Context Navigation

Timeline

9:40 PM Ticket #349 (TLS SNI alerts on LDAP vhosts) created by presbrey: void is a scripts-vhost: […] that fails to handshake: […] even …
10:07 AM Changeset [2379] by adehnert: Correctly set mode of suexec.log Historically, suexec.log has been rolled with error_log, and thus the permissions have matched. However, suexec.log is considered too private for logview@ to be able to read. We've handled this by making /var/log/httpd/ readable only by root, but by fixing suexec.log's permissions we eliminate the possibility of it being readable by some sort of subtle trick, and also open the way to making /var/log/httpd/ more broadly readable.
4:01 AM Changeset [2378] by andersk: Update rubygems to 1.8.25-1.scripts
3:56 AM Changeset [2377] by achernya: Update to httpd 2.2.23
3:29 AM Changeset [2376] by andersk: Use DKMS for OpenAFS

12:24 AM Ticket #348 (WebSockets) created by andersk: There’s currently no way to use WebSockets? on scripts besides running …

11:59 PM Changeset [2375] by andersk: Tighten scripts vhost mail security Broken MTAs such as MIT’s will rewrite anyone@awesome-cname.mit.edu to anyone@scripts-vhosts.mit.edu, in violation of RFC 2821. (This can be fixed with the Sendmail nocanonify feature or DontExpandCnames option, which, bewilderingly, are still not the default.) To prevent such mail from being misdirected, remove scripts-vhosts from $mydestination and let it bounce. Correct r1452 to match literal periods in scripts.mit.edu. Reserve the well-known (RFC 2142) email addresses {abuse,hostmaster,noc,postmaster,security}@every-domain for our own purposes; /etc/aliases maps these to root. Tested on scripts-f17-dev.
4:51 PM Changeset [2374] by achernya: Certificate renewal for dchang; new certificate for cons

4:52 AM Changeset [2371] by andersk: Update to OpenAFS 1.6.2pre3 for kernel 3.7 support

7:53 PM Ticket #347 (Systematically track alert frequency) created by adehnert: A lot of nagios alerts fire, and some people are probably experiencing …
7:44 PM Ticket #346 (Graph sql connection count with munin) created by adehnert: #328 added nagios monitoring of used connections. In tuning those …
5:48 PM Changeset [2370] by cereslee: Merged the -r 2369 from locker-dev to trunk
5:19 PM Changeset [2369] by cereslee: Modified the django autoinstaller to use my.cnf
5:19 PM Changeset [2368] by achernya: Revert r2367, as it should go to locker-dev first
5:16 PM Changeset [2367] by cereslee: Modified django autoinstaller to use my.cnf
4:35 AM Ticket #345 (Teach autoinstallers to use the sql test server) created by adehnert: The autoinstallers should support sqldev=dev or something to point …
4:34 AM Ticket #344 (sql test server) created by adehnert: We want a sql.mit.edu test server so we can throw interested …
4:32 AM Ticket #343 (Autoinstalled apps should read the sql password out of my.cnf) created by adehnert: In order to ease password changes (see also #227), follow DRY, etc., …
4:22 AM Ticket #342 (Rewrite sql.mit.edu with remctl and Python) created by adehnert: sql.mit.edu currently has a crufty PHP webapp that, eg, doesn't …

10:39 PM Ticket #341 (Keep updated our supported autoinstallers) closed by adehnert: duplicate: Dup of #340.
10:33 PM Ticket #341 (Keep updated our supported autoinstallers) created by adehnert: We currently have several autoinstallers that aren't up-to-date with …
10:33 PM Ticket #340 (Keep updated our supported autoinstallers) created by adehnert: We currently have several autoinstallers that aren't up-to-date with …

7:03 PM Changeset [2366] by achernya: Add g-e, m-c, l-s to the known_hosts file

8:04 PM Ticket #339 (Share SSL session cache between servers?) created by andersk: davidben points out that our servers can’t share SSL session caches …

Note: See TracTimeline for information about the timeline view.