Re: Bodhi 2.4.0 released upstream

[Randy Barlow]

On Wed, 2017-02-15 at 15:46 -0800, Adam Williamson wrote:
> New releases are traditionally deployed direct to production at
> 5:30pm
> on Friday, just before you leave for a long vacation with no internet
> access. Everyone knows this!

Sage advice!

signature.asc
Description: This is a digitally signed message part
___
infrastructure mailing list -- infrastructure@lists.fedoraproject.org
To unsubscribe send an email to infrastructure-le...@lists.fedoraproject.org

Re: Bodhi 2.4.0 released upstream

[Randy Barlow]

On Wed, 2017-02-15 at 16:58 -0500, Randy Barlow wrote:
> https://github.com/fedora-infra/bodhi/releases/tag/2.4.0

I've been unable to build Bodhi in Rawhide, due to a packaging bug with
python-dogpile-cache:

https://bugzilla.redhat.com/show_bug.cgi?id=1422716

That package can only be committed to by Ralph or the infra-sig. I'm
willing to fix it myself, but I'm not in the infra-sig. I applied for
membership in the infra-sig group if anyone would like to sponsor me. I
also applied for commit access on the package, which is lesser access
and is all I really need at this time, if someone wants to mark that
approved. If not, could one of you fix that bug for me?

signature.asc
Description: This is a digitally signed message part
___
infrastructure mailing list -- infrastructure@lists.fedoraproject.org
To unsubscribe send an email to infrastructure-le...@lists.fedoraproject.org

Re: https blogs?

[charles profitt]

On Wed, 2017-02-15 at 18:19 +0100, Brian Exelbierd wrote:
> 
> 
> This is a very reasonable proposal, but could represent a problem for
> some in an indirect way.  My personal blog is currently hosted in a
> manner that makes using https not possible.[^0]  I don't know if
> others are in a similar situation, but it is reasonable to think
> so.  Enabling https is one thing, but in my case a full migration
> will be required.  Is there a reason we need to require the blogs
> that are aggregated to be https and not just encourage it and move
> the planet to https?

Sounds like we may be in the same boat...

I use github pages with a custom domain and it does not appear to
support https at the moment. I am researching to see if that is
accurate and what my other options are.

Perhaps when we announce this it would be good to have a few Fedora
Magazine / CommBlog article on how to enable https:// on popular blog
hosting sites that people may use in addition to some options for
people to migrate too.

Charles

signature.asc
Description: This is a digitally signed message part
___
infrastructure mailing list -- infrastructure@lists.fedoraproject.org
To unsubscribe send an email to infrastructure-le...@lists.fedoraproject.org

New list for ResultsDB users

[Adam Williamson]

Hi folks! So I've been floating an idea around recently to people who
are currently using ResultsDB in some sense - either sending reports to
it, or consuming reports from it - or plan to do so. The idea was to
have a group where we can discuss (and hopefully co-ordinate) use of
ResultsDB - a place to talk about result metadata conventions and so
forth.

It seemed to get a bit of traction, so I've created a new mailing list:
resultsdb-users . If you're interested, please do subscribe, through
the web interface:

https://lists.fedoraproject.org/admin/lists/resultsdb-users.lists.fedoraproject.org/

or by sending a mail with 'subscribe' in the subject to:
resultsdb-users-j...@lists.fedoraproject.org

Please note: despite the list being a fedoraproject one, the intent is
to co-ordinate with folks from CentOS, Red Hat and maybe even further
afield as well; we're just using an fp.o list as it's a quick
convenient way to get a nice mailman3/hyperkitty list without having to
go set up a list server on taskotron.org or something.

Thanks folks!
-- 
Adam Williamson
Fedora QA Community Monkey
IRC: adamw | Twitter: AdamW_Fedora | XMPP: adamw AT happyassassin . net
http://www.happyassassin.net
___
infrastructure mailing list -- infrastructure@lists.fedoraproject.org
To unsubscribe send an email to infrastructure-le...@lists.fedoraproject.org

Re: Bodhi 2.4.0 released upstream

[Kevin Fenzi]

On Wed, 15 Feb 2017 16:58:09 -0500
Randy Barlow  wrote:

> Hello!
> 
> I've made a release of Bodhi 2.4.0 upstream:
> 
> https://github.com/fedora-infra/bodhi/releases/tag/2.4.0
> 
> What guidance would this group give about deploying it tomorrow
> (Thursday) vs. waiting until next Monday?

Sooner seems better than later to me, but do coordinate with mboddu on
pushes. ;) 

kevin


pgpn82E9nkdcB.pgp
Description: OpenPGP digital signature
___
infrastructure mailing list -- infrastructure@lists.fedoraproject.org
To unsubscribe send an email to infrastructure-le...@lists.fedoraproject.org

Re: Bodhi 2.4.0 released upstream

[Adam Williamson]

On Wed, 2017-02-15 at 16:58 -0500, Randy Barlow wrote:
> Hello!
> 
> I've made a release of Bodhi 2.4.0 upstream:
> 
> https://github.com/fedora-infra/bodhi/releases/tag/2.4.0
> 
> What guidance would this group give about deploying it tomorrow
> (Thursday) vs. waiting until next Monday?

New releases are traditionally deployed direct to production at 5:30pm
on Friday, just before you leave for a long vacation with no internet
access. Everyone knows this!
-- 
Adam Williamson
Fedora QA Community Monkey
IRC: adamw | Twitter: AdamW_Fedora | XMPP: adamw AT happyassassin . net
http://www.happyassassin.net
___
infrastructure mailing list -- infrastructure@lists.fedoraproject.org
To unsubscribe send an email to infrastructure-le...@lists.fedoraproject.org

Bodhi 2.4.0 released upstream

[Randy Barlow]

Hello!

I've made a release of Bodhi 2.4.0 upstream:

https://github.com/fedora-infra/bodhi/releases/tag/2.4.0

What guidance would this group give about deploying it tomorrow
(Thursday) vs. waiting until next Monday?

signature.asc
Description: This is a digitally signed message part
___
infrastructure mailing list -- infrastructure@lists.fedoraproject.org
To unsubscribe send an email to infrastructure-le...@lists.fedoraproject.org

Re: https blogs?

[Kevin Fenzi]

On Wed, 15 Feb 2017 18:19:00 +0100
Brian Exelbierd  wrote:

> This is a very reasonable proposal, but could represent a problem for
> some in an indirect way.  My personal blog is currently hosted in a
> manner that makes using https not possible.[^0]  I don't know if
> others are in a similar situation, but it is reasonable to think so.
> Enabling https is one thing, but in my case a full migration will be
> required. Is there a reason we need to require the blogs that are
> aggregated to be https and not just encourage it and move the planet
> to https?

Well, the main reason is that http blogs and content would cause most
browsers to show a 'partially insecure' type message. Which would cause
people to come to us and ask "why can't you secure your site?" :( 

But of course one option would be to just keep allowing http blogs and
educate people. 

kevin


pgpT2JAkcAJMO.pgp
Description: OpenPGP digital signature
___
infrastructure mailing list -- infrastructure@lists.fedoraproject.org
To unsubscribe send an email to infrastructure-le...@lists.fedoraproject.org

Re: contribute to fedora

[Kevin Fenzi]

On Wed, 15 Feb 2017 13:22:01 +0300
Anatoliy Kartashov  wrote:

>Hi, I am Anatolii.
>I have some time now and can work 5-6 hours a week. Sometimes more.
> 
>My skills
>  - puppet server configuration and manifest writing
>  - CentOS/RedHat linux administrator  ( My RHCE finished at oct
> 16, will update my certification)
>  - network engeeneer ( cisco, mikrotik, linux routers )
>  - vm - qemu-kvm, docker
>  - postfix mail servers
>  - hosting solutions ( nginx / apache + php/php-fpm +
> mysql/mariadb/galera cluster )
> 
> Thats my skills and I hope I will be useful for Fedora communiti.
> I know C, python, but I do not use it so I will be glad to work
> not only as system administrator, but as developer. Just to test my
> skills.
> 
> I hope thats the right mail list.

Welcome. :) 

Do take a look at 

https://fedoraproject.org/wiki/Infrastructure/GettingStarted

and our easyfix tickets (both in sysadmin and in the applications we
develop). 

kevin


pgphuiNIEmUle.pgp
Description: OpenPGP digital signature
___
infrastructure mailing list -- infrastructure@lists.fedoraproject.org
To unsubscribe send an email to infrastructure-le...@lists.fedoraproject.org

Re: Harrison Brock

[Kevin Fenzi]

On Tue, 14 Feb 2017 12:31:47 -0500
Harrison Brock  wrote:

> Hi,
> 
> Things changed a little here and I will have more time to help now.

Welcome back. 

> I would like to work in these areas:
> 
> 1. Web servers

This is actually the related websites team: 
https://pagure.io/fedora-websites/
 
> 2. Databases
> 
> 3. Networking engineering
> 
> 4. Security
> 
> 
> At this time I will be able to work 10 - 15 hours a  week.

Great. Do look at the easyfix tickets and feel free to chime in on IRC
if you have questions or see projects of interest going by. 

kevin


pgpjJerUDtFs0.pgp
Description: OpenPGP digital signature
___
infrastructure mailing list -- infrastructure@lists.fedoraproject.org
To unsubscribe send an email to infrastructure-le...@lists.fedoraproject.org

Re: https blogs?

[Brian Exelbierd]

On Wed, Feb 15, 2017, at 01:56 PM, Corey W Sheldon wrote:
> Tomasz Torcz:
> > On Wed, Feb 15, 2017 at 11:32:28AM +0100, Jean-Baptiste Holcroft wrote:
> >> Le 2017-02-14 20:10, Kevin Fenzi a écrit :
> >>> There's no real security advantage here, other than making more traffic
> >>> on the net encrypted, which I think is a good goal.
> >>>
> >>> What do folks think? Doable? To harsh? Pointless?
> >>
> >> Do you have any statistics of the number of blog that should migrate? Total
> >> blog number, total blog with partial https (is it easy to detect?), total
> >> blog with full https.
> >  
> >   I've tried to estimated this, using http://fedoraplanet.org/heads.html:
> > 
> >   – there are 716 blogs in total 
> > * 284 URLs start with https://
> > * 432 URLs start with http://
> >   
> >   - if I do s/http/https/ and try to access the blogs (of 432 "http://; 
> > ones):
> >  - 225 over https returned content with roughly the same size as 
> > returned over http
> >  - 209 weren't accessible by https
> >  - 34 weren't accessible by http, either
> > 
> >   I did not check if those 225 "forced https" contain any mixed content.
> > 
> > Summary:
> >   - we have 716 blogs on Planet
> >   - we can access (284+225=)  509 of them over https
> >   - by forcing https we would loose ~ 200 blogs
> > 
> 
> I'd recommend a hybrid deadline,  say  6 months from ?today ?($date)?
> blog is less favored if by Jan 1 2018 it's still not https it  gets
> dropped, this let's people know 1) we are seriously 2) not trying to
> kill them with an immediate seemingly arb. deadline.

This is a very reasonable proposal, but could represent a problem for
some in an indirect way.  My personal blog is currently hosted in a
manner that makes using https not possible.[^0]  I don't know if others
are in a similar situation, but it is reasonable to think so.  Enabling
https is one thing, but in my case a full migration will be required. 
Is there a reason we need to require the blogs that are aggregated to be
https and not just encourage it and move the planet to https?

regards,

bex

^0: I use a free hosting platform that cannot do https for custom
domains.  However, everything else, static site generation, git, etc. is
exactly like I like it :)
___
infrastructure mailing list -- infrastructure@lists.fedoraproject.org
To unsubscribe send an email to infrastructure-le...@lists.fedoraproject.org

Re: https blogs?

[Jean-Baptiste Holcroft]

Le 2017-02-14 20:10, Kevin Fenzi a écrit :

There's no real security advantage here, other than making more traffic
on the net encrypted, which I think is a good goal.

What do folks think? Doable? To harsh? Pointless?


Do you have any statistics of the number of blog that should migrate? 
Total blog number, total blog with partial https (is it easy to 
detect?), total blog with full https.


A few month ago, I read a blog post telling "planet libre" stoped using 
https because they had too much warnings and errors to fix because of 
expired certificate. I can't find it anymore :( I'll try to find it.


I'm not really confortable with kicking out unactive blogs, as we should 
respect past contribution as much as current ones. When I search for 
information from the past, old unactive blog post are still interesting, 
I assume removing them from planet would make it more difficult to find 
(most of them, including my own, have a very low audience).

___
infrastructure mailing list -- infrastructure@lists.fedoraproject.org
To unsubscribe send an email to infrastructure-le...@lists.fedoraproject.org

contribute to fedora

[Anatoliy Kartashov]

   Hi, I am Anatolii.
   I have some time now and can work 5-6 hours a week. Sometimes more.

   My skills
 - puppet server configuration and manifest writing
 - CentOS/RedHat linux administrator  ( My RHCE finished at oct 16,
will update my certification)
 - network engeeneer ( cisco, mikrotik, linux routers )
 - vm - qemu-kvm, docker
 - postfix mail servers
 - hosting solutions ( nginx / apache + php/php-fpm +
mysql/mariadb/galera cluster )

Thats my skills and I hope I will be useful for Fedora communiti.
I know C, python, but I do not use it so I will be glad to work not
only as system administrator, but as developer. Just to test my skills.

I hope thats the right mail list.
___
infrastructure mailing list -- infrastructure@lists.fedoraproject.org
To unsubscribe send an email to infrastructure-le...@lists.fedoraproject.org