Page MenuHomeDevCentral
Feed Advanced Search

Advanced Search
Use Results
Hide Query

Mar 2 2023

dereckson closed T1776: Avoid Salt to print diff against files with credentials as Resolved by committing rOPSeda2176a0476: Don't print diff changes when credentials can be exposed.
Mar 2 2023, 17:28 · security, Salt
dereckson added a revision to T1776: Avoid Salt to print diff against files with credentials: D2823: Don't print diff changes when credentials can be exposed.
Mar 2 2023, 17:28 · security, Salt
dereckson created T1776: Avoid Salt to print diff against files with credentials.
Mar 2 2023, 17:18 · security, Salt
dereckson triaged T1775: Provision notifications CLI configuration file as Normal priority.
Mar 2 2023, 17:17 · Salt, security, Notifications center

Feb 16 2023

dereckson added a revision to T930: Secrets to migrate from DevCentral to Vault: D2800: Switch credentials from Zemke-Rhyme to Vault.
Feb 16 2023, 21:27 · User-Dereckson, Vault, Nasqueron Operations Squad, security
dereckson added a revision to T1425: Provision secrets through Salt: D2800: Switch credentials from Zemke-Rhyme to Vault.
Feb 16 2023, 21:27 · security, Nasqueron Operations Squad, Vault, Salt

Feb 9 2023

dereckson closed T1733: Store credentials in Vault as Resolved.
Feb 9 2023, 22:25 · security, Vault, Dæghrefn
dereckson updated subscribers of T1770: Drop credentials from MySQL containers' environment.
Feb 9 2023, 21:56 · Operations sprints (Ignite Alkane Propulsion), Nasqueron Docker deployment squad, Salt, security
dereckson moved T1770: Drop credentials from MySQL containers' environment from Backlog to Servers config on the Salt board.
Feb 9 2023, 21:55 · Operations sprints (Ignite Alkane Propulsion), Nasqueron Docker deployment squad, Salt, security
dereckson triaged T1770: Drop credentials from MySQL containers' environment as Normal priority.
Feb 9 2023, 21:55 · Operations sprints (Ignite Alkane Propulsion), Nasqueron Docker deployment squad, Salt, security

Feb 7 2023

DorianWinty moved T1484: Upgrade Laravel framework from Restricted Project Column to Restricted Project Column on the Restricted Project board.
Feb 7 2023, 21:09 · Restricted Project, security, Technical debt, Notifications center

Feb 6 2023

dereckson moved T1765: SELinux context is missing for /etc/nginx configuration files from Backlog to Servers config on the Salt board.
Feb 6 2023, 20:42 · Operations sprints (Ignite Alkane Propulsion), Salt, security, Nasqueron Docker deployment squad, Servers
dereckson triaged T1765: SELinux context is missing for /etc/nginx configuration files as Normal priority.
Feb 6 2023, 20:41 · Operations sprints (Ignite Alkane Propulsion), Salt, security, Nasqueron Docker deployment squad, Servers
dereckson added a comment to T1627: Supersede equatower.nasqueron.org by docker-002.nasqueron.org.
In T1627#23666, @dereckson wrote:

Perhaps replace references here too: https://code.nasqueron.org/?q=equatower&i=nope&literal=nope&files=&excludeFiles=&repos=

Feb 6 2023, 20:38 · Operations sprints (Consolidate them all), Servers, Salt, security
dereckson triaged T1763: Detect if a new VMWARE ESXi patch version is available as High priority.
Feb 6 2023, 20:28 · User-ieli, Monitoring and reporting, security

Sep 25 2022

dereckson added a revision to T1484: Upgrade Laravel framework: D2716: Update to Laravel 9.
Sep 25 2022, 07:32 · Restricted Project, security, Technical debt, Notifications center

Sep 23 2022

DorianWinty closed T1484: Upgrade Laravel framework as Resolved.

For now we are in Laravel 9

Sep 23 2022, 21:43 · Restricted Project, security, Technical debt, Notifications center
DorianWinty moved T1484: Upgrade Laravel framework from Restricted Project Column to Restricted Project Column on the Restricted Project board.
Sep 23 2022, 21:33 · Restricted Project, security, Technical debt, Notifications center

Sep 14 2022

DorianWinty moved T1484: Upgrade Laravel framework from Restricted Project Column to Restricted Project Column on the Restricted Project board.
Sep 14 2022, 17:31 · Restricted Project, security, Technical debt, Notifications center

Sep 13 2022

DorianWinty added a revision to T1484: Upgrade Laravel framework: D2710: Update dependencies.
Sep 13 2022, 17:35 · Restricted Project, security, Technical debt, Notifications center
DorianWinty added a revision to T1484: Upgrade Laravel framework: D2709: Update dependencies.
Sep 13 2022, 14:01 · Restricted Project, security, Technical debt, Notifications center
DorianWinty moved T1484: Upgrade Laravel framework from Restricted Project Column to Restricted Project Column on the Restricted Project board.
Sep 13 2022, 10:45 · Restricted Project, security, Technical debt, Notifications center

Jun 25 2022

dereckson moved T1292: userlist.db is saved in 644 from Backlog to Darkbot bugs on the Odderon board.
Jun 25 2022, 01:04 · C, good-first-issue, security, Odderon
dereckson added a parent task for T1656: Convert daeghrefn. for Uspection use: T934: Documentation site.
Jun 25 2022, 01:03 · upsection, security, documentation, IRC, Dæghrefn
dereckson moved T1656: Convert daeghrefn. for Uspection use from Backlog to Documentation on the Dæghrefn board.
Jun 25 2022, 01:02 · upsection, security, documentation, IRC, Dæghrefn

Jun 5 2022

DorianWinty added a comment to T1484: Upgrade Laravel framework.

For now, Laravel 8 :

Jun 5 2022, 07:18 · Restricted Project, security, Technical debt, Notifications center

Jun 4 2022

DorianWinty added a project to T1484: Upgrade Laravel framework: Restricted Project.
Jun 4 2022, 21:26 · Restricted Project, security, Technical debt, Notifications center
dereckson updated the task description for T1484: Upgrade Laravel framework.
Jun 4 2022, 20:05 · Restricted Project, security, Technical debt, Notifications center
dereckson added a comment to T1484: Upgrade Laravel framework.

@DorianWinty Would be useful to apply https://laravel.com/docs/9.x/upgrade so we're really up to date.

Jun 4 2022, 20:04 · Restricted Project, security, Technical debt, Notifications center
dereckson assigned T1484: Upgrade Laravel framework to DorianWinty.
Jun 4 2022, 20:02 · Restricted Project, security, Technical debt, Notifications center

May 12 2022

dereckson added a revision to T1733: Store credentials in Vault: D2687: Configure ViperServ eggdrops to use Vault.
May 12 2022, 22:54 · security, Vault, Dæghrefn
dereckson added a revision to T1733: Store credentials in Vault: D2686: Fetch credentials from Vault.
May 12 2022, 22:22 · security, Vault, Dæghrefn
dereckson triaged T1733: Store credentials in Vault as Normal priority.
May 12 2022, 22:22 · security, Vault, Dæghrefn

May 8 2022

dereckson triaged T1732: Save PHP errors in a separate log than stdout/the nginx error one as High priority.
May 8 2022, 17:30 · security, Docker images, DevCentral

Apr 15 2022

dereckson added a comment to T1616: Build a bastion - load balancers - private instances network topology.

For Salt and Vault, we're already using the private network.

Apr 15 2022, 19:21 · security, Operations sprints (Consolidate them all)
dereckson closed T1619: Connect all baremetal servers to Drake network as Resolved.

We're done here :)

Apr 15 2022, 19:20 · Servers, Drake network, security, Operations sprints (Consolidate them all)
dereckson closed T1619: Connect all baremetal servers to Drake network, a subtask of T1702: Deploy Complector aka la source, as Resolved.
Apr 15 2022, 19:20 · Salt, Vault, security, Servers
dereckson closed T1619: Connect all baremetal servers to Drake network, a subtask of T1616: Build a bastion - load balancers - private instances network topology, as Resolved.
Apr 15 2022, 19:20 · security, Operations sprints (Consolidate them all)
dereckson updated the task description for T1619: Connect all baremetal servers to Drake network.
Apr 15 2022, 19:20 · Servers, Drake network, security, Operations sprints (Consolidate them all)
dereckson added a comment to T1702: Deploy Complector aka la source.

Vault is live and Salt deployments were successful to cloudhugger dwellers windriver ysul (and Complector itself).

Apr 15 2022, 19:19 · Salt, Vault, security, Servers
dereckson added a revision to T1616: Build a bastion - load balancers - private instances network topology: D2672: Prune salt-primary role on Ysul and WindRiver.
Apr 15 2022, 19:16 · security, Operations sprints (Consolidate them all)
dereckson added a revision to T1702: Deploy Complector aka la source: D2672: Prune salt-primary role on Ysul and WindRiver.
Apr 15 2022, 19:16 · Salt, Vault, security, Servers
dereckson added a revision to T1425: Provision secrets through Salt: D2671: Avoid a server to keep access to stale Vault policies.
Apr 15 2022, 19:11 · security, Nasqueron Operations Squad, Vault, Salt
dereckson added a revision to T1425: Provision secrets through Salt: D2669: Avoid to share credentials between dev and prod Docker engines.
Apr 15 2022, 17:53 · security, Nasqueron Operations Squad, Vault, Salt

Apr 12 2022

dereckson closed T648: Secure access to etcd as Wontfix.

Per T644.

Apr 12 2022, 22:18 · security, Nasqueron Docker deployment squad, Servers

Apr 3 2022

dereckson updated the task description for T930: Secrets to migrate from DevCentral to Vault.
Apr 3 2022, 19:49 · User-Dereckson, Vault, Nasqueron Operations Squad, security
dereckson added a revision to T1425: Provision secrets through Salt: D2649: Provide compatibility methods with Zemke-Rhyme for Vault.
Apr 3 2022, 18:59 · security, Nasqueron Operations Squad, Vault, Salt

Mar 29 2022

dereckson added a revision to T1702: Deploy Complector aka la source: D2624: Deploy Vault.
Mar 29 2022, 22:54 · Salt, Vault, security, Servers

Mar 26 2022

dereckson added a revision to T1702: Deploy Complector aka la source: D2639: Allow to recreate Vault configuration as DRP plan B.
Mar 26 2022, 15:19 · Salt, Vault, security, Servers
dereckson added a revision to T1425: Provision secrets through Salt: D2638: Deploy policies for Vault.
Mar 26 2022, 15:09 · security, Nasqueron Operations Squad, Vault, Salt

Mar 24 2022

dereckson moved T930: Secrets to migrate from DevCentral to Vault from Backlog to In progress on the User-Dereckson board.
Mar 24 2022, 00:50 · User-Dereckson, Vault, Nasqueron Operations Squad, security
dereckson added a project to T930: Secrets to migrate from DevCentral to Vault: User-Dereckson.
Mar 24 2022, 00:49 · User-Dereckson, Vault, Nasqueron Operations Squad, security
dereckson updated the task description for T930: Secrets to migrate from DevCentral to Vault.
Mar 24 2022, 00:48 · User-Dereckson, Vault, Nasqueron Operations Squad, security
dereckson updated the task description for T930: Secrets to migrate from DevCentral to Vault.
Mar 24 2022, 00:46 · User-Dereckson, Vault, Nasqueron Operations Squad, security
dereckson claimed T930: Secrets to migrate from DevCentral to Vault.

Migrated secrets

Mar 24 2022, 00:43 · User-Dereckson, Vault, Nasqueron Operations Squad, security

Mar 22 2022

dereckson added a revision to T1702: Deploy Complector aka la source: D2615: Deploy Vault and Salt master on Complector.
Mar 22 2022, 18:29 · Salt, Vault, security, Servers
dereckson added a revision to T1619: Connect all baremetal servers to Drake network: D2594: Reconfigure GRE tunnels.
Mar 22 2022, 18:20 · Servers, Drake network, security, Operations sprints (Consolidate them all)
dereckson added a revision to T1619: Connect all baremetal servers to Drake network: D2596: Set kernel state for router.
Mar 22 2022, 18:19 · Servers, Drake network, security, Operations sprints (Consolidate them all)
dereckson added a revision to T1616: Build a bastion - load balancers - private instances network topology: D2596: Set kernel state for router.
Mar 22 2022, 18:18 · security, Operations sprints (Consolidate them all)

Mar 15 2022

dereckson added a parent task for T1619: Connect all baremetal servers to Drake network: T1702: Deploy Complector aka la source.
Mar 15 2022, 00:44 · Servers, Drake network, security, Operations sprints (Consolidate them all)
dereckson added a subtask for T1702: Deploy Complector aka la source: T1619: Connect all baremetal servers to Drake network.
Mar 15 2022, 00:44 · Salt, Vault, security, Servers
dereckson added a parent task for T1702: Deploy Complector aka la source: Unknown Object (Maniphest Task).
Mar 15 2022, 00:44 · Salt, Vault, security, Servers
dereckson added a parent task for T1702: Deploy Complector aka la source: T923: Switch Vault to restricted network.
Mar 15 2022, 00:43 · Salt, Vault, security, Servers
dereckson updated the task description for T1702: Deploy Complector aka la source.
Mar 15 2022, 00:43 · Salt, Vault, security, Servers
dereckson created T1702: Deploy Complector aka la source.
Mar 15 2022, 00:42 · Salt, Vault, security, Servers
dereckson reopened T1627: Supersede equatower.nasqueron.org by docker-002.nasqueron.org as "Open".

Perhaps replace references here too: https://code.nasqueron.org/?q=equatower&i=nope&literal=nope&files=&excludeFiles=&repos=

Mar 15 2022, 00:40 · Operations sprints (Consolidate them all), Servers, Salt, security
dereckson added a comment to T1627: Supersede equatower.nasqueron.org by docker-002.nasqueron.org.

All tasks seem done, as we've docker-001 running for more than one year without any issue.

Mar 15 2022, 00:37 · Operations sprints (Consolidate them all), Servers, Salt, security
dereckson closed T1627: Supersede equatower.nasqueron.org by docker-002.nasqueron.org as Resolved.
Mar 15 2022, 00:36 · Operations sprints (Consolidate them all), Servers, Salt, security

Mar 14 2022

dereckson added a comment to T619: Allow to control from TC2 the Docker engine.

Alternative could be to use https://docs.saltproject.io/en/latest/ref/engines/all/salt.engines.ircbot.html#module-salt.engines.ircbot

Mar 14 2022, 23:45 · Operations sprints (Operations sprint 1), security, Nasqueron Docker deployment squad, Servers, Dæghrefn
dereckson added a comment to T1619: Connect all baremetal servers to Drake network.

If all we want are tunnels, Tinc could be overkill, as GRE tunnels work well at D2594 + D2595.

Mar 14 2022, 23:32 · Servers, Drake network, security, Operations sprints (Consolidate them all)
dereckson moved T1656: Convert daeghrefn. for Uspection use from Backlog to Doc / Web on the IRC board.
Mar 14 2022, 23:17 · upsection, security, documentation, IRC, Dæghrefn

Mar 12 2022

dereckson lowered the priority of T1700: Drop metrics plugin for Etherpad from Normal to Low.
Mar 12 2022, 14:57 · security, Etherpad
dereckson added a comment to T1700: Drop metrics plugin for Etherpad.

As said in IRC:
14:47:59 < Dereckson> (j'ai un doute pour ep_ether-o-meter après relecture du package.json, je me demande si ce n'est simplement à ce moment là que npm audit s'est réveillé)
14:49:44 < Dereckson> Je soupçonne que npm install <plugin> prend les dépendances de dev d'Etherpad aussi, alors que https://github.com/ether/etherpad-lite/blob/develop/src/bin/installDeps.sh utilise npm ci --no-optional

Mar 12 2022, 14:57 · security, Etherpad
dereckson added a revision to T1700: Drop metrics plugin for Etherpad: D2587: Drop support for ether-o-meter Etherpad plugin.
Mar 12 2022, 13:14 · security, Etherpad
dereckson triaged T1700: Drop metrics plugin for Etherpad as Normal priority.
Mar 12 2022, 13:08 · security, Etherpad
dereckson moved T1524: Monitor sudo files on servers from Backlog to Server config on the Eglide board.
Mar 12 2022, 13:07 · Eglide, security, Servers

Mar 5 2022

dereckson created P302 Docker update pulls fuse on CentOS/Rocky.
Mar 5 2022, 21:18 · Nasqueron Docker deployment squad, security, Servers
dereckson added a comment to T1619: Connect all baremetal servers to Drake network.

There is a concurrent approach through tinc deployed on devserver WindRiver:

Mar 5 2022, 00:25 · Servers, Drake network, security, Operations sprints (Consolidate them all)
dereckson updated the task description for T1619: Connect all baremetal servers to Drake network.
Mar 5 2022, 00:13 · Servers, Drake network, security, Operations sprints (Consolidate them all)

Mar 4 2022

dereckson added a revision to T1616: Build a bastion - load balancers - private instances network topology: D2566: Configure IntraNought interface for RedHat servers.
Mar 4 2022, 23:56 · security, Operations sprints (Consolidate them all)

Feb 12 2022

dereckson claimed T1109: Switch all OAuth GitHub applications to Nasqueron organization accounts.
Feb 12 2022, 01:55 · User-Dereckson, security, Nasqueron Operations Squad
dereckson added a comment to T1109: Switch all OAuth GitHub applications to Nasqueron organization accounts.

[ Grabbing this on my radar again, as it's in my account. ]

Feb 12 2022, 01:54 · User-Dereckson, security, Nasqueron Operations Squad

Jan 15 2022

dereckson closed T665: Configure DevCentral to approve automatically the user accounts as Wontfix.

Spambots actually target Phabricator, so we're fine with the current process.

Jan 15 2022, 22:06 · security, DevCentral

Jan 9 2022

dereckson added a revision to T1627: Supersede equatower.nasqueron.org by docker-002.nasqueron.org: D2453: Clean up Equatower references.
Jan 9 2022, 10:27 · Operations sprints (Consolidate them all), Servers, Salt, security

Oct 2 2021

dereckson moved T1513: Propagate certificate to Openfire server from Backlog to Pending review on the Servers board.
Oct 2 2021, 23:14 · XMPP, security, Servers

Sep 18 2021

dereckson moved T1656: Convert daeghrefn. for Uspection use from Backlog / triage to Sites to convert on the upsection board.
Sep 18 2021, 09:43 · upsection, security, documentation, IRC, Dæghrefn
dereckson moved T1658: Convert infra. for Uspection use from Backlog / triage to Sites to convert on the upsection board.
Sep 18 2021, 09:43 · upsection, security, Servers
dereckson moved T1657: Convert docs. for Uspection use from Backlog / triage to Sites to convert on the upsection board.
Sep 18 2021, 09:42 · upsection, security, documentation
dereckson added projects to T1656: Convert daeghrefn. for Uspection use: Dæghrefn, IRC, documentation, security, upsection.
Sep 18 2021, 09:42 · upsection, security, documentation, IRC, Dæghrefn
dereckson added a project to T1657: Convert docs. for Uspection use: upsection.
Sep 18 2021, 09:42 · upsection, security, documentation
dereckson added a project to T1658: Convert infra. for Uspection use: upsection.
Sep 18 2021, 09:42 · upsection, security, Servers
dereckson created T1658: Convert infra. for Uspection use.
Sep 18 2021, 09:42 · upsection, security, Servers
dereckson triaged T1657: Convert docs. for Uspection use as Normal priority.
Sep 18 2021, 09:41 · upsection, security, documentation

Sep 12 2021

dereckson updated the task description for T673: Rebuild images using OpenSSH client.
Sep 12 2021, 08:46 · security, Docker images
dereckson updated the task description for T930: Secrets to migrate from DevCentral to Vault.
Sep 12 2021, 08:46 · User-Dereckson, Vault, Nasqueron Operations Squad, security

Aug 30 2021

Sandlayth closed T1645: Migrate Eglide TLS certificates as Resolved.

Certificates have been migrated, and a salt-call --local state.apply have been successfully ran after the migration.

Aug 30 2021, 20:11 · security, Servers, Eglide

Aug 29 2021

dereckson moved T1145: Don't truncate passwords from Backlog to Darkbot bugs on the Odderon board.
Aug 29 2021, 00:37 · C, security, Odderon

Aug 25 2021

dereckson assigned T1645: Migrate Eglide TLS certificates to Sandlayth.
Aug 25 2021, 23:36 · security, Servers, Eglide
dereckson moved T1645: Migrate Eglide TLS certificates from Backlog to Migration on the Eglide board.
Aug 25 2021, 22:53 · security, Servers, Eglide
dereckson renamed T1645: Migrate Eglide TLS certificates from Migrate Eglide SSL certificates to Migrate Eglide TLS certificates.
Aug 25 2021, 22:51 · security, Servers, Eglide
First
Prev
Next
Nasqueron DevCentral · If it had been much bigger the moon would have had a core of ice. · Powered by Phabricator