Ian Dunn 4:40 pm on August 14, 2019
Tags: prio3 ( 78 ), trac ( 37 )

Make GSOC trac read-only

It’s getting pentested: https://gsoc.trac.wordpress.org/ticket/386

Can we make it read-only, and if not, then maybe back it up and shut it down, or put it behind proxy auth or something? It’d be nice to preserve the content for history, but it’s probably not worth maintaining anymore, and definitely not worth cleaning up after pentesters.

#trac #prio3

Samuel Wood (Otto) 10:46 pm on August 14, 2019

That appears to be one I don’t have admin on. We could simply disable the ability to post by any authenticated user to effectively make it read only. If somebody can give TRAC_ADMIN to “Otto42” on that one, same as the other tracs, I’ll be happy to configure it.
Dion Hulse 12:23 am on August 15, 2019

I’ve removed the spam for the last year – there was an attachment from 8months ago too.

Rather than change the TracTrac Trac is the place where contributors create issues for bugs or feature requests much like GitHub.https://core.trac.wordpress.org/. permissions, I’m going to leave this for systems to mark as read-only instead.
- Dion Hulse 2:39 am on April 3, 2020
  
  Removed TracTrac Trac is the place where contributors create issues for bugs or feature requests much like GitHub.https://core.trac.wordpress.org/. Permissions for authenticated users, which disabled commenting/ticket creation except for admins.
chadworthman 6:32 pm on October 26, 2021
Hi there @dd32,

I’ve made the following dormant tracs read only by removing tracTrac Trac is the place where contributors create issues for bugs or feature requests much like GitHub.https://core.trac.wordpress.org/. permissions for authenticated users:
- wpf.trac.wordpress.orgWordPress.org The community site where WordPress code is created and shared by the users. This is where you can download the source code for WordPress core, plugins and themes as well as the central location for community conversations and organization. https://wordpress.org/
- backpress.trac.wordpress.org
- blackberry.trac.wordpress.org
- android.trac.wordpress.org
- iphone.trac.wordpress.org
- webos.trac.wordpress.org
- nokia.trac.wordpress.org
- windowsphone.trac.wordpress.org
- unit-tests.trac.wordpress.org
- gsoc.trac.wordpress.org
- openatd.trac.wordpress.org
- mu.trac.wordpress.org
- supportpress.trac.wordpress.org
- glotpress.trac.wordpress.org
We also cleaned up the admin users for these tracs while we were there.

Please let me know if you need anything else for this request.

Thanks.