WordCamp Let’s Encrypt Script Broken

We received warnings from Let’s Encrypt that many of the WordCamp.org certs have not been renewed, and will invalidate on March 25th.

I’m guessing there are some necessary things that didn’t get transfered from LAX to ORD.

There may be some details in the letsencrypt-update.log, but I don’t have access to that on production anymore.

I tried setting up a test environment on my sandbox, but couldn’t because pip isn’t available. That may be the problem on production as well, but I can’t test any further until it’s on our sandboxes.

@barry, can you please take a look as soon as you have time? Let me know if there’s anything I can do on my end.

#prio1

Access to mysql* commands in sandbox

In our previous sandboxes, @iandunn and I were given access to mysql and related commands on our sandboxes so we could run a database update script. It appears that access did not carry over to the new sandboxes. Can we get it restored?

#prio1

Marx blacklisted by Barracuda

I noticed a legitimate message in the WordCamp Help Scout account was flagged as spam because 66.155.40.24 is blacklisted by Barracuda.

Lookup | Removal

I can request removal, but it seems like it’ll just get added again if we don’t figure out what outbound messages caused the blacklisting and prevent that from happening again.

#prio1

nginx rewrite from `/forums` to `/support`

For two international forums I need a nginx rewrite from /forums to /support.

  • https://ary.wordpress.org/forums -> https://ary.wordpress.org/support
  • https://it.wordpress.org/forums -> https://it.wordpress.org/support

That seems to be something for the wporg-rosetta config:

location = /forums {
    return 301 /support/;
}

location ~ ^/forums/(.*) {
    return 301 /support/$1;
}

Not sure if we need to restrict that to the both hosts. We have a similar rule for wordpress.org/forums.

Once the configs are deployed the site URL needs to be updated as well:
* https://global.wordpress.org/wp-admin/network/site-info.php?id=332
* https://global.wordpress.org/wp-admin/network/site-info.php?id=352

Could someone please add the rules if they are looking good? Thank you!

#prio2

smtp-fwd reverse DNS

As reported on meta.trac it appears that smtp-fwd is lacking the rDNS which might explain why we’re seeing a higher level of slack invite failures of recent.

Could we add a reverse DNS for that mail forwarder please?

FYI; SPF and DKIM appear to be succeeding according to gmail.
#prio2

Proxy access for Kim Hustad

Hi, can you please setup proxy access for @kimhustad? She’ll be helping out with bookkeeping and will need access to the WordCamp.org budgeting tools.

Her public key is:

ssh-rsa AAAAB3NzaC1yc2EAAAADAQABAAABAQCY5whCd2F7ZDsomK6yFJO4hlGo3iqxVJM/k2MVP31oXlusv2/KVFAtkawNKLaGk6SsSst2UZTTxJF76w4gQJiDSVlGZk54E5p+VR3jIv5api4LqbYwL7ibb12aaaq1a9l1qrW0faMIdJGZNXjpncPnjGSBbGM+gXXpV91s1LC/BzkL2dbog1AzwVW5aoplWJAj473klpSPzTnHK+/KAHYHmLN/v5P3XdRuC7LzdWSphaT7L413pe+BrjHSxlgZWHbFscMyv2VAjNwE6e3XJqwhC6XVz/IOtkmTQK/gqWgxA4W8nIW3FjmVmW4VbSEOH41FRergEJlH6K4SfC3ir2+9 automatticaccounting@Automattics-MacBook-Pro.local

Thanks 🙂

cc @juliaullrich

#prio2

Hello, can someone please change…

Hello, can someone please change the redirect for *.trac.wordpress.org/logout from https://wordpress.org/support/bb-login.php?action=logout to https://login.wordpress.org/logout? Thanks!

Meta ticket: #2029-meta

#prio3 #trac

#2029-meta

Caching Tagregator requests on WordCamp.org

I’d like to get some form of network-layer caching of GET requests to *.wordcamp.org/wp-json/tagregator/*. Cached responses would need to expire after 30 seconds.

This is part of the solution to the problem we ran into at WCUS last year. Is that possible?

I’d also like to run a stress test to make sure we can handle the expected traffic for this year. Are you able to assist with that?

#prio2

There are no cache instructions…

There are no cache instructions on SVGs on the CDN, could you please add some on?

$ curl -I https://s.w.org/images/core/emoji/2/svg/1f937.svg
HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Type: image/svg+xml
Date: Wed, 20 Jul 2016 05:44:19 GMT
Last-Modified: Mon, 18 Jul 2016 07:14:38 GMT
Server: ECS (syd/EBEC)
X-Cache: HIT
X-Frame-Options: SAMEORIGIN
X-nc: MISS lax 186
Content-Length: 4618

The cache can be set to a long time without causing problems, I’m fine with a month or more.

Also, I’m not sure if it’s possible/desired to compress the data, but I imagine SVGs will compress moderately well.

New table column for translate.wordpress.org

Hi, for an upcoming update of GlotPress I need a new column user_id_last_modified for the translations table.
Background: https://github.com/GlotPress/GlotPress-WP/issues/293

The query:
ALTER TABLE translate_translations ADD COLUMN user_id_last_modified bigint(20) DEFAULT NULL;
Running this query on my local dump took 9 min 32.67 sec (35207550 rows affected).

@barry: Can you run the query on each server like you did for the index change? Thank you!

#prio1