On Tue, Jan 12, 2010 at 08:29:51AM -0600, Mike McGrath wrote:
> What are others using for log analysis?
Logcheck was recommended to me once, but it seems like there are no
proper releases, but development is active on git:
http://logcheck.org/index.html
Regards
Till
pgpKwc154Ig6T.pgp
Descripti
On Sun, Jan 31, 2010 at 11:47:24AM -0800, Darren VanBuren wrote:
> Koji is for building packages for Fedora, once they're approved to be
> included in Fedora's package repos. If we have resources and people
> put in a RFR for a Koji instance for hosted projects, we could run
> one.
Imho this is m
On Mon, Feb 01, 2010 at 10:35:45AM +0100, Jeroen van Meeuwen wrote:
> On 01/31/2010 09:16 PM, Till Maas wrote:
> > On Sun, Jan 31, 2010 at 11:47:24AM -0800, Darren VanBuren wrote:
> >> Koji is for building packages for Fedora, once they're approved to be
> >> in
On Sun, Aug 08, 2010 at 11:28:45AM -0600, Kevin Fenzi wrote:
> -print " Access denied: $myname is not in ACL for $repos\n" if $exit_val;
> +print " Access denied: CVS is read-only now, use git:
> http://fedoraproject.org/wiki/Using_Fedora_GIT\n"; if $exit_val;
Imho it is better to use h
On Mon, Aug 09, 2010 at 09:56:51AM -0600, Kevin Fenzi wrote:
> We have an old ticket to add some kind of rss feed for out mailing
> lists:
>
> https://fedorahosted.org/fedora-infrastructure/ticket/1002
>
> I added some ideas there a while back, but I don't have time to work on
> this further. A
On Thu, Aug 19, 2010 at 08:18:00AM -0500, Mike McGrath wrote:
> On Thu, 19 Aug 2010, Tajidin Abd wrote:
>
> > Alright my packages that i maintain have those dead cvs links since we do
> > not use this. I know we use git now what will happen to those dead links is
> > it better to point it
> > to
On Sat, Sep 04, 2010 at 05:22:51PM +0100, Richard W.M. Jones wrote:
>
> There's a legitimate use of git hosting providers as mirrors, where
> they don't act as the canonical upstream of a project, but they act as
> backup git mirrors. This is useful if you want to allow an alternate
> place to pu
On Tue, Oct 26, 2010 at 10:29:15AM -0500, matt_dom...@dell.com wrote:
> any idea who this is?
>
> From: Umer Akhtar [umm...@gmail.com]
> I want to join Fedora Videos, Could you please send me Invitation for Join it.
> I hope you will do some thing for me.
Maybe he means this fedorahosted projec
Hi,
I would like to ask if someone would sponsor me to host Upstream Release
Monitoring[0] on a Infrastructure machine.
To host this, an account with cron and unrestricted internet access
would be needed and some python packages. The accound would need to
store a plain text Red Hat bugzilla passw
On Tue, Nov 23, 2010 at 08:55:04AM +0100, gia...@gmail.com wrote:
> On Thu, Nov 18, 2010 at 7:24 PM, Till Maas wrote:
> > I would like to ask if someone would sponsor me to host Upstream Release
> > Monitoring[0] on a Infrastructure machine.
> Is there a proper place to discus
On Mon, Dec 06, 2010 at 12:47:22AM -0500, Ricky Zhou wrote:
> On 2010-12-05 11:16:23 PM, Jeffrey Ollie wrote:
> > Either Ejabberd or Jabberd2 are pretty easy to set up, at least in a
> > standalone single-node mode.
> For what it's worth, I'm running an ejabberd, and have a trivial
> puppet module
On Fri, Oct 07, 2011 at 09:30:00AM -0600, Kevin Fenzi wrote:
> One possible compromise: go ahead and use ssh agent forwarding, but
> after you login, do a 'ssh-add -D' to drop all your keys. Then, when/if
> you need to make a copy connection it should ask for your passphrase to
> unlock the key ag
On Wed, Oct 19, 2011 at 07:18:34AM -0700, Toshio Kuratomi wrote:
> > As for "lost token", the idea would be that the admin would be able to
> > reset the user's login requirements to password or similar until a new
> > token can be mailed out. (Leaving it up to the admin to perform proper
> > veri
On Thu, Jan 24, 2013 at 09:05:39AM -0800, Toshio Kuratomi wrote:
> * I know that implementing 2fa to log into fas will cause a lot of breakage
> that we'll have to fix before we deploy:
> - session cookie for fas would have to change so you don't have SSO
> between FAS and other apps.
Wou
On Wed, Feb 13, 2013 at 01:52:15AM -0500, Seth Vidal wrote:
> For the rest we make them non-ssl'd. The openid login, of course
> would be ssl'd, but the rest of the site doesn't really need to be,
> does it?
I guess if fedorahosted is not used via HTTPS, attackers could easily
make users not use
On Wed, Feb 13, 2013 at 11:18:27PM +0100, Patrick Uiterwijk wrote:
> On Wed, Feb 13, 2013 at 10:58 PM, Till Maas wrote:
>
> > On Wed, Feb 13, 2013 at 01:52:15AM -0500, Seth Vidal wrote:
> >
> > > For the rest we make them non-ssl'd. The openid login, of course
&g
On Thu, Sep 05, 2013 at 12:01:35PM -0500, Ian Weller wrote:
> This is the same for a form that asks for password + token code, but a
> simple password + token code field raises too many questions for someone
> who is logging in to an application and has no idea what a token code
> is.
IMHO it wou
On Thu, Dec 19, 2013 at 04:16:33PM +0100, Miroslav Suchý wrote:
> I have suggestion.
> Can we please put into tickets how they have been resolved?
> I mean something else then "Fixed".
>
> Something like:
> Fixed - puppet.git commit abc123
> or
> Fixed - I run command "rm foo.bar"
>
> This w
On Fri, Dec 20, 2013 at 03:11:17PM +0100, Pierre-Yves Chibon wrote:
> So, what I would like to ask is:
> * what do you think of the project? Worth pursuing or not?
Even if it is only used by Fedora it is good to get away from the wiki
page. I always planned to add some more features that require
Hi,
On Mon, Jan 06, 2014 at 12:45:50PM -0700, Kevin Fenzi wrote:
> Additionally, this month, I am CC'ing the infrastructure list. If you
> would like to send your feedback there as well everyone can see and
> comment on it.
Including the infrastructure list seems to be a regular item and not
so
On Sat, Dec 28, 2013 at 07:42:18AM -0700, Kevin Fenzi wrote:
> On Sun, 22 Dec 2013 09:14:27 +0800
> Christopher Meng wrote:
> > Does torrent.fedoraprojecy.org support ipv6?
> >
> > One of my friends said that he couldn't connect to tracker:
> >
> > http://torrent.fedoraproject.org:6969/announce
Hi,
this sounds like a good idea.
On Wed, Feb 12, 2014 at 09:46:27AM +0100, Pierre-Yves Chibon wrote:
> So Ralph and I wrote summershum, it's a simple database storing for each file
> in
> each package:
> - the sha1sum of the file
> - the md5sum of the tarball
It might be helpful to store
On Mon, Feb 03, 2014 at 11:01:48AM -0700, Kevin Fenzi wrote:
> 0. Whats your fedora account system login?
till
> 1. Have you logged in and used your fi-apprentice membership to look at
> our machines/setup in the last month? Do you plan to?
yes
> 2. Has it helped you decide any area you wish t
On Sat, Jun 07, 2014 at 04:26:45PM +0100, Michael Scherer wrote:
> Can i assume that I would be able to say "use this playbook, but instead
> of using the port 22, use port 1234" without changing the playbook ?
>
> In this case, I think this would mean that if I can create a ssh tunnel
> on the r
On Sun, Jun 08, 2014 at 02:42:41AM +0100, Michael Scherer wrote:
> And after a quick crude test, if you have ssh listening on 2 ports, ssh
> will treat each as a different entry in known_hosts, and so ask again.
> ( or at least on my laptop, I didn't dig more given the hour, will try
> to search a
On Thu, Aug 07, 2014 at 05:33:38PM +0200, Pierre-Yves Chibon wrote:
> The key ideas are:
> ==
> * the username, password and OTP are not sent in the same request (otherwise,
> if
> $attacker intercept this request, $it has all the info at once)
What kind of attacker is able to
On Fri, Aug 22, 2014 at 12:49:59PM -0600, Kevin Fenzi wrote:
> I think it would be nice to explore making our dist-git more secure.
Since access to dist-git (e.g. ssh keys) is managed via FAS, initially
FAS should require 2FA if you require 2FA for other services. This might
already be a problem
On Wed, Aug 27, 2014 at 01:57:03PM -0600, Kevin Fenzi wrote:
> git clone http://infrastructure.fedoraproject.org/infra/ansible.git
> scripts/freezelist -i inventory
I just noticed that the autosigner is on the freeze list, which I would
like to get removed, since it is not used anymore for Branch
Hi,
I would like to propose the following change for a free exception since
I added it already to ansible assuming it can be applied only to staging
host where appropriate.
Regards
Till
Use https for fedorapeople URLs and copr-be.cloud.fedoraproject.org
- This avoids an redirect from HTTP and HT
On Tue, Sep 16, 2014 at 02:14:06PM -0600, Stephen John Smoogen wrote:
> So I feel bad.. I didn't see this til today and its been going on for a
> while. Some script is putting a lot of file entries in / versus where-ever
> it is supposed to do so. The entries will be .retry
> Anyone know what this
On Wed, Sep 17, 2014 at 04:38:38PM -0400, R P Herrold wrote:
> On Wed, 17 Sep 2014, Stephen John Smoogen wrote:
>
> > +export HOME=/root/
>
> so long as you are setting a path, why not set: /tmp/ and so
> signal that it is readily discardable content?
This would lead to insecure temp files sinc
Hi,
On Tue, Oct 14, 2014 at 10:03:19PM -0600, Kevin Fenzi wrote:
> On Tue, 14 Oct 2014 19:49:05 -0600
> Kevin Fenzi wrote:
>
> > FYI, I have tested the koji change (along with a change of ciphers) in
> > stg and it seems fine with it.
>
> Sadly, I didn't test auth connections, and they are bro
On Wed, Oct 15, 2014 at 11:15:44AM -0600, Kevin Fenzi wrote:
> On Wed, 15 Oct 2014 17:47:37 +0200
> Till Maas wrote:
>
> > the current issue only allows an attack against the secrecy of SSL
> > communication. This does not seem to be a problem for koji as used in
> > F
On Tue, Dec 30, 2014 at 09:02:16AM +0530, Parag Nemade wrote:
>Another question, anyone can reply, why only one person is given this
> work? There are few other people in the group why not rotate this work like
> we have pushduty for bodhi updates?
This was discussed when the process official
On Wed, Feb 18, 2015 at 04:46:39PM -0700, Kevin Fenzi wrote:
> #topic Open Floor
I want to propose this:
https://fedorahosted.org/fedora-infrastructure/ticket/4670
#4670: move planet.fedoraproject.org to fedoraplanet.org
Regards
Till
___
infrastructur
Hi,
I would like to ask for a freeze exception to make the fedora planet
available at fedoraplanet.org
The patch is quite long to fix several links:
https://fedorahosted.org/fedora-infrastructure/attachment/ticket/4670/0001-Move-planet.fedoraproject.org-to-fedoraplanet.org.patch
The freeze excep
On Wed, Oct 28, 2015 at 10:06:53AM -0600, Kevin Fenzi wrote:
> koji operates on package names. It will only get rpms from a package in
> one place, it won't mix them at all.
>
> So, if RHEL has python-foo and EPEL creates a package named python-foo,
> it will cause koji to completely and utterly
On Wed, Jan 04, 2017 at 10:51:08AM -0700, Kevin Fenzi wrote:
> Firstly, what all do we want to get done in the next 2 months?
> The end of Feb is the end of the Red Hat Fiscal year and many of us
> have goals tied to that timeframe. :)
I hope to get HSTS/HTTPS only for everything in fedoraprojec
Hi Clement,
On Sat, Jan 14, 2017 at 10:54:55PM +0100, Clement Verna wrote:
> This patch is fixing the link to the rdiff-backups' SOP reference
> inside the ansible's SOP.
thank you very much. I applied it.
Kind regards
Till
___
infrastructure mailing l
Hi,
On Thu, Apr 20, 2017 at 03:45:16PM +0200, Pierre-Yves Chibon wrote:
> - With pkgdb out of the loop, we'll need to figure some things out:
> - Where/How to store the contact info for bugzilla
> - Not sure relying on pagure's ACLs there is the way to go since we would
> loose a leve
On Tue, Sep 12, 2017 at 09:34:17AM +0200, Pierre-Yves Chibon wrote:
> - The follow up from pagure deployment on dist-git is getting lower, there is
> only one item left: migrating the watch statuses from pkgdb to pagure.
> This has been queued to be fixed.
> https://pagure.io/fedora-infrastructure
regards
Till
From 684353289eca2f38c190cd426b962c169d446812 Mon Sep 17 00:00:00 2001
From: Till Maas
Date: Fri, 22 Sep 2017 21:46:47 +0200
Subject: [PATCH] Make cvsadmin group admin for dist-git pagure
Releng manages dist-git pagure and in the past cvsadmin was used for
adminstrative permissions
or a FBR to add the cvsadmin group:
From bc61c3e99fff2c30cce9300a1d70761ec5a42dfc Mon Sep 17 00:00:00 2001
From: Till Maas
Date: Fri, 22 Sep 2017 21:46:47 +0200
Subject: [PATCH] Make cvsadmin group admin for dist-git pagure
Releng manages dist-git pagure and in the past cvsadmin was
On Mon, Sep 25, 2017 at 01:54:49PM -0700, Kevin Fenzi wrote:
> This morning pkgs02 stopped answering to git:// clone urls from koji,
> breaking builds.
Could we make koji also use https:// nowadays? I remember that there was
a ticket about this.
> systemd was happy after that, but load was still
On Sun, Sep 24, 2017 at 10:42:37PM +0200, Till Maas wrote:
> From bc61c3e99fff2c30cce9300a1d70761ec5a42dfc Mon Sep 17 00:00:00 2001
> From: Till Maas
> Date: Fri, 22 Sep 2017 21:46:47 +0200
> Subject: [PATCH] Make cvsadmin group admin for dist-git pagure
This is now deployed.
Kind
Hi
On Tue, Apr 10, 2018 at 10:27:59AM +0200, Miroslav Suchý wrote:
> Dne 5.4.2018 v 04:16 Neal Gompa napsal(a):
> > The main problem, of course, is finding someone who wants to run it...
>
> Even if you find someone (not as big problem), that guy basically cannot do
> anything else. So basically
Hi,
On Tue, May 29, 2018 at 09:00:49AM +0200, Clement Verna wrote:
> Note that we already have a general "ask whatever, whenever" on
> #fedora-apps and #fedora-admin where anybody can "ask whatever, whenever"
> :-), but this does not seems to work since we have very few requests.
>
> So do you t
Hi,
On Fri, Jun 01, 2018 at 01:14:29PM -0700, Kevin Fenzi wrote:
> We have tried things like this in the past, but I'd be happy to give it
> another go. ;)
great.
> The hard part is picking times. What day/time should we give this a try?
How about Wednesday at 15:00 UTC? Then the weekend fallo
On Mon, May 20, 2019 at 09:47:56AM -0700, Kevin Fenzi wrote:
> Greetings.
>
> We are currently running modernpaste for paste.fedoraproject.org.
>
> It's pretty dead upstream. The primary maintainer said they wanted to
> make a v2 version that was a complete re-write. That was about a year
> ago a
Hi,
awesome, how you improved the layout of this e-mail. Thank you! If the
original source is still a google doc please let me know how you convert
it.
On Fri, Feb 14, 2020 at 05:56:26PM +, Aoife Moloney wrote:
> ### AAA Replacement
IMHO this section should be labeled "AAA - Replacement for
Hi,
On Fri, Feb 28, 2020 at 06:38:43PM +, Aoife Moloney wrote:
> ### AAA Replacement
> For our full blog post, check out Ben Cottons weekly
> For more information regarding outstanding issues, please see here.
> To view our current scrum board, please see here.
the links are missing here, a
On Thu, Jun 25, 2020 at 09:59:37PM +0200, Pierre-Yves Chibon wrote:
> I've recently had quite some pain with vagrant (just today, I've tried several
> time to start my bodhi vagrant box and lost my morning w/o success).
>
> I guess it may be nice to see if there is something else out there that we
On Mon, Sep 13, 2021 at 12:49:21PM -0600, Tim Flink wrote:
> +# this is a hotfix hack to work around the sudden config change in
> rhbz where the max
> +# number of bugs returned for a query is 20
> +# it seems to be working for now but may need more work going forward
> +
53 matches
Mail list logo
