Timeline


and

Mar 11, 2010:

11:23 PM Changeset [1506] by mitchb
New CellServDB from grand.central.org, via Ops
6:29 AM Changeset [1505] by mitchb
CVE-2010-0434: Putting the "Patch" in "Apache" since... well, 2010

Mar 8, 2010:

3:24 AM Changeset [1504] by quentin
Fix graph titles...

Mar 5, 2010:

12:05 AM Changeset [1503] by mitchb
New scripts-wizard package This package presently provides a symlink for wizard in /usr/local/bin so that users have it in their paths all the time.

Mar 4, 2010:

10:58 PM Changeset [1502] by mitchb
Directory for scripts-wizard package Yes, it's empty. Yes, it's expected to stay that way. No, I can't build the package before it's committed. Yes, this is silly.
1:39 PM Changeset [1501] by mitchb
We won't always have paris (CellServDB update, take 2)

Mar 3, 2010:

1:10 PM Changeset [1500] by mitchb
Updated CellServDB from Ops

Feb 28, 2010:

6:09 AM Changeset [1499] by mitchb
Upgrade Apache from 2.2.13-1 to 2.2.14-1
5:22 AM Changeset [1498] by mitchb
Make sure that SRPMs for upstream packages actually come from upstream We don't usually put SRPMs for packages we build in our yum repo since we generate the SRPM from a (possibly patched) version of the upstream spec and source files contained in the upstream SRPM as part of our build process. However, occasionally an SRPM or two of ours find their way into our repo. If we pull in that SRPM, a subsequent build of that package will fail because most of our patch hunks will fail due to having already been applied. Avoid this screw case by never downloading the allegedly upstream SRPMs from our own repo.

Feb 26, 2010:

2:25 AM Changeset [1497] by mitchb
Support out-of-locker autoinstallers This parameterizes the locker that the autoinstaller lives in, as well as the contact info for the autoinstaller's maintainer. (Merge of r1491:1496 from branches/locker-dev to trunk, originally from broder)
1:18 AM Changeset [1496] by broder
Don't let people shoot themselves in the foot by leaving ailocker set to ""
1:18 AM Changeset [1495] by broder
Don't attach the scripts locker twice.
1:15 AM Changeset [1494] by broder
Distinguish between scripts for scripts and scripts for autoinstallers. Some pieces of the autoinstaller process are clearly tied to scripts itself - e.g. scripts to get information from sql.mit.edu. Others are clearly tied to the autoinstaller - e.g. the /mit/scripts/deploy/bin/foo scripts. Out-of-tree autoinstallers want to replace the latter, but not the former. For scripts that fall into the former category, explicitly call them from /mit/scripts. For those that fall into the latter, call them from /mit/$ailocker. New out-of-tree autoinstallers can define ailocker to provide their own hooks.
1:01 AM Changeset [1493] by broder
Use a slightly more concise shell expression for setting variables.
12:14 AM Changeset [1492] by broder
Parametrize the maintainer and contact for autoinstallers. This allows the Scripts autoinstaller infrastructure to be leveraged by out-of-tree autoinstallers.

Feb 25, 2010:

6:33 PM Changeset [1491] by mitchb
Make it possible for Accounts to create users on scripts (new moira, again) (Yes, you misread that.)
3:10 AM Changeset [1490] by mitchb
New moira packages

Feb 23, 2010:

11:44 PM Changeset [1489] by mitchb
Fix directions for adding static extensions ========= Instance: 1149427 Time: Mon Feb 8 20:29:45 2010 Host: BYTE-ME.MIT.EDU From: Busy inodes after unmount. Self-destruct in 5 seconds. Have a nice day. [FAILED] <mitchb> Also, those directions need to be taken out back and shot. We don't do things like that anymore. ========= Done.
11:21 PM Changeset [1488] by mitchb
Various tweaks to rails autoreloading code o Don't watch all of public, as apps may cache files there and cause the fcgi to repeatedly die and destroy any fcgi performance gains o Specifically watch .htaccess and dispatch.fcgi o Raise an error to die instead of trying to reload code and dying in the process because you can't o Explain that killing the fcgi process results in a reload of the code at the next request (Merge of r1411:1486 from branches/locker-dev to trunk, originally from gdb)
11:00 PM Changeset [1487] by mitchb
Renewed certificate for schuh.mit.edu

Feb 22, 2010:

3:47 AM Changeset [1486] by gdb
Explain why we raise an error here
3:37 AM Changeset [1485] by gdb
Time to be honest with ourselves. We're not reloading anything here.
3:31 AM Changeset [1484] by gdb
Watch specific files as well
3:09 AM Changeset [1483] by geofft
__scripts/needcerts: Add support for working around Safari Safari on Mac OS X (or more properly, CFNetwork and the rest of the SSL stack) doesn't properly support SSLVerifyClient Optional, which is our default for :444. In particular, if you don't have an identity preference set, only SSLVerifyClient Require will trigger the dialog to set an identity preference and present a certificate to the site: http://lists.apple.com/archives/apple-cdsa/2009/Apr/msg00041.html We can work around this by checking for the Safari user-agent in /__scripts/needcerts and renegotiating SSLVerifyclient Require. Forcing the Require behavior on Safari users that reach this page is reasonable because this page is only (supported to be) reached as an ErrorDocument 401; if you're intentionally using AuthOptional on to take advantage of the optional authentication, you'll never trigger the 401 error.

Feb 20, 2010:

6:18 PM Changeset [1482] by ezyang
Take upstream changes to use alternative runtime directory for fcgi; revert previous changes to chmod /var/run/httpd.
4:25 PM Changeset [1481] by ezyang
Don't chmod /var/run/httpd 0700, since that breaks fcgid.
4:49 AM Changeset [1480] by mitchb
Hit the turbo button and make those gears spin!
4:31 AM Changeset [1479] by mitchb
* Don't put SQL passwords in command-line arguments. * When using sqlalchemy, use ~/.my.cnf instead of hardcoding the SQL password. (Merge of r1477:1478 from locker-dev to trunk, originally from xavid)
4:24 AM Changeset [1478] by mitchb
* Don't put SQL passwords in command-line arguments. * When using sqlalchemy, use ~/.my.cnf instead of hardcoding the SQL password. (originally from xavid)
4:21 AM Changeset [1477] by mitchb
* Initial commit of TG autoinstaller, for some reason. (from trunk@1476, originally from xavid)

Feb 19, 2010:

4:58 PM Changeset [1476] by ezyang
Add environment variables for CPS for nicer graph titles.
4:49 PM Changeset [1475] by ezyang
Read graph_title from environment.
4:18 PM Changeset [1474] by ezyang
Specify uid 102 is signup, and remove dead SELinux code.
3:44 AM Changeset [1473] by mitchb
LDAP, now with 200% more indexed queries! Previously, only about 1/3 of our LDAP queries were actually being answered using indices. ns-slapd was routinely observed to be eating a huge portion of our CPU. Coincidence? You be the judge. We're going to stop being morons now and use <1% CPU for LDAP.
1:11 AM Changeset [1472] by quentin
Use the right script...

Feb 18, 2010:

10:56 PM Changeset [1471] by quentin
make r-m's RAM match
7:07 PM Changeset [1470] by quentin
b-b and p-b have real hardware, yay
3:05 PM Changeset [1469] by gdb
Changed list of watched directories in rails fcgi

Feb 17, 2010:

11:44 AM Changeset [1468] by gdb
Fixed the exception type problem in this code; fixed up remove-servers.

Feb 16, 2010:

11:46 AM Ticket #116 (Certificate login fallback to password) created by foley
I've run into this situation a number of times on setting up wiki/CMS …

Feb 15, 2010:

10:11 PM Ticket #115 (actively break sudo for users who aren't supposed to) created by geofft
PAM is a good choice here. So is replacing our uses of sudo …

Feb 13, 2010:

5:36 PM Changeset [1467] by gdb
Minor hacron fixes
5:21 PM Changeset [1466] by gdb
Another pass over hacron
12:55 AM Changeset [1465] by quentin
QuickPrint cronjob (so it runs on every host)

Feb 12, 2010:

3:52 AM Changeset [1464] by mitchb
What's that? I can't hear you over the static! o Make Apache, suEXEC, and static-cat case-insensitive about extensions o Add wav, mid, and midi as static extensions o Add missing mime-type for svg files
2:47 AM Changeset [1463] by andersk
mod_vhost_ldap: Copy the server_rec instead of corrupting it in place.
Note: See TracTimeline for information about the timeline view.