Timeline
Nov 13, 2009:
- 7:39 PM Changeset [1359] by
- Add christmas-tree to Munin ACL on directors
Nov 10, 2009:
- 1:23 AM Ticket #105 (binfmt_misc overrides shebang now) closed by
- fixed: Fixed in r1357.
- 12:45 AM Changeset [1358] by
- execsys: Unbreak stuff broken by r1337.
- 12:35 AM Changeset [1357] by
- execsys: Disable binfmt_misc extensions. For Mono, use a magic number instead. For PHP web scripts, we already run php-cgi from suexec. For PHP cron and mail scripts, Perl, and Python, require a real shebang line.
Nov 9, 2009:
- 11:14 PM Changeset [1356] by
- suexec: Fix error logging if execv failed. Patch from httpd trunk r821321.
- 11:14 PM Changeset [1355] by
- suexec: Exec static-cat or php-cgi after closing the suexec log.
- 11:14 PM Changeset [1354] by
- suexec: Log the correct path to PHP if execv failed. Signed-off-by: Anders Kaseorg <andersk@mit.edu>
- 3:35 AM Changeset [1353] by
- Complete overhaul of package building/patching documentation
Nov 8, 2009:
- 6:09 PM Changeset [1352] by
- SSL certificate renewals
- 3:59 PM Changeset [1351] by
- Punt textbooks.mit.edu's config because it is no longer on scripts
- 3:40 PM Changeset [1350] by
- Use a more accurate OU in certificates
- 12:16 PM Changeset [1349] by
- Fix documentation
- 11:31 AM Ticket #72 (https prompts for certificates way too often) closed by
- fixed: Lo and behold, it fixes the problem! A new version of the patch in …
- 11:02 AM Changeset [1348] by
- Prompt for certs once, not five bajillion times (fix SSL session caching) Clients that support both the SNI extension and the TLS Session Tickets extension have problems that, among other things, result in many of our cert-protected sites requesting the user's certs an inordinate number of times. This will supposedly be fixed in later versions of openssl, but in the meantime, this applies the patch proposed here: http://mail-archives.apache.org/mod_mbox/httpd-dev/200911.mbox/ajax/%3c4AF58A80.5080101@velox.ch%3e with the following modifications: o Remove the documentation chunk of the patch (it applies to the source XML file which isn't part of the distribution tarball) o Expand the macro SSL_CTX_set_tlsext_ticket_keys in two places to work around the typo in our version of openssl corrected by this upstream commit: http://marc.info/?l=openssl-cvs&m=124638969912935&w=2
- 5:23 AM Changeset [1347] by
- admof: Add a -noauth flag.
Nov 1, 2009:
- 11:13 PM Changeset [1346] by
- Add the ability to pass custom flags to wizard install.
- 10:22 PM Changeset [1345] by
- Make scriptsdev work with scripts-ssh.
- 10:10 PM Changeset [1344] by
- Step two of using Wizard for new MediaWiki autoinstalls.
- 10:06 PM Changeset [1343] by
- Step one of using Wizard for new MediaWiki autoinstalls.
Oct 24, 2009:
- 12:45 PM Changeset [1342] by
- Improvements to check_ldap_mmr plugin o Don't put a newline after each replica's output; the Nagios status page only captures the first line, so run them all together on one line. o Don't return immediately upon finding an error; continue to check the other replicas and print status info about them. o If any replicas have issues, upgrade the return from "ERROR" (which is "UNKNOWN" and doesn't cause an alert) to "WARNING" (a replication failure is usually not a problem on the server running the plugin, so it's probably not a CRITICAL issue for that machine).
Oct 19, 2009:
- 7:52 PM Changeset [1341] by
- Disable vhost logging.
Oct 15, 2009:
- 12:58 AM Changeset [1340] by
- Revert r1329 - stop scriptsifying activesupport and actionpack gems We've convinced Fedora to revert to version 2.3.2 and apply the patch for CVE-2009-3009 there, allowing existing Rails apps to continue working in F11 with the upstream packages.
Oct 14, 2009:
- 10:40 AM Changeset [1339] by
- Revert r1328 - accept Rails-related updates from Fedora again
Note: See TracTimeline
for information about the timeline view.