Dion Hulse 12:08 am on January 7, 2021
Tags: prio3 ( 78 )

Remove bad plugins SVN tag

It looks like someone managed to create a svn tag with a character return in it over a year ago, unfortunately however this tag can’t be removed, and as a result, the tag list for the pluginPlugin A plugin is a piece of software containing a group of functions that can be added to a WordPress website. They can extend functionality or add new features to your WordPress websites. WordPress plugins are written in the PHP programming language and integrate seamlessly with WordPress. These can be free in the WordPress.org Plugin Directory https://wordpress.org/plugins/ or can be cost-based plugin from a third-party can’t be checked out without causing SVNSVN Apache Subversion (often abbreviated SVN, after its command name svn) is a software versioning and revision control system. Software developers use Subversion to maintain current and historical versions of files such as source code, web pages, and documentation. Its goal is to be a mostly compatible successor to the widely used Concurrent Versions System (CVS). WordPress core and the wordpress.org released code are all centrally managed through SVN. https://subversion.apache.org/. to go into a 100% cpu loopLoop The Loop is PHP code used by WordPress to display posts. Using The Loop, WordPress processes each post to be displayed on the current page, and formats it according to how it matches specified criteria within The Loop tags. Any HTML or PHP code in the Loop will be processed on each post. https://codex.wordpress.org/The_Loop..

It looks like the request is being denied by nginxNGINX NGINX is open source software for web serving, reverse proxying, caching, load balancing, media streaming, and more. It started out as a web server designed for maximum performance and stability. In addition to its HTTP server capabilities, NGINX can also function as a proxy server for email (IMAP, POP3, and SMTP) and a reverse proxy and load balancer for HTTP, TCP, and UDP servers. https://www.nginx.com/. prior to the request hitting ApacheApache Apache is the most widely used web server software. Developed and maintained by Apache Software Foundation. Apache is an Open Source software available for free., so if a systems team member could bypass nginx and execute svn rm https://plugins.svn.wordpress.org/blogger-to-wordpress-redirection/tags/2.2.6%0d/ that would be appreciated.

This tag will also cause problems for the plugin directory, as it uses the CLICLI Command Line Interface. Terminal (Bash) in Mac, Command Prompt in Windows, or WP-CLI for WordPress. SVN commands to interact with the plugin as well.

ref: https://wordpress.slack.com/archives/C02RQC6RW/p1609928527429400

#prio3

Sergey Biryukov 2:15 pm on March 20, 2020
Tags: git ( 5 ), prio3 ( 78 )

Clean up erroneous WordPress releases and branches

Over time, some erroneous WordPress releases or branches were accidentally created:

5.4-RC3-47470. This should have been a nightly bump instead.
4.9.8-beta1-43498. This too should have been a nightly bump.
4.2.26 branch on git://develop.git.wordpress.org/ mirror. This should have been a tag instead, and is already deleted on CoreCore Core is the set of software required to run WordPress. The Core Development Team builds WordPress. SVNSVN Apache Subversion (often abbreviated SVN, after its command name svn) is a software versioning and revision control system. Software developers use Subversion to maintain current and historical versions of files such as source code, web pages, and documentation. Its goal is to be a mostly compatible successor to the widely used Concurrent Versions System (CVS). WordPress core and the wordpress.org released code are all centrally managed through SVN. https://subversion.apache.org/., but still exists in the GitGit Git is a free and open source distributed version control system designed to handle everything from small to very large projects with speed and efficiency. Git is easy to learn and has a tiny footprint with lightning fast performance. Most modern plugin and theme development is being done with this version control system. https://git-scm.com/. mirror and shows up on GitHubGitHub GitHub is a website that offers online implementation of git repositories that can easily be shared, copied and modified by other developers. Public repositories are free to host, private repositories require a paid subscription. GitHub introduced the concept of the ‘pull request’ where code changes done in branches by contributors can be reviewed and discussed before being merged be the repository owner. https://github.com/.

Would it be possible to clean them up to avoid confusion?

#git #prio3

Ian Dunn 4:45 pm on January 16, 2020
Tags: prio2 ( 100 )

WordCamp.org slow load times

I’ve been noticing intermittently slow load times for wordcamp.org lately, and others have reported it as well.

Most of the times things are normal, but when it happens the page takes 10-30 seconds to load. While it’s going on, it seems like any page I visit is slow (e.g., 2020.asia.wordcamp.org/wp-admin and also 2019.seattle.wordcamp.org/contact). Then it resolves itself after a minute or so.

I noticed it this morning around 7:40am Pacific.

Because all requests are affected, it doesn’t feel like a slow MYSQLMySQL MySQL is a relational database management system. A database is a structured collection of data where content, configuration and other options are stored. https://www.mysql.com/. query. I’m wondering if it’s a DDoSDistributed Denial of Service A type of online attack where a large number of infected computers are used to overwhelm a target computer, to the point where it no longer has the resources to perform its normal job. Read more. that was automatically mitigated?

Do we have any logs that would give clues? I don’t see anything in the SlackSlack Slack is a Collaborative Group Chat Platform https://slack.com/. The WordPress community has its own Slack Channel at https://make.wordpress.org/chat/. channels. Or do you have any other ideas?

#prio2

Ian Dunn 3:32 pm on December 12, 2019
Tags: prio2 ( 100 )

New SSH key for Timi Wahalahti

Was @sippis‘ proxy access automatically blocked (maybe similar to a few people last month)?

We’ve been trying to get it working on his new machine (using his old key), but haven’t been able to. Here’s the output with ports 8080 and 8090; I think they’re both supposed to work, but not sure.

$ ssh -vvv -ND 8080 -p22 -i worgproxy_rsa sippis@proxy.wordpress.orgWordPress.org The community site where WordPress code is created and shared by the users. This is where you can download the source code for WordPress core, plugins and themes as well as the central location for community conversations and organization. https://wordpress.org/
OpenSSH_7.9p1, LibreSSL 2.7.3
debug1: Reading configuration data /Users/sippis/.ssh/config
debug1: /Users/sippis/.ssh/config line 1: Applying options for proxy.wordpress.org
debug1: Reading configuration data /etc/ssh/ssh_config
debug1: /etc/ssh/ssh_config line 48: Applying options for *
debug1: Connecting to proxy.wordpress.org port 22.
debug1: Connection established.
debug1: identity file worgproxy_rsa type 0
debug1: identity file worgproxy_rsa-cert type -1
debug1: identity file /Users/sippis/.ssh/worgproxy_rsa type 0
debug1: identity file /Users/sippis/.ssh/worgproxy_rsa-cert type -1
debug1: Local version string SSHSSH Secure SHell - a protocol for securely connecting to a remote system in addition to or in place of a password.-2.0-OpenSSH_7.9
ssh_exchange_identification: Connection closed by remote host

$ ssh -vvv -ND 8090 -p22 -i worgproxy_rsa sippis@proxy.wordpress.org
OpenSSH_7.9p1, LibreSSL 2.7.3
debug1: Reading configuration data /Users/sippis/.ssh/config
debug1: /Users/sippis/.ssh/config line 1: Applying options for proxy.wordpress.org
debug1: Reading configuration data /etc/ssh/ssh_config
debug1: /etc/ssh/ssh_config line 48: Applying options for *
debug1: Connecting to proxy.wordpress.org port 22.
debug1: Connection established.
debug1: identity file worgproxy_rsa type 0
debug1: identity file worgproxy_rsa-cert type -1
debug1: identity file /Users/sippis/.ssh/worgproxy_rsa type 0
debug1: identity file /Users/sippis/.ssh/worgproxy_rsa-cert type -1
debug1: Local version string SSH-2.0-OpenSSH_7.9
ssh_exchange_identification: read: Connection reset by peer

If you don’t see what’s wrong, could you replace his old public key with this new one?

ssh-rsa AAAAB3NzaC1yc2EAAAADAQABAAABAQDRBalZIm7+6MjsAOdm9HVd7rOoy4Z1cyd8vpsGGfejo5qYfRszOHbkOSouXLIuRymm/+vSvmshFLh2N3FhGDMYE/F8rTPrBTTVCNh36aOutBqTPW3ynTHEq7scG9VRM2Ir7ongSjFKF+MIseycJ/6BmEVSwRxvXDV22iCWwZoJwB/qhr8g8nycV152aZPpLPTlWhjZVmZYJg1AhWYX7yc+D3ih06bkfDiKzr+VygIxrhg6R6+MiC4KN8KFuYvsqHSvlgS8CMqj8WJRmcfs0lBmwMSvixzchDfJDeXPqCu1P60wqGaDMvZ+p1/Sx7ttI08g9qsso2R2d1CnGku7FYjP sippis@Illusia.local

#prio2

Dion Hulse 1:05 am on July 17, 2018
Tags: prio2 ( 100 )

bbPress Git mirroring to Github

Similar to https://make.wordpress.org/systems/2016/12/20/deploy-key-and-mirroring-for-github-repo/ can we please add the same thing for bbPress?

Repo to mirror into is https://github.com/bbpress/bbPress

Ref: https://meta.trac.wordpress.org/ticket/637
#prio2

Ian Dunn 12:38 am on May 26, 2018

WordCamp.org vulnerability scan

Just a heads up that our GDPR consultants are going to run a vulnerability scan on WordCamp.org on the 29th, as part of their audit. It’ll be coming from these ranges:

154.59.121.64/27
154.59.121.128/27

There’s nothing to do on our end, I just wanted to make sure y’all were aware. I’m assuming it’ll be relatively standard, automated scans, nothing too targeted, and nothing destructive.

cc @barry

Daniel Bachhuber 11:39 pm on May 3, 2018
Tags: prio1 ( 55 )

Transferring wp-cli.org DNS to WordPress.org

I’d like to shut down the CloudFlare account I created for wp-cli.org. Can we have WordPress.orgWordPress.org The community site where WordPress code is created and shared by the users. This is where you can download the source code for WordPress core, plugins and themes as well as the central location for community conversations and organization. https://wordpress.org/ host DNSDNS DNS is an acronym for Domain Name System - how you assign a human readable address to a website’s exact numeric coded location (ie. wordpress.org uses the actual IP address 198.143.164.252). instead?

Notably, before the switch is made, these redirect rules would need to be replicated in some way:

#prio1

Ian Dunn 7:01 pm on March 5, 2018
Tags: prio1 ( 55 )

WordCamp Let’s Encrypt Script Broken

We received warnings from Let’s Encrypt that many of the WordCamp.org certs have not been renewed, and will invalidate on March 25th.

I’m guessing there are some necessary things that didn’t get transfered from LAX to ORD.

There may be some details in the letsencrypt-update.log, but I don’t have access to that on production anymore.

I tried setting up a test environment on my sandbox, but couldn’t because pip isn’t available. That may be the problem on production as well, but I can’t test any further until it’s on our sandboxes.

@barry, can you please take a look as soon as you have time? Let me know if there’s anything I can do on my end.

#prio1

Corey McKrill 10:19 pm on February 21, 2018
Tags: prio1 ( 55 )

Access to mysql* commands in sandbox

In our previous sandboxes, @iandunn and I were given access to mysql and related commands on our sandboxes so we could run a database update script. It appears that access did not carry over to the new sandboxes. Can we get it restored?

#prio1

Ian Dunn 4:03 pm on February 20, 2017
Tags: prio1 ( 55 )

Marx blacklisted by Barracuda

I noticed a legitimate message in the WordCampWordCamp WordCamps are casual, locally-organized conferences covering everything related to WordPress. They're one of the places where the WordPress community comes together to teach one another what they’ve learned throughout the year and share the joy. Learn more. Help Scout account was flagged as spam because 66.155.40.24 is blacklisted by Barracuda.

Lookup | Removal

I can request removal, but it seems like it’ll just get added again if we don’t figure out what outbound messages caused the blacklisting and prevent that from happening again.

#prio1