Page MenuHomeDevCentral
Feed Advanced Search

Advanced Search
Use Results
Hide Query

Apr 28 2015

dereckson moved T354: Upgrade PHP to 5.6.8 on Ysul from Working on to Backlog on the Servers board.
Apr 28 2015, 11:54 · Servers, security
dereckson moved T354: Upgrade PHP to 5.6.8 on Ysul from Backlog to Working on on the Servers board.
Apr 28 2015, 11:54 · Servers, security
dereckson created T354: Upgrade PHP to 5.6.8 on Ysul.
Apr 28 2015, 11:52 · Servers, security
dereckson created T353: Upgrade Ruby to Ruby 2.2 on Ysul.
Apr 28 2015, 11:51 · Servers, security
dereckson added a comment to T352: Software security issues on Ysul.

Straightforward to upgrade

Apr 28 2015, 11:48 · security, Servers
dereckson moved T289: Upgrade libzip, PHP 5.6, Django and Subversion on Ysul from Backlog to Done on the Servers board.
Apr 28 2015, 11:45 · security, Nasqueron Docker deployment squad, Servers
dereckson moved T352: Software security issues on Ysul from Backlog to Working on on the Servers board.
Apr 28 2015, 11:22 · security, Servers
dereckson triaged T352: Software security issues on Ysul as High priority.
Apr 28 2015, 11:22 · security, Servers

Apr 27 2015

dereckson added projects to T352: Software security issues on Ysul: Servers, security.

See P65 for the details of the packages concerned.

Apr 27 2015, 22:42 · security, Servers

Apr 4 2015

dereckson updated the title for P34 pkg audit on Ysul from Masterwork From Distant Lands to pkg audit on Ysul.
Apr 4 2015, 14:49 · security, Servers

Apr 3 2015

dereckson added a subtask for T289: Upgrade libzip, PHP 5.6, Django and Subversion on Ysul: T291: Fixed libaprutil-1.la issue on Ysul.
Apr 3 2015, 22:40 · security, Nasqueron Docker deployment squad, Servers
dereckson closed T289: Upgrade libzip, PHP 5.6, Django and Subversion on Ysul as Resolved.

Subversion updated to 1.8.13.

Apr 3 2015, 22:33 · security, Nasqueron Docker deployment squad, Servers
dereckson added a comment to T289: Upgrade libzip, PHP 5.6, Django and Subversion on Ysul.

PHP upgraded, php-fpm restarted.

Apr 3 2015, 17:43 · security, Nasqueron Docker deployment squad, Servers
dereckson added a comment to P43 pkg audit on Ysul.

PHP upgraded to 5.6.7 (CLI, php-fpm, CGI)

Apr 3 2015, 17:41 · Servers, security, Nasqueron security operations squad
dereckson added a comment to T289: Upgrade libzip, PHP 5.6, Django and Subversion on Ysul.

Round one:

  • py27-django: 1.7.3 -> 1.7.7
  • libzip: 0.11.2_1 -> 0.11.2_2
  • py27-sqlite3: 2.7.9_5 -> 2.7.9_6
Apr 3 2015, 17:16 · security, Nasqueron Docker deployment squad, Servers
dereckson added a comment to P43 pkg audit on Ysul.

Round one:

  • py27-django: 1.7.3 -> 1.7.7
  • libzip: 0.11.2_1 -> 0.11.2_2
  • py27-sqlite3: 2.7.9_5 -> 2.7.9_6
Apr 3 2015, 17:05 · Servers, security, Nasqueron security operations squad
dereckson updated the task description for T289: Upgrade libzip, PHP 5.6, Django and Subversion on Ysul.
Apr 3 2015, 17:03 · security, Nasqueron Docker deployment squad, Servers
dereckson created T289: Upgrade libzip, PHP 5.6, Django and Subversion on Ysul.
Apr 3 2015, 17:02 · security, Nasqueron Docker deployment squad, Servers
dereckson updated the title for P43 pkg audit on Ysul from Masterwork From Distant Lands to pkg audit on Ysul.
Apr 3 2015, 17:01 · Servers, security, Nasqueron security operations squad

Apr 1 2015

dereckson moved T107: Reenable SELinux for Docker on Dwellers from Backlog to Deployed on the Forum board.
Apr 1 2015, 19:26 · security, Servers, Forum

Mar 30 2015

dereckson claimed T261: Generate SSL certificate for devcentral.nasqueron.org.

Taking this bug.

Mar 30 2015, 09:54 · DevCentral, Nasqueron Docker deployment squad, security
dereckson created T261: Generate SSL certificate for devcentral.nasqueron.org.
Mar 30 2015, 09:48 · DevCentral, Nasqueron Docker deployment squad, security
dereckson created T260: Generate a SSL certificate for Docker services on Dwellers.
Mar 30 2015, 09:47 · security, Nasqueron Docker deployment squad

Mar 26 2015

dereckson added projects to P36 P35 Packages security issues on Ysul: Servers, security.
Mar 26 2015, 15:36 · security, Servers

Mar 21 2015

dereckson added a subtask for T214: Software security issues on Ysul: T223: Upgrade OpenSSL on Ysul.
Mar 21 2015, 15:09 · security, Servers
dereckson closed T214: Software security issues on Ysul as Resolved.

There is also an issue (solved) with OpenSSL, see T223.

Mar 21 2015, 15:09 · security, Servers
dereckson added a comment to T214: Software security issues on Ysul.

Apache reinstalled.

Mar 21 2015, 15:08 · security, Servers
dereckson closed T218: Update PHP and Apache on Ysul as Resolved.
Mar 21 2015, 15:08 · Servers, security
dereckson added a comment to T218: Update PHP and Apache on Ysul.

php-fpm has then been successfully restarted using 5.6.6 from ports.

Mar 21 2015, 10:43 · Servers, security
dereckson added a comment to T218: Update PHP and Apache on Ysul.

php-fpm has been successfully restarted using 5.6.6 compiled manually.

Mar 21 2015, 10:41 · Servers, security

Mar 20 2015

dereckson added a comment to T218: Update PHP and Apache on Ysul.
  • PHP 5.6.6 available on CLI and CGI
  • php-fpm still using 5.6.4, as there could be an issue (php-fpm not listening all ports)
Mar 20 2015, 14:47 · Servers, security

Mar 17 2015

dereckson added projects to T218: Update PHP and Apache on Ysul: security, Servers.
Mar 17 2015, 18:05 · Servers, security

Feb 24 2015

dereckson added a comment to T214: Software security issues on Ysul.

As noted on P34, we don't use any of the Apache features with the reported vulnerabilites.

Feb 24 2015, 19:57 · security, Servers
dereckson triaged T214: Software security issues on Ysul as Low priority.
Feb 24 2015, 19:56 · security, Servers
dereckson added projects to P34 pkg audit on Ysul: Servers, security.
Feb 24 2015, 19:54 · security, Servers
dereckson added a comment to T214: Software security issues on Ysul.

Django upgraded to 1.7.3

Feb 24 2015, 17:13 · security, Servers
dereckson added a comment to T214: Software security issues on Ysul.

Resolved for bittorrent-libutp.

Feb 24 2015, 17:09 · security, Servers
dereckson added a project to T214: Software security issues on Ysul: security.
Feb 24 2015, 17:09 · security, Servers

Dec 18 2014

dereckson closed T196: Update freetype2 and subversion on Ysul as Resolved.

Package upgraded:
freetype2: 2.5.3_2 -> 2.5.4

Dec 18 2014, 00:51 · security, Servers
dereckson triaged T196: Update freetype2 and subversion on Ysul as High priority.
Dec 18 2014, 00:47 · security, Servers
dereckson added projects to T196: Update freetype2 and subversion on Ysul: Servers, security.

Cf. P32 for pkg audit result

Dec 18 2014, 00:47 · security, Servers

Dec 11 2014

dereckson closed T167: Create a jail on Ysul to serve files like the Jenks backup as Resolved.

Accounts UID have been jump to 5001, 5002, etc. to avoid user accounts conflicts between jails (and host).

Dec 11 2014, 09:22 · security, Servers

Dec 4 2014

dereckson closed T190: Security issue: nss-3.17.2_1 on Ysul as Resolved.

Software upgrade

  • Package nss-3.17.2_1 and libreoffice-4.3.3_1 removed
  • Port security/nss compiled, package nss-3.17.3 installed
  • Package libreoffice-4.3.4 installed
  • As dep of libreoffice-4.3.4, solved the gettext split:
    • gettext-0.18.3.1_1 deinstalled
    • gettext (metapackage), gettext-tools (the devel part, like msgfmt command), gettext-runtime (library), all in version 0.19.3 installed
Dec 4 2014, 06:21 · security, Servers
dereckson updated the task description for T190: Security issue: nss-3.17.2_1 on Ysul.
Dec 4 2014, 06:06 · security, Servers
dereckson triaged T190: Security issue: nss-3.17.2_1 on Ysul as High priority.
Dec 4 2014, 06:05 · security, Servers

Dec 3 2014

dereckson added a comment to T167: Create a jail on Ysul to serve files like the Jenks backup.

Previous comment were for the FTP part, now the SFTP one.

Dec 3 2014, 16:20 · security, Servers

Dec 2 2014

dereckson added a project to T167: Create a jail on Ysul to serve files like the Jenks backup: security.
IMPORTANT: We enabled as experimental feature incoming write folder to see if public write folders FTP are safe again in 2014. security
Dec 2 2014, 11:21 · security, Servers

Nov 28 2014

dereckson added projects to T163: Install sshguard on Ysul: Servers, security.
Nov 28 2014, 11:24 · security, Servers

Nov 17 2014

dereckson closed T108: Negotiate every https connection in TLS, centralize in one place the http::register call as Resolved.
Nov 17 2014, 22:30 · security, Dæghrefn
dereckson claimed T108: Negotiate every https connection in TLS, centralize in one place the http::register call.
Nov 17 2014, 22:16 · security, Dæghrefn
dereckson added a revision to T108: Negotiate every https connection in TLS, centralize in one place the http::register call: D1: Centralizes https configuration and force TLS only.
Nov 17 2014, 22:16 · security, Dæghrefn
dereckson created T108: Negotiate every https connection in TLS, centralize in one place the http::register call.
Nov 17 2014, 20:37 · security, Dæghrefn
dereckson closed T107: Reenable SELinux for Docker on Dwellers as Resolved.

The solution to run Docker without SELinux is dismissed.

Nov 17 2014, 01:36 · security, Servers, Forum

Nov 16 2014

dereckson added a project to T107: Reenable SELinux for Docker on Dwellers: security.
Nov 16 2014, 17:53 · security, Servers, Forum
First
Prev
Nasqueron DevCentral · If it had been much bigger the moon would have had a core of ice. · Powered by Phabricator