Page MenuHomeDevCentral
People dereckson

dereckson (Sébastien Santoro)
Nasqueron founderAdministrator

Projects (91)
View All

Calendar

Today

  • Clear sailing ahead.

Tomorrow

  • Clear sailing ahead.

Saturday

  • Clear sailing ahead.

User Details

User Since
Nov 11 2014, 04:38 (565 w, 2 d)
Roles
Administrator
Availability
Available

At Nasqueron, I maintain this Phabricator instance, and overview the operations infrastructure.

Website: https://www.dereckson.be/

Individual board: User-Dereckson

Recent Activity
View All

Yesterday

dereckson added a comment to T2067: Deploy an OpenBSD server.

Why not port encrypt to FreeBSD?

Wed, Sep 10, 22:57 · Servers
dereckson added a comment to T2081: Deploy Snuffleupagus.

Support for PHP 8.4 is still there.

Wed, Sep 10, 22:56 · PHP 8.x support, Product evaluation, Servers, Alkane
dereckson closed T2113: systemd-hostnamed service can't be launched - SELinux blocks it - starship as Resolved by committing rOPSe5ec87dfe258: Allow systemd-hostnamed to create socket when called from Varlink.
Wed, Sep 10, 22:51 · Servers
dereckson closed D3658: Allow systemd-hostnamed to create socket when called from Varlink.
Wed, Sep 10, 22:51
dereckson committed rOPSe5ec87dfe258: Allow systemd-hostnamed to create socket when called from Varlink (authored by dereckson).
Allow systemd-hostnamed to create socket when called from Varlink
Wed, Sep 10, 22:51
dereckson accepted D3658: Allow systemd-hostnamed to create socket when called from Varlink.

Deployed on Dwellers, works like a charm.

Wed, Sep 10, 22:51
dereckson updated the diff for D3658: Allow systemd-hostnamed to create socket when called from Varlink.

Allow to remove the socket too

Wed, Sep 10, 22:40
dereckson planned changes to D3658: Allow systemd-hostnamed to create socket when called from Varlink.
Wed, Sep 10, 22:34
dereckson closed T2115: Update Dwellers packages as Resolved.

Uninstalled certbot.
Pruned old Python 3 dependencies.
Updated EPEL repo to epel-release-10-6
Updated packages
Reinstalled certbot, now running under Python 3.12 too.

Wed, Sep 10, 22:30 · Servers
dereckson added a comment to T2115: Update Dwellers packages.

Just for information, working on T2113, I've first updated the packages non related to that conflict, so I had fresh packages for both systemd and selinux config.

Wed, Sep 10, 22:24 · Servers
dereckson added a comment to T2122: Package starship for EPEL.

https://snapcraft.io/starship - last update: 27 April 2023 - latest/edge

Wed, Sep 10, 22:10 · Servers
dereckson retitled D3658: Allow systemd-hostnamed to create socket when called from Varlink from Allow systemd-hostnamed to create socket when started by snap starinstalled with snap to Allow systemd-hostnamed to create socket when called from Varlink.
Wed, Sep 10, 22:07
dereckson added a revision to T2113: systemd-hostnamed service can't be launched - SELinux blocks it - starship: D3658: Allow systemd-hostnamed to create socket when called from Varlink.
Wed, Sep 10, 22:06 · Servers
dereckson requested review of D3658: Allow systemd-hostnamed to create socket when called from Varlink.
Wed, Sep 10, 22:06
dereckson added a comment to T2113: systemd-hostnamed service can't be launched - SELinux blocks it - starship.

Was looking to offer a fix upstream, like read hostname from /proc/sys/kernel/hostname on Linux, but then I've realised this is an interaction issue with snap, starship, systemd and SELinux.

Wed, Sep 10, 22:03 · Servers
dereckson triaged T2122: Package starship for EPEL as Low priority.
Wed, Sep 10, 22:00 · Servers
dereckson added a comment to T2113: systemd-hostnamed service can't be launched - SELinux blocks it - starship.

Decreasing priority, as it only occurs with Starship.

Wed, Sep 10, 21:12 · Servers
dereckson renamed T2113: systemd-hostnamed service can't be launched - SELinux blocks it - starship from systemd-hostnamed service can't be launched - SELinux blocks it to systemd-hostnamed service can't be launched - SELinux blocks it - starship.
Wed, Sep 10, 21:11 · Servers
dereckson added a comment to T2113: systemd-hostnamed service can't be launched - SELinux blocks it - starship.

Normal behavior observed with the policy:

Wed, Sep 10, 21:10 · Servers
dereckson added a comment to T2113: systemd-hostnamed service can't be launched - SELinux blocks it - starship.

Still an error with last packages versions.

Wed, Sep 10, 21:09 · Servers
dereckson added a comment to T2113: systemd-hostnamed service can't be launched - SELinux blocks it - starship.

audit2allow policy

Wed, Sep 10, 21:01 · Servers
dereckson updated the summary of D3657: Renew Vault intermediate authority certificate.
Wed, Sep 10, 19:43
dereckson added a comment to T2103: Upgrade servers to FreeBSD 14.3.

Bumping for 14.3, are still going on, it makes sense to target latest version

Wed, Sep 10, 19:41 · Servers
dereckson renamed T2103: Upgrade servers to FreeBSD 14.3 from Upgrade servers to FreeBSD 14.2 to Upgrade servers to FreeBSD 14.3.
Wed, Sep 10, 19:41 · Servers
dereckson renamed T2112: Renew Vault web server certificate automatically from Renew Vault HTTPS certificate automatically to Renew Vault web server certificate automatically.
Wed, Sep 10, 19:38 · security, Servers
dereckson renamed T2112: Renew Vault web server certificate automatically from Renew Vault HTTP certificate automatically to Renew Vault HTTPS certificate automatically.
Wed, Sep 10, 19:38 · security, Servers
dereckson renamed T2112: Renew Vault web server certificate automatically from Renew Vault certificate to Renew Vault HTTP certificate automatically.
Wed, Sep 10, 19:38 · security, Servers
dereckson updated the diff for D3657: Renew Vault intermediate authority certificate.

shellcheck

Wed, Sep 10, 19:36
dereckson requested review of D3657: Renew Vault intermediate authority certificate.
Wed, Sep 10, 19:34
dereckson added a revision to T2112: Renew Vault web server certificate automatically: D3657: Renew Vault intermediate authority certificate.
Wed, Sep 10, 19:34 · security, Servers
dereckson added a comment to T2112: Renew Vault web server certificate automatically.

First step is to create a script to renew all needed certificates:

Wed, Sep 10, 19:31 · security, Servers
dereckson renamed T2117: Unexpected reboot of docker-002 from Unexpeted reboot of docker-002 to Unexpected reboot of docker-002.
Wed, Sep 10, 19:28 · Nasqueron Operations Squad
dereckson closed T2111: Bump dependencies for API servers log PHP version, a subtask of T2015: Migrate remaining sites from ysul to Alkane, as Resolved.
Wed, Sep 10, 19:05 · Alkane
dereckson closed T2111: Bump dependencies for API servers log PHP version as Resolved.

Updated to PHPUnit 12.

Wed, Sep 10, 19:05 · Monitoring and reporting, Nasqueron API
dereckson closed D3656: Bump dependencies.
Wed, Sep 10, 19:04
dereckson committed rAPISRVLOGSd24ccd361b67: Bump dependencies (authored by dereckson).
Bump dependencies
Wed, Sep 10, 19:04
dereckson added a revision to T2111: Bump dependencies for API servers log PHP version: D3635: Bump dependencies.
Wed, Sep 10, 19:04 · Monitoring and reporting, Nasqueron API
dereckson added a task to D3635: Bump dependencies: T2111: Bump dependencies for API servers log PHP version.
Wed, Sep 10, 19:04
dereckson accepted D3656: Bump dependencies.
Wed, Sep 10, 19:03
dereckson added a revision to T2111: Bump dependencies for API servers log PHP version: D3656: Bump dependencies.
Wed, Sep 10, 19:03 · Monitoring and reporting, Nasqueron API
dereckson requested review of D3656: Bump dependencies.
Wed, Sep 10, 19:03
dereckson closed T2116: Drop of OCSP Service as Resolved.
Wed, Sep 10, 19:01 · Servers, Nasqueron Operations Squad
dereckson added a comment to T2116: Drop of OCSP Service.

Applied to Hervil, was missing there.

Wed, Sep 10, 19:01 · Servers, Nasqueron Operations Squad
dereckson closed D3638: Prune OCSP nginx configuration.
Wed, Sep 10, 18:59
dereckson committed rOPSac58e606182d: Prune OCSP nginx configuration (authored by dereckson).
Prune OCSP nginx configuration
Wed, Sep 10, 18:59
dereckson committed rOPS60c7955e1c0e: Allow to discover IPv6 gateway for Online servers (authored by dereckson).
Allow to discover IPv6 gateway for Online servers
Wed, Sep 10, 18:56
dereckson closed D3651: Allow to discover IPv6 gateway for Online servers.
Wed, Sep 10, 18:56
dereckson added a comment to D3655: Enable TCP Fast Open on FreeBSD for role dns.

Applied to dns-001

Wed, Sep 10, 18:55
dereckson closed D3655: Enable TCP Fast Open on FreeBSD for role dns.
Wed, Sep 10, 18:54
dereckson committed rOPS0df5b8cc669a: Enable TCP Fast Open on FreeBSD for role dns (authored by dereckson).
Enable TCP Fast Open on FreeBSD for role dns
Wed, Sep 10, 18:54
dereckson committed rQVR12ac9fc4c928: Allow to remove steerable saddle easily (authored by dereckson).
Allow to remove steerable saddle easily
Wed, Sep 10, 18:51

Mon, Sep 8

dereckson committed rQVRd8adca5605f7: Avoid beds to explode in Nether or the End dimensions (authored by dereckson).
Avoid beds to explode in Nether or the End dimensions
Mon, Sep 8, 19:32
dereckson committed rQVR4fd99128ceb1: Give relevant information about current region (authored by dereckson).
Give relevant information about current region
Mon, Sep 8, 19:01

Wed, Sep 3

dereckson updated the test plan for D3655: Enable TCP Fast Open on FreeBSD for role dns.
Wed, Sep 3, 19:05
dereckson awarded D3655: Enable TCP Fast Open on FreeBSD for role dns a Y So Serious token.
Wed, Sep 3, 19:02
dereckson requested review of D3655: Enable TCP Fast Open on FreeBSD for role dns.
Wed, Sep 3, 19:02
dereckson retitled D3654: Define nasqueron.org DNS zone from Define nasqueron.org dns to Define nasqueron.org DNS zone.
Wed, Sep 3, 18:42
dereckson updated the diff for D3654: Define nasqueron.org DNS zone.

nbsp to space too

Wed, Sep 3, 18:39
dereckson updated the diff for D3654: Define nasqueron.org DNS zone.

Variables to replace CNAME

Wed, Sep 3, 18:38
dereckson updated the diff for D3654: Define nasqueron.org DNS zone.

Tabs to spaces

Wed, Sep 3, 18:29

Tue, Sep 2

dereckson accepted D3640: Deploy KnotDNS on dns server.
Tue, Sep 2, 18:30
dereckson added inline comments to D3652: Define testdom for ook.space to test on windriver dns.
Tue, Sep 2, 18:30
dereckson added inline comments to D3652: Define testdom for ook.space to test on windriver dns.
Tue, Sep 2, 18:29
dereckson added inline comments to D3640: Deploy KnotDNS on dns server.
Tue, Sep 2, 18:19
dereckson requested changes to D3640: Deploy KnotDNS on dns server.
Tue, Sep 2, 18:18
dereckson accepted D3653: Define testdom2 for ook.space to test on dns-001.

I like the identity field as a parameter by the way.

Tue, Sep 2, 18:14
dereckson accepted D3654: Define nasqueron.org DNS zone.
Tue, Sep 2, 18:10
dereckson accepted D3652: Define testdom for ook.space to test on windriver dns.
Tue, Sep 2, 18:09
dereckson updated the test plan for D3652: Define testdom for ook.space to test on windriver dns.
Tue, Sep 2, 18:09
dereckson edited P372 DNS - Raw AXFR output - nasqueron.org.
Tue, Sep 2, 17:03 · DNS, Servers

Mon, Sep 1

dereckson retitled D3644: Configure dns-001 node from Configure dns-001 network to Configure dns-001 node.
Mon, Sep 1, 17:03
dereckson retitled D3644: Configure dns-001 node from Configure dns-001 node to Configure dns-001 network.
Mon, Sep 1, 17:03

Sun, Aug 31

dereckson committed rQVRe3f96bdbaffa: Ensure one and only one EOL before class end (authored by dereckson).
Ensure one and only one EOL before class end
Sun, Aug 31, 20:40
dereckson committed rQVR9f525c794c19: Refactor InventoryEvent menu checks (authored by dereckson).
Refactor InventoryEvent menu checks
Sun, Aug 31, 20:27
dereckson awarded D3646: Add quality of life Suhayl plugin a Y So Serious token.
Sun, Aug 31, 16:12
dereckson awarded D3647: Add commandment stick a Y So Serious token.
Sun, Aug 31, 16:12
dereckson awarded D3648: Label chests with a quill a Y So Serious token.
Sun, Aug 31, 16:11
dereckson awarded D3649: Move commandment stick l10n to resource pack a Y So Serious token.
Sun, Aug 31, 16:11
dereckson awarded D3650: Update resource pack hash in remote server.properties a Y So Serious token.
Sun, Aug 31, 16:11
dereckson added a comment to D3651: Allow to discover IPv6 gateway for Online servers.

The ndp parsing code has been written by a GPT model, offering to forget about awk.

Sun, Aug 31, 16:11
dereckson awarded D3651: Allow to discover IPv6 gateway for Online servers a Y So Serious token.
Sun, Aug 31, 16:08
dereckson requested review of D3651: Allow to discover IPv6 gateway for Online servers.
Sun, Aug 31, 16:07
dereckson closed T2120: Don't allow infinite grow of MariaDB binary log as Resolved by committing rOPS9e78009934a7: Sets the MariaDB binary log expiration.
Sun, Aug 31, 15:48 · DBA, Servers
dereckson closed D3645: Sets the MariaDB binary log expiration.
Sun, Aug 31, 15:48
dereckson committed rOPS9e78009934a7: Sets the MariaDB binary log expiration (authored by dereckson).
Sets the MariaDB binary log expiration
Sun, Aug 31, 15:48
dereckson added a comment to T2017: Install WindRiver replacement server.

Find more easily the gateway

Sun, Aug 31, 15:31 · Servers
dereckson committed rQVR5434289abb2c: Update resource pack hash in remote server.properties (authored by dereckson).
Update resource pack hash in remote server.properties
Sun, Aug 31, 13:36
dereckson closed D3650: Update resource pack hash in remote server.properties.
Sun, Aug 31, 13:36
dereckson accepted D3650: Update resource pack hash in remote server.properties.
Sun, Aug 31, 13:36
dereckson requested review of D3650: Update resource pack hash in remote server.properties.
Sun, Aug 31, 13:35
dereckson committed rQVR08351984c322: Move commandment stick l10n to resource pack (authored by dereckson).
Move commandment stick l10n to resource pack
Sun, Aug 31, 13:35
dereckson closed D3649: Move commandment stick l10n to resource pack.
Sun, Aug 31, 13:35
dereckson accepted D3649: Move commandment stick l10n to resource pack.
Sun, Aug 31, 13:33
dereckson requested review of D3649: Move commandment stick l10n to resource pack.
Sun, Aug 31, 12:55
dereckson closed D3648: Label chests with a quill.
Sun, Aug 31, 12:48
dereckson committed rQVR49addb9f63a6: Label chests with a quill (authored by dereckson).
Label chests with a quill
Sun, Aug 31, 12:48
dereckson accepted D3648: Label chests with a quill.
Sun, Aug 31, 12:47
dereckson updated the diff for D3648: Label chests with a quill.

Prune redundant comments, unused imports/constant

Sun, Aug 31, 12:46
dereckson added inline comments to D3648: Label chests with a quill.
Sun, Aug 31, 09:43
dereckson updated the diff for D3648: Label chests with a quill.

EOL at EOF. Remove autogenerated. Clean imports

Sun, Aug 31, 09:43
Nasqueron DevCentral · If it had been much bigger the moon would have had a core of ice. · Powered by Phabricator