Timeline


and

12/05/14:

16:32 Ticket #809 ([Security-news] Drupal Core - Moderately Critical - Multiple ...) updated by paul
Add Hours to Ticket, Total Hours changed
Cheers Ed. I Updated / closed the ticket. @Chris Thanks for suggesting …
16:14 Ticket #809 ([Security-news] Drupal Core - Moderately Critical - Multiple ...) updated by ed
Good news well done Paul - don't forget to thank the omega8 folks for …
16:00 Ticket #809 ([Security-news] Drupal Core - Moderately Critical - Multiple ...) updated by paul
[…]
15:55 Ticket #809 ([Security-news] Drupal Core - Moderately Critical - Multiple ...) updated by paul
Thanks Sam. That's good to hear. Phew!
15:42 Ticket #809 ([Security-news] Drupal Core - Moderately Critical - Multiple ...) updated by sam
Hi Paul Thanks for this. All the breadcrumbs look OK to me. Thanks Sam
14:54 Ticket #809 ([Security-news] Drupal Core - Moderately Critical - Multiple ...) updated by paul
Add Hours to Ticket, Total Hours changed
Security updates have been applied to both transitionnetwork.org & …
13:23 Ticket #809 ([Security-news] Drupal Core - Moderately Critical - Multiple ...) updated by paul
Just successfully built a new stage platform . Not certain what changed …
01:38 Ticket #799 (MediaWiki Visual Editor broken from Parsoid update) updated by chris
Add Hours to Ticket, Total Hours changed
Comment posted to the bug: https://phabricator.wikimedia.org/T74304#820330

12/04/14:

15:52 Ticket #692 (Debian Updates) updated by chris
Add Hours to Ticket, Total Hours changed
Debian …
15:39 Ticket #809 ([Security-news] Drupal Core - Moderately Critical - Multiple ...) updated by paul
Add Hours to Ticket, Total Hours changed
Still seeing the problem after clearing the custom_breadcrumb cache entry …
15:22 Ticket #809 ([Security-news] Drupal Core - Moderately Critical - Multiple ...) updated by paul
After updating the makefile it's still complaining of the same problem. …
15:20 Screen Shot 2014-12-04 at 15.21.25.png attached to Ticket #809 by paul
15:12 Ticket #809 ([Security-news] Drupal Core - Moderately Critical - Multiple ...) updated by paul
Thanks Chris. I was searching for the module name custom_breadcrumbs so …
15:01 Ticket #809 ([Security-news] Drupal Core - Moderately Critical - Multiple ...) updated by chris
I don't know anything about …
14:48 Ticket #809 ([Security-news] Drupal Core - Moderately Critical - Multiple ...) updated by paul
Add Hours to Ticket, Total Hours changed
Investigated the makefile & updated the BOA ticket. …
13:05 Ticket #809 ([Security-news] Drupal Core - Moderately Critical - Multiple ...) updated by sam
Milestone changed
13:02 Ticket #804 (Investigating the site security following SA-CORE-2014-005 (Drupal 7.32)) updated by sam
Milestone changed
12:25 Ticket #799 (MediaWiki Visual Editor broken from Parsoid update) updated by chris
Add Hours to Ticket, Total Hours changed
Update on [https://phabricator.wikimedia.org/T74304#804703 the MediaWiki

12/03/14:

19:42 Ticket #692 (Debian Updates) updated by chris
Add Hours to Ticket, Total Hours changed
Debian …
17:15 Ticket #814 (Higher that usual loads on PuffinServer since early September) updated by chris
Description changed
17:13 puffin-load-2014-11-03.png attached to Ticket #814 by chris
17:12 Ticket #814 (Higher that usual loads on PuffinServer since early September) created by chris
The following …
13:06 Ticket #701 (Emails & Telephone calls) updated by paul
Add Hours to Ticket, Total Hours changed
Email exchange on mailing list and follow up on BOA issue. …

12/02/14:

13:46 Ticket #701 (Emails & Telephone calls) updated by paul
Add Hours to Ticket, Total Hours changed
Conversation on mailing list about updating production.
11:30 Ticket #809 ([Security-news] Drupal Core - Moderately Critical - Multiple ...) updated by paul
Add Hours to Ticket, Total Hours changed
Just confirmed the problem still exists after clearing out failed …
11:21 Ticket #809 ([Security-news] Drupal Core - Moderately Critical - Multiple ...) updated by paul
Add Hours to Ticket, Total Hours changed
Made the post: https://github.com/omega8cc/boa/issues/527 I'll follow …

12/01/14:

15:51 Ticket #809 ([Security-news] Drupal Core - Moderately Critical - Multiple ...) updated by chris
Replying to paul: > I'll raise a ticket. Thanks, post a link …
15:49 Ticket #809 ([Security-news] Drupal Core - Moderately Critical - Multiple ...) updated by paul
I'll raise a ticket.
15:45 Ticket #809 ([Security-news] Drupal Core - Moderately Critical - Multiple ...) updated by chris
Replying to ed: > > 1. we need a group skype to assess > 2. …
15:35 Ticket #809 ([Security-news] Drupal Core - Moderately Critical - Multiple ...) updated by paul
[…]
15:31 Ticket #809 ([Security-news] Drupal Core - Moderately Critical - Multiple ...) updated by paul
Ed, I'll have a look to see If I can patch production later today / …
15:24 Ticket #809 ([Security-news] Drupal Core - Moderately Critical - Multiple ...) updated by ed
OK so as it's into the tech list I think: 1. we need a group skype to …
13:12 Ticket #809 ([Security-news] Drupal Core - Moderately Critical - Multiple ...) updated by chris
Replying to ed: > do i need to become involved in this at …
13:06 Ticket #812 (space.transitionnetwork.org hacked?) updated by ed
ta
13:01 Ticket #809 ([Security-news] Drupal Core - Moderately Critical - Multiple ...) updated by ed
do i need to become involved in this at all?
12:49 Ticket #809 ([Security-news] Drupal Core - Moderately Critical - Multiple ...) updated by chris
Replying to paul: > I didn't ask you to make the decision. …
12:28 Ticket #809 ([Security-news] Drupal Core - Moderately Critical - Multiple ...) updated by paul
Add Hours to Ticket, Total Hours changed
I didn't ask you to make the decision. I'm just asking you politely if …
12:19 Ticket #812 (space.transitionnetwork.org hacked?) updated by paul
Add Hours to Ticket, Total Hours changed
Deleted the site and platform: space.transitionnetwork.org / Open Atrium …
12:11 Ticket #809 ([Security-news] Drupal Core - Moderately Critical - Multiple ...) updated by chris
Replying to paul: > > Is it possible to rebuild permissions …
12:04 Ticket #812 (space.transitionnetwork.org hacked?) updated by paul
I'm on it ..
12:02 Ticket #812 (space.transitionnetwork.org hacked?) updated by ed
DELETE space.transitionnetwork.org entirely - confirmed that no-one needs …
11:44 Ticket #809 ([Security-news] Drupal Core - Moderately Critical - Multiple ...) updated by paul
Add Hours to Ticket, Total Hours changed
Still experiencing problems creating platforms. I tried changing the …
11:39 Ticket #783 (IIRS design and development) updated by annesley
Add Hours to Ticket, Total Hours changed
11:38 Ticket #757 (Research and Design for TNv3) updated by annesley
Add Hours to Ticket, Total Hours changed

11/30/14:

16:44 Ticket #692 (Debian Updates) updated by chris
Add Hours to Ticket, Total Hours changed
Debian …

11/29/14:

14:09 Ticket #692 (Debian Updates) updated by chris
Add Hours to Ticket, Total Hours changed
PuffinServer Debian …

11/28/14:

18:37 Ticket #812 (space.transitionnetwork.org hacked?) updated by chris
/usr/bin/unhide.rb is a script to find hidden processes, I don't know …
18:28 Ticket #812 (space.transitionnetwork.org hacked?) updated by chris
Add Hours to Ticket, Total Hours changed
Replying to paul: > > the patch was almost certainly applied …
13:27 Ticket #812 (space.transitionnetwork.org hacked?) updated by ed
Replying to chris: > Replying to ed: > > I can …
11:46 Ticket #812 (space.transitionnetwork.org hacked?) updated by chris
Replying to ed: > I can login. I am also asking Filipa and …
11:34 Ticket #812 (space.transitionnetwork.org hacked?) updated by paul
Add Hours to Ticket, Total Hours changed
Replying to chris: > Replying to paul: > > > > …
11:30 Ticket #812 (space.transitionnetwork.org hacked?) updated by chris
Replying to paul: > The error was actually because the …
11:27 Ticket #812 (space.transitionnetwork.org hacked?) updated by chris
Replying to paul: > > Great to hear that it was you that …
11:24 Ticket #812 (space.transitionnetwork.org hacked?) updated by paul
Add Hours to Ticket, Total Hours changed
Chris, Brilliant. That looks good. Great to hear that it was you that …
11:07 Ticket #812 (space.transitionnetwork.org hacked?) updated by paul
The error was actually because the directory doesn't exist. Investigating …
11:01 Ticket #812 (space.transitionnetwork.org hacked?) updated by chris
Replying to paul: > $ sudo echo …
10:59 Ticket #812 (space.transitionnetwork.org hacked?) updated by chris
Add Hours to Ticket, Total Hours changed
To save you having to mount the directories I have done a diff on the …
10:49 Ticket #812 (space.transitionnetwork.org hacked?) updated by paul
$ sudo echo "sshfs#tn-puffin@…:puffin.webarch.net …
10:40 Ticket #812 (space.transitionnetwork.org hacked?) updated by paul
Ok, giving this a go ..
10:02 Ticket #812 (space.transitionnetwork.org hacked?) updated by chris
Replying to paul: > > I don't know how to get everything …
08:46 Ticket #812 (space.transitionnetwork.org hacked?) updated by ed
I can login. I am also asking Filipa and Ben (national hub co-ordinators …

11/27/14:

22:43 Ticket #812 (space.transitionnetwork.org hacked?) updated by paul
Add Hours to Ticket, Total Hours changed
@Chris I don't know how to get everything downloaded (quickly) so I'm …
22:19 Ticket #812 (space.transitionnetwork.org hacked?) updated by paul
Thanks Chris. I'll give that a go ..
19:10 Ticket #812 (space.transitionnetwork.org hacked?) updated by chris
I could look at doing some recursive diffs to compare backup directories …
18:43 Ticket #812 (space.transitionnetwork.org hacked?) updated by paul
Add Hours to Ticket, Total Hours changed
Back later. @Chris Would you have a look to see if any new files have …
18:36 Ticket #812 (space.transitionnetwork.org hacked?) updated by paul
I can still login fine. Ed can you still login ok? MariaDB …
18:33 Ticket #812 (space.transitionnetwork.org hacked?) updated by paul
So far so good : MariaDB [(none)]> use newstransitionne; Database changed …
18:30 Ticket #812 (space.transitionnetwork.org hacked?) updated by paul
I have access to mysql databases. Investigating ..
18:14 Ticket #812 (space.transitionnetwork.org hacked?) updated by paul
Not working. @Chris I'm looking for the mysql username / password for …
18:08 Ticket #812 (space.transitionnetwork.org hacked?) updated by paul
Attempting a backup for offline auditing ..
18:06 Ticket #812 (space.transitionnetwork.org hacked?) updated by paul
That file has just disappeared. Was that you Chris?
17:56 Ticket #812 (space.transitionnetwork.org hacked?) updated by paul
@Chris Looking for the Nginx vhost config files .. The database …
17:50 Ticket #812 (space.transitionnetwork.org hacked?) updated by paul
[…]
17:50 Ticket #812 (space.transitionnetwork.org hacked?) updated by paul
[…]
17:48 Ticket #812 (space.transitionnetwork.org hacked?) updated by paul
I forgot about this D7 site. So the patch has already been applied, …
14:55 Ticket #813 (MediaWiki 1.23.7) closed by chris
fixed: Following the wiki:MediaWiki#Updates notes: […] Checked …
14:50 MediaWiki edited by chris
Added link to MediaWiki 1.23.7 - ticket:813 (diff)
14:38 Ticket #813 (MediaWiki 1.23.7) created by chris
The …
11:29 Ticket #812 (space.transitionnetwork.org hacked?) updated by ed
Good news. could be upgraded - the national hubs have all moved off space …
11:24 Ticket #812 (space.transitionnetwork.org hacked?) updated by chris
Add Hours to Ticket, Total Hours changed
Checking the Drupal version: […] Manually patching: […] So the …
11:09 Ticket #812 (space.transitionnetwork.org hacked?) created by chris
BOA email from PuffinServer: […]
10:24 Ticket #692 (Debian Updates) updated by chris
Add Hours to Ticket, Total Hours changed
PuffinServer

11/24/14:

20:49 Ticket #809 ([Security-news] Drupal Core - Moderately Critical - Multiple ...) updated by chris
Replying to paul: > No change: > > Source directory …
20:37 Ticket #809 ([Security-news] Drupal Core - Moderately Critical - Multiple ...) updated by paul
If it's the same before the problem is that build does not exist.
20:36 Ticket #809 ([Security-news] Drupal Core - Moderately Critical - Multiple ...) updated by paul
Add Hours to Ticket, Total Hours changed
No change: Source directory …
18:58 Ticket #809 ([Security-news] Drupal Core - Moderately Critical - Multiple ...) updated by chris
Add Hours to Ticket, Total Hours changed
Perhaps our issue is related to …
18:19 Ticket #809 ([Security-news] Drupal Core - Moderately Critical - Multiple ...) updated by chris
I'm looking at this now…
11:50 Ticket #809 ([Security-news] Drupal Core - Moderately Critical - Multiple ...) updated by paul
Replying to chris: > I'll try to fix BOA later today. …
11:44 Ticket #809 ([Security-news] Drupal Core - Moderately Critical - Multiple ...) updated by chris
Replying to paul: > > If Aegir is not working perfectly, …
10:42 Ticket #809 ([Security-news] Drupal Core - Moderately Critical - Multiple ...) updated by paul
We could also put the whole site under HTTPS during the migration.
10:38 Ticket #809 ([Security-news] Drupal Core - Moderately Critical - Multiple ...) updated by paul
Add Hours to Ticket, Total Hours changed
Still a problem with the platform. If Aegir is not working perfectly, …
10:29 Screen Shot 2014-11-24 at 10.29.46.png attached to Ticket #809 by paul

11/21/14:

17:00 Ticket #809 ([Security-news] Drupal Core - Moderately Critical - Multiple ...) updated by paul
Replying to chris: > Replying to paul: > > > > …
16:37 Ticket #809 ([Security-news] Drupal Core - Moderately Critical - Multiple ...) updated by chris
Replying to paul: > > Could we place the whole site under …
15:14 Ticket #809 ([Security-news] Drupal Core - Moderately Critical - Multiple ...) updated by paul
Add Hours to Ticket, Total Hours changed
Sorry, I thought we did. Could we place the whole site under HTTPS? …
14:37 Ticket #809 ([Security-news] Drupal Core - Moderately Critical - Multiple ...) updated by chris
Replying to paul: > the security update looks to only affect …
14:06 Ticket #809 ([Security-news] Drupal Core - Moderately Critical - Multiple ...) updated by paul
Add Hours to Ticket, Total Hours changed
I have decided that since the security update looks to only affect Drupal6 …
13:49 Ticket #809 ([Security-news] Drupal Core - Moderately Critical - Multiple ...) updated by paul
I'll try a manual update on my stage site ..
13:23 Ticket #809 ([Security-news] Drupal Core - Moderately Critical - Multiple ...) updated by chris
Replying to paul: > > Darn. Still not working. Is this …
12:44 Ticket #809 ([Security-news] Drupal Core - Moderately Critical - Multiple ...) updated by paul
Add Hours to Ticket, Total Hours changed
Chris, Darn. Still not working. Is this problem something you can …
12:35 Ticket #809 ([Security-news] Drupal Core - Moderately Critical - Multiple ...) updated by paul
You made a good guess. Thanks Chris.
12:19 Ticket #809 ([Security-news] Drupal Core - Moderately Critical - Multiple ...) updated by chris
Add Hours to Ticket, Total Hours changed
Replying to paul: > > It's not clear to me a the moment how …
10:17 Ticket #809 ([Security-news] Drupal Core - Moderately Critical - Multiple ...) updated by paul
Add Hours to Ticket, Total Hours changed
I'll pick this up again later today. It's not clear to me a the moment …
10:00 Ticket #809 ([Security-news] Drupal Core - Moderately Critical - Multiple ...) updated by paul
@Chris Maybe try rebooting Aegir?
09:57 Ticket #809 ([Security-news] Drupal Core - Moderately Critical - Multiple ...) updated by paul
Source directory was not created. Investigating ..
09:48 Screen Shot 2014-11-21 at 09.47.26.png attached to Ticket #809 by paul
00:29 Ticket #810 (Piwik 2.9.1) closed by chris
fixed: Following PiwikServer#Updates: […] Did a system check using the web …

11/20/14:

20:39 Ticket #811 (WordPress critical security release) closed by chris
fixed: Installing the latest wp-cli (the old version wasn't working), following …
20:25 Ticket #811 (WordPress critical security release) created by chris
From the blog: > …
15:06 Ticket #809 ([Security-news] Drupal Core - Moderately Critical - Multiple ...) updated by chris
Cc changed
Paul, this ticket wasn't CC'd to anyone so nobody else will have seen it …
14:59 PiwikServer edited by chris
Added link to Piwik 2.9.1 ticket:810 (diff)
14:58 Ticket #810 (Piwik 2.9.1) created by chris
From the changelog: > Piwik …
12:16 Ticket #809 ([Security-news] Drupal Core - Moderately Critical - Multiple ...) updated by paul
Add Hours to Ticket, Total Hours changed
Experiencing problems with Aeigir. Specifically I can't create a new …
10:52 Ticket #809 ([Security-news] Drupal Core - Moderately Critical - Multiple ...) updated by paul
Description, Summary changed

11/19/14:

21:35 Ticket #809 ([Security-news] Drupal Core - Moderately Critical - Multiple ...) created by paul
View online: https://www.drupal.org/SA-CORE-2014-006 * Advisory ID: …
11:47 Ticket #692 (Debian Updates) updated by chris
Add Hours to Ticket, Total Hours changed
Debian …

11/17/14:

20:06 Ticket #737 (SPF / Emails rejected from the website contact form) updated by chris
WordPress has the same problem as Drupal, see ticket:808.
19:28 Ticket #808 (WordPress email being rejected due to From field) created by chris
This issues is like ticket:737 but with WordPress rather than Drupal …
10:55 Ticket #692 (Debian Updates) updated by chris
Add Hours to Ticket, Total Hours changed
Debian …

11/14/14:

11:12 Ticket #807 (Piwik 2.9.0) closed by chris
fixed: Following the PiwikServer#Updates notes: […] Checked the "System …
10:57 PiwikServer edited by chris
Added link to Piwik 2.9.0 ticket:807 (diff)
10:56 Ticket #807 (Piwik 2.9.0) created by chris
New version of Piwik: > Piwik 2.9.0 is a new major release of Piwik! In …

11/13/14:

10:25 Ticket #701 (Emails & Telephone calls) updated by paul
Add Hours to Ticket, Total Hours changed
Yesterday: Checking to see if the recent rounds of drupal security …

11/12/14:

09:42 Ticket #692 (Debian Updates) updated by chris
Debian …

11/11/14:

20:49 Ticket #692 (Debian Updates) updated by chris
Add Hours to Ticket, Total Hours changed
PuffinServer, no email yet: […] PenguinServer: […] ParrotServer: …
16:29 Ticket #806 (IIRS pre-beta usability issues) updated by ed
Replying to chris: > Ed - how is time to be recorded for TNv3 …
16:26 Ticket #806 (IIRS pre-beta usability issues) updated by ed
Replying to annesley: > hi ed. please make a google …
13:33 Ticket #795 (SHA1 Deprecation: Regenerate all certs using SHA256) updated by chris
The certs can be checked at these URLs: * …
13:32 Ticket #795 (SHA1 Deprecation: Regenerate all certs using SHA256) updated by chris
Gandi now support SHA256 see: * https://wiki.gandi.net/en/ssl/csr * …
13:28 Ticket #798 (BOA-2.3.5) closed by chris
fixed: This updated also fixed the poodle vulnerability, see ticket:797 * …
13:27 Ticket #797 (POODLE: SSLv3.0 vulnerability (CVE-2014-3566)) closed by chris
fixed: PenguinServer and ParrotServer were vulnerable: * …
13:26 Ticket #806 (IIRS pre-beta usability issues) updated by annesley
I have changed the first registration page on Parrot, which lists location …
13:23 Ticket #806 (IIRS pre-beta usability issues) updated by annesley
good idea. it will be reasonably quick to also include a generic TRAC open …
12:14 Ticket #806 (IIRS pre-beta usability issues) updated by chris
Replying to annesley: > > i can't find any Wordpress plugin …
11:59 Ticket #806 (IIRS pre-beta usability issues) updated by annesley
mmmmmm... a bug tracking WordPress and Drupal Modules would be good. that …
11:46 Ticket #806 (IIRS pre-beta usability issues) updated by annesley
eek. didn't realise it was public. sorry
11:30 Ticket #806 (IIRS pre-beta usability issues) updated by chris
Replying to annesley: > > …
11:28 Ticket #806 (IIRS pre-beta usability issues) updated by annesley
note that the IIRS Wordpress settings has standard documentation for the …
11:00 Ticket #806 (IIRS pre-beta usability issues) updated by chris
Ed - how is time to be recorded for TNv3 if we are not allowed to use …
10:57 Ticket #806 (IIRS pre-beta usability issues) updated by ed
this afternoon it will be i promise
10:54 Ticket #806 (IIRS pre-beta usability issues) updated by annesley
hi ed. please make a google spreadsheet in the appropriate place and i …
10:42 Ticket #806 (IIRS pre-beta usability issues) updated by ed
please know that i insist that these pieces of feedback are copied into …
10:33 Ticket #806 (IIRS pre-beta usability issues) updated by annesley
Adding a web site URL: this is fixed now. i was checking for an MX …
10:11 Ticket #806 (IIRS pre-beta usability issues) updated by annesley
Thanks very much for having a look! very helpful. XML export of …

11/10/14:

22:02 Ticket #806 (IIRS pre-beta usability issues) updated by chris
Add Hours to Ticket, Total Hours changed
Just a few minor glitches: …
21:30 Ticket #806 (IIRS pre-beta usability issues) created by chris
Ticket to track usability issues etc.

11/07/14:

18:02 Ticket #692 (Debian Updates) updated by chris
Add Hours to Ticket, Total Hours changed
Debian …
12:41 Ticket #805 (Parrot: PHP mail function not sending email) closed by annesley
fixed
12:40 Ticket #805 (Parrot: PHP mail function not sending email) updated by annesley
thanks chris! that solved it. impressively stupid of me :) sorry to have …
11:05 Ticket #805 (Parrot: PHP mail function not sending email) updated by chris
Add Hours to Ticket, Total Hours changed
I have just checked (via …
10:53 Ticket #805 (Parrot: PHP mail function not sending email) updated by chris
I also notice your site has the …
10:30 Ticket #805 (Parrot: PHP mail function not sending email) updated by chris
Add Hours to Ticket, Total Hours changed
I can't see any issues in the maillog, the error log for your site and I …
10:22 Ticket #805 (Parrot: PHP mail function not sending email) updated by chris
Other sites are sending emails fine, you should be able to test that your …
09:43 Ticket #805 (Parrot: PHP mail function not sending email) created by annesley
hi, am using the wordpress / PHP mail function to send registration emails …

11/04/14:

19:53 Ticket #692 (Debian Updates) updated by chris
Add Hours to Ticket, Total Hours changed
Debian …
Note: See TracTimeline for information about the timeline view.