Caching Tagregator requests on WordCamp.org

I’d like to get some form of network-layer caching of GET requests to *.wordcamp.org/wp-json/tagregator/*. Cached responses would need to expire after 30 seconds.

This is part of the solution to the problem we ran into at WCUS last year. Is that possible?

I’d also like to run a stress test to make sure we can handle the expected traffic for this year. Are you able to assist with that?

#prio2

security.wporg has an invalid SSL certificate

http://security.wordpress.org is just a redirect to https://make.wordpress.org/core/handbook/testing/reporting-security-vulnerabilities/, but loading https://security.wordpress.org fails to redirect because of an invalid certificate.

#prio3

Visibility into WordCamp.org mail failures

Right now I’m blind to any errors that occur with messages sent from the WordCamp.org web server. This week there was a Core bug that resulted in many (most?) messages being rejected by the receiving MTA, but I didn’t know for several days, until the reports started coming in from users and the Core bug was discovered.

I think two things would help resolve this, but I’m open to whatever suggestions you have.

1) Set the Envelope-FROM to bounce@wordcamp.org instead of bounce@wordpress.org. I’ve already setup the address.
2) Grant read access to mail.* in the logs directory

Thanks!

#wordcamp.org #email #logs #prio2

There are no cache instructions…

There are no cache instructions on mp4s on the CDN, could you please add some on?

curl -I https://s.w.org/images/core/4.6/streamlined-updates.mp4
HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Type: video/mp4
Date: Tue, 16 Aug 2016 13:13:27 GMT
Last-Modified: Tue, 16 Aug 2016 12:58:26 GMT
Server: nginx
X-Frame-Options: SAMEORIGIN
X-nc: MISS lax 186
Content-Length: 225101

Looks like webm has them:

curl -I https://s.w.org/images/core/4.6/streamlined-updates.webm
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=315360000
Content-Type: video/webm
Date: Tue, 16 Aug 2016 13:14:11 GMT
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Last-Modified: Tue, 16 Aug 2016 12:58:26 GMT
Server: nginx
X-Frame-Options: SAMEORIGIN
X-nc: HIT lax 186
Content-Length: 449672

For 4.6 we don’t use ogv but 4.3 had one:

curl -I https://s.w.org/images/core/4.3/formatting.ogv
HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Type: application/octet-stream
Date: Tue, 16 Aug 2016 13:09:55 GMT
Last-Modified: Wed, 29 Jul 2015 16:49:59 GMT
Server: nginx
X-Frame-Options: SAMEORIGIN
X-nc: MISS lax 186
Content-Length: 1939540

The content type should probably be video/ogg.

#prio3

Release of WordPress 4.6 on August 16th at 19:00 UTC

Just a heads up that we’re planning to release a new major release today, August 16th at 19:00 UTC.

Low prio request: Can we…

Low prio request: Can we prevent direct access to PHP files in the wp-content directory?

I originally noticed this for wp-themes.com. @dd32 suggested to return “a 403 for ^http://wp-themes.com/wp-content/(.+).php$ but the rest of wordpress.org could benefit of the same restriction.

#prio3

Hello, is it possible to…

Hello, is it possible to svn up the /home/wporg/public_html/ directory on all sandboxes?

There was a change in core to WP_Site which got reverted later. A sandbox which still has the old WP_Site will pollute the cache with a broken object which ends in a site_id = 0 entry in the database and making the site inaccessible.

See https://wordpress.slack.com/archives/core-multisite/p1467394608000460 for background.

#prio3

There are no cache instructions…

There are no cache instructions on SVGs on the CDN, could you please add some on?

$ curl -I https://s.w.org/images/core/emoji/2/svg/1f937.svg
HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Type: image/svg+xml
Date: Wed, 20 Jul 2016 05:44:19 GMT
Last-Modified: Mon, 18 Jul 2016 07:14:38 GMT
Server: ECS (syd/EBEC)
X-Cache: HIT
X-Frame-Options: SAMEORIGIN
X-nc: MISS lax 186
Content-Length: 4618

The cache can be set to a long time without causing problems, I’m fine with a month or more.

Also, I’m not sure if it’s possible/desired to compress the data, but I imagine SVGs will compress moderately well.

Hello! @adityakane is a new…

Hello! @adityakane is a new super deputy for the community team and he needs proxy access. His public key is:

ssh-rsa AAAAB3NzaC1yc2EAAAADAQABAAABAQDJRKfcLQ4RmBTyw+z0gpVGkd6TEISbVoFYgBW//olFw78eyt1JjfmNQJBUmn2xpxzIjUjSOEHxSwXbqT4no1Rj+15ahEpfqeBwhobVAjXoVpuS8XY+prCno5mVI5cEJNF5uwUotLUi8W0ma7LX8Nnev7kKBvNEHJwWP+EPaanJezVjoIgmuK8dOwiejuHXdicF/Z/8tUqH3x+xo7Ljpj5etlVn9zN+yigL55eLv+RXPOH73EAb+jcBAKLLbUroWxqH/ak76fwfwN0Wm9RxWP1OqO2YjxOKDmbxLpoCBsfWFa0zc9Rl9Qce3fBYqapn1SNv6j3BdKx2hnNKb4FehSzV Aditya@Adityas-MacBook-Air.local

Thanks!

Please create a sandbox for…

Please create a sandbox for @gibrown and give him commit to the meta repository. He will be assisting with Elasticsearch in the plugin directory. You can re-use his Automattic SSH key.

#prio3