Page MenuHomeDevCentral
Projects security

securityTag
ActivePublic
Watch Project

Members (1)

Watchers

  • This project does not have any watchers.
  • View All

Details

Description

This tag identifies security issue.

Recent Activity
View All

Yesterday

dereckson moved T1292: userlist.db is saved in 644 from Backlog to Darkbot bugs on the Odderon board.
Sat, Jun 25, 01:04 · easy, security, Odderon
dereckson added a parent task for T1656: Convert daeghrefn. for Uspection use: T934: Documentation site.
Sat, Jun 25, 01:03 · upsection, security, documentation, IRC, Dæghrefn
dereckson moved T1656: Convert daeghrefn. for Uspection use from Backlog to Documentation on the Dæghrefn board.
Sat, Jun 25, 01:02 · upsection, security, documentation, IRC, Dæghrefn

Sun, Jun 5

DorianWinty added a comment to T1484: Upgrade Laravel framework.

For now, Laravel 8 :

Sun, Jun 5, 07:18 · Restricted Project, security, Technical debt, Notifications center

Sat, Jun 4

DorianWinty added a project to T1484: Upgrade Laravel framework: Restricted Project.
Sat, Jun 4, 21:26 · Restricted Project, security, Technical debt, Notifications center
dereckson updated the task description for T1484: Upgrade Laravel framework.
Sat, Jun 4, 20:05 · Restricted Project, security, Technical debt, Notifications center
dereckson added a comment to T1484: Upgrade Laravel framework.

@DorianWinty Would be useful to apply https://laravel.com/docs/9.x/upgrade so we're really up to date.

Sat, Jun 4, 20:04 · Restricted Project, security, Technical debt, Notifications center
dereckson assigned T1484: Upgrade Laravel framework to DorianWinty.
Sat, Jun 4, 20:02 · Restricted Project, security, Technical debt, Notifications center

May 12 2022

dereckson added a revision to T1733: Store credentials in Vault: D2687: Configure ViperServ eggdrops to use Vault.
May 12 2022, 22:54 · security, Vault, Dæghrefn
dereckson added a revision to T1733: Store credentials in Vault: D2686: Fetch credentials from Vault.
May 12 2022, 22:22 · security, Vault, Dæghrefn
dereckson triaged T1733: Store credentials in Vault as Normal priority.
May 12 2022, 22:22 · security, Vault, Dæghrefn

May 8 2022

dereckson triaged T1732: Save PHP errors in a separate log than stdout/the nginx error one as High priority.
May 8 2022, 17:30 · security, Docker images, DevCentral

Apr 15 2022

dereckson added a comment to T1616: Build a bastion - load balancers - private instances network topology.

For Salt and Vault, we're already using the private network.

Apr 15 2022, 19:21 · security, Operations sprints (Consolidate them all)
dereckson closed T1619: Connect all baremetal servers to Drake network as Resolved.

We're done here :)

Apr 15 2022, 19:20 · Servers, Restricted Project, security, Operations sprints (Consolidate them all)
dereckson closed T1619: Connect all baremetal servers to Drake network, a subtask of T1702: Deploy Complector aka la source, as Resolved.
Apr 15 2022, 19:20 · Salt, Vault, security, Servers
dereckson closed T1619: Connect all baremetal servers to Drake network, a subtask of T1616: Build a bastion - load balancers - private instances network topology, as Resolved.
Apr 15 2022, 19:20 · security, Operations sprints (Consolidate them all)
dereckson updated the task description for T1619: Connect all baremetal servers to Drake network.
Apr 15 2022, 19:20 · Servers, Restricted Project, security, Operations sprints (Consolidate them all)
dereckson added a comment to T1702: Deploy Complector aka la source.

Vault is live and Salt deployments were successful to cloudhugger dwellers windriver ysul (and Complector itself).

Apr 15 2022, 19:19 · Salt, Vault, security, Servers
dereckson added a revision to T1616: Build a bastion - load balancers - private instances network topology: D2672: Prune salt-primary role on Ysul and WindRiver.
Apr 15 2022, 19:16 · security, Operations sprints (Consolidate them all)
dereckson added a revision to T1702: Deploy Complector aka la source: D2672: Prune salt-primary role on Ysul and WindRiver.
Apr 15 2022, 19:16 · Salt, Vault, security, Servers
dereckson added a revision to T1425: Provision secrets through Salt: D2671: Avoid a server to keep access to stale Vault policies.
Apr 15 2022, 19:11 · security, Nasqueron Operations Squad, Vault, Salt
dereckson added a revision to T1425: Provision secrets through Salt: D2669: Avoid to share credentials between dev and prod Docker engines.
Apr 15 2022, 17:53 · security, Nasqueron Operations Squad, Vault, Salt

Apr 12 2022

dereckson closed T648: Secure access to etcd as Wontfix.

Per T644.

Apr 12 2022, 22:18 · security, Nasqueron Docker deployment squad, Servers

Apr 3 2022

dereckson updated the task description for T930: Secrets to migrate from DevCentral to Vault.
Apr 3 2022, 19:49 · User-Dereckson, Vault, Nasqueron Operations Squad, security
dereckson added a revision to T1425: Provision secrets through Salt: D2649: Provide compatibility methods with Zemke-Rhyme for Vault.
Apr 3 2022, 18:59 · security, Nasqueron Operations Squad, Vault, Salt

Mar 29 2022

dereckson added a revision to T1702: Deploy Complector aka la source: D2624: Deploy Vault.
Mar 29 2022, 22:54 · Salt, Vault, security, Servers

Mar 26 2022

dereckson added a revision to T1702: Deploy Complector aka la source: D2639: Allow to recreate Vault configuration as DRP plan B.
Mar 26 2022, 15:19 · Salt, Vault, security, Servers
dereckson added a revision to T1425: Provision secrets through Salt: D2638: Deploy policies for Vault.
Mar 26 2022, 15:09 · security, Nasqueron Operations Squad, Vault, Salt

Mar 24 2022

dereckson moved T930: Secrets to migrate from DevCentral to Vault from Backlog to In progress on the User-Dereckson board.
Mar 24 2022, 00:50 · User-Dereckson, Vault, Nasqueron Operations Squad, security
dereckson added a project to T930: Secrets to migrate from DevCentral to Vault: User-Dereckson.
Mar 24 2022, 00:49 · User-Dereckson, Vault, Nasqueron Operations Squad, security
dereckson updated the task description for T930: Secrets to migrate from DevCentral to Vault.
Mar 24 2022, 00:48 · User-Dereckson, Vault, Nasqueron Operations Squad, security
dereckson updated the task description for T930: Secrets to migrate from DevCentral to Vault.
Mar 24 2022, 00:46 · User-Dereckson, Vault, Nasqueron Operations Squad, security
dereckson claimed T930: Secrets to migrate from DevCentral to Vault.

Migrated secrets

Mar 24 2022, 00:43 · User-Dereckson, Vault, Nasqueron Operations Squad, security

Mar 22 2022

dereckson added a revision to T1702: Deploy Complector aka la source: D2615: Deploy Vault and Salt master on Complector.
Mar 22 2022, 18:29 · Salt, Vault, security, Servers
dereckson added a revision to T1619: Connect all baremetal servers to Drake network: D2594: Reconfigure GRE tunnels.
Mar 22 2022, 18:20 · Servers, Restricted Project, security, Operations sprints (Consolidate them all)
dereckson added a revision to T1619: Connect all baremetal servers to Drake network: D2596: Set kernel state for router.
Mar 22 2022, 18:19 · Servers, Restricted Project, security, Operations sprints (Consolidate them all)
dereckson added a revision to T1616: Build a bastion - load balancers - private instances network topology: D2596: Set kernel state for router.
Mar 22 2022, 18:18 · security, Operations sprints (Consolidate them all)

Mar 15 2022

dereckson added a parent task for T1619: Connect all baremetal servers to Drake network: T1702: Deploy Complector aka la source.
Mar 15 2022, 00:44 · Servers, Restricted Project, security, Operations sprints (Consolidate them all)
dereckson added a subtask for T1702: Deploy Complector aka la source: T1619: Connect all baremetal servers to Drake network.
Mar 15 2022, 00:44 · Salt, Vault, security, Servers
dereckson added a parent task for T1702: Deploy Complector aka la source: Unknown Object (Maniphest Task).
Mar 15 2022, 00:44 · Salt, Vault, security, Servers
dereckson added a parent task for T1702: Deploy Complector aka la source: T923: Switch Vault to restricted network.
Mar 15 2022, 00:43 · Salt, Vault, security, Servers
dereckson updated the task description for T1702: Deploy Complector aka la source.
Mar 15 2022, 00:43 · Salt, Vault, security, Servers
dereckson created T1702: Deploy Complector aka la source.
Mar 15 2022, 00:42 · Salt, Vault, security, Servers
dereckson reopened T1627: Supersede equatower.nasqueron.org by docker-001.nasqueron.org as "Open".

Perhaps replace references here too: https://code.nasqueron.org/?q=equatower&i=nope&literal=nope&files=&excludeFiles=&repos=

Mar 15 2022, 00:40 · Operations sprints (Consolidate them all), Servers, Salt, security
dereckson added a comment to T1627: Supersede equatower.nasqueron.org by docker-001.nasqueron.org.

All tasks seem done, as we've docker-001 running for more than one year without any issue.

Mar 15 2022, 00:37 · Operations sprints (Consolidate them all), Servers, Salt, security
dereckson closed T1627: Supersede equatower.nasqueron.org by docker-001.nasqueron.org as Resolved.
Mar 15 2022, 00:36 · Operations sprints (Consolidate them all), Servers, Salt, security

Mar 14 2022

dereckson added a comment to T619: Allow to control from TC2 the Docker engine.

Alternative could be to use https://docs.saltproject.io/en/latest/ref/engines/all/salt.engines.ircbot.html#module-salt.engines.ircbot

Mar 14 2022, 23:45 · Operations sprints (Operations sprint 1), security, Nasqueron Docker deployment squad, Servers, Dæghrefn
dereckson added a comment to T1619: Connect all baremetal servers to Drake network.

If all we want are tunnels, Tinc could be overkill, as GRE tunnels work well at D2594 + D2595.

Mar 14 2022, 23:32 · Servers, Restricted Project, security, Operations sprints (Consolidate them all)
dereckson moved T1656: Convert daeghrefn. for Uspection use from Backlog to Doc / Web on the IRC board.
Mar 14 2022, 23:17 · upsection, security, documentation, IRC, Dæghrefn

Mar 12 2022

dereckson lowered the priority of T1700: Drop metrics plugin for Etherpad from Normal to Low.
Mar 12 2022, 14:57 · security, Etherpad
Nasqueron DevCentral · If it had been much bigger the moon would have had a core of ice. · Powered by Phabricator