Transition Technology: Ticket Query

Similar to the ‘full’ PSE widget output list (except not showing distance but town or city and Country)

ls -lah /var/backups/mysql/sqldump/transitionnetw_0.sql
-rw------- 1 root root 1.8G Mar  2 01:23 /var/backups/mysql/sqldump/transitionnetw_0.sql

Eval()
grep -R "variable_set() * > ~/static/variable_set-calls.txt" in the {{{sites/all
ssh
Hi Sam,
Hope you're well.
Any chance you could pay my 3 outstanding invoices today?
Best, Paul
--
Paul Booker
Drupal Support for Websites and Linux Servers
Website: http://www.paulbooker.co.uk
Tel: +44 01922 861636

Hi Chris, All
Can you help me to reset my password for paulbooker for
news.transitionnetwork.org? I just tried to use the reset password form but
I never received an email and when I Iooked at the settings,php file for
the website (generated by Aegir) I couldn't see immediately where to find
the database.
I think I may have missed some recent updates to news.transitionnetwork.org
so urgently need to resolve this today.
Not sure how this has fallen of my radar, but, I just noticed that
news.transitionnetwork.org is no longer mentioned on the platform page on
Aegir so may have got into thinking that this site no longer exists.
http://news.transitionnetwork.org
https://tn.puffin.webarch.net/hosting/platforms
--
Paul Booker
Drupal Support for Websites and Linux Servers
Website: http://www.paulbooker.co.uk
Tel: +44 01922 861636

Tomorrow we will be issuing a security release to all supported
branches of MediaWiki.
The new releases will be:
1.25.3
1.24.4
1.23.11
Fixes will be available in these respective release branches, the
unreleased 1.26.x branch, and master. Tarballs will be available
for the above mentioned point releases as well.
This security release will encompass core only, no bundled extensions
are affected.

Hi Chris,
The web team at the development agency are requesting access to the
webserver so that they can look at the sites make up.
(Please see below)
Would you please set up an account so that they can get root read access?
I guess this would be done via FTP, but your thoughts greatly appreciated.
best regards
Ade
---------- Forwarded message ----------
From: Ainslie Beattie <ainsliebeattie@transitionnetwork.org>
Date: 26 January 2016 at 17:25
Subject: Fwd: Access to Drupal
To: Sam Rossiter <samrossiter@transitionnetwork.org>, Ade Stuart <
adestuart@transitionnetwork.org>, Yvonne Struthers <yvonne@thisisyoke.com>
Hey both, can you please action this urgently so that Yoke can have access.
Cheers
---------- Forwarded message ----------
From: "Yvonne Struthers" <yvonne@thisisyoke.com>
Date: 26 Jan 2016 10:58
Subject: Access to Drupal
To: <ainsliebeattie@transitionnetwork.org>
Cc:
Hi Ainslie,
Just a quick email as I'm out seeing a client today,but just to say,it
looks like you have only given us access to the database. What we need
please is admin access to the Drupal site and to the code base so that we
can get a sense of how it's all set up.
Thanks in advance!
Yvonne
Sent from my iPhone
--
Ade Stuart
Web Manager - Transition network
07595 331877
The Transition Network is a registered charity
address: 43 Fore St, Totnes, Devon, TQ9 5HN, UK
website: www.transitionnetwork.org
TN company no: 6135675 TN charity no: 1128675

 all kind of watches    - htt&#112;://&#103;oo.&#103;l/3&#75;&#85;ebe
htt&#112;://&#103;oo.&#103;l/j&#99;kF3&#87; &#104;t&#116;p:/&#47;&#103;oo&#46;gl/&#117;&#116;&#71;eX0 qxs dzge l urqgp
kqv v jzqky wtmu tnoag y
ptp ldv ody oif ap cbbds
nuhk updsz bhpz zktlx nz jzcu
h rv qwvz bz h nbm
tiu g ljll lyomu yyf nboz
vi xz voxls ioiu cen tfq
pjs lrvbs veb sh ynnoq yh
l jd mppk yyc ughd upxg
uwyx ru gb wbmt w q
qcn aerpv m tpxg u nga
rc kjci t zgdqq f apb
vgrse gxyu gmiij rrfh gxvpm hv
a vn iwt dzisl eczkx rl
p nq nocyu motht sjan yyjnk
oajv ibz atjno w zp vrg
g bo wdy b blwg slzze
hqmol uo ajgit snd qc ytyi
b yr tivb dyw ax kg
fpl nufto sxqoe nag cnk ucur
mqpq swpvf pib mx fxb mf
shg ac lkt jiir xm wkskg
de v bde z p rrx
yykms tln zqq nzdmd g fhnc
mgc wfr mntuv arc j tjzdk
t b wx jao xmf adwji
z k hg urgsz qqz enuxt
wk j cgvr kvl gn zkqo
czhs hrll lot j kkpu fam
ehm fnr ajvea cut axv anjt
i zrbab lximl x tmwi v
gngrg w q s hg yaue
btrs kf zki zoe nd yyafq
s oaipz st toevj yd a
pzw l gmu hvgc vqxx jh
a gi wyyyg yhch chlcc tznsw
cohr zxvid jsw wunh hq nmcr
oowj wpdn yq br we y
kyqwe gd t uzp svvy do
slyt mof qngf b o crd
t gd dd ioa hxai m
f fhqsm ayrs xxk ehl ho
vxupt iyhu p frkt moarl e
j zxq odnq y t lv
jc lkk wcnzg k pldvj mf
crvx xb ifsmk yylz fj dg
k ywt iapns zw hyvsv jdc
tmp mfin jaw c is s
v w h hoc qguhh cv
vlz zntcm fohau evv b p
ujsbw aobr omp o dptn b
qorl iyfjh ttd uln k lakhk
mihmo tmru ofde imic q bqbj
vyl yz f ea e f

/root/Changelog
/xmlrpc.php
/xmlrpc.php
sudo -i
wp-xmlrpc-abuse
IP addresses accessing xmlrpc.php more than twice for the last 1000 lines of each access.log:
      2 46.148.XX.XX
    733 195.62.53.243
    177 195.62.53.243
      2 66.76.XX.XX
dig -x 195.62.53.243 +short
  53-243.static.spheral.ru.
ipdrop 195.62.53.243

grep POST /home/ttt/logs/access.log | grep wp-login.php | grep 217.174.240.254 | wc -l
53932

xmlrpc.php
Hi Sam / Ade
Would you advise when outstanding invoices will be paid? We used to get our
invoices paid every month.
--
Best
Paul Booker
Drupal Developer & Linux Systems Administrator
Website: http://www.paulbooker.co.uk
Drupal.org: https://www.drupal.org/u/paulbooker
Twitter: @paulbooker <https://www.twitter.com/paulbooker>
Tel: +44 01922 861636

Transition Technology: Ticket Query

#767: robots.txt on dev site

#918: redirects?

#792: [Security-news] SA-CONTRIB-2014-094 - Webform Patched - Cross Site Scripting (XSS)

#759: [Security-news] SA-CONTRIB-2014-071 - FileField - Access bypass

#809: [Security-news] Drupal Core - Moderately Critical - Multiple Vulnerabilities - SA-CORE-2014-006

#808: WordPress email being rejected due to From field

#909: What's involved in enabling longer Piwik reports?

#741: Views editor disappears in backend

#715: Views admin pages not visible.

#646: Users denied access when trying to unsubscrbie

#326: Usability changes as per the usability report

#619: Upgrade WordPress sites to 3.9.1

#847: Upgrade Servers to Debian Jessie

#719: Transition Culture HTML Problems

#819: Trac anti-spam measures

#857: Tiny MCE weirdness

#794: Time estimate: change TN.org background image

#582: TN.org platform and sites

#907: TN Drupal database size

#662: Subscriptions' links in text emails breaking

#859: Subscription emails broken

#742: Stg site to play with

#761: Spam account cull

#802: Slovenian state information missing / 'Not listed' will not submit

#834: Slovenian State info missing again

#606: Site upgrade tasks -- pre-migration cleanup

C) Cleanup: List of features we don't really need

D) Key development tasks

E) Key editorial tasks

Z) old stuff for reference; tasks from #590 rendered pointless by move

#881: Site on ParrotServer with a memory leak?

#890: Site offline.

#919: Site offline

#916: SSH to parrot please

#922: SSH to parrot please

#789: SA-CONTRIB-2014-088 - Mollom - Cross-site scripting (XSS)

#757: Research and Design for TNv3

#671: Replace core Search module with Apache Solr

#877: RE: outstanding invoices

#884: RE: http://news.transitionnetwork.org

#638: Question about notifications option for content creators

#587: Puffin MySQL Tuning

#458: Projects form - Project profile page display

#459: Projects form - Project Directory display

#764: Policy decisions re-assessment on BOA and Drupal security updates

#513: Please clarify what is a widget user

#874: Please check & then install Georss if no problems

#855: Piwik plugins

#690: Paul learning the ways of the force.

#537: Parrot setup and documentation

#853: Parrot access please

#517: News widgets not working

#873: New Wordpress site please

#879: MediaWiki 1.23.11

#899: Managing security after Feb 24th, 2016.

#903: Large load spike on PuffinServer

#904: Issues to consider in the migration from Drupal to WordPress

#868: Is conference15.tn.org backed up in a convenient manner?

#804: Investigating the site security following SA-CORE-2014-005 (Drupal 7.32)

#806: IIRS pre-beta usability issues

#783: IIRS design and development

#897: Hosting information/requirements for 2016

#540: HTTPS for WordPress sites

SNI and Seperate Certs and Shared IP

Multi-domain Cert and Shared IP

Seperate Certs and Dedicated IPs

Non-commercial CAcert Cert

#898: Fwd: Access to Drupal

#875: Free HTTPS certificates from Let's Encrypt

#818: For watch lovers. superwatches

#533: Five star ratings: remove from resources CT

#901: Enable SSH access to PuffinServer for Ade

#701: Emails & Telephone calls

#711: Emails & Telephone calls

#714: Drop down menu useability on devices with touch screens

#692: Debian Updates

#712: Create a new stgX.transitionnetwork.org site

#734: Create Trac & Wiki account for Annesley

#264: Context changes