
Nov 6 2016, 19:02 · good-first-issue, Mumble, security, Servers

Nov 3 2016

dereckson moved T853: Deploy a Let's encrypt certificate to the Mumble server from Needs Review / Blocked / Waiting to In progress on the User-Dereckson board.
Nov 3 2016, 03:00 · good-first-issue, Mumble, security, Servers
dereckson added a comment to T853: Deploy a Let's encrypt certificate to the Mumble server.

Currently, configuration file contains the following instructions:

Nov 3 2016, 02:53 · good-first-issue, Mumble, security, Servers
dereckson added a comment to T853: Deploy a Let's encrypt certificate to the Mumble server.
In T853#9085, @dereckson wrote:

We need a script to automate the process.

Nov 3 2016, 01:40 · good-first-issue, Mumble, security, Servers

Oct 11 2016

Sandlayth closed T1023: Upgrade Docker images to PHP 5.6.26 as Resolved by committing rDPHPFPMb8aa90c6ee46: Upgrade to PHP 5.6.26.
Oct 11 2016, 12:30 · security, Docker images

Oct 10 2016

Sandlayth added a revision to T1023: Upgrade Docker images to PHP 5.6.26: D684: Upgrade to PHP 5.6.26.
Oct 10 2016, 21:08 · security, Docker images
dereckson raised the priority of T1023: Upgrade Docker images to PHP 5.6.26 from Normal to High.

5.6.26 is a security release according the changelog.

Oct 10 2016, 21:06 · security, Docker images

Sep 12 2016

dereckson closed T1016: MySQL external support on Ysul as Resolved.
Sep 12 2016, 04:26 · security, Servers, User-Dereckson
dereckson created T1016: MySQL external support on Ysul.
Sep 12 2016, 01:05 · security, Servers, User-Dereckson

Aug 23 2016

dereckson added a comment to T948: [Roadmap] Run periodically tests/prod-environment-behaves-correctly and report results.

Step 4 done for B to D, but currently every failure will be reported. And we don't exploit in the artefact log what's failing.

Aug 23 2016, 20:53 · security, Jenkins, User-Dereckson, Servers
dereckson updated the task description for T948: [Roadmap] Run periodically tests/prod-environment-behaves-correctly and report results.
Aug 23 2016, 20:53 · security, Jenkins, User-Dereckson, Servers
dereckson closed T953: Handle Jenkins notification plugin payloads, a subtask of T948: [Roadmap] Run periodically tests/prod-environment-behaves-correctly and report results, as Resolved.
Aug 23 2016, 20:49 · security, Jenkins, User-Dereckson, Servers

Aug 20 2016

dereckson moved T853: Deploy a Let's encrypt certificate to the Mumble server from Backlog to Needs Review / Blocked / Waiting on the User-Dereckson board.
Aug 20 2016, 18:54 · good-first-issue, Mumble, security, Servers

Aug 15 2016

dereckson added a revision to T948: [Roadmap] Run periodically tests/prod-environment-behaves-correctly and report results: D613: Publish JUnit XML report.
Aug 15 2016, 21:47 · security, Jenkins, User-Dereckson, Servers

Aug 14 2016

dereckson closed T783: Run an extra SSH server on Ysul for OTP/Yubikey as Resolved.
Aug 14 2016, 00:56 · security, Servers
dereckson removed a project from T783: Run an extra SSH server on Ysul for OTP/Yubikey: Eglide.
Aug 14 2016, 00:56 · security, Servers
dereckson closed T866: Switch Uncle Slovius jail to IPv6 as Wontfix.

Superseded by T846.

Aug 14 2016, 00:51 · Servers, security
dereckson closed T860: Upgrade OpenSSL as Resolved.
Aug 14 2016, 00:47 · security, Servers

Aug 10 2016

dereckson updated the task description for T948: [Roadmap] Run periodically tests/prod-environment-behaves-correctly and report results.
Aug 10 2016, 18:12 · security, Jenkins, User-Dereckson, Servers
dereckson closed T972: Fix owncloud nginx configuration to allow Let's encrypt acme validation as Resolved.
Aug 10 2016, 16:13 · Servers, security
dereckson closed T972: Fix owncloud nginx configuration to allow Let's encrypt acme validation, a subtask of T822: SSL certificates: migrate from Startcom to Let's encrypt, as Resolved.
Aug 10 2016, 16:13 · Servers, security
dereckson added a comment to T972: Fix owncloud nginx configuration to allow Let's encrypt acme validation.

No issue ownCloud related: the Let's encrypt location block was in 80 server block, not in 443 one.

Aug 10 2016, 16:13 · Servers, security
dereckson closed T971: Fix nginx configuration for commons.nasqueron.org to allow Let's encrypt as Resolved.

A deny rule blocked all the URL starting by a . to protect .htpasswd files.

Aug 10 2016, 16:12 · security, Servers
dereckson closed T971: Fix nginx configuration for commons.nasqueron.org to allow Let's encrypt, a subtask of T654: Apply Let's encrypt SSL certificates for *.nasqueron.org, as Resolved.
Aug 10 2016, 16:12 · security, Servers
dereckson created T972: Fix owncloud nginx configuration to allow Let's encrypt acme validation.
Aug 10 2016, 15:45 · Servers, security
dereckson added a subtask for T822: SSL certificates: migrate from Startcom to Let's encrypt: T654: Apply Let's encrypt SSL certificates for *.nasqueron.org.
Aug 10 2016, 15:43 · Servers, security
dereckson added a parent task for T654: Apply Let's encrypt SSL certificates for *.nasqueron.org: T822: SSL certificates: migrate from Startcom to Let's encrypt.
Aug 10 2016, 15:43 · security, Servers
dereckson created T971: Fix nginx configuration for commons.nasqueron.org to allow Let's encrypt.
Aug 10 2016, 15:43 · security, Servers
dereckson moved T948: [Roadmap] Run periodically tests/prod-environment-behaves-correctly and report results from In progress to Needs Review / Blocked / Waiting on the User-Dereckson board.
Aug 10 2016, 13:57 · security, Jenkins, User-Dereckson, Servers

Aug 4 2016

dereckson added a project to T776: Determine domain name for Eglide: Eglide.
Aug 4 2016, 01:51 · Eglide, discussion, security, IRC, Servers
dereckson added a project to T783: Run an extra SSH server on Ysul for OTP/Yubikey: Eglide.
Aug 4 2016, 01:51 · security, Servers

Aug 1 2016

dereckson updated subscribers of T822: SSL certificates: migrate from Startcom to Let's encrypt.

@amj do you remmeber anything still do do here?

Aug 1 2016, 16:37 · Servers, security

Jul 31 2016

dereckson changed the visibility for T962: Trying to get property of non-object in PhabricatorStory::getRepositoryPHID.
Jul 31 2016, 23:11 · Notifications center
dereckson created T962: Trying to get property of non-object in PhabricatorStory::getRepositoryPHID.
Jul 31 2016, 23:10 · Notifications center

Jul 29 2016

dereckson added a comment to T948: [Roadmap] Run periodically tests/prod-environment-behaves-correctly and report results.

3A alternative: a cron job running the command for us and generating a report published somewhere Jenkins has access to.

Jul 29 2016, 18:49 · security, Jenkins, User-Dereckson, Servers
dereckson closed T960: Create qa account on Ysul for public_html testing, a subtask of T948: [Roadmap] Run periodically tests/prod-environment-behaves-correctly and report results, as Resolved.
Jul 29 2016, 17:43 · security, Jenkins, User-Dereckson, Servers
dereckson updated the task description for T948: [Roadmap] Run periodically tests/prod-environment-behaves-correctly and report results.
Jul 29 2016, 13:41 · security, Jenkins, User-Dereckson, Servers
dereckson added a project to T948: [Roadmap] Run periodically tests/prod-environment-behaves-correctly and report results: security.
Jul 29 2016, 13:39 · security, Jenkins, User-Dereckson, Servers

Jul 28 2016

dereckson edited projects for T930: Secrets to migrate from DevCentral to Vault, added: Vault; removed Continous integration and delivery.
Jul 28 2016, 20:12 · User-Dereckson, Vault, Nasqueron Operations Squad, security
dereckson moved T930: Secrets to migrate from DevCentral to Vault from Backlog to Vault on the Continous integration and delivery board.
Jul 28 2016, 20:11 · User-Dereckson, Vault, Nasqueron Operations Squad, security

Jul 27 2016

dereckson closed T559: SSL certificate for docker.nasqueron.org, a subtask of T654: Apply Let's encrypt SSL certificates for *.nasqueron.org, as Resolved.
Jul 27 2016, 16:44 · security, Servers
dereckson added a subtask for T654: Apply Let's encrypt SSL certificates for *.nasqueron.org: T559: SSL certificate for docker.nasqueron.org.
Jul 27 2016, 16:43 · security, Servers

Jul 26 2016

dereckson closed T945: Upgrade Docker images to PHP 5.6.24 as Resolved.
Jul 26 2016, 04:11 · Docker images, security

Jul 25 2016

dereckson claimed T945: Upgrade Docker images to PHP 5.6.24.
Jul 25 2016, 17:22 · Docker images, security
dereckson added a revision to T945: Upgrade Docker images to PHP 5.6.24: D574: Upgrade PHP to 5.6.24.
Jul 25 2016, 17:21 · Docker images, security
dereckson added a revision to T945: Upgrade Docker images to PHP 5.6.24: D573: Upgrade PHP to 5.6.24.
Jul 25 2016, 17:21 · Docker images, security
dereckson created T945: Upgrade Docker images to PHP 5.6.24.
Jul 25 2016, 17:14 · Docker images, security

Jul 24 2016

dereckson closed T933: Upgrade Apache on Ysul as Resolved.
Jul 24 2016, 20:01 · security, Servers
dereckson added a comment to T933: Upgrade Apache on Ysul.

Without PHP allowance patch for SuEXEC
/var/log/messages.2.bz2:Jul 22 20:29:35 ysul pkg-static: apache24-2.4.20_1 deinstalled
/var/log/messages.2.bz2:Jul 22 20:29:57 ysul pkg-static: apache24-2.4.23_1 installed

Jul 24 2016, 20:01 · security, Servers

Jul 22 2016

dereckson added a parent task for T930: Secrets to migrate from DevCentral to Vault: T928: Deploy Vault to store credentials.
Jul 22 2016, 03:02 · User-Dereckson, Vault, Nasqueron Operations Squad, security
dereckson triaged T933: Upgrade Apache on Ysul as High priority.
Jul 22 2016, 03:01 · security, Servers
dereckson added a subtask for T822: SSL certificates: migrate from Startcom to Let's encrypt: T931: Let's encrypt certificate for stages.wolfplex.be.
Jul 22 2016, 02:59 · Servers, security
dereckson moved T822: SSL certificates: migrate from Startcom to Let's encrypt from Backlog to Pending review on the Servers board.
Jul 22 2016, 02:58 · Servers, security

Jul 21 2016

dereckson created T930: Secrets to migrate from DevCentral to Vault.
Jul 21 2016, 15:55 · User-Dereckson, Vault, Nasqueron Operations Squad, security

Jul 10 2016

dereckson added a project to T853: Deploy a Let's encrypt certificate to the Mumble server: User-Dereckson.
Jul 10 2016, 23:22 · good-first-issue, Mumble, security, Servers

Jul 6 2016

dereckson closed D464: [Eglide] SSH key change for kazuya by committing rOPS9d5cbec5d4ad: [Eglide] SSH key change for kazuya.
Jul 6 2016, 18:58 · security, Salt
dereckson accepted D464: [Eglide] SSH key change for kazuya.
Jul 6 2016, 18:55 · security, Salt
dereckson retitled D464: [Eglide] SSH key change for kazuya from SSH key change for kazuya to [Eglide] SSH key change for kazuya.
Jul 6 2016, 18:49 · security, Salt

Jul 2 2016

dereckson closed D451: Subresource Integrity by committing rGROVEdafb55ce332b: Subresource Integrity.
Jul 2 2016, 15:34 · security
dereckson accepted D451: Subresource Integrity.

Hashes generated through https://www.srihash.org/ managed by Mozilla, and tested under Chrome 51.

Jul 2 2016, 15:33 · security
dereckson added a project to D451: Subresource Integrity: security.
Jul 2 2016, 15:32 · security

Jun 26 2016

dereckson updated the task description for T878: Salt Auth Grove passwords.
Jun 26 2016, 22:07 · security, User-Dereckson, Auth Grove
dereckson closed T878: Salt Auth Grove passwords as Invalid.

That's already the case, see hashing in the Laravel documentation.

Jun 26 2016, 22:06 · security, User-Dereckson, Auth Grove
dereckson moved T878: Salt Auth Grove passwords from Backlog to Next on the User-Dereckson board.
Jun 26 2016, 18:36 · security, User-Dereckson, Auth Grove
dereckson closed T840: Upgrade to Laravel 5.2, a subtask of T878: Salt Auth Grove passwords, as Resolved.
Jun 26 2016, 18:22 · security, User-Dereckson, Auth Grove
dereckson added a parent task for T878: Salt Auth Grove passwords: T271: Deploy Auth Grove to login.nasqueron.org.
Jun 26 2016, 15:44 · security, User-Dereckson, Auth Grove
dereckson added a comment to T878: Salt Auth Grove passwords.

As auth code is currently refactored to be sync'ed with Laravel 5.1 → 5.2 change, I'd suggest to avoid currently to refactor code independently.

Jun 26 2016, 14:41 · security, User-Dereckson, Auth Grove
dereckson added a subtask for T878: Salt Auth Grove passwords: T840: Upgrade to Laravel 5.2.
Jun 26 2016, 14:40 · security, User-Dereckson, Auth Grove
dereckson created T878: Salt Auth Grove passwords.
Jun 26 2016, 14:38 · security, User-Dereckson, Auth Grove

Jun 18 2016

dereckson moved T828: Implement local storage features from New trackers to Dev on the tracker board.
Jun 18 2016, 12:53 · tracker, security, Auth Grove

Jun 15 2016

dereckson added a comment to T866: Switch Uncle Slovius jail to IPv6.

I'm decreasing the TTL of uncle-slovius CNAME DNS entry, so we'll be able to switch > 2016-06-16 4:00.

Jun 15 2016, 01:45 · Servers, security
dereckson added a comment to T866: Switch Uncle Slovius jail to IPv6.

Dedicated IPv6 will be 2001:470:1f13:9e1:0:c0ff:ee:6.

Jun 15 2016, 01:42 · Servers, security
dereckson created T866: Switch Uncle Slovius jail to IPv6.
Jun 15 2016, 01:40 · Servers, security

Jun 12 2016

dereckson updated the task description for T860: Upgrade OpenSSL.
Jun 12 2016, 21:14 · security, Servers
dereckson triaged T860: Upgrade OpenSSL as High priority.
Jun 12 2016, 21:14 · security, Servers

Jun 9 2016

dereckson closed T854: Write a Let's encrypt web server configuration checker, a subtask of T654: Apply Let's encrypt SSL certificates for *.nasqueron.org, as Resolved.
Jun 9 2016, 10:46 · security, Servers
dereckson closed T854: Write a Let's encrypt web server configuration checker as Resolved by committing rOPS0aa61ca254f9: Let's encrypt web server configuration checker.
Jun 9 2016, 10:46 · security, Servers
dereckson added a comment to T654: Apply Let's encrypt SSL certificates for *.nasqueron.org.

Fixed for Agora.

Jun 9 2016, 02:22 · security, Servers
dereckson added a comment to T654: Apply Let's encrypt SSL certificates for *.nasqueron.org.

agora.nasqueron.org still use a StartSSL (has been expired for 4 days)

Jun 9 2016, 02:17 · security, Servers

Jun 5 2016

dereckson added a comment to T654: Apply Let's encrypt SSL certificates for *.nasqueron.org.

Testing D396 script, three domains have issues.

Jun 5 2016, 22:22 · security, Servers
dereckson added a revision to T854: Write a Let's encrypt web server configuration checker: D396: Let's encrypt web server configuration checker.
Jun 5 2016, 22:17 · security, Servers
dereckson created T854: Write a Let's encrypt web server configuration checker.
Jun 5 2016, 21:04 · security, Servers

Jun 4 2016

dereckson lowered the priority of T853: Deploy a Let's encrypt certificate to the Mumble server from High to Normal.

We need a script to automate the process.

Jun 4 2016, 14:43 · good-first-issue, Mumble, security, Servers
dereckson added a comment to T853: Deploy a Let's encrypt certificate to the Mumble server.

Done manually.

Jun 4 2016, 14:42 · good-first-issue, Mumble, security, Servers
dereckson moved T853: Deploy a Let's encrypt certificate to the Mumble server from Backlog to Configuration requests on the Mumble board.
Jun 4 2016, 02:11 · good-first-issue, Mumble, security, Servers
dereckson created T853: Deploy a Let's encrypt certificate to the Mumble server.
Jun 4 2016, 02:11 · good-first-issue, Mumble, security, Servers
dereckson updated subscribers of T654: Apply Let's encrypt SSL certificates for *.nasqueron.org.

Following work this week by @Sandlayth (Dwellers) and me (Ysul), all *.nasqueron.org sites are migrated to Let's encrypt certificates.

Jun 4 2016, 02:07 · security, Servers
dereckson closed T849: https://trustspace.nasqueron.org/css/trustspace.css serves http:// content as Resolved by committing rTSWWWdedcc4e0e4a2: Serve https links.
Jun 4 2016, 00:58 · TrustSpace, security, Servers
dereckson closed T849: https://trustspace.nasqueron.org/css/trustspace.css serves http:// content, a subtask of T654: Apply Let's encrypt SSL certificates for *.nasqueron.org, as Resolved.
Jun 4 2016, 00:58 · security, Servers

Jun 3 2016

dereckson added a revision to T849: https://trustspace.nasqueron.org/css/trustspace.css serves http:// content: D388: Serve https links.
Jun 3 2016, 21:52 · TrustSpace, security, Servers
dereckson created T849: https://trustspace.nasqueron.org/css/trustspace.css serves http:// content.
Jun 3 2016, 21:30 · TrustSpace, security, Servers
dereckson closed T848: hotglue.nasqueron.org serves http:// content, a subtask of T654: Apply Let's encrypt SSL certificates for *.nasqueron.org, as Resolved.
Jun 3 2016, 18:02 · security, Servers
dereckson added a comment to T214: Software security issues on Ysul.

So for reference, we can now customize SuEXEC settings.

Jun 3 2016, 16:58 · security, Servers

Jun 2 2016

dereckson closed T492: When using a front-end server with SSL termination, back-end serves http:// links. as Resolved by committing rGROVE0f370cd5307d: Allow to serve https:// links behind a front-end server with SSL termination.
Jun 2 2016, 04:59 · security, Auth Grove

May 31 2016

dereckson added a parent task for T492: When using a front-end server with SSL termination, back-end serves http:// links.: T271: Deploy Auth Grove to login.nasqueron.org.
May 31 2016, 18:52 · security, Auth Grove

May 21 2016

dereckson closed T656: Ensure every URL is HTTPS or protocol-relative as Resolved.
May 21 2016, 14:32 · security, bioty.co hosting
dereckson moved T656: Ensure every URL is HTTPS or protocol-relative from Backlog to Done on the bioty.co hosting board.
May 21 2016, 14:32 · security, bioty.co hosting

May 20 2016

dereckson updated the task description for T828: Implement local storage features.
May 20 2016, 16:11 · tracker, security, Auth Grove
dereckson updated the task description for T828: Implement local storage features.
May 20 2016, 16:06 · tracker, security, Auth Grove
dereckson created T828: Implement local storage features.
May 20 2016, 16:03 · tracker, security, Auth Grove
First
Prev
Next
Nasqueron DevCentral · If it had been much bigger the moon would have had a core of ice. · Powered by Phabricator