Transition Technology: Ticket Query

### Stable BOA-2.3.5 Release - Full Edition
### Date: Wed Oct 15 16:28:25 PDT 2014
### Includes Aegir 2.1 with improvements
### Latest hotfix added on: Wed Oct 15 20:09:52 PDT 2014
# Release Notes:
  This new BOA release includes important updates and bug fixes.
  * All new Drupal 7 platforms received Drupal core security upgrade.
    For details please read: https://www.drupal.org/SA-CORE-2014-005
  * All existing Drupal 7 built-in platforms will receive a hot-fix for
    this known vulnerability: https://www.drupal.org/SA-CORE-2014-005
    once you will run 'barracuda up-stable' command on your server.
    This procedure is automated on hosted and managed Aegir at Omega8.cc
  * Your custom D7 platforms created in the ~/static directory tree
    will be checked in the next 12 hours after the upgrade, and if you
    have not applied this patch yet, it will be applied automatically
    for you - but only if there is at least one active site present
    in the given custom D7 platform. Note that while this procedure is
    automated on hosted and managed Aegir at Omega8.cc, on self-hosted
    BOA systems it will work only if you will set _PERMISSIONS_FIX=YES
    in /root/.barracuda.cnf (default is NO)
  We recommend that you upgrade your D7 sites using safe workflow:
    https://omega8.cc/your-drupal-site-upgrade-safe-workflow-298
# Updated Octopus platforms:
  aGov 1.5 --------------------- https://drupal.org/project/agov
  Commerce 1.31 ---------------- https://drupal.org/project/commerce_kickstart
  Commerce 2.19 ---------------- https://drupal.org/project/commerce_kickstart
  Guardr 1.14 ------------------ https://drupal.org/project/guardr
  Open Atrium 2.22 ------------- https://drupal.org/project/openatrium
  Open Outreach 1.12 ----------- https://drupal.org/project/openoutreach
  OpenPublic 1.2 --------------- https://drupal.org/project/openpublic
  Panopoly 1.12 ---------------- https://drupal.org/project/panopoly
# New features and enhancements in this release:
  * Explain that Solr self-provisioning works only if _MODULES_FIX=YES is set.
  * Reverify all sites daily if /root/.force.sites.verify.cnf ctrl file exists
    and _PERMISSIONS_FIX=YES is set in /root/.barracuda.cnf (default is NO)
# Changes in this release:
  * Security: Remove support for SSLv3 due to POODLE vulnerability.
  * Disable Redis in Hostmaster until we will fix the Views based pages/blocks.
  * Disable site_readonly for non-dev sites by default.
  * Drush: Upgrade command line version 6 to mini-6-04-10-2014
  * Enable AllowUserFXP in Pure-FTPd config by default.
  * Remove support for already deprecated non-LTS Ubuntu versions.
  * Run manage_ip_auth_access only once per minute.
  * The INI variable redis_flush_forced_mode is enabled by default (again).
  * Use sysklogd instead of rsyslog on Ubuntu.
# System upgrades in this release:
  * MariaDB 5.5.40
  * Nginx 1.7.6
  * OpenSSH 6.7p1 (if installed from sources)
  * OpenSSL 1.0.1j (if installed from sources) - security upgrade.
  * PHPRedis: master-03-10-2014
# Fixes in this release:
  * Add auto-detection of Legacy Ruby patch level update on old systems.
  * Add cleanup for ghost/broken sites dirs leftovers.
  * Add missing cleanup for backup_migrate leftovers.
  * Always cleanup pid files on exit/abort.
  * Apply patch for SA-CORE-2014-005 in all shared D7 cores/built-in platforms.
  * Compass Tools: Install 1.9.3 ffi expected by older themes.
  * Fix db_port entry in all vhosts hourly.
  * Fix for broken erpal-7.x-2.0-7.31.1
  * Fix for broken site level drushrc.php file.
  * Fix for false alarm caused by ghost sites leftovers.
  * Fix for incorrect hash filtering on systems with OpenSSL built from sources.
  * Fix locales: Numerous fixes and improvements -- thanks ar-jan!
  * Fix typo in REVISIONS.
  * Force site Verify via frontend if drushrc.php has been fixed.
  * Issue #435 - SQL: Remove deprecated table_cache +update table_open_cache
  * Issue #440 - Improve innodb_buffer_pool_size calculation and add 10%
  * Issue #441 - New Relic is not disabled after removing newrelic.info file.
  * Issue #442 - Skip locked/fpmcheck if /root/.high_traffic.cnf exists.
  * Issue #444 - PHP: Remove useless sed replacement in pool.d/www{*}.conf
  * Issue #445 - Remote Import: update 6.x-2.x branch for Aegir 2.x and Drush 6
  * Issue #447 - Export LANG, LANGUAGE and all LC_ environment variables.
  * Issue #447 - Improve locales consistency.
  * Issue #447 - Set default LC_CTYPE and LC_COLLATE environment variables.
  * Issue #447 - Simplify locales configuration on Ubuntu.
  * Issue #448 - Enforce locale settings by configuring defaults.
  * Issue #452 - PHP build is broken with latest MariaDB 5.5.40
  * Make sure that db_port is never empty and defaults to 3306.
  * Make sure that firewall monitoring scripts never run simultaneously.
  * Make sure that standard caching is enabled in hostmaster.
  * Pause hostmaster tasks when RVM install for any user is running.
  * PHP: Do not run rebuilds if not needed.
  * PHP: Fix for broken upgrade logic on libcurl or libssl packages upgrade.
  * Remove acquia_connector from latest Commons to avoid broken installs.
  * Remove all legacy gems and re-install RVM/Ruby for root from scratch.
  * Remove legacy replacement to avoid converting symlinked includes into files.
  * SQL: Use correct defaults if MySQLTuner test failed.
  * Workaround for Drupal flood using 127.0.0.1 for all requests behind proxy.
### Stable BOA-2.3.4 Release - Full Edition
### Date: Wed Oct 15 09:51:08 PDT 2014
### Includes Aegir 2.1 with improvements
  Release Notes and changelog for BOA-2.3.4 has been merged into BOA-2.3.5
  above after security upgrades related to OpenSSL and SSLv3 have been added
  shortly after 2.3.4 release.

Transition Technology: Ticket Query

#655: Add social media icons with counters to blogs listings views

#772: new TIs not appearing on staging until caches flushed

#758: * Advisory ID: DRUPAL-SA-CORE-2014-003

#701: Emails & Telephone calls

#662: Subscriptions' links in text emails breaking

#636: Changes to Space.transitionnetwork.org homepage to facilitate user registration

#590: Drupal performance improvements

Summary of actions and status

TODO

Done

#582: TN.org platform and sites

#908: Please enable Google Analytics

#906: I borked it

#888: Adverts on Transition Network Front Page loaded via flickrit.com embedded content

#798: BOA-2.3.5

#785: SA-CONTRIB-2014-086 - Custom BreadCrumbs - Cross Site Scripting (XSS)

#777: Comments to blog post only showing up when logged in

#774: * Advisory ID: DRUPAL-SA-CORE-2014-004

#773: download copy of current TN D6 website

#755: Site administrator's file upload capacity: not responding to changes

#751: Email alert changes

#724: Subscription emails from Rob's blog not arriving.

#708: Map not showing Indian initiative

#704: Image not scaling on project

#703: Image not scaling on project

#702: Attachments not being deleted from Trustees page

#693: Module security updates: February 2014

#680: Mixed content: HTTP content on HTTPS version of site

#679: Filter Initiative by Country not working

#667: Development handover process

#663: De-commission the PSE

#659: Featured story on homepage not updating

#658: Check caching on Social Reporters views

#657: Homepage slideshow: can't order the images

#654: TIs appearing in 'TIs by list' view without a number

#653: Report for ingredients content type

#652: Report for resource content type

#651: Report for tools content type

#650: Helping TN strategy consultation with online publishing

#649: Add commenting to /films/ content type in January

#648: Edit the contact form reply in January

#637: What is the wordcount for the /news and /blogs/rob-hopkins teasers?

#634: Embeds - some don't work

#633: RHS blocks changes for homepage

#628: Change space notifications email from IJK.co.uk to TN.org

#627: Users: deleting their own accounts

#624: Comment handling on pages: particularly Austerity one

#623: Question about revisions

#622: Maps not working on TN.org

#621: Check and speed up updates to homepage sections: TC and slideshow

#617: Help adding text to account creation email

#616: Initiatives map not showing on http

#615: Move to GMap 6.x-2.x-dev as and get clusterer to work

#614: Subscription option for Social Reporters CT

#608: User profile pictures are too big

#605: Can we make the subscriptions management admin view re-order-able?

#602: RSS problems

#584: News CTs and featured images: not handling as expected

#581: Remove 'add to newsletter' option for site editors/admins

#578: Comments subscriptions: enable user alerts if a user has made a comment

#575: User system is blocking *everyone* - needs fixing urgently

#571: Force HTTP for anonymous, HTTPS for logged in users

#570: Notifications: not sending complete URL

#568: TC blog: can't *not* send notifications

#548: All Admin functions broken on TN.org

#208: Dblog Issues

#207: Logwatch Issues

#919: Site offline

#907: TN Drupal database size

#874: Please check & then install Georss if no problems

#821: Projects forms being hammered by Spam

#809: [Security-news] Drupal Core - Moderately Critical - Multiple Vulnerabilities - SA-CORE-2014-006

#792: [Security-news] SA-CONTRIB-2014-094 - Webform Patched - Cross Site Scripting (XSS)

#789: SA-CONTRIB-2014-088 - Mollom - Cross-site scripting (XSS)

#761: Spam account cull

#741: Views editor disappears in backend

#731: Meetings in maintenance

#715: Views admin pages not visible.

#661: Add button block to homepage RHS: Send us your news stories

#575: User system is blocking everyone - needs fixing urgently

#568: TC blog: can't not send notifications