From thinklinux.ssh at gmail.com  Sun Nov  1 15:51:32 2009
From: thinklinux.ssh at gmail.com (susmit shannigrahi)
Date: Sun, 1 Nov 2009 21:21:32 +0530
Subject: Added "Follow on Twitter/Identica" link to planet fedora.
Message-ID: <ffadd1240911010751p470f3b3ch9eaa58827007ab78@mail.gmail.com>

Hi,

I have added "Follow on twitter/identica" link to planet fedora.
Please let me know if there are any issue with it.

Thanks.

-- 
Regards,
Susmit.

=============================================
http://www.fedoraproject.org/wiki/user:susmit
=============================================
Sent from Calcutta, WB, India



From mmcgrath at redhat.com  Sun Nov  1 17:22:24 2009
From: mmcgrath at redhat.com (Mike McGrath)
Date: Sun, 1 Nov 2009 11:22:24 -0600 (CST)
Subject: Added "Follow on Twitter/Identica" link to planet fedora.
In-Reply-To: <ffadd1240911010751p470f3b3ch9eaa58827007ab78@mail.gmail.com>
References: <ffadd1240911010751p470f3b3ch9eaa58827007ab78@mail.gmail.com>
Message-ID: <alpine.LFD.2.00.0911011120510.29405@laptop.mmcgrath.net>

On Sun, 1 Nov 2009, susmit shannigrahi wrote:

> Hi,
>
> I have added "Follow on twitter/identica" link to planet fedora.
> Please let me know if there are any issue with it.
>

Identica is FOSS right?  If so, that one's ok.  The Twitter one though
isn't unless their code is also FOSS and I just didn't know it.  I know
it's just a link and all but it almost feels like an endorsement of
some kind.

	-Mike

> Thanks.
>
> --
> Regards,
> Susmit.
>
> =============================================
> http://www.fedoraproject.org/wiki/user:susmit
> =============================================
> Sent from Calcutta, WB, India
>
> _______________________________________________
> Fedora-infrastructure-list mailing list
> Fedora-infrastructure-list at redhat.com
> https://www.redhat.com/mailman/listinfo/fedora-infrastructure-list
>



From thinklinux.ssh at gmail.com  Sun Nov  1 17:27:02 2009
From: thinklinux.ssh at gmail.com (susmit shannigrahi)
Date: Sun, 1 Nov 2009 22:57:02 +0530
Subject: Added "Follow on Twitter/Identica" link to planet fedora.
In-Reply-To: <alpine.LFD.2.00.0911011120510.29405@laptop.mmcgrath.net>
References: <ffadd1240911010751p470f3b3ch9eaa58827007ab78@mail.gmail.com> 
	<alpine.LFD.2.00.0911011120510.29405@laptop.mmcgrath.net>
Message-ID: <ffadd1240911010927i3966089eo81352bcc764bc5aa@mail.gmail.com>

>
> Identica is FOSS right? ?If so, that one's ok.

Right.

> The Twitter one though
> isn't unless their code is also FOSS and I just didn't know it.

Exactly why I dropped this mail.:)

> I know
> it's just a link and all but it almost feels like an endorsement of
> some kind.

So it should be removed?


-- 
Regards,
Susmit.

=============================================
http://www.fedoraproject.org/wiki/user:susmit
=============================================
Sent from Calcutta, WB, India



From thinklinux.ssh at gmail.com  Sun Nov  1 17:57:57 2009
From: thinklinux.ssh at gmail.com (susmit shannigrahi)
Date: Sun, 1 Nov 2009 23:27:57 +0530
Subject: Added "Follow on Twitter/Identica" link to planet fedora.
In-Reply-To: <ffadd1240911010927i3966089eo81352bcc764bc5aa@mail.gmail.com>
References: <ffadd1240911010751p470f3b3ch9eaa58827007ab78@mail.gmail.com> 
	<alpine.LFD.2.00.0911011120510.29405@laptop.mmcgrath.net> 
	<ffadd1240911010927i3966089eo81352bcc764bc5aa@mail.gmail.com>
Message-ID: <ffadd1240911010957ofea7c8i1803c4db1ce2fe1d@mail.gmail.com>

>> I know
>> it's just a link and all but it almost feels like an endorsement of
>> some kind.
>
> So it should be removed?


Removed it.


-- 
Regards,
Susmit.

=============================================
http://www.fedoraproject.org/wiki/user:susmit
=============================================
Sent from Calcutta, WB, India



From mmcgrath at redhat.com  Mon Nov  2 02:15:44 2009
From: mmcgrath at redhat.com (Mike McGrath)
Date: Sun, 1 Nov 2009 20:15:44 -0600 (CST)
Subject: Change Freeze Reminder
Message-ID: <alpine.LFD.2.00.0911012012400.29405@laptop.mmcgrath.net>

Just a reminder, we'll be in a full change freeze starting on the third.
To know what's frozen just follow the directions here:

http://fedoraproject.org/wiki/Infrastructure/SOP/Release#Change_Freeze

	-Mike



From ruben at rubenkerkhof.com  Mon Nov  2 22:13:54 2009
From: ruben at rubenkerkhof.com (Ruben Kerkhof)
Date: Mon, 2 Nov 2009 23:13:54 +0100
Subject: python buildbot
Message-ID: <151B2467-6239-46CB-BC70-548617A80454@rubenkerkhof.com>

Hi all,

I was just reading a (very long) thread on the python-dev mailing  
list, about the state of the python development buildbots.
(http://mail.python.org/pipermail/python-dev/2009-October/093293.html)

Atm, none of the python builders (http://www.python.org/dev/buildbot/all/ 
) run a version of Fedora.

I know we test python releases by building them within koji, but  
nevertheless I was wondering if there's some spare capacity within the  
Fedora Infrastructure project to run a buildslave.
This may shake out issues before they enter stable python releases and  
we bump into them in Fedora.

Since we as Fedora are a large python shop, it might be a nice gesture  
to help our upstream out.

Kind regards,


Ruben Kerkhof





From jeff at ocjtech.us  Mon Nov  2 22:17:54 2009
From: jeff at ocjtech.us (Jeffrey Ollie)
Date: Mon, 2 Nov 2009 16:17:54 -0600
Subject: python buildbot
In-Reply-To: <151B2467-6239-46CB-BC70-548617A80454@rubenkerkhof.com>
References: <151B2467-6239-46CB-BC70-548617A80454@rubenkerkhof.com>
Message-ID: <935ead450911021417y742fa5a3v915871d93f9a9ebb@mail.gmail.com>

On Mon, Nov 2, 2009 at 4:13 PM, Ruben Kerkhof <ruben at rubenkerkhof.com> wrote:
>
> I was just reading a (very long) thread on the python-dev mailing list,
> about the state of the python development buildbots.
>
> Atm, none of the python builders (http://www.python.org/dev/buildbot/all/)
> run a version of Fedora.

https://fedorahosted.org/fedora-infrastructure/ticket/1717

-- 
Jeff Ollie



From ruben at rubenkerkhof.com  Mon Nov  2 22:49:56 2009
From: ruben at rubenkerkhof.com (Ruben Kerkhof)
Date: Mon, 2 Nov 2009 23:49:56 +0100
Subject: python buildbot
In-Reply-To: <935ead450911021417y742fa5a3v915871d93f9a9ebb@mail.gmail.com>
References: <151B2467-6239-46CB-BC70-548617A80454@rubenkerkhof.com>
	<935ead450911021417y742fa5a3v915871d93f9a9ebb@mail.gmail.com>
Message-ID: <33990728-8925-4186-AAFA-3882E9FD4A01@rubenkerkhof.com>


On Nov 2, 2009, at 11:17 PM, Jeffrey Ollie wrote:

> On Mon, Nov 2, 2009 at 4:13 PM, Ruben Kerkhof  
> <ruben at rubenkerkhof.com> wrote:
>>
>> I was just reading a (very long) thread on the python-dev mailing  
>> list,
>> about the state of the python development buildbots.
>>
>> Atm, none of the python builders (http://www.python.org/dev/buildbot/all/ 
>> )
>> run a version of Fedora.
>
> https://fedorahosted.org/fedora-infrastructure/ticket/1717
>
> -- 
> Jeff Ollie

Ah, someone beat me to it :-)

So, what needs to happen to set this up?
I can help with the buildbot part, I've got one running myself for the  
Tahoe project, and setting one up only takes a few minutes.
I'm not a member of the Infrastructure team though, so one of you guys  
should probably puppetize it and ensure the service is monitored etc.

Let me know if I can be of any help here.

Regards,

Ruben



From mmcgrath at redhat.com  Tue Nov  3 00:42:38 2009
From: mmcgrath at redhat.com (Mike McGrath)
Date: Mon, 2 Nov 2009 18:42:38 -0600 (CST)
Subject: python buildbot
In-Reply-To: <33990728-8925-4186-AAFA-3882E9FD4A01@rubenkerkhof.com>
References: <151B2467-6239-46CB-BC70-548617A80454@rubenkerkhof.com>
	<935ead450911021417y742fa5a3v915871d93f9a9ebb@mail.gmail.com>
	<33990728-8925-4186-AAFA-3882E9FD4A01@rubenkerkhof.com>
Message-ID: <alpine.LFD.2.00.0911021839300.29405@laptop.mmcgrath.net>

On Mon, 2 Nov 2009, Ruben Kerkhof wrote:

>
> On Nov 2, 2009, at 11:17 PM, Jeffrey Ollie wrote:
>
> > On Mon, Nov 2, 2009 at 4:13 PM, Ruben Kerkhof <ruben at rubenkerkhof.com>
> > wrote:
> > >
> > > I was just reading a (very long) thread on the python-dev mailing list,
> > > about the state of the python development buildbots.
> > >
> > > Atm, none of the python builders (http://www.python.org/dev/buildbot/all/)
> > > run a version of Fedora.
> >
> > https://fedorahosted.org/fedora-infrastructure/ticket/1717
> >
> > --
> > Jeff Ollie
>
> Ah, someone beat me to it :-)
>
> So, what needs to happen to set this up?
> I can help with the buildbot part, I've got one running myself for the Tahoe
> project, and setting one up only takes a few minutes.
> I'm not a member of the Infrastructure team though, so one of you guys should
> probably puppetize it and ensure the service is monitored etc.
>
> Let me know if I can be of any help here.
>

I'm kind of confused as why this would fall under our domain.  Like if
Apache came to us and wanted to build and test upstream code, why would
Fedora do this?  Who's going to pay for it?

	-Mike



From jeff at ocjtech.us  Tue Nov  3 01:18:44 2009
From: jeff at ocjtech.us (Jeffrey Ollie)
Date: Mon, 2 Nov 2009 19:18:44 -0600
Subject: python buildbot
In-Reply-To: <alpine.LFD.2.00.0911021839300.29405@laptop.mmcgrath.net>
References: <151B2467-6239-46CB-BC70-548617A80454@rubenkerkhof.com>
	<935ead450911021417y742fa5a3v915871d93f9a9ebb@mail.gmail.com>
	<33990728-8925-4186-AAFA-3882E9FD4A01@rubenkerkhof.com>
	<alpine.LFD.2.00.0911021839300.29405@laptop.mmcgrath.net>
Message-ID: <935ead450911021718w3201b4fl19151054d254c16d@mail.gmail.com>

Would this be something for the cloud service?  I haven't heard much
about it lately so I don't know what shape it is in.

On 11/2/09, Mike McGrath <mmcgrath at redhat.com> wrote:
> On Mon, 2 Nov 2009, Ruben Kerkhof wrote:
>
>>
>> On Nov 2, 2009, at 11:17 PM, Jeffrey Ollie wrote:
>>
>> > On Mon, Nov 2, 2009 at 4:13 PM, Ruben Kerkhof <ruben at rubenkerkhof.com>
>> > wrote:
>> > >
>> > > I was just reading a (very long) thread on the python-dev mailing
>> > > list,
>> > > about the state of the python development buildbots.
>> > >
>> > > Atm, none of the python builders
>> > > (http://www.python.org/dev/buildbot/all/)
>> > > run a version of Fedora.
>> >
>> > https://fedorahosted.org/fedora-infrastructure/ticket/1717
>> >
>> > --
>> > Jeff Ollie
>>
>> Ah, someone beat me to it :-)
>>
>> So, what needs to happen to set this up?
>> I can help with the buildbot part, I've got one running myself for the
>> Tahoe
>> project, and setting one up only takes a few minutes.
>> I'm not a member of the Infrastructure team though, so one of you guys
>> should
>> probably puppetize it and ensure the service is monitored etc.
>>
>> Let me know if I can be of any help here.
>>
>
> I'm kind of confused as why this would fall under our domain.  Like if
> Apache came to us and wanted to build and test upstream code, why would
> Fedora do this?  Who's going to pay for it?
>
> 	-Mike
>
> _______________________________________________
> Fedora-infrastructure-list mailing list
> Fedora-infrastructure-list at redhat.com
> https://www.redhat.com/mailman/listinfo/fedora-infrastructure-list
>

-- 
Sent from my mobile device

Jeff Ollie



From mmcgrath at redhat.com  Tue Nov  3 02:10:13 2009
From: mmcgrath at redhat.com (Mike McGrath)
Date: Mon, 2 Nov 2009 20:10:13 -0600 (CST)
Subject: python buildbot
In-Reply-To: <935ead450911021718w3201b4fl19151054d254c16d@mail.gmail.com>
References: <151B2467-6239-46CB-BC70-548617A80454@rubenkerkhof.com>
	<935ead450911021417y742fa5a3v915871d93f9a9ebb@mail.gmail.com>
	<33990728-8925-4186-AAFA-3882E9FD4A01@rubenkerkhof.com>
	<alpine.LFD.2.00.0911021839300.29405@laptop.mmcgrath.net>
	<935ead450911021718w3201b4fl19151054d254c16d@mail.gmail.com>
Message-ID: <alpine.LFD.2.00.0911022009350.29405@laptop.mmcgrath.net>

On Mon, 2 Nov 2009, Jeffrey Ollie wrote:

> Would this be something for the cloud service?  I haven't heard much
> about it lately so I don't know what shape it is in.
>

Only if it's ok that it goes away in 3 years.  The cloud setup is only
temporary for the length of time of the warranty of the servers :)

	-Mike

> On 11/2/09, Mike McGrath <mmcgrath at redhat.com> wrote:
> > On Mon, 2 Nov 2009, Ruben Kerkhof wrote:
> >
> >>
> >> On Nov 2, 2009, at 11:17 PM, Jeffrey Ollie wrote:
> >>
> >> > On Mon, Nov 2, 2009 at 4:13 PM, Ruben Kerkhof <ruben at rubenkerkhof.com>
> >> > wrote:
> >> > >
> >> > > I was just reading a (very long) thread on the python-dev mailing
> >> > > list,
> >> > > about the state of the python development buildbots.
> >> > >
> >> > > Atm, none of the python builders
> >> > > (http://www.python.org/dev/buildbot/all/)
> >> > > run a version of Fedora.
> >> >
> >> > https://fedorahosted.org/fedora-infrastructure/ticket/1717
> >> >
> >> > --
> >> > Jeff Ollie
> >>
> >> Ah, someone beat me to it :-)
> >>
> >> So, what needs to happen to set this up?
> >> I can help with the buildbot part, I've got one running myself for the
> >> Tahoe
> >> project, and setting one up only takes a few minutes.
> >> I'm not a member of the Infrastructure team though, so one of you guys
> >> should
> >> probably puppetize it and ensure the service is monitored etc.
> >>
> >> Let me know if I can be of any help here.
> >>
> >
> > I'm kind of confused as why this would fall under our domain.  Like if
> > Apache came to us and wanted to build and test upstream code, why would
> > Fedora do this?  Who's going to pay for it?
> >
> > 	-Mike
> >
> > _______________________________________________
> > Fedora-infrastructure-list mailing list
> > Fedora-infrastructure-list at redhat.com
> > https://www.redhat.com/mailman/listinfo/fedora-infrastructure-list
> >
>
> --
> Sent from my mobile device
>
> Jeff Ollie
>
> _______________________________________________
> Fedora-infrastructure-list mailing list
> Fedora-infrastructure-list at redhat.com
> https://www.redhat.com/mailman/listinfo/fedora-infrastructure-list
>



From thinklinux.ssh at gmail.com  Wed Nov  4 04:36:54 2009
From: thinklinux.ssh at gmail.com (susmit shannigrahi)
Date: Wed, 4 Nov 2009 10:06:54 +0530
Subject: How do we link the auto-update of ssh banner with update of wiki 
	page?
Message-ID: <ffadd1240911032036j12e48128k513d527b20669a81@mail.gmail.com>

Hi,

I found that if I update
http://fedoraproject.org/wiki/Infrastructure/Server/publictest16,
the welcome banner of pt16 changes too.
How is it done? Looks interesting.
Thanks.


-- 
Regards,
Susmit.

=============================================
http://www.fedoraproject.org/wiki/user:susmit
=============================================



From mmcgrath at redhat.com  Wed Nov  4 19:36:21 2009
From: mmcgrath at redhat.com (Mike McGrath)
Date: Wed, 4 Nov 2009 13:36:21 -0600 (CST)
Subject: How do we link the auto-update of ssh banner with update of wiki
 page?
In-Reply-To: <ffadd1240911032036j12e48128k513d527b20669a81@mail.gmail.com>
References: <ffadd1240911032036j12e48128k513d527b20669a81@mail.gmail.com>
Message-ID: <alpine.LFD.2.00.0911041335530.29405@laptop.mmcgrath.net>

On Wed, 4 Nov 2009, susmit shannigrahi wrote:

> Hi,
>
> I found that if I update
> http://fedoraproject.org/wiki/Infrastructure/Server/publictest16,
> the welcome banner of pt16 changes too.
> How is it done? Looks interesting.
> Thanks.
>

In /etc/bashrc we check to see if it's a test server.  If it is we then
run:

/usr/bin/wget --tries=1 --timeout=3 -qO-
"https://fedoraproject.org/w/index.php?title=Infrastructure/Server/$(/bin/hostname
-s)&action=raw"


	-Mike



From mmcgrath at redhat.com  Wed Nov  4 22:40:03 2009
From: mmcgrath at redhat.com (Mike McGrath)
Date: Wed, 4 Nov 2009 16:40:03 -0600 (CST)
Subject: Outage Notification - 2009-11-05 13:00 UTC
Message-ID: <alpine.LFD.2.00.0911041635310.29405@laptop.mmcgrath.net>


There will be an outage starting at 2009-11-05 13:00 UTC, which will last
approximately 1 hour.

To convert UTC to your local time, take a look at
http://fedoraproject.org/wiki/Infrastructure/UTCHowto
or run:

date -d '2009-11-05 13:00 UTC'

Affected Services:

Buildsystem
DNS
Torrent
Translation Services
Websites

Unaffected Services:
CVS / Source Control
Database
Fedora Hosted
Fedora People
Fedora Talk
Mail
Mirror System

Ticket Link:

https://fedorahosted.org/fedora-infrastructure/ticket/1785

Reason for Outage:

IBM wants us reseat the DIMMs and get FRU information off of them.  Don is
going to do this work for us (thanks ibiblio).  Seth is going to do a
graceful shutoff.

Contact Information:

Please join #fedora-admin in irc.freenode.net or respond to this email to
trackthe status of this outage.



From thinklinux.ssh at gmail.com  Thu Nov  5 03:48:02 2009
From: thinklinux.ssh at gmail.com (susmit shannigrahi)
Date: Thu, 5 Nov 2009 09:18:02 +0530
Subject: How do we link the auto-update of ssh banner with update of
	wiki page?
In-Reply-To: <alpine.LFD.2.00.0911041335530.29405@laptop.mmcgrath.net>
References: <ffadd1240911032036j12e48128k513d527b20669a81@mail.gmail.com> 
	<alpine.LFD.2.00.0911041335530.29405@laptop.mmcgrath.net>
Message-ID: <ffadd1240911041948o45279715y766708b3c41c766b@mail.gmail.com>

>
> In /etc/bashrc we check to see if it's a test server. ?If it is we then
> run:
>
> /usr/bin/wget --tries=1 --timeout=3 -qO-
> "https://fedoraproject.org/w/index.php?title=Infrastructure/Server/$(/bin/hostname
> -s)&action=raw"

It is a smart way indeed.
Thanks.



-- 
Regards,
Susmit.

=============================================
http://www.fedoraproject.org/wiki/user:susmit
=============================================



From lmacken at redhat.com  Thu Nov  5 15:19:02 2009
From: lmacken at redhat.com (Luke Macken)
Date: Thu, 5 Nov 2009 10:19:02 -0500
Subject: bodhi log analysis
Message-ID: <20091105151902.GB2972@x300.cable.rcn.com>

Hey all,

So I wrote a little script this morning to analyze all of bodhi's logs across
app1-7.  The results were quite interesting.  Below are some of the top
offenders, in the format of (# of tracebacks : exception)

# Database issues
134 : InterfaceError: connection already closed
1773 :  OperationalError: terminating connection due to administrator command server closed the connection unexpectedly This probably means the server terminated abnormally before or while processing the request.
2566 : OperationalError: FATAL:  connection limit exceeded for non-superusers

# FAS issues
115 : error: 35
126 : error: 52
236 : error: 6
1155 : ServerError: ServerError(https://admin.fedoraproject.org/accounts/, 500, Unknown HTTP Server Response)
1320 : error: 7
2758 : ServerError: ServerError(https://admin.fedoraproject.org/accounts/, 503, Unknown HTTP Server Response)
3539 : error: 18
5399 : ServerError: ServerError(https://admin.fedoraproject.org/accounts/, 502, Unknown HTTP Server Response)

The "error: #" messages are from pycurl within the TurboGears JSONFas
identity/visit layer.  PyCurl error descriptions can be found here:
http://curl.haxx.se/libcurl/c/libcurl-errors.html

luke
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 197 bytes
Desc: not available
URL: <http://listman.redhat.com/archives/fedora-infrastructure-list/attachments/20091105/62e2a1f7/attachment.sig>

From mmcgrath at redhat.com  Thu Nov  5 15:25:49 2009
From: mmcgrath at redhat.com (Mike McGrath)
Date: Thu, 5 Nov 2009 09:25:49 -0600 (CST)
Subject: bodhi log analysis
In-Reply-To: <20091105151902.GB2972@x300.cable.rcn.com>
References: <20091105151902.GB2972@x300.cable.rcn.com>
Message-ID: <alpine.LFD.2.00.0911050925330.13500@laptop.mmcgrath.net>

On Thu, 5 Nov 2009, Luke Macken wrote:

> Hey all,
>
> So I wrote a little script this morning to analyze all of bodhi's logs across
> app1-7.  The results were quite interesting.  Below are some of the top
> offenders, in the format of (# of tracebacks : exception)
>
> # Database issues
> 134 : InterfaceError: connection already closed
> 1773 :  OperationalError: terminating connection due to administrator command server closed the connection unexpectedly This probably means the server terminated abnormally before or while processing the request.
> 2566 : OperationalError: FATAL:  connection limit exceeded for non-superusers
>
> # FAS issues
> 115 : error: 35
> 126 : error: 52
> 236 : error: 6
> 1155 : ServerError: ServerError(https://admin.fedoraproject.org/accounts/, 500, Unknown HTTP Server Response)
> 1320 : error: 7
> 2758 : ServerError: ServerError(https://admin.fedoraproject.org/accounts/, 503, Unknown HTTP Server Response)
> 3539 : error: 18
> 5399 : ServerError: ServerError(https://admin.fedoraproject.org/accounts/, 502, Unknown HTTP Server Response)
>
> The "error: #" messages are from pycurl within the TurboGears JSONFas
> identity/visit layer.  PyCurl error descriptions can be found here:
> http://curl.haxx.se/libcurl/c/libcurl-errors.html
>

out of how many total requests did we see these errors?

	-Mike



From lmacken at redhat.com  Thu Nov  5 15:26:16 2009
From: lmacken at redhat.com (Luke Macken)
Date: Thu, 5 Nov 2009 10:26:16 -0500
Subject: bodhi log analysis
In-Reply-To: <20091105151902.GB2972@x300.cable.rcn.com>
References: <20091105151902.GB2972@x300.cable.rcn.com>
Message-ID: <20091105152616.GC2972@x300.cable.rcn.com>


On Thu, Nov 05, 2009 at 10:19:02AM -0500, Luke Macken wrote:
> # FAS issues
> 115 : error: 35
> 126 : error: 52
> 236 : error: 6
> 1155 : ServerError: ServerError(https://admin.fedoraproject.org/accounts/, 500, Unknown HTTP Server Response)
> 1320 : error: 7
> 2758 : ServerError: ServerError(https://admin.fedoraproject.org/accounts/, 503, Unknown HTTP Server Response)
> 3539 : error: 18
> 5399 : ServerError: ServerError(https://admin.fedoraproject.org/accounts/, 502, Unknown HTTP Server Response)

To elaborate on the FAS/curl related exceptions a bit more...

24 : CURLE_OPERATION_TIMEDOUT (28)

Operation timeout. The specified time-out period was reached according
to the conditions. 

115 : CURLE_SSL_CONNECT_ERROR (35)

A problem occurred somewhere in the SSL/TLS handshake. You really want
the error buffer and read the message there as it pinpoints the problem
slightly more. Could be certificates (file formats, paths, permissions),
passwords, and others. 

126 : CURLE_GOT_NOTHING (52)

Nothing was returned from the server, and under the circumstances,
getting nothing is considered an error. 

236 : CURLM_UNKNOWN_OPTION (6)

curl_multi_setopt() with unsupported option (Added in 7.15.4) 

1155 : ServerError: ServerError(https://admin.fedoraproject.org/accounts/, 500, Unknown HTTP Server Response)

1320 : CURLE_COULDNT_CONNECT (7)

Failed to connect() to host or proxy. 

2758 : ServerError: ServerError(https://admin.fedoraproject.org/accounts/, 503, Unknown HTTP Server Response)

3539 : CURLE_PARTIAL_FILE (18)

A file transfer was shorter or larger than expected. This happens when
the server first reports an expected transfer size, and then delivers
data that doesn't match the previously given size. 

5399 : ServerError: ServerError(https://admin.fedoraproject.org/accounts/, 502, Unknown HTTP Server Response)



From lmacken at redhat.com  Thu Nov  5 15:28:10 2009
From: lmacken at redhat.com (Luke Macken)
Date: Thu, 5 Nov 2009 10:28:10 -0500
Subject: bodhi log analysis
In-Reply-To: <alpine.LFD.2.00.0911050925330.13500@laptop.mmcgrath.net>
References: <20091105151902.GB2972@x300.cable.rcn.com>
	<alpine.LFD.2.00.0911050925330.13500@laptop.mmcgrath.net>
Message-ID: <20091105152810.GD2972@x300.cable.rcn.com>

On Thu, Nov 05, 2009 at 09:25:49AM -0600, Mike McGrath wrote:
> On Thu, 5 Nov 2009, Luke Macken wrote:
> 
> > Hey all,
> >
> > So I wrote a little script this morning to analyze all of bodhi's logs across
> > app1-7.  The results were quite interesting.  Below are some of the top
> > offenders, in the format of (# of tracebacks : exception)
> >
> > # Database issues
> > 134 : InterfaceError: connection already closed
> > 1773 :  OperationalError: terminating connection due to administrator command server closed the connection unexpectedly This probably means the server terminated abnormally before or while processing the request.
> > 2566 : OperationalError: FATAL:  connection limit exceeded for non-superusers
> >
> > # FAS issues
> > 115 : error: 35
> > 126 : error: 52
> > 236 : error: 6
> > 1155 : ServerError: ServerError(https://admin.fedoraproject.org/accounts/, 500, Unknown HTTP Server Response)
> > 1320 : error: 7
> > 2758 : ServerError: ServerError(https://admin.fedoraproject.org/accounts/, 503, Unknown HTTP Server Response)
> > 3539 : error: 18
> > 5399 : ServerError: ServerError(https://admin.fedoraproject.org/accounts/, 502, Unknown HTTP Server Response)
> >
> > The "error: #" messages are from pycurl within the TurboGears JSONFas
> > identity/visit layer.  PyCurl error descriptions can be found here:
> > http://curl.haxx.se/libcurl/c/libcurl-errors.html
> >
> 
> out of how many total requests did we see these errors?

Out of ~18264206 requests.

luke



From mmcgrath at redhat.com  Thu Nov  5 15:59:24 2009
From: mmcgrath at redhat.com (Mike McGrath)
Date: Thu, 5 Nov 2009 09:59:24 -0600 (CST)
Subject: Meeting reminder today
Message-ID: <alpine.LFD.2.00.0911050958380.13500@laptop.mmcgrath.net>

We have a meeting reminder today, at 20:00 UTC.  This will be a change for
some people who observe US Daylight Savings times.  We'll be discussing
the release so it's important to be there.

	-Mike



From jeff at ocjtech.us  Thu Nov  5 16:44:58 2009
From: jeff at ocjtech.us (Jeffrey Ollie)
Date: Thu, 5 Nov 2009 10:44:58 -0600
Subject: Meeting reminder today
In-Reply-To: <alpine.LFD.2.00.0911050958380.13500@laptop.mmcgrath.net>
References: <alpine.LFD.2.00.0911050958380.13500@laptop.mmcgrath.net>
Message-ID: <935ead450911050844k5f4c0da0l9594ff4457d333f8@mail.gmail.com>

On Thu, Nov 5, 2009 at 9:59 AM, Mike McGrath <mmcgrath at redhat.com> wrote:
> We have a meeting reminder today, at 20:00 UTC. ?This will be a change for
> some people who observe US Daylight Savings times. ?We'll be discussing
> the release so it's important to be there.

I won't be able to be at the meeting due to a conflicting $DAYJOB
meeting, but if there's time after discussing the release I'd like to
get a go/no-go decision on rebuilding asterisk1 with Fedora 12 and the
same config as asterisk2.  Asterisk2's config should be completely
puppetized but building a new box will help us confirm that.  Fedora
Talk isn't part of the release freeze but communication is the key...

-- 
Jeff Ollie



From Matt_Domsch at Dell.com  Thu Nov  5 21:08:15 2009
From: Matt_Domsch at Dell.com (Matt_Domsch at Dell.com)
Date: Thu, 5 Nov 2009 15:08:15 -0600
Subject: change request: switch MM off using pgpool
Message-ID: <E9909A75A543064DB66E55B8E3BE41EC72740C@ausx3mps307.aus.amer.dell.com>

all MM apps running on bapp1 are stalled because pgpool is hung.  MM has lots of connections to pgpool, more than it can handle.  Until this is understood, go back to not using pgpool for MM.

diff --git a/modules/mirrormanager/templates/mirrormanager-prod.cfg.erb b/modules/mirrormanager/templates/mirrormanager-prod.cfg.erb
index e17022d..1b60465 100644
--- a/modules/mirrormanager/templates/mirrormanager-prod.cfg.erb
+++ b/modules/mirrormanager/templates/mirrormanager-prod.cfg.erb
@@ -15,7 +15,7 @@
 
 # This is for local development purposes.  It won't be used for
 # production.
-sqlobject.dburi="notrans_postgres://mirroradmin:<%= mirrorPassword %>@db2.fedora.phx.redhat.com:9999/mirrormanager"
+sqlobject.dburi="notrans_postgres://mirroradmin:<%= mirrorPassword %>@db2.fedora.phx.redhat.com:5432/mirrormanager"
 
 # if you are using a database or table type without transactions
 # (MySQL default, for example), you should turn off transactions


--
Matt Domsch
Technology Strategist, Dell Office of the CTO
linux.dell.com & www.dell.com/linux





From mmcgrath at redhat.com  Thu Nov  5 21:20:06 2009
From: mmcgrath at redhat.com (Mike McGrath)
Date: Thu, 5 Nov 2009 15:20:06 -0600 (CST)
Subject: change request: switch MM off using pgpool
In-Reply-To: <E9909A75A543064DB66E55B8E3BE41EC72740C@ausx3mps307.aus.amer.dell.com>
References: <E9909A75A543064DB66E55B8E3BE41EC72740C@ausx3mps307.aus.amer.dell.com>
Message-ID: <alpine.LFD.2.00.0911051519530.13500@laptop.mmcgrath.net>



On Thu, 5 Nov 2009, Matt_Domsch at Dell.com wrote:

> all MM apps running on bapp1 are stalled because pgpool is hung.  MM has lots of connections to pgpool, more than it can handle.  Until this is understood, go back to not using pgpool for MM.
>
> diff --git a/modules/mirrormanager/templates/mirrormanager-prod.cfg.erb b/modules/mirrormanager/templates/mirrormanager-prod.cfg.erb
> index e17022d..1b60465 100644
> --- a/modules/mirrormanager/templates/mirrormanager-prod.cfg.erb
> +++ b/modules/mirrormanager/templates/mirrormanager-prod.cfg.erb
> @@ -15,7 +15,7 @@
>
>  # This is for local development purposes.  It won't be used for
>  # production.
> -sqlobject.dburi="notrans_postgres://mirroradmin:<%= mirrorPassword %>@db2.fedora.phx.redhat.com:9999/mirrormanager"
> +sqlobject.dburi="notrans_postgres://mirroradmin:<%= mirrorPassword %>@db2.fedora.phx.redhat.com:5432/mirrormanager"
>
>  # if you are using a database or table type without transactions
>  # (MySQL default, for example), you should turn off transactions
>
>

+1

	-Mike



From ricky at fedoraproject.org  Thu Nov  5 21:26:16 2009
From: ricky at fedoraproject.org (Ricky Zhou)
Date: Thu, 5 Nov 2009 16:26:16 -0500
Subject: change request: switch MM off using pgpool
In-Reply-To: <E9909A75A543064DB66E55B8E3BE41EC72740C@ausx3mps307.aus.amer.dell.com>
References: <E9909A75A543064DB66E55B8E3BE41EC72740C@ausx3mps307.aus.amer.dell.com>
Message-ID: <20091105212616.GA10395@alpha.rzhou.org>

On 2009-11-05 03:08:15 PM, Matt_Domsch at Dell.com wrote:
> all MM apps running on bapp1 are stalled because pgpool is hung.  MM has lots of connections to pgpool, more than it can handle.  Until this is understood, go back to not using pgpool for MM.
> 
> diff --git a/modules/mirrormanager/templates/mirrormanager-prod.cfg.erb b/modules/mirrormanager/templates/mirrormanager-prod.cfg.erb
> index e17022d..1b60465 100644
> --- a/modules/mirrormanager/templates/mirrormanager-prod.cfg.erb
> +++ b/modules/mirrormanager/templates/mirrormanager-prod.cfg.erb
> @@ -15,7 +15,7 @@
>  
>  # This is for local development purposes.  It won't be used for
>  # production.
> -sqlobject.dburi="notrans_postgres://mirroradmin:<%= mirrorPassword %>@db2.fedora.phx.redhat.com:9999/mirrormanager"
> +sqlobject.dburi="notrans_postgres://mirroradmin:<%= mirrorPassword %>@db2.fedora.phx.redhat.com:5432/mirrormanager"
>  
>  # if you are using a database or table type without transactions
>  # (MySQL default, for example), you should turn off transactions
> 
> 
> --
+1

Thanks,
Ricky
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 197 bytes
Desc: not available
URL: <http://listman.redhat.com/archives/fedora-infrastructure-list/attachments/20091105/6dab3182/attachment.sig>

From dennis at ausil.us  Fri Nov  6 16:57:18 2009
From: dennis at ausil.us (Dennis Gilmore)
Date: Fri, 6 Nov 2009 10:57:18 -0600
Subject: Change Request: add ppc koji instance
Message-ID: <200911061057.26785.dennis@ausil.us>

diff --git a/modules/bind/files/master/fedoraproject.org 
b/modules/bind/files/master/fedoraproject.org
index ef4f4f4..5cf659b 100644
--- a/modules/bind/files/master/fedoraproject.org
+++ b/modules/bind/files/master/fedoraproject.org
@@ -1,6 +1,6 @@
 $TTL 3600
 @                IN        SOA     ns1.fedoraproject.org.        
hostmaster.fedoraproject.org. (
-                        2009102901 ; Serial
+                        2009110601 ; Serial
                         8H ; refresh
                         2H ; retry
                         4W ; expire
@@ -45,6 +45,8 @@ s390.koji       IN  A       208.250.55.218
 s390pkgs        IN  A       208.250.55.218
 ; arm koji instance
 arm.koji       IN  A       80.101.37.227
+; ppc koji instance
+ppc.koji       IN  A       209.132.178.126

 ; voip
 _sip._tcp           SRV     5 0 5060 asterisk1.fedoraproject.org.


id like to apply that patch to dns to add the ppc secondary arch hub

Dennis
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 198 bytes
Desc: This is a digitally signed message part.
URL: <http://listman.redhat.com/archives/fedora-infrastructure-list/attachments/20091106/d227cb11/attachment.sig>

From mmcgrath at redhat.com  Fri Nov  6 17:19:06 2009
From: mmcgrath at redhat.com (Mike McGrath)
Date: Fri, 6 Nov 2009 11:19:06 -0600 (CST)
Subject: Change Request: add ppc koji instance
In-Reply-To: <200911061057.26785.dennis@ausil.us>
References: <200911061057.26785.dennis@ausil.us>
Message-ID: <alpine.LFD.2.00.0911061118550.28169@laptop.mmcgrath.net>

On Fri, 6 Nov 2009, Dennis Gilmore wrote:

> diff --git a/modules/bind/files/master/fedoraproject.org
> b/modules/bind/files/master/fedoraproject.org
> index ef4f4f4..5cf659b 100644
> --- a/modules/bind/files/master/fedoraproject.org
> +++ b/modules/bind/files/master/fedoraproject.org
> @@ -1,6 +1,6 @@
>  $TTL 3600
>  @                IN        SOA     ns1.fedoraproject.org.
> hostmaster.fedoraproject.org. (
> -                        2009102901 ; Serial
> +                        2009110601 ; Serial
>                          8H ; refresh
>                          2H ; retry
>                          4W ; expire
> @@ -45,6 +45,8 @@ s390.koji       IN  A       208.250.55.218
>  s390pkgs        IN  A       208.250.55.218
>  ; arm koji instance
>  arm.koji       IN  A       80.101.37.227
> +; ppc koji instance
> +ppc.koji       IN  A       209.132.178.126
>
>  ; voip
>  _sip._tcp           SRV     5 0 5060 asterisk1.fedoraproject.org.
>
>
> id like to apply that patch to dns to add the ppc secondary arch hub
>
 +1



From ricky at fedoraproject.org  Fri Nov  6 17:25:04 2009
From: ricky at fedoraproject.org (Ricky Zhou)
Date: Fri, 6 Nov 2009 12:25:04 -0500
Subject: Change Request: add ppc koji instance
In-Reply-To: <200911061057.26785.dennis@ausil.us>
References: <200911061057.26785.dennis@ausil.us>
Message-ID: <20091106172504.GC10395@alpha.rzhou.org>

On 2009-11-06 10:57:18 AM, Dennis Gilmore wrote:
> diff --git a/modules/bind/files/master/fedoraproject.org 
> b/modules/bind/files/master/fedoraproject.org
> index ef4f4f4..5cf659b 100644
> --- a/modules/bind/files/master/fedoraproject.org
> +++ b/modules/bind/files/master/fedoraproject.org
> @@ -1,6 +1,6 @@
>  $TTL 3600
>  @                IN        SOA     ns1.fedoraproject.org.        
> hostmaster.fedoraproject.org. (
> -                        2009102901 ; Serial
> +                        2009110601 ; Serial
>                          8H ; refresh
>                          2H ; retry
>                          4W ; expire
> @@ -45,6 +45,8 @@ s390.koji       IN  A       208.250.55.218
>  s390pkgs        IN  A       208.250.55.218
>  ; arm koji instance
>  arm.koji       IN  A       80.101.37.227
> +; ppc koji instance
> +ppc.koji       IN  A       209.132.178.126
> 
>  ; voip
>  _sip._tcp           SRV     5 0 5060 asterisk1.fedoraproject.org.
> 
> 
> id like to apply that patch to dns to add the ppc secondary arch hub
+1

Thanks,
Ricky
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 197 bytes
Desc: not available
URL: <http://listman.redhat.com/archives/fedora-infrastructure-list/attachments/20091106/ef7f3090/attachment.sig>

From mmcgrath at redhat.com  Fri Nov  6 21:31:12 2009
From: mmcgrath at redhat.com (Mike McGrath)
Date: Fri,  6 Nov 2009 15:31:12 -0600
Subject: [PATCH] logging cron job
Message-ID: <1257543072-32315-1-git-send-email-mmcgrath@redhat.com>

---
 modules/transifex/manifests/init.pp |    2 +-
 1 files changed, 1 insertions(+), 1 deletions(-)

diff --git a/modules/transifex/manifests/init.pp b/modules/transifex/manifests/init.pp
index df03871..8e2d24a 100644
--- a/modules/transifex/manifests/init.pp
+++ b/modules/transifex/manifests/init.pp
@@ -126,7 +126,7 @@ class transifex::app {
 
 class transifex::refresh {
     cron { "transifex-refresh":
-        command => "cd /usr/share/transifex; CVS_RSH=ssh SSH_AUTH_SOCK=/var/lib/transifex/ssh-agent-sock-transifex /usr/bin/python ./manage.py txstatsrefresh --skip-broken > /dev/null 2>&1",
+        command => "cd /usr/share/transifex; CVS_RSH=ssh SSH_AUTH_SOCK=/var/lib/transifex/ssh-agent-sock-transifex /usr/bin/python ./manage.py txstatsrefresh --skip-broken > /var/log/transifex/cron.log 2>&1",
         user    => "transifex",
         minute  => [ 45 ],
         hour    => [ 1, 7, 13, 18 ],
-- 
1.6.2.5



From Matt_Domsch at dell.com  Fri Nov  6 22:11:39 2009
From: Matt_Domsch at dell.com (Matt Domsch)
Date: Fri, 6 Nov 2009 16:11:39 -0600
Subject: [PATCH] logging cron job
In-Reply-To: <1257543072-32315-1-git-send-email-mmcgrath@redhat.com>
References: <1257543072-32315-1-git-send-email-mmcgrath@redhat.com>
Message-ID: <20091106221138.GD15533@mock.linuxdev.us.dell.com>

On Fri, Nov 06, 2009 at 03:31:12PM -0600, Mike McGrath wrote:
> ---
>  modules/transifex/manifests/init.pp |    2 +-
>  1 files changed, 1 insertions(+), 1 deletions(-)
> 
> diff --git a/modules/transifex/manifests/init.pp b/modules/transifex/manifests/init.pp
> index df03871..8e2d24a 100644
> --- a/modules/transifex/manifests/init.pp
> +++ b/modules/transifex/manifests/init.pp
> @@ -126,7 +126,7 @@ class transifex::app {
>  
>  class transifex::refresh {
>      cron { "transifex-refresh":
> -        command => "cd /usr/share/transifex; CVS_RSH=ssh SSH_AUTH_SOCK=/var/lib/transifex/ssh-agent-sock-transifex /usr/bin/python ./manage.py txstatsrefresh --skip-broken > /dev/null 2>&1",
> +        command => "cd /usr/share/transifex; CVS_RSH=ssh SSH_AUTH_SOCK=/var/lib/transifex/ssh-agent-sock-transifex /usr/bin/python ./manage.py txstatsrefresh --skip-broken > /var/log/transifex/cron.log 2>&1",
>          user    => "transifex",
>          minute  => [ 45 ],
>          hour    => [ 1, 7, 13, 18 ],
> -- 
> 1.6.2.5

If you have a way to logrotate that cron.log file too, +1.


-- 
Matt Domsch
Technology Strategist, Dell Office of the CTO
linux.dell.com & www.dell.com/linux



From dennis at ausil.us  Fri Nov  6 22:12:11 2009
From: dennis at ausil.us (Dennis Gilmore)
Date: Fri, 6 Nov 2009 16:12:11 -0600
Subject: [PATCH] logging cron job
In-Reply-To: <1257543072-32315-1-git-send-email-mmcgrath@redhat.com>
References: <1257543072-32315-1-git-send-email-mmcgrath@redhat.com>
Message-ID: <200911061612.21963.dennis@ausil.us>

On Friday 06 November 2009 03:31:12 pm Mike McGrath wrote:
> ---
>  modules/transifex/manifests/init.pp |    2 +-
>  1 files changed, 1 insertions(+), 1 deletions(-)
> 
> diff --git a/modules/transifex/manifests/init.pp
>  b/modules/transifex/manifests/init.pp index df03871..8e2d24a 100644
> --- a/modules/transifex/manifests/init.pp
> +++ b/modules/transifex/manifests/init.pp
> @@ -126,7 +126,7 @@ class transifex::app {
> 
>  class transifex::refresh {
>      cron { "transifex-refresh":
> -        command => "cd /usr/share/transifex; CVS_RSH=ssh
>  SSH_AUTH_SOCK=/var/lib/transifex/ssh-agent-sock-transifex /usr/bin/python
>  ./manage.py txstatsrefresh --skip-broken > /dev/null 2>&1", +       
>  command => "cd /usr/share/transifex; CVS_RSH=ssh
>  SSH_AUTH_SOCK=/var/lib/transifex/ssh-agent-sock-transifex /usr/bin/python
>  ./manage.py txstatsrefresh --skip-broken > /var/log/transifex/cron.log
>  2>&1", user    => "transifex",
>          minute  => [ 45 ],
>          hour    => [ 1, 7, 13, 18 ],
> 
+1

Dennis
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 198 bytes
Desc: This is a digitally signed message part.
URL: <http://listman.redhat.com/archives/fedora-infrastructure-list/attachments/20091106/5a9910a4/attachment.sig>

From mmcgrath at redhat.com  Fri Nov  6 22:44:56 2009
From: mmcgrath at redhat.com (Mike McGrath)
Date: Fri, 6 Nov 2009 16:44:56 -0600 (CST)
Subject: [PATCH] logging cron job
In-Reply-To: <20091106221138.GD15533@mock.linuxdev.us.dell.com>
References: <1257543072-32315-1-git-send-email-mmcgrath@redhat.com>
	<20091106221138.GD15533@mock.linuxdev.us.dell.com>
Message-ID: <alpine.LFD.2.00.0911061644310.28169@laptop.mmcgrath.net>

On Fri, 6 Nov 2009, Matt Domsch wrote:

> On Fri, Nov 06, 2009 at 03:31:12PM -0600, Mike McGrath wrote:
> > ---
> >  modules/transifex/manifests/init.pp |    2 +-
> >  1 files changed, 1 insertions(+), 1 deletions(-)
> >
> > diff --git a/modules/transifex/manifests/init.pp b/modules/transifex/manifests/init.pp
> > index df03871..8e2d24a 100644
> > --- a/modules/transifex/manifests/init.pp
> > +++ b/modules/transifex/manifests/init.pp
> > @@ -126,7 +126,7 @@ class transifex::app {
> >
> >  class transifex::refresh {
> >      cron { "transifex-refresh":
> > -        command => "cd /usr/share/transifex; CVS_RSH=ssh SSH_AUTH_SOCK=/var/lib/transifex/ssh-agent-sock-transifex /usr/bin/python ./manage.py txstatsrefresh --skip-broken > /dev/null 2>&1",
> > +        command => "cd /usr/share/transifex; CVS_RSH=ssh SSH_AUTH_SOCK=/var/lib/transifex/ssh-agent-sock-transifex /usr/bin/python ./manage.py txstatsrefresh --skip-broken > /var/log/transifex/cron.log 2>&1",
> >          user    => "transifex",
> >          minute  => [ 45 ],
> >          hour    => [ 1, 7, 13, 18 ],
> > --
> > 1.6.2.5
>
> If you have a way to logrotate that cron.log file too, +1.
>

For this one I'm actually just using >, not append.

	-Mike



From jkeating at redhat.com  Fri Nov  6 23:08:25 2009
From: jkeating at redhat.com (Jesse Keating)
Date: Fri,  6 Nov 2009 23:08:25 +0000
Subject: [PATCH] Enable pushing of Fedora 12 updates
Message-ID: <1257548905-7540-1-git-send-email-jkeating@redhat.com>

---
 configs/system/fedora-updates-push |    2 +-
 1 files changed, 1 insertions(+), 1 deletions(-)

diff --git a/configs/system/fedora-updates-push b/configs/system/fedora-updates-push
index 7e95dfd..94105d5 100755
--- a/configs/system/fedora-updates-push
+++ b/configs/system/fedora-updates-push
@@ -3,7 +3,7 @@
 SOURCE=/mnt/koji/mash/updates
 DEST=/pub/fedora/linux/updates/
 
-for rel in 10 11; do
+for rel in 10 11 12; do
 
 rsync -rlptDvHh --delay-updates $RSYNC_OPTS --exclude "repodata/*" \
         $SOURCE/f$rel-updates/ $DEST/$rel/ &>/dev/null
-- 
1.5.5.6



From dev at nigelj.com  Sat Nov  7 00:51:56 2009
From: dev at nigelj.com (Nigel Jones)
Date: Sat, 7 Nov 2009 10:51:56 +1000
Subject: [PATCH] Enable pushing of Fedora 12 updates
In-Reply-To: <1257548905-7540-1-git-send-email-jkeating@redhat.com>
References: <1257548905-7540-1-git-send-email-jkeating@redhat.com>
Message-ID: <69fe28d70911061651q5cdec5o84edddbf74d8a7c@mail.gmail.com>

+1
-- Nigel Jones



On Sat, Nov 7, 2009 at 9:08 AM, Jesse Keating <jkeating at redhat.com> wrote:
> ---
> ?configs/system/fedora-updates-push | ? ?2 +-
> ?1 files changed, 1 insertions(+), 1 deletions(-)
>
> diff --git a/configs/system/fedora-updates-push b/configs/system/fedora-updates-push
> index 7e95dfd..94105d5 100755
> --- a/configs/system/fedora-updates-push
> +++ b/configs/system/fedora-updates-push
> @@ -3,7 +3,7 @@
> ?SOURCE=/mnt/koji/mash/updates
> ?DEST=/pub/fedora/linux/updates/
>
> -for rel in 10 11; do
> +for rel in 10 11 12; do
>
> ?rsync -rlptDvHh --delay-updates $RSYNC_OPTS --exclude "repodata/*" \
> ? ? ? ? $SOURCE/f$rel-updates/ $DEST/$rel/ &>/dev/null
> --
> 1.5.5.6
>
> _______________________________________________
> Fedora-infrastructure-list mailing list
> Fedora-infrastructure-list at redhat.com
> https://www.redhat.com/mailman/listinfo/fedora-infrastructure-list
>



From smooge at gmail.com  Sat Nov  7 00:53:55 2009
From: smooge at gmail.com (Stephen John Smoogen)
Date: Fri, 6 Nov 2009 17:53:55 -0700
Subject: [PATCH] Enable pushing of Fedora 12 updates
In-Reply-To: <1257548905-7540-1-git-send-email-jkeating@redhat.com>
References: <1257548905-7540-1-git-send-email-jkeating@redhat.com>
Message-ID: <80d7e4090911061653l266ee347qe74b33aeebf3919d@mail.gmail.com>

On Fri, Nov 6, 2009 at 4:08 PM, Jesse Keating <jkeating at redhat.com> wrote:
> ---
> ?configs/system/fedora-updates-push | ? ?2 +-
> ?1 files changed, 1 insertions(+), 1 deletions(-)
>
> diff --git a/configs/system/fedora-updates-push b/configs/system/fedora-updates-push
> index 7e95dfd..94105d5 100755
> --- a/configs/system/fedora-updates-push
> +++ b/configs/system/fedora-updates-push
> @@ -3,7 +3,7 @@
> ?SOURCE=/mnt/koji/mash/updates
> ?DEST=/pub/fedora/linux/updates/
>
> -for rel in 10 11; do
> +for rel in 10 11 12; do
>
> ?rsync -rlptDvHh --delay-updates $RSYNC_OPTS --exclude "repodata/*" \
> ? ? ? ? $SOURCE/f$rel-updates/ $DEST/$rel/ &>/dev/null
> --
> 1.5.5.6

+1



-- 
Stephen J Smoogen.

Ah, but a man's reach should exceed his grasp. Or what's a heaven for?
-- Robert Browning



From jonstanley at gmail.com  Sat Nov  7 02:37:08 2009
From: jonstanley at gmail.com (Jon Stanley)
Date: Fri, 6 Nov 2009 21:37:08 -0500
Subject: Outage of Fedora Talk - 20091107 - 0230 UTC
Message-ID: <da159fda0911061837x635617d4h18a851b9c4e108da@mail.gmail.com>

Outage Notification  2009-11-07 02:30 UTC

There will be an outage starting at 2009-11-07 02:30 UTC, which will last
approximately 2 hours.

To convert UTC to your local time, take a look at
http://fedoraproject.org/wiki/Infrastructure/UTCHowto
or run:

date -d '2009-11-07 02:30 UTC'

Affected Services:

Fedora Talk

Unaffected Services:

Buildsystem
CVS / Source Control
Database
DNS
Fedora Hosted
Fedora People
Mail
Mirror System
Torrent
Translation Services
Websites

Ticket Link: https://fedorahosted.org/fedora-infrastructure/ticket/1799

Reason for Outage: Rebuild as Fedora 12 and upgrade to Asterisk 1.6.2

Contact Information:

Please join #fedora-admin in irc.freenode.net or respond to this email to track
the status of this outage.



From boni.vivek at gmail.com  Sun Nov  8 06:52:36 2009
From: boni.vivek at gmail.com (Vivek Shah)
Date: Sun, 8 Nov 2009 12:22:36 +0530
Subject: Introduction and kickstart
Message-ID: <eac8d7940911072252m73327cbexe82223691051cdce@mail.gmail.com>

Hi All,
         My name is Vivek Shah FAS account bonii. I am C,C++, Java
developer from India. I also work on Unix/Linux system administration
and web app development using Python and Java. I am also a package
maintainer for the Fedora project for the past 1 year. I would like to
be of help to the Fedora infrastructure group in the most suitable
way. Since I am not completely aware of which FIG would suit me most
and where I could be most useful, I would not like to jump to any
conclusions. Please guide me about the best way possible for me to
contribute.

Thanks and Regards,
Vivek



From josemanimala at gmail.com  Sun Nov  8 07:09:17 2009
From: josemanimala at gmail.com (Jose M Manimala)
Date: Sun, 08 Nov 2009 12:39:17 +0530
Subject: Introduction and kickstart
In-Reply-To: <eac8d7940911072252m73327cbexe82223691051cdce@mail.gmail.com>
References: <eac8d7940911072252m73327cbexe82223691051cdce@mail.gmail.com>
Message-ID: <4AF66E9D.5070901@gmail.com>

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
 
hello vivek,

                   The best place to start would be the #fedora-admin
irc channel. Every from the infrastructure team will be there. Come on
by and say hello :)


Regards


Jose

Vivek Shah wrote:

> Hi All,
>          My name is Vivek Shah FAS account bonii. I am C,C++, Java
> developer from India. I also work on Unix/Linux system administration
> and web app development using Python and Java. I am also a package
> maintainer for the Fedora project for the past 1 year. I would like to
> be of help to the Fedora infrastructure group in the most suitable
> way. Since I am not completely aware of which FIG would suit me most
> and where I could be most useful, I would not like to jump to any
> conclusions. Please guide me about the best way possible for me to
> contribute.
>
> Thanks and Regards,
> Vivek
>
> _______________________________________________
> Fedora-infrastructure-list mailing list
> Fedora-infrastructure-list at redhat.com
> https://www.redhat.com/mailman/listinfo/fedora-infrastructure-list

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.10 (MingW32)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/
 
iEUEARECAAYFAkr2bpwACgkQ68U/vco3DlI0BQCfVDTwmCDe/lVNEytsIqOIs3d5
inQAl2tGp1il6j/dz8Z9GDfzgeBMJUc=
=ITAN
-----END PGP SIGNATURE-----



From boni.vivek at gmail.com  Sun Nov  8 08:49:42 2009
From: boni.vivek at gmail.com (Vivek Shah)
Date: Sun, 8 Nov 2009 14:19:42 +0530
Subject: Introduction and kickstart
In-Reply-To: <4AF66E9D.5070901@gmail.com>
References: <eac8d7940911072252m73327cbexe82223691051cdce@mail.gmail.com>
	<4AF66E9D.5070901@gmail.com>
Message-ID: <eac8d7940911080049k2c3d02e8ud11596df1d4c25be@mail.gmail.com>

Hi Jose,

On Sun, Nov 8, 2009 at 12:39 PM, Jose M Manimala <josemanimala at gmail.com> wrote:
> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA1
>
> hello vivek,
>
> ? ? ? ? ? ? ? ? ? The best place to start would be the #fedora-admin
> irc channel. Every from the infrastructure team will be there. Come on
> by and say hello :)

I did say Hello, but nobody replied :( .

Regards,
Vivek



From josemanimala at gmail.com  Sun Nov  8 10:01:04 2009
From: josemanimala at gmail.com (jose manimala)
Date: Sun, 8 Nov 2009 15:31:04 +0530
Subject: Introduction and kickstart
In-Reply-To: <eac8d7940911080049k2c3d02e8ud11596df1d4c25be@mail.gmail.com>
References: <eac8d7940911072252m73327cbexe82223691051cdce@mail.gmail.com>
	<4AF66E9D.5070901@gmail.com>
	<eac8d7940911080049k2c3d02e8ud11596df1d4c25be@mail.gmail.com>
Message-ID: <53a863600911080201h11cdba90x66c3a27fa3d9fe43@mail.gmail.com>

That may be because of the weekend. Could you try tomorrow...?

Jose

On 11/8/09, Vivek Shah <boni.vivek at gmail.com> wrote:
> Hi Jose,
>
> On Sun, Nov 8, 2009 at 12:39 PM, Jose M Manimala <josemanimala at gmail.com>
> wrote:
>> -----BEGIN PGP SIGNED MESSAGE-----
>> Hash: SHA1
>>
>> hello vivek,
>>
>> ? ? ? ? ? ? ? ? ? The best place to start would be the #fedora-admin
>> irc channel. Every from the infrastructure team will be there. Come on
>> by and say hello :)
>
> I did say Hello, but nobody replied :( .
>
> Regards,
> Vivek
>
> _______________________________________________
> Fedora-infrastructure-list mailing list
> Fedora-infrastructure-list at redhat.com
> https://www.redhat.com/mailman/listinfo/fedora-infrastructure-list
>


-- 
Jose M Manimala
http://www.jmmblog.in.eu.org
Ph: +919790824111
GPGkeyID: F5DD9656



From mmcgrath at redhat.com  Sun Nov  8 16:24:38 2009
From: mmcgrath at redhat.com (Mike McGrath)
Date: Sun,  8 Nov 2009 10:24:38 -0600
Subject: [PATCH] Had a request from the freemedia people to do this. 2 +1's?
Message-ID: <1257697478-13702-1-git-send-email-mmcgrath@redhat.com>

---
 configs/system/smtp/aliases.template.erb |    2 +-
 1 files changed, 1 insertions(+), 1 deletions(-)

diff --git a/configs/system/smtp/aliases.template.erb b/configs/system/smtp/aliases.template.erb
index 96c0aef..7382246 100644
--- a/configs/system/smtp/aliases.template.erb
+++ b/configs/system/smtp/aliases.template.erb
@@ -192,7 +192,7 @@ info: fedora-marketing-list at redhat.com
 press: pfrields, mspevack,kschiltz at redhat.com,ckazmier at redhat.com
 fedorarewards: famsco-list at redhat.com
 openvideo: tchung
-freemedia: tchung
+freemedia: tchung,mspevack,susmit
 
 # Firstname.lastname exceptions (preferrably only for people with a good reason)
 # History: these are people wishing to keep their firstname.lastname email
-- 
1.6.2.5



From laxathom at fedoraproject.org  Sun Nov  8 18:52:08 2009
From: laxathom at fedoraproject.org (Xavier Lamien)
Date: Sun, 8 Nov 2009 19:52:08 +0100
Subject: [PATCH] Had a request from the freemedia people to do this. 2 
	+1's?
In-Reply-To: <62bc09df0911081052i1fde5cban6829246d5d89d383@mail.gmail.com>
References: <1257697478-13702-1-git-send-email-mmcgrath@redhat.com>
	<62bc09df0911081052i1fde5cban6829246d5d89d383@mail.gmail.com>
Message-ID: <62bc09df0911081052k20ff969dw1e4036632c1e57f9@mail.gmail.com>

+1

-- 
Xavier.t

On Nov 8, 2009 5:24 PM, "Mike McGrath" <mmcgrath at redhat.com> wrote:

---
 configs/system/smtp/aliases.template.erb |    2 +-
 1 files changed, 1 insertions(+), 1 deletions(-)

diff --git a/configs/system/smtp/aliases.template.erb
b/configs/system/smtp/aliases.template.erb
index 96c0aef..7382246 100644
--- a/configs/system/smtp/aliases.template.erb
+++ b/configs/system/smtp/aliases.template.erb
@@ -192,7 +192,7 @@ info: fedora-marketing-list at redhat.com
 press: pfrields, mspevack,kschiltz at redhat.com,ckazmier at redhat.com
 fedorarewards: famsco-list at redhat.com
 openvideo: tchung
-freemedia: tchung
+freemedia: tchung,mspevack,susmit

 # Firstname.lastname exceptions (preferrably only for people with a good
reason)
 # History: these are people wishing to keep their firstname.lastname email
--
1.6.2.5

_______________________________________________
Fedora-infrastructure-list mailing list
Fedora-infrastructure-list at redhat.com
https://www.redhat.com/mailman/listinfo/fedora-infrastructure-list
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://listman.redhat.com/archives/fedora-infrastructure-list/attachments/20091108/cf01aa6a/attachment.htm>

From nb at fedoraproject.org  Sun Nov  8 20:47:48 2009
From: nb at fedoraproject.org (nb at fedoraproject.org)
Date: Sun,  8 Nov 2009 20:47:48 +0000
Subject: [PATCH] Close freemedia form
Message-ID: <1257713268-11534-1-git-send-email-nb@fedoraproject.org>

From: Nick Bebout <nb at puppet1.fedora.phx.redhat.com>

---
 modules/freemedia/files/FreeMedia-form.html |  302 +--------------------------
 1 files changed, 3 insertions(+), 299 deletions(-)

diff --git a/modules/freemedia/files/FreeMedia-form.html b/modules/freemedia/files/FreeMedia-form.html
index 2ad3f7b..c4c940b 100644
--- a/modules/freemedia/files/FreeMedia-form.html
+++ b/modules/freemedia/files/FreeMedia-form.html
@@ -30,306 +30,8 @@
 <center>
 <h3>Fedora Free Media Request Form</h3>
 
+<h4><br><br> Fedora Free Media form is now CLOSED.<br> Please contact your nearest <a href="http://fedoraproject.org/wiki/Ambassadors/CountryList">Fedora Ambassador.</a>for information regarding availability.</h4>
 
-<p>
-To request <b>ONE</b> copy of Fedora DVD or Live Media by mail, please fill out <b>ALL</b> the following informations:<br><br></center></p>
-
-<p>
-<form action="process.php" method="post" accept-charset="UTF-8">
-
-
-
-<table style="width: 85%; text-align: left;" border="0" cellpadding="0" cellspacing="2">
-<tbody>
-
-
-<tr><td><b><small>Region</small></b></td><td>
-<select name="region">
-
-     <option value="NorthAmerica">North America Region</>
-
-</select><i><SMALL>(Where your country belongs to)</SMALL>
-</td></tr>
-
-<tr><td><b><small>Real Name<small></b></td><td><input type="text" size="20" name="realname"></td></tr>
-<tr><td><b><small>Email<small></b></td><td><input type="text" size="20" name="email"></td></tr>
-<tr><td><b><small>Release<small></b></td>
-   <td>
-     <input type="radio" name="release" value="Fedora 11" checked>Fedora 11</>
-    </td>
-</tr>
-<tr><td><b><small>Media<small></b></td>
-    <td>
-<select name="media">
-     <option value="i386 DVD" selected>i386 DVD</>
-     <option value="x86_64 DVD">x86_64 DVD</>
-     <option value="ppc DVD">ppc DVD</>
-     <option value="i386 Live">i386 Live CD</>
-     <option value="x86_64 Live">x86_64 Live CD</>
-</select><SMALL><i>(If you are unsure, choose i386)<SMALL></i>
-    </td>
-</tr>
-
-<tr><td><b><small>Address Line1<small></b></td><td><input type="text" size="20" name="address1"><i><SMALL>(Door no, Street name)</SMALL></i></td></tr>
-<tr><td><b><small>Address Line2<small></b></td><td><input type="text" size="20" name="address2"><i><SMALL>(Locality, City)</SMALL></i></td></tr>
-<tr><td><b><small>Address Line3<small></b></td><td><input type="text" size="20" name="address3"><i><SMALL>(State, Pincode)</SMALL></i></td></tr>
-
-
-<tr><td><b><small>Address Line4</small></b></td><td>
-<select name="address4">
-
-<!--<option value="Afghanistan">Afghanistan</>
-<option value="Aland Islands">Aland Islands</>
-<option value="Albania">Albania</>
-<option value="Algeria">Algeria</>
-<option value="American Samoa">American Samoa</>
-<option value="Andorra">Andorra</>
-<option value="Angola">Angola</>
-<option value="Anguilla">Anguilla</>
-<option value="Antarctica">Antarctica</>
-<option value="Antigua and Barbuda">Antigua and Barbuda</>
-<option value="Argentina">Argentina</>
-<option value="Armenia">Armenia</>
-<option value="Aruba">Aruba</>
-<option value="Australia">Australia</>
-<option value="Austria">Austria</>
-<option value="Azerbaijan">Azerbaijan</>
-<option value="Bahamas">Bahamas</>
-<option value="Bahrain">Bahrain</>
-<option value="Bangladesh">Bangladesh</>
-<option value="Barbados">Barbados</>
-<option value="Belarus">Belarus</>
-<option value="Belgium">Belgium</>
-<option value="Belize">Belize</>
-<option value="Benin">Benin</>
-<option value="Bermuda">Bermuda</>
-<option value="Bhutan">Bhutan</>
-<option value="Bolivia">Bolivia</>
-<option value="Bosnia and Herzegovina">Bosnia and Herzegovina</>
-<option value="Botswana">Botswana</>
-<option value="Bouvet Island">Bouvet Island</>
-<option value="Brazil">Brazil</>
-<option value="British Indian Ocean Territory">British Indian Ocean Territory</>
-<option value="Brunei Darussalam">Brunei Darussalam</>
-<option value="Bulgaria">Bulgaria</>
-<option value="Burkina Faso">Burkina Faso</>
-<option value="Burundi">Burundi</>
-<option value="Cambodia">Cambodia</>
-<option value="Cameroon">Cameroon</>-->
-<option value="Canada">Canada</>
-<!--<option value="Cape Verde">Cape Verde</>
-<option value="Cayman Islands">Cayman Islands</>
-<option value="Central African Republic">Central African Republic</>
-<option value="Chad">Chad</>
-<option value="Chile">Chile</>
-<option value="China">China</>
-<option value="Colombia">Colombia</>
-<option value="Comoros">Comoros</>
-<option value="Congo">Congo</>
-<option value="Congo, The Democratic Republic of the">Congo, The Democratic Republic of the</>
-<option value="Cook Islands">Cook Islands</>
-<option value="Costa Rica">Costa Rica</>
-<option value="Cote D'Ivoire">Cote D'Ivoire</>
-<option value="Croatia">Croatia</>
-<option value="Cyprus">Cyprus</>
-<option value="Czech Republic">Czech Republic</>
-<option value="Denmark">Denmark</>
-<option value="Djibouti">Djibouti</>
-<option value="Dominica">Dominica</>
-<option value="Dominican Republic">Dominican Republic</>
-<option value="Ecuador">Ecuador</>
-<option value="Egypt">Egypt</>
-<option value="El Salvador">El Salvador</>
-<option value="Equatorial Guinea">Equatorial Guinea</>
-<option value="Eritrea">Eritrea</>
-<option value="Estonia">Estonia</>
-<option value="Ethiopia">Ethiopia</>
-<option value="Europe">Europe</>
-<option value="Falkland Islands (Malvinas)">Falkland Islands (Malvinas)</>
-<option value="Faroe Islands">Faroe Islands</>
-<option value="Fiji">Fiji</>
-<option value="Finland">Finland</>
-<option value="France">France</>
-<option value="French Guiana">French Guiana</>
-<option value="French Polynesia">French Polynesia</>
-<option value="Gabon">Gabon</>
-<option value="Gambia">Gambia</>
-<option value="Georgia">Georgia</>
-<option value="Germany">Germany</>
-<option value="Ghana">Ghana</>
-<option value="Gibraltar">Gibraltar</>
-<option value="Greece">Greece</>
-<option value="Greenland">Greenland</>
-<option value="Grenada">Grenada</>
-<option value="Guadeloupe">Guadeloupe</>
-<option value="Guam">Guam</>
-<option value="Guatemala">Guatemala</>
-<option value="Guernsey">Guernsey</>
-<option value="Guinea">Guinea</>
-<option value="Guinea-Bissau">Guinea-Bissau</>
-<option value="Guyana">Guyana</>
-<option value="Haiti">Haiti</>
-<option value="Holy See (Vatican City State)">Holy See (Vatican City State)</>
-<option value="Honduras">Honduras</>
-<option value="Hong Kong">Hong Kong</>
-<option value="Hungary">Hungary</>
-<option value="Iceland">Iceland</>
-<option value="India">India</>
-<option value="Indonesia">Indonesia</>
-<option value="Ireland">Ireland</>
-<option value="Isle of Man">Isle of Man</>
-<option value="Israel">Israel</>
-<option value="Italy">Italy</>
-<option value="Jamaica">Jamaica</>
-<option value="Japan">Japan</>
-<option value="Jersey">Jersey</>
-<option value="Jordan">Jordan</>
-<option value="Kazakstan">Kazakstan</>
-<option value="Kenya">Kenya</>
-<option value="Kiribati">Kiribati</>
-<option value="Korea, Democratic People's Republic of">Korea, Democratic People's Republic of</>
-<option value="Korea, Republic of">Korea, Republic of</>
-<option value="Kuwait">Kuwait</>
-<option value="Kyrgyzstan">Kyrgyzstan</>
-<option value="Lao People's Democratic Republic">Lao People's Democratic Republic</>
-<option value="Latvia">Latvia</>
-<option value="Lebanon">Lebanon</>
-<option value="Lesotho">Lesotho</>
-<option value="Liberia">Liberia</>
-<option value="Libyan Arab Jamahiriya">Libyan Arab Jamahiriya</>
-<option value="Liechtenstein">Liechtenstein</>
-<option value="Lithuania">Lithuania</>
-<option value="Luxembourg">Luxembourg</>
-<option value="Macau">Macau</>
-<option value="Macedonia">Macedonia</>
-<option value="Madagascar">Madagascar</>
-<option value="Malawi">Malawi</>
-<option value="Malaysia">Malaysia</>
-<option value="Maldives">Maldives</>
-<option value="Mali">Mali</>
-<option value="Malta">Malta</>
-<option value="Marshall Islands">Marshall Islands</>
-<option value="Martinique">Martinique</>
-<option value="Mauritania">Mauritania</>
-<option value="Mauritius">Mauritius</>
-<option value="Mayotte">Mayotte</>
-<option value="Mexico">Mexico</>
-<option value="Micronesia, Federated States of">Micronesia, Federated States of</>
-<option value="Moldova, Republic of">Moldova, Republic of</>
-<option value="Monaco">Monaco</>
-<option value="Mongolia">Mongolia</>
-<option value="Montenegro">Montenegro</>
-<option value="Montserrat">Montserrat</>
-<option value="Morocco">Morocco</>
-<option value="Mozambique">Mozambique</>
-<option value="Myanmar">Myanmar</>
-<option value="Namibia">Namibia</>
-<option value="Nauru">Nauru</>
-<option value="Nepal">Nepal</>
-<option value="Netherlands">Netherlands</>
-<option value="Netherlands Antilles">Netherlands Antilles</>
-<option value="New Caledonia">New Caledonia</>
-<option value="New Zealand">New Zealand</>-->
-<!--<option value="Niger">Niger</>
-<option value="Nigeria">Nigeria</>
-<option value="Niue">Niue</>
-<option value="Norfolk Island">Norfolk Island</>
-<option value="Northern Mariana Islands">Northern Mariana Islands</>
-<option value="Norway">Norway</>
-<option value="Oman">Oman</>
-<option value="Pakistan">Pakistan</>
-<option value="Palau">Palau</>
-<option value="Palestinian Territory, Occupied">Palestinian Territory, Occupied</>
-<option value="Panama">Panama</>
-<option value="Papua New Guinea">Papua New Guinea</>
-<option value="Paraguay">Paraguay</>
-<option value="Peru">Peru</>
-<option value="Philippines">Philippines</>
-<option value="Poland">Poland</>
-<option value="Portugal">Portugal</>
-<option value="Puerto Rico">Puerto Rico</>
-<option value="Qatar">Qatar</>
-<option value="Reunion">Reunion</>
-<option value="Romania">Romania</>
-<option value="Russian Federation">Russian Federation</>
-<option value="Rwanda">Rwanda</>
-<option value="Saint Kitts and Nevis">Saint Kitts and Nevis</>
-<option value="Saint Lucia">Saint Lucia</>
-<option value="Saint Pierre and Miquelon">Saint Pierre and Miquelon</>
-<option value="Saint Vincent and the Grenadines">Saint Vincent and the Grenadines</>
-<option value="Samoa">Samoa</>
-<option value="San Marino">San Marino</>
-<option value="Sao Tome and Principe">Sao Tome and Principe</>
-<option value="Satellite Provider">Satellite Provider</>
-<option value="Saudi Arabia">Saudi Arabia</>
-<option value="Senegal">Senegal</>
-<option value="Serbia">Serbia</>
-<option value="Seychelles">Seychelles</>
-<option value="Sierra Leone">Sierra Leone</>
-<option value="Singapore">Singapore</>
-<option value="Slovakia">Slovakia</>
-<option value="Slovenia">Slovenia</>
-<option value="Solomon Islands">Solomon Islands</>
-<option value="Somalia">Somalia</>
-<option value="South Africa">South Africa</>
-<option value="Spain">Spain</>
-<option value="Sri Lanka">Sri Lanka</>
-<option value="Suriname">Suriname</>
-<option value="Swaziland">Swaziland</>
-<option value="Sweden">Sweden</>
-<option value="Switzerland">Switzerland</>
-<option value="Taiwan">Taiwan</>
-<option value="Tajikistan">Tajikistan</>
-<option value="Tanzania, United Republic of">Tanzania, United Republic of</>
-<option value="Thailand">Thailand</>
-<option value="Togo">Togo</>
-<option value="Tokelau">Tokelau</>
-<option value="Tonga">Tonga</>
-<option value="Trinidad and Tobago">Trinidad and Tobago</>
-<option value="Tunisia">Tunisia</>
-<option value="Turkey">Turkey</>
-<option value="Turkmenistan">Turkmenistan</>
-<option value="Turks and Caicos Islands">Turks and Caicos Islands</>
-<option value="Tuvalu">Tuvalu</>
-<option value="Uganda">Uganda</>
-<option value="Ukraine">Ukraine</>
-<option value="United Arab Emirates">United Arab Emirates</>
-<option value="United Kingdom">United Kingdom</>-->
-<option value="United States">United States</>
-<option value="United States Minor Outlying Islands">United States Minor Outlying Islands</>
-<!--<option value="Uruguay">Uruguay</>
-<option value="Uzbekistan">Uzbekistan</>
-<option value="Vanuatu">Vanuatu</>
-<option value="Venezuela">Venezuela</>
-<option value="Vietnam">Vietnam</>
-<option value="Virgin Islands, British">Virgin Islands, British</>
-<option value="Virgin Islands, U.S.">Virgin Islands, U.S.</>
-<option value="Wallis and Futuna">Wallis and Futuna</>
-<option value="Yemen">Yemen</>
-<option value="Zambia">Zambia</>
-<option value="Zimbabwe">Zimbabwe</>-->
-
-
-</tbody>
-</table>
-<img src="https://fedoraproject.org/w/uploads/thumb/6/61/Stop_%28medium_size%29.png/35px-Stop_%28medium_size%29.png"><font color="red">Now you will be taken to another page. DON'T CHANGE anything there. <br>Just scroll down and press "Submit Ticket" at the bottom of the page.</font><br><br>
-<input type="submit" value="Take me to the next page"><input type="reset" value="Clear">
-</form>
-
-<p class="disclaimer">
-<img src="https://fedoraproject.org/w/uploads/thumb/f/fd/Warning_%28medium_size%29.png/35px-Warning_%28medium_size%29.png"><img src="https://fedoraproject.org/w/uploads/thumb/f/fd/Warning_%28medium_size%29.png/35px-Warning_%28medium_size%29.png"><img src="https://fedoraproject.org/w/uploads/thumb/f/fd/Warning_%28medium_size%29.png/35px-Warning_%28medium_size%29.png"><br>
-
-
-
-<small>
-1. One CD/DVD per person per release.<br>
-2. Any <b>duplicate</b> requests will result in <b>rejection</b> of all your requests.<br>
-3. Please note, Your request <b>may</b> or <b>may not</b> be accepted by the program based on our Capacity.<br>
-4. Make sure to use <a href='http://www.upu.int/post_code/en/postal_addressing_systems_member_countries.shtml'>Universal Postal Union Standard Address</a> including <b>Postcode</b> and <b>Country</b>. <br> &nbsp &nbsp Otherwise we can not accept your request!<br>
-5. To comply with GPL, <a href="FreeMedia-source.html">Source Code</a> on media is available upon request.
-
-</small>
-</p>
 
 
        </div>
@@ -355,3 +57,5 @@ To request <b>ONE</b> copy of Fedora DVD or Live Media by mail, please fill out
 
 
 </html>
+
+
-- 
1.5.5.6



From jkeating at redhat.com  Sun Nov  8 20:49:40 2009
From: jkeating at redhat.com (Jesse Keating)
Date: Sun, 08 Nov 2009 12:49:40 -0800
Subject: [PATCH] Close freemedia form
In-Reply-To: <1257713268-11534-1-git-send-email-nb@fedoraproject.org>
References: <1257713268-11534-1-git-send-email-nb@fedoraproject.org>
Message-ID: <1257713380.2468.9.camel@localhost.localdomain>

On Sun, 2009-11-08 at 20:47 +0000, nb at fedoraproject.org wrote:
> From: Nick Bebout <nb at puppet1.fedora.phx.redhat.com>

+1

-- 
Jesse Keating
Fedora -- Freedom? is a feature!
identi.ca: http://identi.ca/jkeating
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 198 bytes
Desc: This is a digitally signed message part
URL: <http://listman.redhat.com/archives/fedora-infrastructure-list/attachments/20091108/f22c90f9/attachment.sig>

From nb at fedoraproject.org  Sun Nov  8 16:44:29 2009
From: nb at fedoraproject.org (Nick Bebout)
Date: Sun, 8 Nov 2009 10:44:29 -0600
Subject: [Fedora-freemedia-list] NA requests update
In-Reply-To: <f1706c1e0911081259p7529956fmf948462fe35ba5d8@mail.gmail.com>
References: <e8a30f560911081059l66d2f27ao46943157e962a2e6@mail.gmail.com>
	<f1706c1e0911081218q18cf2f3l2e9d8b2c3e68ea27@mail.gmail.com>
	<e8a30f560911081233n6dd7a09dh4cd3b9c9089534f1@mail.gmail.com>
	<f1706c1e0911081243r517d6d28nf00d196b614ad8e9@mail.gmail.com>
	<e8a30f560911081248h19ae8296g74d26af0fbbd8113@mail.gmail.com>
	<f1706c1e0911081259p7529956fmf948462fe35ba5d8@mail.gmail.com>
Message-ID: <0b9d3c1947d6574a25963231686c9a85.squirrel@bebout.net>

Probably was the email from me.  I forgot to send from my fedora email.

I'll discuss it with the rest of the infra team.  It may be possible that
we could consider opening and closing the freemedia form as a planned
change and not have to get change requests approved.  Yes, change requests
can be annoying but their purpose is not to make any changes that could
break things around the time of releases.  The October opening and closing
just happened to happen at the time of the f12-beta prerelease freeze, and
now we are in the f12-final freeze.

I have 1 +1, and should be able to get another one soon, as soon as I see
another sysadmin-main or releng person on IRC or as soon as they see the
email to fedora-infrastructure-list.

CC'ing this email to fedora-infrastructure-list also.

Nick

> On Sun, Nov 8, 2009 at 2:48 PM, inode0 <inode0 at gmail.com> wrote:
>
>>
>> I think we are in a freeze period but the infra people are going to
>> take care of this soon.
>>
>> John
>
> I reviewed the message from Infra Team discarded because Freemedia is
> members only list due the user data that is handled. I was about to
> FWD that when I saw your reply.
>
> It is getting annoying the "freeze seasons". We have the same problem
> for opening the form in October. Lets keep an eye on this issue, if
> this really becomes a trend we will need a solution.
>
> /me thinking: What king of anti-freezing we can put on freemedia's
> radiator?  ;)
>
>
> --
> Neville
> https://fedoraproject.org/wiki/User:Yn1v
> Linux User # 473217
>
> - - - - - - - - - - - - - - - - - - - - - - - - - - - -
> Check: http://www.clickmanagua.com
> - - - - - - - - - - - - - - - - - - - - - - - - - - - -
>
> --
> Fedora-freemedia-list mailing list
> Fedora-freemedia-list at redhat.com
> https://www.redhat.com/mailman/listinfo/fedora-freemedia-list
>



From Matt_Domsch at dell.com  Sun Nov  8 22:45:12 2009
From: Matt_Domsch at dell.com (Matt Domsch)
Date: Sun, 8 Nov 2009 16:45:12 -0600
Subject: [Fedora-freemedia-list] NA requests update
In-Reply-To: <0b9d3c1947d6574a25963231686c9a85.squirrel@bebout.net>
References: <e8a30f560911081059l66d2f27ao46943157e962a2e6@mail.gmail.com>
	<f1706c1e0911081218q18cf2f3l2e9d8b2c3e68ea27@mail.gmail.com>
	<e8a30f560911081233n6dd7a09dh4cd3b9c9089534f1@mail.gmail.com>
	<f1706c1e0911081243r517d6d28nf00d196b614ad8e9@mail.gmail.com>
	<e8a30f560911081248h19ae8296g74d26af0fbbd8113@mail.gmail.com>
	<f1706c1e0911081259p7529956fmf948462fe35ba5d8@mail.gmail.com>
	<0b9d3c1947d6574a25963231686c9a85.squirrel@bebout.net>
Message-ID: <20091108224512.GA18597@auslistsprd01.us.dell.com>

On Sun, Nov 08, 2009 at 10:44:29AM -0600, Nick Bebout wrote:
> Probably was the email from me.  I forgot to send from my fedora email.
> 
> I'll discuss it with the rest of the infra team.  It may be possible that
> we could consider opening and closing the freemedia form as a planned
> change and not have to get change requests approved.  Yes, change requests
> can be annoying but their purpose is not to make any changes that could
> break things around the time of releases.  The October opening and closing
> just happened to happen at the time of the f12-beta prerelease freeze, and
> now we are in the f12-final freeze.
> 
> I have 1 +1, and should be able to get another one soon, as soon as I see
> another sysadmin-main or releng person on IRC or as soon as they see the
> email to fedora-infrastructure-list.

I'd be fine with granting this an exception, if we limited the scope
of the change allowed.  In particular, rather than directly editing
Freemedia-form.html and adding/removing dozends of lines each time, a
1-line change in init.pp could accomplish the same thing, publishing
either the 'open' or 'closed' page as necessary.  Then such a change
hitting the puppet master tree would be very limited and clearly
couldn't break other things.

-- 
Matt Domsch
Technology Strategist, Dell Office of the CTO
linux.dell.com & www.dell.com/linux



From dev at nigelj.com  Sun Nov  8 23:24:55 2009
From: dev at nigelj.com (Nigel Jones)
Date: Mon, 9 Nov 2009 09:24:55 +1000
Subject: [PATCH] Close freemedia form
In-Reply-To: <1257713380.2468.9.camel@localhost.localdomain>
References: <1257713268-11534-1-git-send-email-nb@fedoraproject.org>
	<1257713380.2468.9.camel@localhost.localdomain>
Message-ID: <69fe28d70911081524h70b85958r477f3a59fdf9589a@mail.gmail.com>

+1 I thought this had an exemption. But in ahead.

On 09/11/2009, Jesse Keating <jkeating at redhat.com> wrote:
> On Sun, 2009-11-08 at 20:47 +0000, nb at fedoraproject.org wrote:
>> From: Nick Bebout <nb at puppet1.fedora.phx.redhat.com>
>
> +1
>
> --
> Jesse Keating
> Fedora -- Freedom? is a feature!
> identi.ca: http://identi.ca/jkeating
>

-- 
Sent from my mobile device

-- Nigel Jones



From thinklinux.ssh at gmail.com  Mon Nov  9 03:31:06 2009
From: thinklinux.ssh at gmail.com (susmit shannigrahi)
Date: Mon, 9 Nov 2009 09:01:06 +0530
Subject: [Fedora-freemedia-list] NA requests update
In-Reply-To: <20091108224512.GA18597@auslistsprd01.us.dell.com>
References: <e8a30f560911081059l66d2f27ao46943157e962a2e6@mail.gmail.com> 
	<f1706c1e0911081218q18cf2f3l2e9d8b2c3e68ea27@mail.gmail.com> 
	<e8a30f560911081233n6dd7a09dh4cd3b9c9089534f1@mail.gmail.com> 
	<f1706c1e0911081243r517d6d28nf00d196b614ad8e9@mail.gmail.com> 
	<e8a30f560911081248h19ae8296g74d26af0fbbd8113@mail.gmail.com> 
	<f1706c1e0911081259p7529956fmf948462fe35ba5d8@mail.gmail.com> 
	<0b9d3c1947d6574a25963231686c9a85.squirrel@bebout.net>
	<20091108224512.GA18597@auslistsprd01.us.dell.com>
Message-ID: <ffadd1240911081931w443c5f63jc2d1cbffc8244551@mail.gmail.com>

> I'd be fine with granting this an exception, if we limited the scope
> of the change allowed. ?In particular, rather than directly editing
> Freemedia-form.html and adding/removing dozends of lines each time, a
> 1-line change in init.pp could accomplish the same thing, publishing
> either the 'open' or 'closed' page as necessary. ?Then such a change
> hitting the puppet master tree would be very limited and clearly
> couldn't break other things.


You are right!!!!!!
It's my fault that I never thought about it.
Thanks for pointing.

-- 
Regards,
Susmit.

=============================================
http://www.fedoraproject.org/wiki/user:susmit
=============================================
Sent from Calcutta, WB, India



From smooge at gmail.com  Mon Nov  9 03:47:53 2009
From: smooge at gmail.com (Stephen John Smoogen)
Date: Sun, 8 Nov 2009 20:47:53 -0700
Subject: SSH key updates [PATCH] Added new ssh keys for asterisk1 and 
	serverbeach1
Message-ID: <80d7e4090911081947h2e204b05n195b3818d80b20ae@mail.gmail.com>

 We are in freeze. Please check and give +1 to push.
---
 modules/ssh/files/ssh_known_hosts |    4 ++--
 1 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/modules/ssh/files/ssh_known_hosts
b/modules/ssh/files/ssh_known_hosts
index 6f33b37..f41aeaf 100644
--- a/modules/ssh/files/ssh_known_hosts
+++ b/modules/ssh/files/ssh_known_hosts
@@ -5,7 +5,7 @@ app4,10.8.34.48 ssh-rsa
AAAAB3NzaC1yc2EAAAABIwAAAQEAzXNEmtvlYWai2gD6TT/lQmn98rVI
 app5,192.168.1.13 ssh-rsa
AAAAB3NzaC1yc2EAAAABIwAAAQEArypZkkj/BYvWQ365D3wNrUL1iygXt5zdneO+7ILqM3mXr0KbtgH7WYA1wOnphVq2VMP094J8vpuU8o6AF8ybLg+bpLqCTVxeeCMfviypqWNeU7+hrGlYq58GemF8brFf81DIGrfxBochJQxc4NUjYP5Ax6+cdzX7AN4OLXc2SbyDf2hqO34QfAc37BU0h+FbhEuyNq6Ia7Cdm7GH26bQUYqNrZ3fHu+6kdtb51+EVLqhv4qZn+QEMDbHnWvberxAiC1fMNTqcxKWIw15bgsq9pjVjAtpFK2K27nt+PzN2PnXj28xV2yHVHsqzBRmz5h/FPVTp4ChbOlQMfY5bUSd5w==
 app6,192.168.1.24 ssh-rsa
AAAAB3NzaC1yc2EAAAABIwAAAQEAuSP2FVIIK8NKFNFtSzR7ZW2YaeC6+3R9hA1R27Uy3DFmyeUhJrE9PSprKDITYSCS3Wy3hNfkCaeamFI8/nvIwszQEdI9ygHeg5lzR8gn6Uot853xLkXPVWv5eohl0MauJi4J7HU1zYo3eRpy4PwA7XzsNGrmItt9h6KoOKOE8s9gAcCXsl2g8WMrl46mRP1S9jgIfPW0B667HpEPqfIBPyoNBmheHm5LWPs6JwGXmwNzxhZZVgUI+cN67gMJWx6LQ9O7uJA2bBV12qnLC9SGsQt/G23i6VS6EegRAtgWmkhYCKYNkIYAj3kMkwMxWyKF+4EywsKyorM+PZAOboMC3Q==
 app7,10.8.34.150 ssh-rsa
AAAAB3NzaC1yc2EAAAABIwAAAQEAkSHMtHvSsrYF+j8kESBTPrA4ZUa2GJIYTAw4ssgWu00AqcAtWAK6uCoCR8M/SGR0Fyy2LvkA5N1W+ti/quFzl9s0MXAWvUXbXCyM1nm331VugOM1+7sziDfCtdoV9hwX/BXrzNP6uUfFgbkFHU4PnSjhoNfvrkDr01+I8lIoUOuLoWrv8J/qqZG3tNZ0apKxt8JkIvimN/AcegQjjMwcTvkFiq1pimwsgRcpp3R6To2jl6nSGFkwB6BKEAQohz2+/3aYWeLJbbwYb+nxdjMlGOLpqFHlceivVTsMGyw7WFZ/xURRJW/Tck9ODqR84mc0pWxKWF6zURwXU2zansKgoQ==
-asterisk1,192.168.1.34 ssh-rsa
AAAAB3NzaC1yc2EAAAABIwAAAQEA9K8imSdywSbQv9twrVRUA9zVtUeDQAa6sTXK+y0zz3Ct7L+6YtyonprgXA42JcRdg5WiKsmcTDC9T2GSc4GvyKqXvmaZN5V7Ry608vHDWyv639Y8r9IjMbSIEGbSu3Q8WpbxYYgqQ5PE8pWRi7Qu3/hTNU49y+sQ5qPHjZ7Y/0QHMnQDkn1xWdaUdq8ahkkDAECIUU15Cmj7ClRO01V+T+sP0VitsCaa3T2RfDsmxEtnCr9e0dG9jovalfO1aEvzpstClOzYoxLvr32hxm1qHMr5wxmSUc1ymLL6Llil1oTJ8WyCimGlZFMSU0HkRohbzPGdV3YfOp+AKj6CEI67IQ==
+asterisk1,192.168.1.34 ssh-rsa
AAAAB3NzaC1yc2EAAAABIwAAAQEA028tplMg2/yL1axMZp08s4YO+bDpvAv4Tk/Q3sOvIMDeHG5RCrf9u4gZfOT9ciYhKCiBeu8cpU8CRncUoPJ5SOv2+sWVqzDYSI0XHVwNvQNeBwyAcwjMiLpVuAqtpLzh3vGc5KUnMUrcCS3V2y/UonsUzYGa8PwxwGl3CkpWZf6zgKUSeDG3Px9SqMRbZHS31ki9fqi6Zd8jD5TKdrY1GrozyzTqDxeo3cucWP3/AeKKth/pkptH1GvXdaCtlrflDuvWniTW1nwrjlwry9RURasVHC7MMJjcypCBa9X/7LLEfcQwdpU//ebXwrLBikEPYglsyU9K7yqdV3dM05DSnQ==
 asterisk2,192.168.1.36 ssh-rsa
AAAAB3NzaC1yc2EAAAABIwAAAQEA2cOLaeiWtK0PHWmSF4m1iWh35BUaUGWFtFnRFBGvUDQmDfv7oVvofXVjTJq5QVr+RcPxO3CH0MLJoCFcG5fvanILtBrpL8pk31bJGPMTaLRqpecNCCKM5tUWTnbULeiMsPdee2JPYwI1Kli0FkiQqklGdMO4B0NAK5brktsbhxg07BPuo/Zrp3bLqSoLH705lzKmzTk9WxBctbVdyuPKPwKuHxkCi0AghOEGrGK6eB03FwaRKvjDKjVqqXH0QhfxglxMjLDNb0p9ZwLfQ2AaJwrDr82j7+1U9IG+e1t/0xnhUq7eo1TzNSbcJcn1M1NHK+0AD5F0lUa/2PxM0hL5sQ==
 backup1,10.8.34.219 ssh-rsa
AAAAB3NzaC1yc2EAAAABIwAAAQEAwYSCsVH8hFlBsGDYw1FzsQEA98EwU25gJMhzyNir8QkWTPzoaZ5ncD0PY1jRAWc4ye8fCzzgsre8knwqyDrCEz3LLJkSEspELsuBNT7F5c4XsON5uS57W7Nufr5pf18ePXUbztLVdHhzx5xIuRXpW3UrI8qcxTeYnfsh4LMaofCDer60KvFQ/9oUHAV//pIiUc8hKKSnkjjdha12mBrTuTXfg5sslLReugcyv3zYQNrQmG/B1hwI1gMcf3gHUccJ+Cm648pErnSh26Tl1rzis5p/ipSehM68eIsfRdz2vMwEY4jeA++yJ+JiqpPgzrd1IoGo1oAH61fPUVz+lLYahw==
 backup2,152.46.7.224 ssh-rsa
AAAAB3NzaC1yc2EAAAABIwAAAQEA8ZxbJOxfmV5Ir3PugLMDWKhdhP367VnulqZUgae94fOcxIq1AI92Ry0oxBpe/OX1yxm7NTYn+7kTMpIadk5zQJp7cU2b4qRiYLXeh6h3ZMR+G9OO7LI2sFnGV8sdqAE4ei6eaXrpZtEPfqadJd4bV/eRwD5Pw7jeol+KspmbHNTchlkTpDoHkLFYSxihW8GQxJFMlTBBt200EoOjuwI1tPhIUh9z/J0Cr4r/uP1wF04sEssQgXzEyxqU9COsjZoBmsp3ry/tVrlGmlhZD+bMCEk2IJ0JMF+3VDJxGFlsyTZFnEjQnQE/fcBNcSwDEZjkM/E1bFQ015JPe3SF1fFA8w==
@@ -57,7 +57,7 @@ releng1,10.8.34.47 ssh-rsa
AAAAB3NzaC1yc2EAAAABIwAAAQEA6E/EcEtqsLrcV6jzIrnx55aWu
 releng2,10.8.34.206 ssh-rsa
AAAAB3NzaC1yc2EAAAABIwAAAQEAoTlJ9479YpB+rmnRkoHQAwZ6NsfcIrsplgdbrArOYopWctxfn2HaZq0zWRuAxi4NRXzi/thz+8MNkMyDzDeZgyRIDK1Rg4PlHupyOJj4Ki71D4BQH59p25nB/AiZBnI3E1SsV52CmPlvEkNZxGN3YVxTg52iOdLNJFNCYnyr9kKhwoxTIol4NJp+WfiZBG/bzkouJ3sjk1eeSIJ647Po0q7WIuVpCGt0OpVdMnsS7lVEpTdt3HZoFynrkK2mCDC7xxOcL120pZivql6D6IujUNwigJW6jEfJOBgcF3NOLf7K5oXCJ6E8Rma6VF7l6MytEwhhGVlQrf9SlZTVIEbcAw==
 relepel1,10.8.34.85 ssh-rsa
AAAAB3NzaC1yc2EAAAABIwAAAQEA8TsUcoMf83shg7M8ttYkaczgNpEh/J8P01apfBio7QHE5ZVe+J2ZXfoCN4aXtEFhWn6ubC9K0KUwiDY7pJFXB0l6o2Kni02LrJXte/2rHjaM3NSvwyXrwn9RA8zAoGR03c950axuXmuwY8/vpEsFeAmLKHhd4Gtg5by34cmzMnWx84w4pdFDqQq3338cNeVvCJVpL9h6AN2YaNRB11sUbyXKS6KbJmsdWMTpoGA9I5MqNU09MmSkaIP+GU704Fru1z65TF3MhxAk5nAisyz4bUEDFPy4s3U8O3CbeKQN1nrDQNV09jDAqrH4hc6xK+Zui88GaewMZ5872QJFgOPU9w==
 secondary1,10.8.34.108 ssh-rsa
AAAAB3NzaC1yc2EAAAABIwAAAQEApQM2/VhvUP+u+BtZRZKQipGNuqc8UwPF6E/sl3PIzv4/C2N9dULz+zEuR1vn5P751TBNOgl3yGIoPvjMrp4odNQl06lkHAe8k6YrJiS9fneOiL8PNzMgHcttl7nYjGbHoyCnqxiyv4/ATBdqEs1m72ekXISOvaww39WS69xueZrLvtSKSa1VxmvFNTb0yxR+9BOxSOQejHc+R1+UpRHENHKO9Chj9bgobtDEuvWnHdVokqu6JSNQh9pFezW4ieA1znIUSmoagoSTS88yVGzQ3JUg7DQ4iBhBEJQtLTDq6qs8wl5a37pV/8uZKaVFHNbT3HsVgRlgn9sasHaifC1CLQ==
-serverbeach1,192.168.1.27 ssh-rsa
AAAAB3NzaC1yc2EAAAABIwAAAQEAwePMmBFBPmlukBt816llDtHtIAjBL16t9n4IWRhrVKDOYocrg6oLczYpYByvLrg+gqpaJilF89DJJFsoXmat3X38f4vymTQpRs159K+qOmyaQEVVk1CdYAtYllGdLV7CfLWzOgAmq7cQ1ryZjx7dSDcxclQEoewD49GV3XvX0ADDwlTNXpiBbdCuVJ9bvZ108o7XBcq78F/1mrN1kxej7IquyOoL9sqntkfptqjosjmFQBt5E0985k2A7qqmx6F55cDDYg9dvssHKIOPxxvGSg6GT638KC79PSymC7KH4zip/63+UIZngLEhqID/os/v7k+4GfGLUaMDaKUfjcQT1w==
+serverbeach1,192.168.1.27 ssh-rsa
AAAAB3NzaC1yc2EAAAABIwAAAQEAy0xVU/yKxDDy4CxSbE46AWIXybc9ic6kPQpI38LEOBl10uk3GmaJ8zhyRjGilvctpqhbeV3R5yybaXgjrBN3jNjJzulKc1LaiELlrQNDavVC7qDTTRl7ggcefqI98TIzQkg6s3NVSjOpS8UwKk6HwVnSSrTXUQLXR857rlH311w1r0T7kBtpPgOl+/CwOXjfwXdSHfeWnKJyBZTNA6U3GnOyuWd8HC17ZtOXQjAGf2Gh406WyzjntZD+dxeA6O0g4d6Z0cltn8X3biLIr4o+PYSqh0JjVaC94x35aX/sIdu2Dx6wCi+7v9tireOyUhoExI5AC4ZyJVCmKKpdOQc9Sw==
 serverbeach2,192.168.1.28 ssh-rsa
AAAAB3NzaC1yc2EAAAABIwAAAQEAsAM/5YeS0N11BIN2tlXhMY8Uqu2GeyF029LVJCxDReazxpGbkmTHH45axanps+zHK3WhQywRU1dWuFREJmMNvXUaLMKQS7a2iqFTGu+eb4RfZ26LcqWsL4wWkY0FSa+j5f5TYmrnowfhNXqSpp35pU5A8QC3fXXmYP4C2xSev/+xtlnqe8+Du0rEvXZJr7BN/sIUuN3K5uiXxJNwXFtDQjx3Hi9E9l8fx7wzk7xZzlU5Vk1X0xIqQwfUkLOa/jhDnLCkrANfKUInwurF0YVWgYhoU220U2tM6Wb21w4nLXeEp6/LW7u0Kcdf3H/a64PytO1e0cHH+9g3WPlR/WnJvQ==
 serverbeach3,192.168.1.29 ssh-rsa
AAAAB3NzaC1yc2EAAAABIwAAAQEAymiBAQYsgUDHHLKI/ZWJI0TskV7eHvlm70Glt+xaQO61+S8NOvhdueTDUvyvGuG4b1+xHy9A02N/hOxRnNIoxz6OoOr3RmCMmVOlYCHvFGyPf8/ykXMW2aFAztikUiFXbU1Tw+2iZwyXi3wGoBbByx0s1gzBJX+jDSmw8mdZJkQCW8kwO21IN83ttVtBvK61HX6EQ1BGKuoZ1uMg8ZOQW/JHCwv0tTua6vcOwwJcWX1j1lCB1HKSz7raQGpYNs44vwm/NV2o0UcG7U7fDpFkjWRyjKiWrR6VE8i/Vh8XhY2m9eGlNWv2lHGCuJL6SJ7R23RxMxnWZ43utyZSxoYJxQ==
 serverbeach4,192.168.1.30 ssh-rsa
AAAAB3NzaC1yc2EAAAABIwAAAQEAv8siawFDUtyLnNGsOZTnNsq5DMr6jiDClSL++dMdm+r3FofHDQ2PASb3Wa/iuxNyT+Os1cPtBrsPJlIb251nQpTn30N7wD4iWocFsRMDwhZ3kTaz2PUVg1MvTGqNMhwrxVrSarP+Q7sVrwaguxDo1CUijiS+QtGsy2Xf2kD0+w8lHAUYxYihZG0wB1aJu4tJwvlGQkSrrUoyF1m83IVmvIUqgkv4jnGLeaG45gWU9bDMzZztSbKRe6bBZJHK2VqrL+jPqxL/nDTecZJ7eq3jX0pDw/cR1/Jd+wKhD29+vmfD2tKH7oOWDLWWbb7iVfGXUCVguWwpDl2Pp60Z2jptFQ==
-- 
1.5.5.6



-- 
Stephen J Smoogen.

Ah, but a man's reach should exceed his grasp. Or what's a heaven for?
-- Robert Browning



From dev at nigelj.com  Mon Nov  9 04:22:39 2009
From: dev at nigelj.com (Nigel Jones)
Date: Mon, 9 Nov 2009 14:22:39 +1000
Subject: SSH key updates [PATCH] Added new ssh keys for asterisk1 and 
	serverbeach1
In-Reply-To: <80d7e4090911081947h2e204b05n195b3818d80b20ae@mail.gmail.com>
References: <80d7e4090911081947h2e204b05n195b3818d80b20ae@mail.gmail.com>
Message-ID: <69fe28d70911082022j28f38f7ci3d07d30a9cebe3c0@mail.gmail.com>

+1
-- Nigel Jones



On Mon, Nov 9, 2009 at 1:47 PM, Stephen John Smoogen <smooge at gmail.com> wrote:
> ?We are in freeze. Please check and give +1 to push.
> ---
> ?modules/ssh/files/ssh_known_hosts | ? ?4 ++--
> ?1 files changed, 2 insertions(+), 2 deletions(-)
>
> diff --git a/modules/ssh/files/ssh_known_hosts
> b/modules/ssh/files/ssh_known_hosts
> index 6f33b37..f41aeaf 100644
> --- a/modules/ssh/files/ssh_known_hosts
> +++ b/modules/ssh/files/ssh_known_hosts
> @@ -5,7 +5,7 @@ app4,10.8.34.48 ssh-rsa
> AAAAB3NzaC1yc2EAAAABIwAAAQEAzXNEmtvlYWai2gD6TT/lQmn98rVI
> ?app5,192.168.1.13 ssh-rsa
> AAAAB3NzaC1yc2EAAAABIwAAAQEArypZkkj/BYvWQ365D3wNrUL1iygXt5zdneO+7ILqM3mXr0KbtgH7WYA1wOnphVq2VMP094J8vpuU8o6AF8ybLg+bpLqCTVxeeCMfviypqWNeU7+hrGlYq58GemF8brFf81DIGrfxBochJQxc4NUjYP5Ax6+cdzX7AN4OLXc2SbyDf2hqO34QfAc37BU0h+FbhEuyNq6Ia7Cdm7GH26bQUYqNrZ3fHu+6kdtb51+EVLqhv4qZn+QEMDbHnWvberxAiC1fMNTqcxKWIw15bgsq9pjVjAtpFK2K27nt+PzN2PnXj28xV2yHVHsqzBRmz5h/FPVTp4ChbOlQMfY5bUSd5w==
> ?app6,192.168.1.24 ssh-rsa
> AAAAB3NzaC1yc2EAAAABIwAAAQEAuSP2FVIIK8NKFNFtSzR7ZW2YaeC6+3R9hA1R27Uy3DFmyeUhJrE9PSprKDITYSCS3Wy3hNfkCaeamFI8/nvIwszQEdI9ygHeg5lzR8gn6Uot853xLkXPVWv5eohl0MauJi4J7HU1zYo3eRpy4PwA7XzsNGrmItt9h6KoOKOE8s9gAcCXsl2g8WMrl46mRP1S9jgIfPW0B667HpEPqfIBPyoNBmheHm5LWPs6JwGXmwNzxhZZVgUI+cN67gMJWx6LQ9O7uJA2bBV12qnLC9SGsQt/G23i6VS6EegRAtgWmkhYCKYNkIYAj3kMkwMxWyKF+4EywsKyorM+PZAOboMC3Q==
> ?app7,10.8.34.150 ssh-rsa
> AAAAB3NzaC1yc2EAAAABIwAAAQEAkSHMtHvSsrYF+j8kESBTPrA4ZUa2GJIYTAw4ssgWu00AqcAtWAK6uCoCR8M/SGR0Fyy2LvkA5N1W+ti/quFzl9s0MXAWvUXbXCyM1nm331VugOM1+7sziDfCtdoV9hwX/BXrzNP6uUfFgbkFHU4PnSjhoNfvrkDr01+I8lIoUOuLoWrv8J/qqZG3tNZ0apKxt8JkIvimN/AcegQjjMwcTvkFiq1pimwsgRcpp3R6To2jl6nSGFkwB6BKEAQohz2+/3aYWeLJbbwYb+nxdjMlGOLpqFHlceivVTsMGyw7WFZ/xURRJW/Tck9ODqR84mc0pWxKWF6zURwXU2zansKgoQ==
> -asterisk1,192.168.1.34 ssh-rsa
> AAAAB3NzaC1yc2EAAAABIwAAAQEA9K8imSdywSbQv9twrVRUA9zVtUeDQAa6sTXK+y0zz3Ct7L+6YtyonprgXA42JcRdg5WiKsmcTDC9T2GSc4GvyKqXvmaZN5V7Ry608vHDWyv639Y8r9IjMbSIEGbSu3Q8WpbxYYgqQ5PE8pWRi7Qu3/hTNU49y+sQ5qPHjZ7Y/0QHMnQDkn1xWdaUdq8ahkkDAECIUU15Cmj7ClRO01V+T+sP0VitsCaa3T2RfDsmxEtnCr9e0dG9jovalfO1aEvzpstClOzYoxLvr32hxm1qHMr5wxmSUc1ymLL6Llil1oTJ8WyCimGlZFMSU0HkRohbzPGdV3YfOp+AKj6CEI67IQ==
> +asterisk1,192.168.1.34 ssh-rsa
> AAAAB3NzaC1yc2EAAAABIwAAAQEA028tplMg2/yL1axMZp08s4YO+bDpvAv4Tk/Q3sOvIMDeHG5RCrf9u4gZfOT9ciYhKCiBeu8cpU8CRncUoPJ5SOv2+sWVqzDYSI0XHVwNvQNeBwyAcwjMiLpVuAqtpLzh3vGc5KUnMUrcCS3V2y/UonsUzYGa8PwxwGl3CkpWZf6zgKUSeDG3Px9SqMRbZHS31ki9fqi6Zd8jD5TKdrY1GrozyzTqDxeo3cucWP3/AeKKth/pkptH1GvXdaCtlrflDuvWniTW1nwrjlwry9RURasVHC7MMJjcypCBa9X/7LLEfcQwdpU//ebXwrLBikEPYglsyU9K7yqdV3dM05DSnQ==
> ?asterisk2,192.168.1.36 ssh-rsa
> AAAAB3NzaC1yc2EAAAABIwAAAQEA2cOLaeiWtK0PHWmSF4m1iWh35BUaUGWFtFnRFBGvUDQmDfv7oVvofXVjTJq5QVr+RcPxO3CH0MLJoCFcG5fvanILtBrpL8pk31bJGPMTaLRqpecNCCKM5tUWTnbULeiMsPdee2JPYwI1Kli0FkiQqklGdMO4B0NAK5brktsbhxg07BPuo/Zrp3bLqSoLH705lzKmzTk9WxBctbVdyuPKPwKuHxkCi0AghOEGrGK6eB03FwaRKvjDKjVqqXH0QhfxglxMjLDNb0p9ZwLfQ2AaJwrDr82j7+1U9IG+e1t/0xnhUq7eo1TzNSbcJcn1M1NHK+0AD5F0lUa/2PxM0hL5sQ==
> ?backup1,10.8.34.219 ssh-rsa
> AAAAB3NzaC1yc2EAAAABIwAAAQEAwYSCsVH8hFlBsGDYw1FzsQEA98EwU25gJMhzyNir8QkWTPzoaZ5ncD0PY1jRAWc4ye8fCzzgsre8knwqyDrCEz3LLJkSEspELsuBNT7F5c4XsON5uS57W7Nufr5pf18ePXUbztLVdHhzx5xIuRXpW3UrI8qcxTeYnfsh4LMaofCDer60KvFQ/9oUHAV//pIiUc8hKKSnkjjdha12mBrTuTXfg5sslLReugcyv3zYQNrQmG/B1hwI1gMcf3gHUccJ+Cm648pErnSh26Tl1rzis5p/ipSehM68eIsfRdz2vMwEY4jeA++yJ+JiqpPgzrd1IoGo1oAH61fPUVz+lLYahw==
> ?backup2,152.46.7.224 ssh-rsa
> AAAAB3NzaC1yc2EAAAABIwAAAQEA8ZxbJOxfmV5Ir3PugLMDWKhdhP367VnulqZUgae94fOcxIq1AI92Ry0oxBpe/OX1yxm7NTYn+7kTMpIadk5zQJp7cU2b4qRiYLXeh6h3ZMR+G9OO7LI2sFnGV8sdqAE4ei6eaXrpZtEPfqadJd4bV/eRwD5Pw7jeol+KspmbHNTchlkTpDoHkLFYSxihW8GQxJFMlTBBt200EoOjuwI1tPhIUh9z/J0Cr4r/uP1wF04sEssQgXzEyxqU9COsjZoBmsp3ry/tVrlGmlhZD+bMCEk2IJ0JMF+3VDJxGFlsyTZFnEjQnQE/fcBNcSwDEZjkM/E1bFQ015JPe3SF1fFA8w==
> @@ -57,7 +57,7 @@ releng1,10.8.34.47 ssh-rsa
> AAAAB3NzaC1yc2EAAAABIwAAAQEA6E/EcEtqsLrcV6jzIrnx55aWu
> ?releng2,10.8.34.206 ssh-rsa
> AAAAB3NzaC1yc2EAAAABIwAAAQEAoTlJ9479YpB+rmnRkoHQAwZ6NsfcIrsplgdbrArOYopWctxfn2HaZq0zWRuAxi4NRXzi/thz+8MNkMyDzDeZgyRIDK1Rg4PlHupyOJj4Ki71D4BQH59p25nB/AiZBnI3E1SsV52CmPlvEkNZxGN3YVxTg52iOdLNJFNCYnyr9kKhwoxTIol4NJp+WfiZBG/bzkouJ3sjk1eeSIJ647Po0q7WIuVpCGt0OpVdMnsS7lVEpTdt3HZoFynrkK2mCDC7xxOcL120pZivql6D6IujUNwigJW6jEfJOBgcF3NOLf7K5oXCJ6E8Rma6VF7l6MytEwhhGVlQrf9SlZTVIEbcAw==
> ?relepel1,10.8.34.85 ssh-rsa
> AAAAB3NzaC1yc2EAAAABIwAAAQEA8TsUcoMf83shg7M8ttYkaczgNpEh/J8P01apfBio7QHE5ZVe+J2ZXfoCN4aXtEFhWn6ubC9K0KUwiDY7pJFXB0l6o2Kni02LrJXte/2rHjaM3NSvwyXrwn9RA8zAoGR03c950axuXmuwY8/vpEsFeAmLKHhd4Gtg5by34cmzMnWx84w4pdFDqQq3338cNeVvCJVpL9h6AN2YaNRB11sUbyXKS6KbJmsdWMTpoGA9I5MqNU09MmSkaIP+GU704Fru1z65TF3MhxAk5nAisyz4bUEDFPy4s3U8O3CbeKQN1nrDQNV09jDAqrH4hc6xK+Zui88GaewMZ5872QJFgOPU9w==
> ?secondary1,10.8.34.108 ssh-rsa
> AAAAB3NzaC1yc2EAAAABIwAAAQEApQM2/VhvUP+u+BtZRZKQipGNuqc8UwPF6E/sl3PIzv4/C2N9dULz+zEuR1vn5P751TBNOgl3yGIoPvjMrp4odNQl06lkHAe8k6YrJiS9fneOiL8PNzMgHcttl7nYjGbHoyCnqxiyv4/ATBdqEs1m72ekXISOvaww39WS69xueZrLvtSKSa1VxmvFNTb0yxR+9BOxSOQejHc+R1+UpRHENHKO9Chj9bgobtDEuvWnHdVokqu6JSNQh9pFezW4ieA1znIUSmoagoSTS88yVGzQ3JUg7DQ4iBhBEJQtLTDq6qs8wl5a37pV/8uZKaVFHNbT3HsVgRlgn9sasHaifC1CLQ==
> -serverbeach1,192.168.1.27 ssh-rsa
> AAAAB3NzaC1yc2EAAAABIwAAAQEAwePMmBFBPmlukBt816llDtHtIAjBL16t9n4IWRhrVKDOYocrg6oLczYpYByvLrg+gqpaJilF89DJJFsoXmat3X38f4vymTQpRs159K+qOmyaQEVVk1CdYAtYllGdLV7CfLWzOgAmq7cQ1ryZjx7dSDcxclQEoewD49GV3XvX0ADDwlTNXpiBbdCuVJ9bvZ108o7XBcq78F/1mrN1kxej7IquyOoL9sqntkfptqjosjmFQBt5E0985k2A7qqmx6F55cDDYg9dvssHKIOPxxvGSg6GT638KC79PSymC7KH4zip/63+UIZngLEhqID/os/v7k+4GfGLUaMDaKUfjcQT1w==
> +serverbeach1,192.168.1.27 ssh-rsa
> AAAAB3NzaC1yc2EAAAABIwAAAQEAy0xVU/yKxDDy4CxSbE46AWIXybc9ic6kPQpI38LEOBl10uk3GmaJ8zhyRjGilvctpqhbeV3R5yybaXgjrBN3jNjJzulKc1LaiELlrQNDavVC7qDTTRl7ggcefqI98TIzQkg6s3NVSjOpS8UwKk6HwVnSSrTXUQLXR857rlH311w1r0T7kBtpPgOl+/CwOXjfwXdSHfeWnKJyBZTNA6U3GnOyuWd8HC17ZtOXQjAGf2Gh406WyzjntZD+dxeA6O0g4d6Z0cltn8X3biLIr4o+PYSqh0JjVaC94x35aX/sIdu2Dx6wCi+7v9tireOyUhoExI5AC4ZyJVCmKKpdOQc9Sw==
> ?serverbeach2,192.168.1.28 ssh-rsa
> AAAAB3NzaC1yc2EAAAABIwAAAQEAsAM/5YeS0N11BIN2tlXhMY8Uqu2GeyF029LVJCxDReazxpGbkmTHH45axanps+zHK3WhQywRU1dWuFREJmMNvXUaLMKQS7a2iqFTGu+eb4RfZ26LcqWsL4wWkY0FSa+j5f5TYmrnowfhNXqSpp35pU5A8QC3fXXmYP4C2xSev/+xtlnqe8+Du0rEvXZJr7BN/sIUuN3K5uiXxJNwXFtDQjx3Hi9E9l8fx7wzk7xZzlU5Vk1X0xIqQwfUkLOa/jhDnLCkrANfKUInwurF0YVWgYhoU220U2tM6Wb21w4nLXeEp6/LW7u0Kcdf3H/a64PytO1e0cHH+9g3WPlR/WnJvQ==
> ?serverbeach3,192.168.1.29 ssh-rsa
> AAAAB3NzaC1yc2EAAAABIwAAAQEAymiBAQYsgUDHHLKI/ZWJI0TskV7eHvlm70Glt+xaQO61+S8NOvhdueTDUvyvGuG4b1+xHy9A02N/hOxRnNIoxz6OoOr3RmCMmVOlYCHvFGyPf8/ykXMW2aFAztikUiFXbU1Tw+2iZwyXi3wGoBbByx0s1gzBJX+jDSmw8mdZJkQCW8kwO21IN83ttVtBvK61HX6EQ1BGKuoZ1uMg8ZOQW/JHCwv0tTua6vcOwwJcWX1j1lCB1HKSz7raQGpYNs44vwm/NV2o0UcG7U7fDpFkjWRyjKiWrR6VE8i/Vh8XhY2m9eGlNWv2lHGCuJL6SJ7R23RxMxnWZ43utyZSxoYJxQ==
> ?serverbeach4,192.168.1.30 ssh-rsa
> AAAAB3NzaC1yc2EAAAABIwAAAQEAv8siawFDUtyLnNGsOZTnNsq5DMr6jiDClSL++dMdm+r3FofHDQ2PASb3Wa/iuxNyT+Os1cPtBrsPJlIb251nQpTn30N7wD4iWocFsRMDwhZ3kTaz2PUVg1MvTGqNMhwrxVrSarP+Q7sVrwaguxDo1CUijiS+QtGsy2Xf2kD0+w8lHAUYxYihZG0wB1aJu4tJwvlGQkSrrUoyF1m83IVmvIUqgkv4jnGLeaG45gWU9bDMzZztSbKRe6bBZJHK2VqrL+jPqxL/nDTecZJ7eq3jX0pDw/cR1/Jd+wKhD29+vmfD2tKH7oOWDLWWbb7iVfGXUCVguWwpDl2Pp60Z2jptFQ==
> --
> 1.5.5.6
>
>
>
> --
> Stephen J Smoogen.
>
> Ah, but a man's reach should exceed his grasp. Or what's a heaven for?
> -- Robert Browning
>
> _______________________________________________
> Fedora-infrastructure-list mailing list
> Fedora-infrastructure-list at redhat.com
> https://www.redhat.com/mailman/listinfo/fedora-infrastructure-list
>



From mmcgrath at redhat.com  Mon Nov  9 04:28:26 2009
From: mmcgrath at redhat.com (Mike McGrath)
Date: Sun, 8 Nov 2009 22:28:26 -0600 (CST)
Subject: SSH key updates [PATCH] Added new ssh keys for asterisk1 and 
 serverbeach1
In-Reply-To: <80d7e4090911081947h2e204b05n195b3818d80b20ae@mail.gmail.com>
References: <80d7e4090911081947h2e204b05n195b3818d80b20ae@mail.gmail.com>
Message-ID: <alpine.LFD.2.00.0911082228210.6577@laptop.mmcgrath.net>

+1

	-Mike

On Sun, 8 Nov 2009, Stephen John Smoogen wrote:

>  We are in freeze. Please check and give +1 to push.
> ---
>  modules/ssh/files/ssh_known_hosts |    4 ++--
>  1 files changed, 2 insertions(+), 2 deletions(-)
>
> diff --git a/modules/ssh/files/ssh_known_hosts
> b/modules/ssh/files/ssh_known_hosts
> index 6f33b37..f41aeaf 100644
> --- a/modules/ssh/files/ssh_known_hosts
> +++ b/modules/ssh/files/ssh_known_hosts
> @@ -5,7 +5,7 @@ app4,10.8.34.48 ssh-rsa
> AAAAB3NzaC1yc2EAAAABIwAAAQEAzXNEmtvlYWai2gD6TT/lQmn98rVI
>  app5,192.168.1.13 ssh-rsa
> AAAAB3NzaC1yc2EAAAABIwAAAQEArypZkkj/BYvWQ365D3wNrUL1iygXt5zdneO+7ILqM3mXr0KbtgH7WYA1wOnphVq2VMP094J8vpuU8o6AF8ybLg+bpLqCTVxeeCMfviypqWNeU7+hrGlYq58GemF8brFf81DIGrfxBochJQxc4NUjYP5Ax6+cdzX7AN4OLXc2SbyDf2hqO34QfAc37BU0h+FbhEuyNq6Ia7Cdm7GH26bQUYqNrZ3fHu+6kdtb51+EVLqhv4qZn+QEMDbHnWvberxAiC1fMNTqcxKWIw15bgsq9pjVjAtpFK2K27nt+PzN2PnXj28xV2yHVHsqzBRmz5h/FPVTp4ChbOlQMfY5bUSd5w==
>  app6,192.168.1.24 ssh-rsa
> AAAAB3NzaC1yc2EAAAABIwAAAQEAuSP2FVIIK8NKFNFtSzR7ZW2YaeC6+3R9hA1R27Uy3DFmyeUhJrE9PSprKDITYSCS3Wy3hNfkCaeamFI8/nvIwszQEdI9ygHeg5lzR8gn6Uot853xLkXPVWv5eohl0MauJi4J7HU1zYo3eRpy4PwA7XzsNGrmItt9h6KoOKOE8s9gAcCXsl2g8WMrl46mRP1S9jgIfPW0B667HpEPqfIBPyoNBmheHm5LWPs6JwGXmwNzxhZZVgUI+cN67gMJWx6LQ9O7uJA2bBV12qnLC9SGsQt/G23i6VS6EegRAtgWmkhYCKYNkIYAj3kMkwMxWyKF+4EywsKyorM+PZAOboMC3Q==
>  app7,10.8.34.150 ssh-rsa
> AAAAB3NzaC1yc2EAAAABIwAAAQEAkSHMtHvSsrYF+j8kESBTPrA4ZUa2GJIYTAw4ssgWu00AqcAtWAK6uCoCR8M/SGR0Fyy2LvkA5N1W+ti/quFzl9s0MXAWvUXbXCyM1nm331VugOM1+7sziDfCtdoV9hwX/BXrzNP6uUfFgbkFHU4PnSjhoNfvrkDr01+I8lIoUOuLoWrv8J/qqZG3tNZ0apKxt8JkIvimN/AcegQjjMwcTvkFiq1pimwsgRcpp3R6To2jl6nSGFkwB6BKEAQohz2+/3aYWeLJbbwYb+nxdjMlGOLpqFHlceivVTsMGyw7WFZ/xURRJW/Tck9ODqR84mc0pWxKWF6zURwXU2zansKgoQ==
> -asterisk1,192.168.1.34 ssh-rsa
> AAAAB3NzaC1yc2EAAAABIwAAAQEA9K8imSdywSbQv9twrVRUA9zVtUeDQAa6sTXK+y0zz3Ct7L+6YtyonprgXA42JcRdg5WiKsmcTDC9T2GSc4GvyKqXvmaZN5V7Ry608vHDWyv639Y8r9IjMbSIEGbSu3Q8WpbxYYgqQ5PE8pWRi7Qu3/hTNU49y+sQ5qPHjZ7Y/0QHMnQDkn1xWdaUdq8ahkkDAECIUU15Cmj7ClRO01V+T+sP0VitsCaa3T2RfDsmxEtnCr9e0dG9jovalfO1aEvzpstClOzYoxLvr32hxm1qHMr5wxmSUc1ymLL6Llil1oTJ8WyCimGlZFMSU0HkRohbzPGdV3YfOp+AKj6CEI67IQ==
> +asterisk1,192.168.1.34 ssh-rsa
> AAAAB3NzaC1yc2EAAAABIwAAAQEA028tplMg2/yL1axMZp08s4YO+bDpvAv4Tk/Q3sOvIMDeHG5RCrf9u4gZfOT9ciYhKCiBeu8cpU8CRncUoPJ5SOv2+sWVqzDYSI0XHVwNvQNeBwyAcwjMiLpVuAqtpLzh3vGc5KUnMUrcCS3V2y/UonsUzYGa8PwxwGl3CkpWZf6zgKUSeDG3Px9SqMRbZHS31ki9fqi6Zd8jD5TKdrY1GrozyzTqDxeo3cucWP3/AeKKth/pkptH1GvXdaCtlrflDuvWniTW1nwrjlwry9RURasVHC7MMJjcypCBa9X/7LLEfcQwdpU//ebXwrLBikEPYglsyU9K7yqdV3dM05DSnQ==
>  asterisk2,192.168.1.36 ssh-rsa
> AAAAB3NzaC1yc2EAAAABIwAAAQEA2cOLaeiWtK0PHWmSF4m1iWh35BUaUGWFtFnRFBGvUDQmDfv7oVvofXVjTJq5QVr+RcPxO3CH0MLJoCFcG5fvanILtBrpL8pk31bJGPMTaLRqpecNCCKM5tUWTnbULeiMsPdee2JPYwI1Kli0FkiQqklGdMO4B0NAK5brktsbhxg07BPuo/Zrp3bLqSoLH705lzKmzTk9WxBctbVdyuPKPwKuHxkCi0AghOEGrGK6eB03FwaRKvjDKjVqqXH0QhfxglxMjLDNb0p9ZwLfQ2AaJwrDr82j7+1U9IG+e1t/0xnhUq7eo1TzNSbcJcn1M1NHK+0AD5F0lUa/2PxM0hL5sQ==
>  backup1,10.8.34.219 ssh-rsa
> AAAAB3NzaC1yc2EAAAABIwAAAQEAwYSCsVH8hFlBsGDYw1FzsQEA98EwU25gJMhzyNir8QkWTPzoaZ5ncD0PY1jRAWc4ye8fCzzgsre8knwqyDrCEz3LLJkSEspELsuBNT7F5c4XsON5uS57W7Nufr5pf18ePXUbztLVdHhzx5xIuRXpW3UrI8qcxTeYnfsh4LMaofCDer60KvFQ/9oUHAV//pIiUc8hKKSnkjjdha12mBrTuTXfg5sslLReugcyv3zYQNrQmG/B1hwI1gMcf3gHUccJ+Cm648pErnSh26Tl1rzis5p/ipSehM68eIsfRdz2vMwEY4jeA++yJ+JiqpPgzrd1IoGo1oAH61fPUVz+lLYahw==
>  backup2,152.46.7.224 ssh-rsa
> AAAAB3NzaC1yc2EAAAABIwAAAQEA8ZxbJOxfmV5Ir3PugLMDWKhdhP367VnulqZUgae94fOcxIq1AI92Ry0oxBpe/OX1yxm7NTYn+7kTMpIadk5zQJp7cU2b4qRiYLXeh6h3ZMR+G9OO7LI2sFnGV8sdqAE4ei6eaXrpZtEPfqadJd4bV/eRwD5Pw7jeol+KspmbHNTchlkTpDoHkLFYSxihW8GQxJFMlTBBt200EoOjuwI1tPhIUh9z/J0Cr4r/uP1wF04sEssQgXzEyxqU9COsjZoBmsp3ry/tVrlGmlhZD+bMCEk2IJ0JMF+3VDJxGFlsyTZFnEjQnQE/fcBNcSwDEZjkM/E1bFQ015JPe3SF1fFA8w==
> @@ -57,7 +57,7 @@ releng1,10.8.34.47 ssh-rsa
> AAAAB3NzaC1yc2EAAAABIwAAAQEA6E/EcEtqsLrcV6jzIrnx55aWu
>  releng2,10.8.34.206 ssh-rsa
> AAAAB3NzaC1yc2EAAAABIwAAAQEAoTlJ9479YpB+rmnRkoHQAwZ6NsfcIrsplgdbrArOYopWctxfn2HaZq0zWRuAxi4NRXzi/thz+8MNkMyDzDeZgyRIDK1Rg4PlHupyOJj4Ki71D4BQH59p25nB/AiZBnI3E1SsV52CmPlvEkNZxGN3YVxTg52iOdLNJFNCYnyr9kKhwoxTIol4NJp+WfiZBG/bzkouJ3sjk1eeSIJ647Po0q7WIuVpCGt0OpVdMnsS7lVEpTdt3HZoFynrkK2mCDC7xxOcL120pZivql6D6IujUNwigJW6jEfJOBgcF3NOLf7K5oXCJ6E8Rma6VF7l6MytEwhhGVlQrf9SlZTVIEbcAw==
>  relepel1,10.8.34.85 ssh-rsa
> AAAAB3NzaC1yc2EAAAABIwAAAQEA8TsUcoMf83shg7M8ttYkaczgNpEh/J8P01apfBio7QHE5ZVe+J2ZXfoCN4aXtEFhWn6ubC9K0KUwiDY7pJFXB0l6o2Kni02LrJXte/2rHjaM3NSvwyXrwn9RA8zAoGR03c950axuXmuwY8/vpEsFeAmLKHhd4Gtg5by34cmzMnWx84w4pdFDqQq3338cNeVvCJVpL9h6AN2YaNRB11sUbyXKS6KbJmsdWMTpoGA9I5MqNU09MmSkaIP+GU704Fru1z65TF3MhxAk5nAisyz4bUEDFPy4s3U8O3CbeKQN1nrDQNV09jDAqrH4hc6xK+Zui88GaewMZ5872QJFgOPU9w==
>  secondary1,10.8.34.108 ssh-rsa
> AAAAB3NzaC1yc2EAAAABIwAAAQEApQM2/VhvUP+u+BtZRZKQipGNuqc8UwPF6E/sl3PIzv4/C2N9dULz+zEuR1vn5P751TBNOgl3yGIoPvjMrp4odNQl06lkHAe8k6YrJiS9fneOiL8PNzMgHcttl7nYjGbHoyCnqxiyv4/ATBdqEs1m72ekXISOvaww39WS69xueZrLvtSKSa1VxmvFNTb0yxR+9BOxSOQejHc+R1+UpRHENHKO9Chj9bgobtDEuvWnHdVokqu6JSNQh9pFezW4ieA1znIUSmoagoSTS88yVGzQ3JUg7DQ4iBhBEJQtLTDq6qs8wl5a37pV/8uZKaVFHNbT3HsVgRlgn9sasHaifC1CLQ==
> -serverbeach1,192.168.1.27 ssh-rsa
> AAAAB3NzaC1yc2EAAAABIwAAAQEAwePMmBFBPmlukBt816llDtHtIAjBL16t9n4IWRhrVKDOYocrg6oLczYpYByvLrg+gqpaJilF89DJJFsoXmat3X38f4vymTQpRs159K+qOmyaQEVVk1CdYAtYllGdLV7CfLWzOgAmq7cQ1ryZjx7dSDcxclQEoewD49GV3XvX0ADDwlTNXpiBbdCuVJ9bvZ108o7XBcq78F/1mrN1kxej7IquyOoL9sqntkfptqjosjmFQBt5E0985k2A7qqmx6F55cDDYg9dvssHKIOPxxvGSg6GT638KC79PSymC7KH4zip/63+UIZngLEhqID/os/v7k+4GfGLUaMDaKUfjcQT1w==
> +serverbeach1,192.168.1.27 ssh-rsa
> AAAAB3NzaC1yc2EAAAABIwAAAQEAy0xVU/yKxDDy4CxSbE46AWIXybc9ic6kPQpI38LEOBl10uk3GmaJ8zhyRjGilvctpqhbeV3R5yybaXgjrBN3jNjJzulKc1LaiELlrQNDavVC7qDTTRl7ggcefqI98TIzQkg6s3NVSjOpS8UwKk6HwVnSSrTXUQLXR857rlH311w1r0T7kBtpPgOl+/CwOXjfwXdSHfeWnKJyBZTNA6U3GnOyuWd8HC17ZtOXQjAGf2Gh406WyzjntZD+dxeA6O0g4d6Z0cltn8X3biLIr4o+PYSqh0JjVaC94x35aX/sIdu2Dx6wCi+7v9tireOyUhoExI5AC4ZyJVCmKKpdOQc9Sw==
>  serverbeach2,192.168.1.28 ssh-rsa
> AAAAB3NzaC1yc2EAAAABIwAAAQEAsAM/5YeS0N11BIN2tlXhMY8Uqu2GeyF029LVJCxDReazxpGbkmTHH45axanps+zHK3WhQywRU1dWuFREJmMNvXUaLMKQS7a2iqFTGu+eb4RfZ26LcqWsL4wWkY0FSa+j5f5TYmrnowfhNXqSpp35pU5A8QC3fXXmYP4C2xSev/+xtlnqe8+Du0rEvXZJr7BN/sIUuN3K5uiXxJNwXFtDQjx3Hi9E9l8fx7wzk7xZzlU5Vk1X0xIqQwfUkLOa/jhDnLCkrANfKUInwurF0YVWgYhoU220U2tM6Wb21w4nLXeEp6/LW7u0Kcdf3H/a64PytO1e0cHH+9g3WPlR/WnJvQ==
>  serverbeach3,192.168.1.29 ssh-rsa
> AAAAB3NzaC1yc2EAAAABIwAAAQEAymiBAQYsgUDHHLKI/ZWJI0TskV7eHvlm70Glt+xaQO61+S8NOvhdueTDUvyvGuG4b1+xHy9A02N/hOxRnNIoxz6OoOr3RmCMmVOlYCHvFGyPf8/ykXMW2aFAztikUiFXbU1Tw+2iZwyXi3wGoBbByx0s1gzBJX+jDSmw8mdZJkQCW8kwO21IN83ttVtBvK61HX6EQ1BGKuoZ1uMg8ZOQW/JHCwv0tTua6vcOwwJcWX1j1lCB1HKSz7raQGpYNs44vwm/NV2o0UcG7U7fDpFkjWRyjKiWrR6VE8i/Vh8XhY2m9eGlNWv2lHGCuJL6SJ7R23RxMxnWZ43utyZSxoYJxQ==
>  serverbeach4,192.168.1.30 ssh-rsa
> AAAAB3NzaC1yc2EAAAABIwAAAQEAv8siawFDUtyLnNGsOZTnNsq5DMr6jiDClSL++dMdm+r3FofHDQ2PASb3Wa/iuxNyT+Os1cPtBrsPJlIb251nQpTn30N7wD4iWocFsRMDwhZ3kTaz2PUVg1MvTGqNMhwrxVrSarP+Q7sVrwaguxDo1CUijiS+QtGsy2Xf2kD0+w8lHAUYxYihZG0wB1aJu4tJwvlGQkSrrUoyF1m83IVmvIUqgkv4jnGLeaG45gWU9bDMzZztSbKRe6bBZJHK2VqrL+jPqxL/nDTecZJ7eq3jX0pDw/cR1/Jd+wKhD29+vmfD2tKH7oOWDLWWbb7iVfGXUCVguWwpDl2Pp60Z2jptFQ==
> --
> 1.5.5.6
>
>
>
> --
> Stephen J Smoogen.
>
> Ah, but a man's reach should exceed his grasp. Or what's a heaven for?
> -- Robert Browning
>
> _______________________________________________
> Fedora-infrastructure-list mailing list
> Fedora-infrastructure-list at redhat.com
> https://www.redhat.com/mailman/listinfo/fedora-infrastructure-list
>



From dev at nigelj.com  Mon Nov  9 11:20:24 2009
From: dev at nigelj.com (Nigel Jones)
Date: Mon, 9 Nov 2009 21:20:24 +1000
Subject: [PATCH] Close freemedia form
In-Reply-To: <1257713380.2468.9.camel@localhost.localdomain>
References: <1257713268-11534-1-git-send-email-nb@fedoraproject.org>
	<1257713380.2468.9.camel@localhost.localdomain>
Message-ID: <69fe28d70911090320r43148c97n9bf2ca20a474e5@mail.gmail.com>

+1 I thought this had an exemption. But in ahead.

On 09/11/2009, Jesse Keating <jkeating at redhat.com> wrote:
> On Sun, 2009-11-08 at 20:47 +0000, nb at fedoraproject.org wrote:
>> From: Nick Bebout <nb at puppet1.fedora.phx.redhat.com>
>
> +1
>
> --
> Jesse Keating
> Fedora -- Freedom? is a feature!
> identi.ca: http://identi.ca/jkeating
>

-- 
Sent from my mobile device

-- Nigel Jones



From smooge at gmail.com  Mon Nov  9 13:49:43 2009
From: smooge at gmail.com (Stephen John Smoogen)
Date: Mon, 9 Nov 2009 06:49:43 -0700
Subject: Outage Notification - 2009-11-09 13:00 UTC
Message-ID: <80d7e4090911090549s78b4c8ddyf6fdaa0de44d4c25@mail.gmail.com>

There will be an outage starting at 2009-11-09 14:00 UTC, which will last
approximately 1 hour.

To convert UTC to your local time, take a look at
http://fedoraproject.org/wiki/Infrastructure/UTCHowto
or run:

date -d '2009-11-09 14:00 UTC'

Affected Services:
IPV6
DNS
Torrent
Translation Services
Websites

Unaffected Services:
Buildsystem
CVS / Source Control
Database
Fedora Hosted
Fedora People
Fedora Talk
Mail
Mirror System

Ticket Link:

https://fedorahosted.org/fedora-infrastructure/ticket/1785

Reason for Outage:

IBM wants us reseat the DIMMs and get FRU information off of them.  Don is
going to do this work for us (thanks ibiblio).  Seth is going to do a
graceful shutoff.

Contact Information:

Please join #fedora-admin in irc.freenode.net or respond to this email to
trackthe status of this outage.

-- 
Stephen J Smoogen.

Ah, but a man's reach should exceed his grasp. Or what's a heaven for?
-- Robert Browning



From mmcgrath at redhat.com  Tue Nov 10 04:57:40 2009
From: mmcgrath at redhat.com (Mike McGrath)
Date: Mon, 9 Nov 2009 22:57:40 -0600 (CST)
Subject: F13 Naming: Leonidas -> Constantine -> <New Name>? (fwd)
Message-ID: <alpine.LFD.2.00.0911092257320.6577@laptop.mmcgrath.net>

FYI for those that don't follow the other lists.

	-Mike

---------- Forwarded message ----------
Date: Mon, 9 Nov 2009 20:05:02
From: inode0 <inode0 at gmail.com>
Reply-To: fedora-advisory-board at redhat.com
To: fedora-advisory-board at redhat.com, fedora-announce-list at redhat.com,
    fedora-devel-announce at redhat.com
Subject: F13 Naming: Leonidas -> Constantine -> <New Name>?

With Fedora 12 just a few days from release it is time to begin the
naming process for the next Fedora release.

Contributors can make suggestions for the name for Fedora 13 by visiting

https://fedoraproject.org/wiki/Name_suggestions_for_Fedora_13

and following the instructions.

Remember there needs to be an "is-a" link between the name Constantine
and the name you suggest and this link must be different than all
previous links used to connect Fedora release names.

Full details of the release naming schedule are available on the above
link but please note than the period for gathering suggestions begins
now and runs through November 16.

So there isn't a lot of time, think up some good names, and get them
added to the wiki.

Have fun,
John

_______________________________________________
fedora-advisory-board mailing list
fedora-advisory-board at redhat.com
http://www.redhat.com/mailman/listinfo/fedora-advisory-board



From mmcgrath at redhat.com  Wed Nov 11 20:26:03 2009
From: mmcgrath at redhat.com (Mike McGrath)
Date: Wed, 11 Nov 2009 14:26:03 -0600 (CST)
Subject: Outage Notification - 2009-11-11 21:00 UTC
Message-ID: <alpine.LFD.2.00.0911111424310.6577@laptop.mmcgrath.net>

There will be an outage starting at 2009-11-11 21:00 UTC, which will last
approximately 1 hours.

To convert UTC to your local time, take a look at
http://fedoraproject.org/wiki/Infrastructure/UTCHowto
or run:

date -d '2009-11-11 21:00 UTC'

Affected Services:

DNS
Torrent
Websites

Ticket Link:

https://fedorahosted.org/fedora-infrastructure/ticket/1785

Reason for Outage:

The new memory is on site, we're going to replace it.

Contact Information:

Please join #fedora-admin in irc.freenode.net or respond to this email to
track the status of this outage.



From ricky at fedoraproject.org  Wed Nov 11 20:53:25 2009
From: ricky at fedoraproject.org (Ricky Zhou)
Date: Wed, 11 Nov 2009 15:53:25 -0500
Subject: [Change Request] Re: [kerry@wsr.com: broken link on home page]
In-Reply-To: <20091111200741.GE16826@alpha.rzhou.org>
References: <20091111124017.GD16826@alpha.rzhou.org>
	<20091111133047.GC2338@desk.christensenplace.us>
	<DAF342CC64D34CCBB8F58D9B41FFC2CC@Aidan>
	<20091111200741.GE16826@alpha.rzhou.org>
Message-ID: <20091111205325.GF16826@alpha.rzhou.org>

On 2009-11-11 03:07:42 PM, Ricky Zhou wrote:
> > It would be reasonable to provide some automation for a single 
> > document, but since no two documents seem to use the same 
> > naming/directory structure, such an effort would have to be on a per 
> > document basis.  It might seem to make more sense to restructure the 
> > site so there was some consistency, but given the number of 
> > documents/formats/languages and the slowness of cvs that turns out 
> > to be a huge job.
> Would it be possible to get even a plain white list of languages links 
> to the HTML documents for just 
> http://docs.fedoraproject.org/install-guide/f12/ and 
> http://docs.fedoraproject.org/release-notes/f12/, or could we get a list 
> of URLs that need to be directed to the main docs.fp.o index?
> 
> We can't really change the link on the website at this point, being way 
> past the string freeze, and it's pretty important that those links go to 
> something especially for the F12 release (although fp.o is already 
> currently full of these broken links for F11 docs).
If this is fine with you guys, here's a change request to add redirects 
for those two to the docs.fp.o index page where visitors can choose 
their language and version of the document they want.

--

diff --git a/modules/fedora-docs/files/fedora-docs-proxy.conf b/modules/fedora-docs/files/fedora-docs-
index 259cfbd..61dfc04 100644
--- a/modules/fedora-docs/files/fedora-docs-proxy.conf
+++ b/modules/fedora-docs/files/fedora-docs-proxy.conf
@@ -7,6 +7,15 @@ RewriteRule ^(.*)/fc7$  http://docs.fedoraproject.org/$1/f7/ [R,L]
 RewriteRule ^/release-notes/f10preview(.*) /release-notes/f10$1 [R=301,L]
 RewriteRule ^/release-notes/f11preview(.*) /release-notes/f11$1 [R=301,L]
 
+# Language selection indexes for these documents are gone now, so redirect
+# to the main docs page where users can choose their language.
+
+RewriteRule ^/release-notes/f11/$ / [R=301,L]
+RewriteRule ^/release-notes/f12/$ / [R=301,L]
+
+RewriteRule ^/install-guide/f11/$ / [R=301,L]
+RewriteRule ^/install-guide/f12/$ / [R=301,L]
+
 <Directory /srv/web/docs>
   Options Indexes
 </Directory>

--

Alternatively, we can update all links to point at eg.  
http://docs.fedoraproject.org/install-guide/f12/en-US/html/ and mark 
those as translatable, which would be a late break of the string freeze, 
but still a pretty small one (the effect would be that all website links 
would point to the English doc until translators update them to point to 
their specific language's URL).

Thanks,
Ricky
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 197 bytes
Desc: not available
URL: <http://listman.redhat.com/archives/fedora-infrastructure-list/attachments/20091111/98cbe477/attachment.sig>

From ricky at fedoraproject.org  Wed Nov 11 21:12:36 2009
From: ricky at fedoraproject.org (Ricky Zhou)
Date: Wed, 11 Nov 2009 16:12:36 -0500
Subject: [Change Request] Re: [kerry@wsr.com: broken link on home page]
In-Reply-To: <20091111205325.GF16826@alpha.rzhou.org>
References: <20091111124017.GD16826@alpha.rzhou.org>
	<20091111133047.GC2338@desk.christensenplace.us>
	<DAF342CC64D34CCBB8F58D9B41FFC2CC@Aidan>
	<20091111200741.GE16826@alpha.rzhou.org>
	<20091111205325.GF16826@alpha.rzhou.org>
Message-ID: <20091111211236.GG16826@alpha.rzhou.org>

On 2009-11-11 03:53:25 PM, Ricky Zhou wrote:
> If this is fine with you guys, here's a change request to add 
> redirects for those two to the docs.fp.o index page where visitors can 
> choose their language and version of the document they want.
> 
> --
> 
> diff --git a/modules/fedora-docs/files/fedora-docs-proxy.conf b/modules/fedora-docs/files/fedora-docs-
> index 259cfbd..61dfc04 100644
> --- a/modules/fedora-docs/files/fedora-docs-proxy.conf
> +++ b/modules/fedora-docs/files/fedora-docs-proxy.conf
> @@ -7,6 +7,15 @@ RewriteRule ^(.*)/fc7$  http://docs.fedoraproject.org/$1/f7/ [R,L]
>  RewriteRule ^/release-notes/f10preview(.*) /release-notes/f10$1 [R=301,L]
>  RewriteRule ^/release-notes/f11preview(.*) /release-notes/f11$1 [R=301,L]
>  
> +# Language selection indexes for these documents are gone now, so redirect
> +# to the main docs page where users can choose their language.
> +
> +RewriteRule ^/release-notes/f11/$ / [R=301,L]
> +RewriteRule ^/release-notes/f12/$ / [R=301,L]
> +
> +RewriteRule ^/install-guide/f11/$ / [R=301,L]
> +RewriteRule ^/install-guide/f12/$ / [R=301,L]
> +
>  <Directory /srv/web/docs>
>    Options Indexes
>  </Directory>
> 
> --
It looks like John is already working on fixing this in docs CVS, so 
disregard this change request.

Thanks,
Ricky
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 197 bytes
Desc: not available
URL: <http://listman.redhat.com/archives/fedora-infrastructure-list/attachments/20091111/cb7ee469/attachment.sig>

From ricky at fedoraproject.org  Thu Nov 12 20:35:48 2009
From: ricky at fedoraproject.org (Ricky Zhou)
Date: Thu, 12 Nov 2009 15:35:48 -0500
Subject: Meeting Log - 2009-11-12
Message-ID: <20091112203548.GD14824@alpha.rzhou.org>

20:02 < mmcgrath> #startmeeting Infrastructure
20:02 < zodbot> Meeting started Thu Nov 12 20:02:30 2009 UTC.  The chair is mmcgrath. Information about MeetBot at http://wiki.debian.org/MeetBot.
20:02 < zodbot> Useful Commands: #action #agreed #halp #info #idea #link #topic.
20:02 -!- zodbot changed the topic of #fedora-meeting to:  (Meeting topic: Infrastructure)
20:03 < skvidal> grumbel
20:03 -!- herlo [n=clints at fedora/herlo] has joined #fedora-meeting
20:03 < dgilmore> ::sigh::
20:03 < mmcgrath> who's here?
20:03  * ricky 
20:03  * a-k is
20:03 < mdomsch> here briefly
20:04 < mdomsch> customer presentation in ~10m to leave for
20:04  * nirik is around in the back
20:04  * Oxf13 
20:04 < mmcgrath> Ok, so lets get started.
20:05 < mmcgrath> So, we've got a release next week!
20:06 < mmcgrath> 3 cheers!
20:06 < mmcgrath> So, lets go over the tickets to make sure we're in good shape.
20:06 < mmcgrath> ricky: you around by chance?
20:06 < skvidal> he said he was
20:06 < ricky> mmcgrath: Yup
20:06 < mmcgrath> ricky: so lets do this one first
20:06 < mmcgrath> .ticket 1788
20:06 < zodbot> mmcgrath: #1788 (Websites) - Fedora Infrastructure - Trac - https://fedorahosted.org/fedora-infrastructure/ticket/1788
20:07 < mmcgrath> What exactly is going to happen come tuesday?
20:07 < ricky> There will be a DNS switch for spins.fp.o to point to the proxies in advance (and extra link checking on that site once the torrents come out)
20:07  * herlo is here
20:08 -!- npatil [n=npatil at 115.240.118.101] has quit Remote closed the connection
20:08 < ricky> Apart from that, it'll be the normal process for pushing out the new process - syncStatic will be pointed at the f12 branch
20:08 < ricky> We'll also be updating http://fedoraproject.org/wiki/Fedora_Websites_Release_SOP as we go this time
20:08 < mmcgrath> so http://spins-test.fedoraproject.org/ is 100% completed?
20:09 < ricky> I need to ask sijis about the blank download tab, but modulo some last minute browser/link checking, it should be done
20:09 < mmcgrath> Ok.
20:09  * mmcgrath just wants to make sure no surprises for that since it's the one major difference this round.
20:09 < mmcgrath> ricky: anything else on that?
20:10 < dgilmore> ricky: are we going to put the desktop[ spin on the spins page?
20:10 < mmcgrath> I thought I saw it there once.  Maybe only in a mockup.
20:10 < ricky> I didn't think so, but we can double check the initial email that the board sent to the websites team with the requirements
20:10 < mmcgrath> I assume if it's not there now it won't be at least by release day?
20:10 -!- thomasj [n=thomasj at fedora/thomasj] has joined #fedora-meeting
20:10 < ricky> It won't be there on release day
20:11 < mmcgrath> k
20:11 < mmcgrath> well if it's decided we need it we can always add it later.
20:11 < mmcgrath> ricky: thanks
20:11 < mmcgrath> Ok
20:11 < mmcgrath> .ticket 1787
20:11 < zodbot> mmcgrath: #1787 (Change Freeze) - Fedora Infrastructure - Trac - https://fedorahosted.org/fedora-infrastructure/ticket/1787
20:11 < mmcgrath> We've had a pretty good freeze so far, except for ibiblio1
20:11 < mmcgrath> but it's all taken care of now.
20:11 < mmcgrath> .ticket 1789
20:12 < zodbot> mmcgrath: #1789 (Verify Mirror Space) - Fedora Infrastructure - Trac - https://fedorahosted.org/fedora-infrastructure/ticket/1789
20:12 < mmcgrath> smooge: you comfortable with this?
20:12 < smooge> one sec
20:13 < smooge> we will go over until Oxf13 removes alpha/beta
20:13 < mmcgrath> k, and we've also got 9 to remove for extra buffer.
20:13 < Oxf13> I hope to be removing those today
20:13 < mmcgrath> 9 is competely my fault, I forgot to get /pub/archives/ setup during the freeze.
20:13 < smooge> ok as soon as 9 goes we are beut
20:13 < mmcgrath> but I'd think with all that taken care of, we'll be in our normal window for a normal release.
20:13 < mmcgrath> smooge: excellent, go ahead and note that in the ticket and close it.
20:14 < mmcgrath> .ticket 1792
20:14 < zodbot> mmcgrath: #1792 (RHIS Communication) - Fedora Infrastructure - Trac - https://fedorahosted.org/fedora-infrastructure/ticket/1792
20:14 < smooge> I thought it was there til this release
20:14 < mmcgrath> They know, I'll send another ticket.
20:14 < mmcgrath> smooge: naw, that one's kind of a one time thing, verify we have enough space for the release.  If we do.  Go ahead and close it.
20:14 < mmcgrath> .ticket 1790
20:14 < zodbot> mmcgrath: #1790 (Verify RELENG permissions) - Fedora Infrastructure - Trac - https://fedorahosted.org/fedora-infrastructure/ticket/1790
20:15 < mmcgrath> smooge: this one though (also to you) has kind of two parts.
20:15 < mmcgrath> which should stay open until after the launch.
20:15 < mmcgrath> Oxf13: you said you'll be staging pretty soon here?
20:15  * mdomsch has to run to a presentation
20:15 < mdomsch> 2 things:
20:15 < mmcgrath> mdomsch: take it
20:15 < mdomsch> 1) how early can we bitflip?  hours early please. :-)
20:15 < mdomsch> give mirrors time to catch the bitflip themselves
20:16 < smooge> working on that one til it gets over into staging and then check
20:16 < mmcgrath> Oxf13: thoughts ^^ ?
20:16 < mdomsch> 2) no 'at' installed on bapp1, so someone (me) has to manually run manage-repo-redirects -r -v 12
20:16 < Oxf13> mdomsch: we'll do it just like we did Beta, I can bit flip it 4~ hours in advance
20:16 < mmcgrath> mdomsch: do you want at?
20:16 < mdomsch> to drop the last of the f12 redirects
20:16 < mmcgrath> seems reasonable for it to be on bapp1
20:16 < Oxf13> mdomsch: oh.
20:16 < Oxf13> mdomsch: those redirects will be dropped soon
20:16 < Oxf13> I'm going to make the Everything/ tree live early
20:16  * dgilmore is ok with at being on bapp1 
20:17 < Oxf13> so that we can drop the redirects, and move rawhide on to F13
20:17 < mdomsch> Oxf13, ok, just say when
20:17 < mdomsch> that's all I have
20:17 < mmcgrath> mdomsch: thanks, enjoy your presentation!
20:17 < mmcgrath> ok
20:17 < mmcgrath> .ticket 1793
20:17 < zodbot> mmcgrath: #1793 (Modify Template:FedoraVersion) - Fedora Infrastructure - Trac - https://fedorahosted.org/fedora-infrastructure/ticket/1793
20:17 < mmcgrath> stickster_afk still has this one
20:18 < mmcgrath> .ticket 1794
20:18 < zodbot> mmcgrath: #1794 (Lessons Learned) - Fedora Infrastructure - Trac - https://fedorahosted.org/fedora-infrastructure/ticket/1794
20:18 < mmcgrath> not until after the release
20:18 < mmcgrath> .ticket 1795
20:18 < zodbot> mmcgrath: #1795 (Enable caching wiki) - Fedora Infrastructure - Trac - https://fedorahosted.org/fedora-infrastructure/ticket/1795
20:18 < mmcgrath> I'll get this setup on monday.
20:18 < mmcgrath> .ticket 1796
20:18 < zodbot> mmcgrath: #1796 (Disable wiki caching) - Fedora Infrastructure - Trac - https://fedorahosted.org/fedora-infrastructure/ticket/1796
20:18 < mmcgrath> I'll do that on Wed :)
20:18 < mmcgrath> .ticket 1797
20:18 < zodbot> mmcgrath: #1797 (Add new release to stats gathering script on log1) - Fedora Infrastructure - Trac - https://fedorahosted.org/fedora-infrastructure/ticket/1797
20:18 < mmcgrath> smooge: this one's assigned to you, I suspect you can do this even before F12 launches.  I'm not sure if that'd throw an error or divide by zero or something though.
20:19  * mmcgrath is looking at this page btw - 
20:19 < mmcgrath> https://fedorahosted.org/fedora-infrastructure/report/9
20:19 < mmcgrath> it dawned on me I hadn't sent that.
20:20 < mmcgrath> Ok, anyone have any questions or concerns related to the release?
20:20 < dgilmore> none
20:20 < mmcgrath> I'm happy we got ibiblio1 fixed before the rush
20:20 < mmcgrath> reminder to everyone, if you can seed the torrent, do it :)
20:20 < mmcgrath> the last few releases (including pre-releases) it's mostly been me, dgilmore and nirik
20:21  * nirik will seed. 
20:21 < mmcgrath> and the downloads via torrent for a primary release are pretty popular.  The more solid seeders we have the better experience it is for the downloader.
20:21 < dgilmore> as will I
20:21 < mmcgrath> alrighty
20:21 < mmcgrath> #topic some new sponsors
20:21 -!- zodbot changed the topic of #fedora-meeting to: some new sponsors (Meeting topic: Infrastructure)
20:22 < mmcgrath> One thing I wanted to mention is we might be getting sponsorship soon by someone providing servers in the UK and canada.
20:22 < smooge> I will have that ticket closed by tomorrow
20:22 < dgilmore> mmcgrath: that would be cool
20:22 < mmcgrath> the details are still all up in the air but I like to be transparent about stuff like that so keep an eye out!
20:22 < smooge> ooooh
20:22 < smooge> I want to do site installs
20:22 < dgilmore> mmcgrath: as would some boxes in apac
20:22 < mmcgrath> hehehe
20:23 < mmcgrath> indeed.
20:23 < mmcgrath> so that's all I've got on that.
20:23 < mmcgrath> oh
20:23 < mmcgrath> #topic ibiblio1
20:23 -!- zodbot changed the topic of #fedora-meeting to: ibiblio1 (Meeting topic: Infrastructure)
20:23 < skvidal> what fun
20:23 < skvidal> anything else wrong, now? or is it fine?
20:23 < mmcgrath> I guess if you weren't paying attention you might have missed this and just known a bunch of downtime was scheduled.
20:23 < mmcgrath> skvidal: thanks to you and don, all is well
20:23 < dgilmore> skvidal: you rock
20:23 < mmcgrath> basically we had some memory issues.  reported it to IBM, they had us do the swap game.
20:24  * skvidal is the master of 'xm con; login; sudo halt -p'
20:24 < mmcgrath> then had us do the swap game again
20:24 < skvidal> dgilmore: hardly - I was playing monkey with a keyboard
20:24 < mmcgrath> then shipped the memory out and we got it replaced.
20:24 < mmcgrath> but now all is well
20:24 < mmcgrath> knock
20:24 < mmcgrath> on
20:24 < mmcgrath> wood
20:24 < skvidal> dgilmore: don and mmcgrath did the real work - don for actually doing the memory swapping, mmcgrath for dealing with ibm
20:24 < skvidal> mmcgrath: no kidding knock on wood
20:24 < dgilmore> skvidal: but you play it really really well
20:24 < skvidal> mmcgrath: do you have ibm on speed dial?
20:25 < dgilmore> im pretty sure he does
20:25 < mmcgrath> skvidal: I do for my soft phone, It's only got 2 speed dial numbers :)
20:25 < skvidal> :)
20:25 < mmcgrath> interestingly I have to call their toll line as the toll free line doesn't work with RH's voip setup.
20:25 < mmcgrath> as strange as that is.
20:26 < mmcgrath> it doesn't actually ring, it goes straight to 'press blah for blah' and for some reason our setup doesn't realize that so I just keep hearing ringing :)
20:26 < mmcgrath> anyway
20:26 < mmcgrath> that's it on that
20:26 < mmcgrath> #topic Open Floor
20:26 -!- zodbot changed the topic of #fedora-meeting to: Open Floor (Meeting topic: Infrastructure)
20:26 < mmcgrath> anyone have anything else they'd like to discuss?
20:26 < smooge> I am working on getting various hosting today done.
20:26 < skvidal> what are we doing about the weather? It's way too cold and rainy here
20:27 < smooge> I need some help on altering groups I messed up with.
20:27 < skvidal> - oh - you meant anything relevant to discuss
20:27 < smooge> we are going to have snow today
20:27 < mmcgrath> skvidal: well, I've been letting my car run to at least try to warm things up :)
20:27 < skvidal> mmcgrath: nice
20:27 < mmcgrath> smooge: sure, I can help with the group alteration
20:27 < smooge> I will try to SOP it up if needed
20:27 < smooge> s/try//
20:28 < mmcgrath> oh hey, and looks like openSuSE 11.2 is out for those looking to try it :)
20:28 < mmcgrath> Ok, if no one has anything else we'll close early today in 30s.
20:29 < mmcgrath> #endmeeting
20:29 -!- zodbot changed the topic of #fedora-meeting to: Channel is used by various Fedora groups and committees for their regular meetings | Note that meetings often get logged | For questions about using Fedora please ask in #fedora | See http://fedoraproject.org/wiki/Communicate/FedoraMeetingChannel for meeting schedule
20:29 < zodbot> Meeting ended Thu Nov 12 20:29:41 2009 UTC.  Information about MeetBot at http://wiki.debian.org/MeetBot .
20:29 < zodbot> Minutes:        http://meetbot.fedoraproject.org/fedora-meeting/2009-11-12/fedora-meeting.2009-11-12-20.02.html
20:29 < zodbot> Minutes (text): http://meetbot.fedoraproject.org/fedora-meeting/2009-11-12/fedora-meeting.2009-11-12-20.02.txt
20:29 < mmcgrath> booya!
20:29 < zodbot> Log:            http://meetbot.fedoraproject.org/fedora-meeting/2009-11-12/fedora-meeting.2009-11-12-20.02.log.html
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 197 bytes
Desc: not available
URL: <http://listman.redhat.com/archives/fedora-infrastructure-list/attachments/20091112/4ea76512/attachment.sig>

From Matt_Domsch at dell.com  Fri Nov 13 05:47:46 2009
From: Matt_Domsch at dell.com (Matt Domsch)
Date: Thu, 12 Nov 2009 23:47:46 -0600
Subject: rsyncd: s/ignore unreadable/ignore nonreadable/
Message-ID: <20091113054746.GA28409@auslistsprd01.us.dell.com>

the syntax is actually 'ignore nonreadable'.  man rsyncd.conf.
+1s?


diff --git a/modules/rsync/files/rsyncd.conf.secondary1 b/modules/rsync/files/rsyncd.conf.secondary1
index 0fbee6c..bc3c301 100644
--- a/modules/rsync/files/rsyncd.conf.secondary1
+++ b/modules/rsync/files/rsyncd.conf.secondary1
@@ -4,7 +4,7 @@ dont compress = *.gz *.tgz *.zip *.z *.rpm *.deb *.bz2 *.iso *.ogg *.ogv
 use chroot = false
 transfer logging = false
 timeout = 600
-ignore unreadable = yes
+ignore nonreadable = yes
 timeout = 3600
 read only = yes 
 exclude = .snapshot/ .~tmp~/ /.private/ /.private/** **/.nfs*
diff --git a/modules/rsync/files/rsyncd.conf.sync1 b/modules/rsync/files/rsyncd.conf.sync1
index d3a12eb..54aad56 100644
--- a/modules/rsync/files/rsyncd.conf.sync1
+++ b/modules/rsync/files/rsyncd.conf.sync1
@@ -4,7 +4,7 @@ dont compress = *.gz *.tgz *.zip *.z *.rpm *.deb *.bz2 *.iso *.ogg *.ogv *.bz2 *
 use chroot = false
 transfer logging = false
 timeout = 600
-ignore unreadable = yes
+ignore nonreadable = yes
 timeout = 3600
 read only = yes 
 exclude = .snapshot/ .~tmp~/ /.private/ /.private/** **/.nfs*
diff --git a/modules/rsync/files/rsyncd.conf.sync2 b/modules/rsync/files/rsyncd.conf.sync2
index d3a12eb..54aad56 100644
--- a/modules/rsync/files/rsyncd.conf.sync2
+++ b/modules/rsync/files/rsyncd.conf.sync2
@@ -4,7 +4,7 @@ dont compress = *.gz *.tgz *.zip *.z *.rpm *.deb *.bz2 *.iso *.ogg *.ogv *.bz2 *
 use chroot = false
 transfer logging = false
 timeout = 600
-ignore unreadable = yes
+ignore nonreadable = yes
 timeout = 3600
 read only = yes 
 exclude = .snapshot/ .~tmp~/ /.private/ /.private/** **/.nfs*

-- 
Matt Domsch
Technology Strategist, Dell Office of the CTO
linux.dell.com & www.dell.com/linux



From ricky at fedoraproject.org  Fri Nov 13 05:52:08 2009
From: ricky at fedoraproject.org (Ricky Zhou)
Date: Fri, 13 Nov 2009 00:52:08 -0500
Subject: rsyncd: s/ignore unreadable/ignore nonreadable/
In-Reply-To: <20091113054746.GA28409@auslistsprd01.us.dell.com>
References: <20091113054746.GA28409@auslistsprd01.us.dell.com>
Message-ID: <20091113055208.GE14824@alpha.rzhou.org>

On 2009-11-12 11:47:46 PM, Matt Domsch wrote:
> the syntax is actually 'ignore nonreadable'.  man rsyncd.conf.
> +1s?
> 
> 
> diff --git a/modules/rsync/files/rsyncd.conf.secondary1 b/modules/rsync/files/rsyncd.conf.secondary1
> index 0fbee6c..bc3c301 100644
> --- a/modules/rsync/files/rsyncd.conf.secondary1
> +++ b/modules/rsync/files/rsyncd.conf.secondary1
> @@ -4,7 +4,7 @@ dont compress = *.gz *.tgz *.zip *.z *.rpm *.deb *.bz2 *.iso *.ogg *.ogv
>  use chroot = false
>  transfer logging = false
>  timeout = 600
> -ignore unreadable = yes
> +ignore nonreadable = yes
>  timeout = 3600
>  read only = yes 
>  exclude = .snapshot/ .~tmp~/ /.private/ /.private/** **/.nfs*
> diff --git a/modules/rsync/files/rsyncd.conf.sync1 b/modules/rsync/files/rsyncd.conf.sync1
> index d3a12eb..54aad56 100644
> --- a/modules/rsync/files/rsyncd.conf.sync1
> +++ b/modules/rsync/files/rsyncd.conf.sync1
> @@ -4,7 +4,7 @@ dont compress = *.gz *.tgz *.zip *.z *.rpm *.deb *.bz2 *.iso *.ogg *.ogv *.bz2 *
>  use chroot = false
>  transfer logging = false
>  timeout = 600
> -ignore unreadable = yes
> +ignore nonreadable = yes
>  timeout = 3600
>  read only = yes 
>  exclude = .snapshot/ .~tmp~/ /.private/ /.private/** **/.nfs*
> diff --git a/modules/rsync/files/rsyncd.conf.sync2 b/modules/rsync/files/rsyncd.conf.sync2
> index d3a12eb..54aad56 100644
> --- a/modules/rsync/files/rsyncd.conf.sync2
> +++ b/modules/rsync/files/rsyncd.conf.sync2
> @@ -4,7 +4,7 @@ dont compress = *.gz *.tgz *.zip *.z *.rpm *.deb *.bz2 *.iso *.ogg *.ogv *.bz2 *
>  use chroot = false
>  transfer logging = false
>  timeout = 600
> -ignore unreadable = yes
> +ignore nonreadable = yes
>  timeout = 3600
>  read only = yes 
>  exclude = .snapshot/ .~tmp~/ /.private/ /.private/** **/.nfs*
> 
> -- 
+1

Thanks,
Ricky
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 197 bytes
Desc: not available
URL: <http://listman.redhat.com/archives/fedora-infrastructure-list/attachments/20091113/323b747f/attachment.sig>

From taljurf at fedoraproject.org  Fri Nov 13 15:16:54 2009
From: taljurf at fedoraproject.org (Tareq Al Jurf)
Date: Fri, 13 Nov 2009 18:16:54 +0300
Subject: We can make fedora easier.
Message-ID: <12d8a2fa0911130716s580dfc4fo897869ee148efa33@mail.gmail.com>

Hi all
I think that we should change somethings in fedora that would make it
easier.
Things that whenever a new person starts fedora for the first time would
change them.
For example whenever i start fedora for the first time i change the behavior
of the folders and make them open in browser
can we make that default? Because i think most people do that.

Regards

-- 
Tareq Al Jurf
Fedora Ambassador
Riyadh, Saudi Arabia
taljurf at fedoraproject.org
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://listman.redhat.com/archives/fedora-infrastructure-list/attachments/20091113/eaed34f6/attachment.htm>

From tristan.santore at internexusconnect.net  Fri Nov 13 15:18:58 2009
From: tristan.santore at internexusconnect.net (Tristan Santore)
Date: Fri, 13 Nov 2009 15:18:58 +0000
Subject: We can make fedora easier.
In-Reply-To: <12d8a2fa0911130716s580dfc4fo897869ee148efa33@mail.gmail.com>
References: <12d8a2fa0911130716s580dfc4fo897869ee148efa33@mail.gmail.com>
Message-ID: <4AFD78E2.5030800@internexusconnect.net>

On 13/11/09 15:16, Tareq Al Jurf wrote:
> Hi all
> I think that we should change somethings in fedora that would make it 
> easier.
> Things that whenever a new person starts fedora for the first time 
> would change them.
> For example whenever i start fedora for the first time i change the 
> behavior of the folders and make them open in browser
> can we make that default? Because i think most people do that.
>
> Regards
>
> -- 
> Tareq Al Jurf
> Fedora Ambassador
> Riyadh, Saudi Arabia
> taljurf at fedoraproject.org <mailto:taljurf at fedoraproject.org>
>
>
> _______________________________________________
> Fedora-infrastructure-list mailing list
> Fedora-infrastructure-list at redhat.com
> https://www.redhat.com/mailman/listinfo/fedora-infrastructure-list
>    
Tareq,
this is the infrastructure list. So your suggestion is off-topic here.
However, you might want to make that suggestion to the RelEng people.

Regards,

Tristan

-- 
Tristan Santore BSc MBCS
TS4523-RIPE
Network and Infrastructure Operations
InterNexusConnect
Mobile +44-78-55069812
Tristan.Santore at internexusconnect.net

Thawte Notary

For Fedora related issues, please email me at:
TSantore at fedoraproject.org

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://listman.redhat.com/archives/fedora-infrastructure-list/attachments/20091113/d361f07b/attachment.htm>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/pkcs7-signature
Size: 3388 bytes
Desc: S/MIME Cryptographic Signature
URL: <http://listman.redhat.com/archives/fedora-infrastructure-list/attachments/20091113/d361f07b/attachment.p7s>

From thinklinux.ssh at gmail.com  Fri Nov 13 15:25:50 2009
From: thinklinux.ssh at gmail.com (susmit shannigrahi)
Date: Fri, 13 Nov 2009 20:55:50 +0530
Subject: We can make fedora easier.
In-Reply-To: <4AFD78E2.5030800@internexusconnect.net>
References: <12d8a2fa0911130716s580dfc4fo897869ee148efa33@mail.gmail.com> 
	<4AFD78E2.5030800@internexusconnect.net>
Message-ID: <ffadd1240911130725w49f21fdbu4f2ab6f9402574a7@mail.gmail.com>

> Hi all
> I think that we should change somethings in fedora that would make it
> easier.
> Things that whenever a new person starts fedora for the first time would
> change them.
> For example whenever i start fedora for the first time i change the behavior
> of the folders and make them open in browser
> can we make that default? Because i think most people do that.

This post goes to fedora-devel list.
https://www.redhat.com/mailman/listinfo/fedora-devel-list



-- 
Regards,
Susmit.

=============================================
http://www.fedoraproject.org/wiki/user:susmit
=============================================



From nicu_fedora at nicubunu.ro  Fri Nov 13 15:38:47 2009
From: nicu_fedora at nicubunu.ro (Nicu Buculei)
Date: Fri, 13 Nov 2009 17:38:47 +0200
Subject: We can make fedora easier.
In-Reply-To: <ffadd1240911130725w49f21fdbu4f2ab6f9402574a7@mail.gmail.com>
References: <12d8a2fa0911130716s580dfc4fo897869ee148efa33@mail.gmail.com>
	<4AFD78E2.5030800@internexusconnect.net>
	<ffadd1240911130725w49f21fdbu4f2ab6f9402574a7@mail.gmail.com>
Message-ID: <4AFD7D87.6070804@nicubunu.ro>

On 11/13/2009 05:25 PM, susmit shannigrahi wrote:
>> Hi all
>> I think that we should change somethings in fedora that would make it
>> easier.
>> Things that whenever a new person starts fedora for the first time would
>> change them.
>> For example whenever i start fedora for the first time i change the behavior
>> of the folders and make them open in browser
>> can we make that default? Because i think most people do that.
>
> This post goes to fedora-devel list.
> https://www.redhat.com/mailman/listinfo/fedora-devel-list

No, that is a setting affecting the spins, in this case is the 
competency of the Desktop list (the desktop spin is the default). 
However, the people in charge of that noted multiple times they have no 
intention of diverging from upstream here, and id the setting should be 
the other way then the change must be applied upstream.

-- 
nicu :: http://nicubunu.ro :: http://nicubunu.blogspot.com/



From a.badger at gmail.com  Fri Nov 13 17:20:11 2009
From: a.badger at gmail.com (Toshio Kuratomi)
Date: Fri, 13 Nov 2009 09:20:11 -0800
Subject: rsyncd: s/ignore unreadable/ignore nonreadable/
In-Reply-To: <20091113054746.GA28409@auslistsprd01.us.dell.com>
References: <20091113054746.GA28409@auslistsprd01.us.dell.com>
Message-ID: <20091113172011.GO25960@clingman.lan>

On Thu, Nov 12, 2009 at 11:47:46PM -0600, Matt Domsch wrote:
> the syntax is actually 'ignore nonreadable'.  man rsyncd.conf.
> +1s?
> 
> 
> diff --git a/modules/rsync/files/rsyncd.conf.secondary1 b/modules/rsync/files/rsyncd.conf.secondary1
> index 0fbee6c..bc3c301 100644
> --- a/modules/rsync/files/rsyncd.conf.secondary1
> +++ b/modules/rsync/files/rsyncd.conf.secondary1
> @@ -4,7 +4,7 @@ dont compress = *.gz *.tgz *.zip *.z *.rpm *.deb *.bz2 *.iso *.ogg *.ogv
>  use chroot = false
>  transfer logging = false
>  timeout = 600
> -ignore unreadable = yes
> +ignore nonreadable = yes
>  timeout = 3600
>  read only = yes 
>  exclude = .snapshot/ .~tmp~/ /.private/ /.private/** **/.nfs*
> diff --git a/modules/rsync/files/rsyncd.conf.sync1 b/modules/rsync/files/rsyncd.conf.sync1
> index d3a12eb..54aad56 100644
> --- a/modules/rsync/files/rsyncd.conf.sync1
> +++ b/modules/rsync/files/rsyncd.conf.sync1
> @@ -4,7 +4,7 @@ dont compress = *.gz *.tgz *.zip *.z *.rpm *.deb *.bz2 *.iso *.ogg *.ogv *.bz2 *
>  use chroot = false
>  transfer logging = false
>  timeout = 600
> -ignore unreadable = yes
> +ignore nonreadable = yes
>  timeout = 3600
>  read only = yes 
>  exclude = .snapshot/ .~tmp~/ /.private/ /.private/** **/.nfs*
> diff --git a/modules/rsync/files/rsyncd.conf.sync2 b/modules/rsync/files/rsyncd.conf.sync2
> index d3a12eb..54aad56 100644
> --- a/modules/rsync/files/rsyncd.conf.sync2
> +++ b/modules/rsync/files/rsyncd.conf.sync2
> @@ -4,7 +4,7 @@ dont compress = *.gz *.tgz *.zip *.z *.rpm *.deb *.bz2 *.iso *.ogg *.ogv *.bz2 *
>  use chroot = false
>  transfer logging = false
>  timeout = 600
> -ignore unreadable = yes
> +ignore nonreadable = yes
>  timeout = 3600
>  read only = yes 
>  exclude = .snapshot/ .~tmp~/ /.private/ /.private/** **/.nfs*
> 
+1

-Toshio
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 197 bytes
Desc: not available
URL: <http://listman.redhat.com/archives/fedora-infrastructure-list/attachments/20091113/9dd703bf/attachment.sig>

From smooge at gmail.com  Sat Nov 14 00:53:30 2009
From: smooge at gmail.com (Stephen John Smoogen)
Date: Fri, 13 Nov 2009 17:53:30 -0700
Subject: scripts that need to be updated to f11? f12
Message-ID: <80d7e4090911131653n25bf0274mc3139b329dfd79b7@mail.gmail.com>

puppet/modules/scripts/files/maps/maps.sh was not updated to f11. Is
it still being used?

I have attached a proposed patch to cover those changes. Please let me
know if I can commit them.


Thankyou
-- 
Stephen J Smoogen.

Ah, but a man's reach should exceed his grasp. Or what's a heaven for?
-- Robert Browning
-------------- next part --------------
A non-text attachment was scrubbed...
Name: 0001-Added-f11-and-f12-to-scripts.patch
Type: text/x-patch
Size: 2320 bytes
Desc: not available
URL: <http://listman.redhat.com/archives/fedora-infrastructure-list/attachments/20091113/3b58270f/attachment.bin>

From mmcgrath at redhat.com  Sat Nov 14 02:26:48 2009
From: mmcgrath at redhat.com (Mike McGrath)
Date: Fri, 13 Nov 2009 20:26:48 -0600 (CST)
Subject: scripts that need to be updated to f11? f12
In-Reply-To: <80d7e4090911131653n25bf0274mc3139b329dfd79b7@mail.gmail.com>
References: <80d7e4090911131653n25bf0274mc3139b329dfd79b7@mail.gmail.com>
Message-ID: <alpine.LFD.2.00.0911132025560.6577@laptop.mmcgrath.net>

On Fri, 13 Nov 2009, Stephen John Smoogen wrote:

> puppet/modules/scripts/files/maps/maps.sh was not updated to f11. Is
> it still being used?
>
> I have attached a proposed patch to cover those changes. Please let me
> know if I can commit them.
>

is this the thing that generates the ambassador map stuff or these things?

http://fedoraproject.org/maps/

If it's the latter, I'm down for getting those fixed.  They're fairly
neglected.

	-Mike



From skvidal at fedoraproject.org  Sat Nov 14 03:05:38 2009
From: skvidal at fedoraproject.org (Seth Vidal)
Date: Fri, 13 Nov 2009 22:05:38 -0500 (EST)
Subject: scripts that need to be updated to f11? f12
In-Reply-To: <alpine.LFD.2.00.0911132025560.6577@laptop.mmcgrath.net>
References: <80d7e4090911131653n25bf0274mc3139b329dfd79b7@mail.gmail.com>
	<alpine.LFD.2.00.0911132025560.6577@laptop.mmcgrath.net>
Message-ID: <alpine.LFD.2.00.0911132205260.2603@localhost.localdomain>



On Fri, 13 Nov 2009, Mike McGrath wrote:

> On Fri, 13 Nov 2009, Stephen John Smoogen wrote:
>
>> puppet/modules/scripts/files/maps/maps.sh was not updated to f11. Is
>> it still being used?
>>
>> I have attached a proposed patch to cover those changes. Please let me
>> know if I can commit them.
>>
>
> is this the thing that generates the ambassador map stuff or these things?
>
> http://fedoraproject.org/maps/
>
> If it's the latter, I'm down for getting those fixed.  They're fairly
> neglected.
>

Wasn't that intentionally disabled?

-sv



From mmcgrath at redhat.com  Sat Nov 14 03:10:19 2009
From: mmcgrath at redhat.com (Mike McGrath)
Date: Fri, 13 Nov 2009 21:10:19 -0600 (CST)
Subject: scripts that need to be updated to f11? f12
In-Reply-To: <alpine.LFD.2.00.0911132205260.2603@localhost.localdomain>
References: <80d7e4090911131653n25bf0274mc3139b329dfd79b7@mail.gmail.com>
	<alpine.LFD.2.00.0911132025560.6577@laptop.mmcgrath.net>
	<alpine.LFD.2.00.0911132205260.2603@localhost.localdomain>
Message-ID: <alpine.LFD.2.00.0911132109561.6577@laptop.mmcgrath.net>

On Fri, 13 Nov 2009, Seth Vidal wrote:

>
>
> On Fri, 13 Nov 2009, Mike McGrath wrote:
>
> > On Fri, 13 Nov 2009, Stephen John Smoogen wrote:
> >
> > > puppet/modules/scripts/files/maps/maps.sh was not updated to f11. Is
> > > it still being used?
> > >
> > > I have attached a proposed patch to cover those changes. Please let me
> > > know if I can commit them.
> > >
> >
> > is this the thing that generates the ambassador map stuff or these things?
> >
> > http://fedoraproject.org/maps/
> >
> > If it's the latter, I'm down for getting those fixed.  They're fairly
> > neglected.
> >
>
> Wasn't that intentionally disabled?
>

It was but I think only because it didn't work after some upgrades and no
one was willing to fix it.

	-Mike



From smooge at gmail.com  Sat Nov 14 03:13:06 2009
From: smooge at gmail.com (Stephen John Smoogen)
Date: Fri, 13 Nov 2009 20:13:06 -0700
Subject: scripts that need to be updated to f11? f12
In-Reply-To: <alpine.LFD.2.00.0911132205260.2603@localhost.localdomain>
References: <80d7e4090911131653n25bf0274mc3139b329dfd79b7@mail.gmail.com>
	<alpine.LFD.2.00.0911132025560.6577@laptop.mmcgrath.net>
	<alpine.LFD.2.00.0911132205260.2603@localhost.localdomain>
Message-ID: <80d7e4090911131913u6357be5eh8db223069a3a9f6f@mail.gmail.com>

On Fri, Nov 13, 2009 at 8:05 PM, Seth Vidal <skvidal at fedoraproject.org> wrote:
>
>
> On Fri, 13 Nov 2009, Mike McGrath wrote:
>
>> On Fri, 13 Nov 2009, Stephen John Smoogen wrote:
>>
>>> puppet/modules/scripts/files/maps/maps.sh was not updated to f11. Is
>>> it still being used?
>>>
>>> I have attached a proposed patch to cover those changes. Please let me
>>> know if I can commit them.
>>>
>>
>> is this the thing that generates the ambassador map stuff or these things?
>>
>> http://fedoraproject.org/maps/
>>
>> If it's the latter, I'm down for getting those fixed. ?They're fairly
>> neglected.
>>
>
> Wasn't that intentionally disabled?

Well the scripts are still in puppet and are pushed out to log1 and
seem to be run on log1 so I am not sure where its disabled. I am going
to see if I can figure out why its b0rked and fix unless there is a
reason to remove it completely.

Are there any other places that f12 needs to be added in scripts?

> -sv
>
> _______________________________________________
> Fedora-infrastructure-list mailing list
> Fedora-infrastructure-list at redhat.com
> https://www.redhat.com/mailman/listinfo/fedora-infrastructure-list
>



-- 
Stephen J Smoogen.

Ah, but a man's reach should exceed his grasp. Or what's a heaven for?
-- Robert Browning



From skvidal at fedoraproject.org  Sat Nov 14 03:15:03 2009
From: skvidal at fedoraproject.org (Seth Vidal)
Date: Fri, 13 Nov 2009 22:15:03 -0500 (EST)
Subject: scripts that need to be updated to f11? f12
In-Reply-To: <alpine.LFD.2.00.0911132109561.6577@laptop.mmcgrath.net>
References: <80d7e4090911131653n25bf0274mc3139b329dfd79b7@mail.gmail.com>
	<alpine.LFD.2.00.0911132025560.6577@laptop.mmcgrath.net>
	<alpine.LFD.2.00.0911132205260.2603@localhost.localdomain>
	<alpine.LFD.2.00.0911132109561.6577@laptop.mmcgrath.net>
Message-ID: <alpine.LFD.2.00.0911132214250.2603@localhost.localdomain>



On Fri, 13 Nov 2009, Mike McGrath wrote:

> On Fri, 13 Nov 2009, Seth Vidal wrote:
>
>>
>>>
>>
>> Wasn't that intentionally disabled?
>>
>
> It was but I think only because it didn't work after some upgrades and no
> one was willing to fix it.
>

I thought it was for political reasons having to do with country-of-origin 
of some people...

Ahem.

ask paul.

-sv



From Matt_Domsch at dell.com  Sat Nov 14 13:37:39 2009
From: Matt_Domsch at dell.com (Matt Domsch)
Date: Sat, 14 Nov 2009 07:37:39 -0600
Subject: scripts that need to be updated to f11? f12
In-Reply-To: <alpine.LFD.2.00.0911132214250.2603@localhost.localdomain>
References: <80d7e4090911131653n25bf0274mc3139b329dfd79b7@mail.gmail.com>
	<alpine.LFD.2.00.0911132025560.6577@laptop.mmcgrath.net>
	<alpine.LFD.2.00.0911132205260.2603@localhost.localdomain>
	<alpine.LFD.2.00.0911132109561.6577@laptop.mmcgrath.net>
	<alpine.LFD.2.00.0911132214250.2603@localhost.localdomain>
Message-ID: <20091114133739.GA21669@auslistsprd01.us.dell.com>

>On Fri, Nov 13, 2009 at 10:15:03PM -0500, Seth Vidal wrote:
> On Fri, 13 Nov 2009, Mike McGrath wrote:
> >On Fri, 13 Nov 2009, Seth Vidal wrote:
> >>Wasn't that intentionally disabled?
> >>
> >
> >It was but I think only because it didn't work after some upgrades and no
> >one was willing to fix it.
> >
> 
> I thought it was for political reasons having to do with country-of-origin 
> of some people...

Location is one field that will be hidden if a user selects to make
their account profile non-public, or if they don't include a location.
When we updated the privacy policy, we did that intentionally so we
could produce maps, but let people opt in/out of being represented on
the maps.

Someone recently (Susmit?) started generating world maps for all
groups.  I thought that was pretty cool.

MirrorManager's map of mirrors broke because of a major matplotlib
update in EPEL that changed the APIs, and I haven't gone back to
figure out how to fix it up.

-- 
Matt Domsch
Technology Strategist, Dell Office of the CTO
linux.dell.com & www.dell.com/linux



From thinklinux.ssh at gmail.com  Sat Nov 14 13:47:08 2009
From: thinklinux.ssh at gmail.com (susmit shannigrahi)
Date: Sat, 14 Nov 2009 19:17:08 +0530
Subject: scripts that need to be updated to f11? f12
In-Reply-To: <20091114133739.GA21669@auslistsprd01.us.dell.com>
References: <80d7e4090911131653n25bf0274mc3139b329dfd79b7@mail.gmail.com> 
	<alpine.LFD.2.00.0911132025560.6577@laptop.mmcgrath.net>
	<alpine.LFD.2.00.0911132205260.2603@localhost.localdomain> 
	<alpine.LFD.2.00.0911132109561.6577@laptop.mmcgrath.net>
	<alpine.LFD.2.00.0911132214250.2603@localhost.localdomain> 
	<20091114133739.GA21669@auslistsprd01.us.dell.com>
Message-ID: <ffadd1240911140547n5a8c24b1l7294008d645aa3a8@mail.gmail.com>

> Someone recently (Susmit?) started generating world maps for all
> groups. ?I thought that was pretty cool.

Yes, that was me.
http://publictest16.fedoraproject.org/membership-map/html/
Nice that you find it cool. :)



> MirrorManager's map of mirrors broke because of a major matplotlib
> update in EPEL that changed the APIs, and I haven't gone back to
> figure out how to fix it up.

Should you wish, I can migrate these static maps to zoom-able maps
like the above ones.

Thanks.


-- 
Regards,
Susmit.

=============================================
http://www.fedoraproject.org/wiki/user:susmit
=============================================



From stickster at gmail.com  Sun Nov 15 22:12:57 2009
From: stickster at gmail.com (Paul W. Frields)
Date: Sun, 15 Nov 2009 17:12:57 -0500
Subject: scripts that need to be updated to f11? f12
In-Reply-To: <80d7e4090911131913u6357be5eh8db223069a3a9f6f@mail.gmail.com>
References: <80d7e4090911131653n25bf0274mc3139b329dfd79b7@mail.gmail.com>
	<alpine.LFD.2.00.0911132025560.6577@laptop.mmcgrath.net>
	<alpine.LFD.2.00.0911132205260.2603@localhost.localdomain>
	<80d7e4090911131913u6357be5eh8db223069a3a9f6f@mail.gmail.com>
Message-ID: <20091115221257.GE7636@victoria.internal.frields.org>

On Fri, Nov 13, 2009 at 08:13:06PM -0700, Stephen John Smoogen wrote:
> On Fri, Nov 13, 2009 at 8:05 PM, Seth Vidal <skvidal at fedoraproject.org> wrote:
> >
> >
> > On Fri, 13 Nov 2009, Mike McGrath wrote:
> >
> >> On Fri, 13 Nov 2009, Stephen John Smoogen wrote:
> >>
> >>> puppet/modules/scripts/files/maps/maps.sh was not updated to f11. Is
> >>> it still being used?
> >>>
> >>> I have attached a proposed patch to cover those changes. Please let me
> >>> know if I can commit them.
> >>>
> >>
> >> is this the thing that generates the ambassador map stuff or these things?
> >>
> >> http://fedoraproject.org/maps/
> >>
> >> If it's the latter, I'm down for getting those fixed. ?They're fairly
> >> neglected.
> >>
> >
> > Wasn't that intentionally disabled?
> 
> Well the scripts are still in puppet and are pushed out to log1 and
> seem to be run on log1 so I am not sure where its disabled. I am going
> to see if I can figure out why its b0rked and fix unless there is a
> reason to remove it completely.
> 
> Are there any other places that f12 needs to be added in scripts?

On the log hosts:
  /etc/cron.daily/zfedoraUsage.sh

I rely on that pretty heavily for weekly statistics counts.

-- 
Paul W. Frields                                http://paul.frields.org/
  gpg fingerprint: 3DA6 A0AC 6D58 FEC4 0233  5906 ACDB C937 BD11 3717
  http://redhat.com/   -  -  -  -   http://pfrields.fedorapeople.org/
  irc.freenode.net: stickster @ #fedora-docs, #fedora-devel, #fredlug



From mmcgrath at redhat.com  Mon Nov 16 19:08:24 2009
From: mmcgrath at redhat.com (Mike McGrath)
Date: Mon, 16 Nov 2009 13:08:24 -0600
Subject: [PATCH] Enabling wiki cache for ticket 1795
Message-ID: <1258398504-26977-1-git-send-email-mmcgrath@redhat.com>

---
 modules/fedora-web/files/cache.conf |    2 +-
 1 files changed, 1 insertions(+), 1 deletions(-)

diff --git a/modules/fedora-web/files/cache.conf b/modules/fedora-web/files/cache.conf
index fdd4f9e..2f11448 100644
--- a/modules/fedora-web/files/cache.conf
+++ b/modules/fedora-web/files/cache.conf
@@ -1,7 +1,7 @@
 <IfModule mod_disk_cache.c>
   CacheRoot /srv/cache/mod_cache
   # Disabled for normal use, to be enabled on release days
-  #CacheEnable disk /wiki/
+  CacheEnable disk /wiki/
  
   CacheEnable disk /static/
   CacheEnable disk /wiki/Image:
-- 
1.6.2.5



From ricky at fedoraproject.org  Mon Nov 16 19:47:10 2009
From: ricky at fedoraproject.org (Ricky Zhou)
Date: Mon, 16 Nov 2009 14:47:10 -0500
Subject: [PATCH] Enabling wiki cache for ticket 1795
In-Reply-To: <1258398504-26977-1-git-send-email-mmcgrath@redhat.com>
References: <1258398504-26977-1-git-send-email-mmcgrath@redhat.com>
Message-ID: <20091116194710.GB15815@alpha.rzhou.org>

On 2009-11-16 01:08:24 PM, Mike McGrath wrote:
> ---
>  modules/fedora-web/files/cache.conf |    2 +-
>  1 files changed, 1 insertions(+), 1 deletions(-)
> 
> diff --git a/modules/fedora-web/files/cache.conf b/modules/fedora-web/files/cache.conf
> index fdd4f9e..2f11448 100644
> --- a/modules/fedora-web/files/cache.conf
> +++ b/modules/fedora-web/files/cache.conf
> @@ -1,7 +1,7 @@
>  <IfModule mod_disk_cache.c>
>    CacheRoot /srv/cache/mod_cache
>    # Disabled for normal use, to be enabled on release days
> -  #CacheEnable disk /wiki/
> +  CacheEnable disk /wiki/
>   
>    CacheEnable disk /static/
>    CacheEnable disk /wiki/Image:
> -- 
> 1.6.2.5
+1, but isn't this adding another layer on top of the caching that 
mediawiki already has?  I remember having some trouble remembering to 
flush all of those caches in the past.

Thanks,
Ricky
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 197 bytes
Desc: not available
URL: <http://listman.redhat.com/archives/fedora-infrastructure-list/attachments/20091116/59b45d35/attachment.sig>

From ricky at fedoraproject.org  Mon Nov 16 19:50:26 2009
From: ricky at fedoraproject.org (Ricky Zhou)
Date: Mon, 16 Nov 2009 14:50:26 -0500
Subject: Change Request: Force SSL for /keys and /verify
Message-ID: <20091116195026.GC15815@alpha.rzhou.org>

Thanks to Sijis for pointing this need out.

diff --git a/modules/fedora-web/files/redirects.conf b/modules/fedora-web/files/redirects.conf
index a88613f..a679ebd 100644
--- a/modules/fedora-web/files/redirects.conf
+++ b/modules/fedora-web/files/redirects.conf
@@ -9,3 +9,8 @@ RewriteRule ^/([^/]+/)?legal/trademarks/guidelines$ http://fedoraproject.org/wik

 # Comment this out when there is a prerelease available
 #RewriteRule  ^(/.*)?/get-prerelease$ $1/get-fedora [R=302]
+
+RewriteEngine On
+RewriteCond %{HTTPS} off
+RewriteRule ^/([^/]+/)?(keys|verify)$ https://%{HTTP_HOST}%{REQUEST_URI} [R=301,L]
+

Thanks,
Ricky
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 197 bytes
Desc: not available
URL: <http://listman.redhat.com/archives/fedora-infrastructure-list/attachments/20091116/6e1662ca/attachment.sig>

From smooge at gmail.com  Mon Nov 16 19:51:27 2009
From: smooge at gmail.com (Stephen John Smoogen)
Date: Mon, 16 Nov 2009 12:51:27 -0700
Subject: [PATCH] Enabling wiki cache for ticket 1795
In-Reply-To: <1258398504-26977-1-git-send-email-mmcgrath@redhat.com>
References: <1258398504-26977-1-git-send-email-mmcgrath@redhat.com>
Message-ID: <80d7e4090911161151k1ed65625nbd46e3b4e746bc0a@mail.gmail.com>

On Mon, Nov 16, 2009 at 12:08 PM, Mike McGrath <mmcgrath at redhat.com> wrote:
> ---
> ?modules/fedora-web/files/cache.conf | ? ?2 +-
> ?1 files changed, 1 insertions(+), 1 deletions(-)
>
> diff --git a/modules/fedora-web/files/cache.conf b/modules/fedora-web/files/cache.conf
> index fdd4f9e..2f11448 100644
> --- a/modules/fedora-web/files/cache.conf
> +++ b/modules/fedora-web/files/cache.conf
> @@ -1,7 +1,7 @@
> ?<IfModule mod_disk_cache.c>
> ? CacheRoot /srv/cache/mod_cache
> ? # Disabled for normal use, to be enabled on release days
> - ?#CacheEnable disk /wiki/
> + ?CacheEnable disk /wiki/
>
> ? CacheEnable disk /static/
> ? CacheEnable disk /wiki/Image:

A couple of questions before my answer....

*) What are the steps for clearing/cleaning the cache?
*) What does this cache gain us and how does it affect dynamic content.

Thanks.



-- 
Stephen J Smoogen.

Ah, but a man's reach should exceed his grasp. Or what's a heaven for?
-- Robert Browning



From mmcgrath at redhat.com  Mon Nov 16 20:27:39 2009
From: mmcgrath at redhat.com (Mike McGrath)
Date: Mon, 16 Nov 2009 14:27:39 -0600 (CST)
Subject: [PATCH] Enabling wiki cache for ticket 1795
In-Reply-To: <80d7e4090911161151k1ed65625nbd46e3b4e746bc0a@mail.gmail.com>
References: <1258398504-26977-1-git-send-email-mmcgrath@redhat.com>
	<80d7e4090911161151k1ed65625nbd46e3b4e746bc0a@mail.gmail.com>
Message-ID: <alpine.LFD.2.00.0911161425140.22826@laptop.mmcgrath.net>

On Mon, 16 Nov 2009, Stephen John Smoogen wrote:

> On Mon, Nov 16, 2009 at 12:08 PM, Mike McGrath <mmcgrath at redhat.com> wrote:
> > ---
> > ?modules/fedora-web/files/cache.conf | ? ?2 +-
> > ?1 files changed, 1 insertions(+), 1 deletions(-)
> >
> > diff --git a/modules/fedora-web/files/cache.conf b/modules/fedora-web/files/cache.conf
> > index fdd4f9e..2f11448 100644
> > --- a/modules/fedora-web/files/cache.conf
> > +++ b/modules/fedora-web/files/cache.conf
> > @@ -1,7 +1,7 @@
> > ?<IfModule mod_disk_cache.c>
> > ? CacheRoot /srv/cache/mod_cache
> > ? # Disabled for normal use, to be enabled on release days
> > - ?#CacheEnable disk /wiki/
> > + ?CacheEnable disk /wiki/
> >
> > ? CacheEnable disk /static/
> > ? CacheEnable disk /wiki/Image:
>
> A couple of questions before my answer....
>
> *) What are the steps for clearing/cleaning the cache?

from proxyX; rm -rf /srv/cache/mod_cache/*

> *) What does this cache gain us and how does it affect dynamic content.
>

We can serve far more people during this time.  As far as dynamic content,
it depends on what you mean by that.  On the wiki we don't really have
dynamic content any more then the non-wiki site does.  Someone has to go
in and make a change.  This will delay that change which is why we don't
use it under normal conditions, only on release days.

	-Mike

> Thanks.
>
>
>
> --
> Stephen J Smoogen.
>
> Ah, but a man's reach should exceed his grasp. Or what's a heaven for?
> -- Robert Browning
>
> _______________________________________________
> Fedora-infrastructure-list mailing list
> Fedora-infrastructure-list at redhat.com
> https://www.redhat.com/mailman/listinfo/fedora-infrastructure-list
>

From mmcgrath at redhat.com  Mon Nov 16 20:28:08 2009
From: mmcgrath at redhat.com (Mike McGrath)
Date: Mon, 16 Nov 2009 14:28:08 -0600 (CST)
Subject: [PATCH] Enabling wiki cache for ticket 1795
In-Reply-To: <20091116194710.GB15815@alpha.rzhou.org>
References: <1258398504-26977-1-git-send-email-mmcgrath@redhat.com>
	<20091116194710.GB15815@alpha.rzhou.org>
Message-ID: <alpine.LFD.2.00.0911161427450.22826@laptop.mmcgrath.net>

On Mon, 16 Nov 2009, Ricky Zhou wrote:

> On 2009-11-16 01:08:24 PM, Mike McGrath wrote:
> > ---
> >  modules/fedora-web/files/cache.conf |    2 +-
> >  1 files changed, 1 insertions(+), 1 deletions(-)
> >
> > diff --git a/modules/fedora-web/files/cache.conf b/modules/fedora-web/files/cache.conf
> > index fdd4f9e..2f11448 100644
> > --- a/modules/fedora-web/files/cache.conf
> > +++ b/modules/fedora-web/files/cache.conf
> > @@ -1,7 +1,7 @@
> >  <IfModule mod_disk_cache.c>
> >    CacheRoot /srv/cache/mod_cache
> >    # Disabled for normal use, to be enabled on release days
> > -  #CacheEnable disk /wiki/
> > +  CacheEnable disk /wiki/
> >
> >    CacheEnable disk /static/
> >    CacheEnable disk /wiki/Image:
> > --
> > 1.6.2.5
> +1, but isn't this adding another layer on top of the caching that
> mediawiki already has?  I remember having some trouble remembering to
> flush all of those caches in the past.
>

This caches at the proxy layer which is much closer to the user and much
less likely to get overwhelmed then the app layer since the proxy layer
doesn't do much.

	-Mike



From sijis at fedoraproject.org  Mon Nov 16 20:35:33 2009
From: sijis at fedoraproject.org (Sijis Aviles)
Date: Mon, 16 Nov 2009 14:35:33 -0600
Subject: Change Request: Force SSL for /keys and /verify
In-Reply-To: <20091116195026.GC15815@alpha.rzhou.org>
References: <20091116195026.GC15815@alpha.rzhou.org>
Message-ID: <747290270911161235y653e2db3lfa36af5d02062325@mail.gmail.com>

On Mon, Nov 16, 2009 at 1:50 PM, Ricky Zhou <ricky at fedoraproject.org> wrote:
> Thanks to Sijis for pointing this need out.
>
> diff --git a/modules/fedora-web/files/redirects.conf b/modules/fedora-web/files/redirects.conf
> index a88613f..a679ebd 100644
> --- a/modules/fedora-web/files/redirects.conf
> +++ b/modules/fedora-web/files/redirects.conf
> @@ -9,3 +9,8 @@ RewriteRule ^/([^/]+/)?legal/trademarks/guidelines$ http://fedoraproject.org/wik
>
> ?# Comment this out when there is a prerelease available
> ?#RewriteRule ?^(/.*)?/get-prerelease$ $1/get-fedora [R=302]
> +
> +RewriteEngine On
> +RewriteCond %{HTTPS} off
> +RewriteRule ^/([^/]+/)?(keys|verify)$ https://%{HTTP_HOST}%{REQUEST_URI} [R=301,L]
> +
>
> Thanks,
> Ricky
>
> _______________________________________________
> Fedora-infrastructure-list mailing list
> Fedora-infrastructure-list at redhat.com
> https://www.redhat.com/mailman/listinfo/fedora-infrastructure-list
>
>

I wish i could take the credit but Todd (tmz) brought it up during a
discussion we had on #fedora-websites. In either case this is truly
needed.

Sijis



From piotr.kral at gmail.com  Mon Nov 16 23:24:34 2009
From: piotr.kral at gmail.com (Piotr Kral)
Date: Tue, 17 Nov 2009 00:24:34 +0100
Subject: Introduction
Message-ID: <245955dd0911161524r34a1b432n9dd29ec661ca43fe@mail.gmail.com>

Hi
My name is Piotr Kral. And I'd like to join Fedora community at
general and fedora-infrastructure in particular since I'm a sysadmin
myself. I'm learning/using Linux since about ten years. I started from
Debian, but from several years I'm using Red Hat (from RHEL 3) in my
company servers and Fedora on my desktop. I was able to gain an RHCE
title and I'm a great Linux enthusiast (I've set up a first Linux
production server in my company and now we have about 200 off them,
mostly by my design). I feel that I must do something for fedora
community to be able to evolve myself and to give back at least a
small thing from me. I hope You can give me some guides what I should
do next and I hope I'll be able to join You on next thursday at 20:00
UTC on #fedora-meeting.

Kind regards
Piotr Kral



From Matt_Domsch at dell.com  Tue Nov 17 05:54:36 2009
From: Matt_Domsch at dell.com (Matt Domsch)
Date: Mon, 16 Nov 2009 23:54:36 -0600
Subject: [PATCH] supybot-fedora: add mirroradmins command
Message-ID: <20091117055436.GA28969@auslistsprd01.us.dell.com>

>From dac6dbbaef266c668e32249c9d15f766b65c00d2 Mon Sep 17 00:00:00 2001
From: Matt Domsch <Matt_Domsch at dell.com>
Date: Mon, 16 Nov 2009 23:53:04 -0600
Subject: [PATCH] add mirroradmins command

---
 plugin.py |   13 +++++++++++++
 1 files changed, 13 insertions(+), 0 deletions(-)

diff --git a/plugin.py b/plugin.py
index b36a050..d40683b 100644
--- a/plugin.py
+++ b/plugin.py
@@ -373,6 +373,19 @@ class Fedora(callbacks.Plugin):
         irc.reply(string.encode('utf-8'))
     wikilink = wrap(wikilink, ['text'])
 
+    def mirroradmins(self, irc, msg, args, hostname):
+        """<hostname>
+
+        Return MirrorManager list of FAS usernames which administer <hostname>.
+        <hostname> must be the FQDN of the host."""
+        url = "https://admin.fedoraproject.org/mirrormanager/mirroradmins?tg_format=json&host=" + hostname
+        result = self._load_json(url)['values']
+        if len(result) == 0:
+            irc.reply('Hostname "%s" not found' % hostname)
+            return
+        string = 'Mirror Admins of %s: ' + ' '.join(result)
+        irc.reply(string.encode('utf-8'))
+    mirroradmins = wrap(mirroradmins)
 
 Class = Fedora
 
-- 
1.6.5.2


Once I can push a new MM that implements this interface.

-- 
Matt Domsch
Technology Strategist, Dell Office of the CTO
linux.dell.com & www.dell.com/linux



From Matt_Domsch at dell.com  Tue Nov 17 06:00:20 2009
From: Matt_Domsch at dell.com (Matt Domsch)
Date: Tue, 17 Nov 2009 00:00:20 -0600
Subject: [PATCH] supybot-fedora: add mirroradmins command
In-Reply-To: <20091117055436.GA28969@auslistsprd01.us.dell.com>
References: <20091117055436.GA28969@auslistsprd01.us.dell.com>
Message-ID: <20091117060020.GB28969@auslistsprd01.us.dell.com>

And with a fix already.  I should sleep.

>From 1d136e850fb9287dcca9812eb3960d2f8bf71211 Mon Sep 17 00:00:00 2001
From: Matt Domsch <Matt_Domsch at dell.com>
Date: Mon, 16 Nov 2009 23:59:20 -0600
Subject: [PATCH] fix mirroradmins command

---
 plugin.py |    3 ++-
 1 files changed, 2 insertions(+), 1 deletions(-)

diff --git a/plugin.py b/plugin.py
index d40683b..5845afd 100644
--- a/plugin.py
+++ b/plugin.py
@@ -383,7 +383,8 @@ class Fedora(callbacks.Plugin):
         if len(result) == 0:
             irc.reply('Hostname "%s" not found' % hostname)
             return
-        string = 'Mirror Admins of %s: ' + ' '.join(result)
+        string = 'Mirror Admins of %s: ' % hostname
+        string += ' '.join(result)
         irc.reply(string.encode('utf-8'))
     mirroradmins = wrap(mirroradmins)
 
-- 
1.6.5.2



From mmcgrath at redhat.com  Tue Nov 17 14:18:24 2009
From: mmcgrath at redhat.com (Mike McGrath)
Date: Tue, 17 Nov 2009 08:18:24 -0600 (CST)
Subject: Change Request: Force SSL for /keys and /verify
In-Reply-To: <20091116195026.GC15815@alpha.rzhou.org>
References: <20091116195026.GC15815@alpha.rzhou.org>
Message-ID: <alpine.LFD.2.00.0911170818170.9503@laptop.mmcgrath.net>



On Mon, 16 Nov 2009, Ricky Zhou wrote:

> Thanks to Sijis for pointing this need out.
>
> diff --git a/modules/fedora-web/files/redirects.conf b/modules/fedora-web/files/redirects.conf
> index a88613f..a679ebd 100644
> --- a/modules/fedora-web/files/redirects.conf
> +++ b/modules/fedora-web/files/redirects.conf
> @@ -9,3 +9,8 @@ RewriteRule ^/([^/]+/)?legal/trademarks/guidelines$ http://fedoraproject.org/wik
>
>  # Comment this out when there is a prerelease available
>  #RewriteRule  ^(/.*)?/get-prerelease$ $1/get-fedora [R=302]
> +
> +RewriteEngine On
> +RewriteCond %{HTTPS} off
> +RewriteRule ^/([^/]+/)?(keys|verify)$ https://%{HTTP_HOST}%{REQUEST_URI} [R=301,L]
> +
>

+1
	-Mike



From a.badger at gmail.com  Tue Nov 17 14:18:10 2009
From: a.badger at gmail.com (Toshio Kuratomi)
Date: Tue, 17 Nov 2009 06:18:10 -0800
Subject: Change Request: Force SSL for /keys and /verify
In-Reply-To: <20091116195026.GC15815@alpha.rzhou.org>
References: <20091116195026.GC15815@alpha.rzhou.org>
Message-ID: <20091117141810.GD3153@clingman.lan>

On Mon, Nov 16, 2009 at 02:50:26PM -0500, Ricky Zhou wrote:
> Thanks to Sijis for pointing this need out.
> 
> diff --git a/modules/fedora-web/files/redirects.conf b/modules/fedora-web/files/redirects.conf
> index a88613f..a679ebd 100644
> --- a/modules/fedora-web/files/redirects.conf
> +++ b/modules/fedora-web/files/redirects.conf
> @@ -9,3 +9,8 @@ RewriteRule ^/([^/]+/)?legal/trademarks/guidelines$ http://fedoraproject.org/wik
> 
>  # Comment this out when there is a prerelease available
>  #RewriteRule  ^(/.*)?/get-prerelease$ $1/get-fedora [R=302]
> +
> +RewriteEngine On
> +RewriteCond %{HTTPS} off
> +RewriteRule ^/([^/]+/)?(keys|verify)$ https://%{HTTP_HOST}%{REQUEST_URI} [R=301,L]
> +
> 
+1

-Toshio
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 197 bytes
Desc: not available
URL: <http://listman.redhat.com/archives/fedora-infrastructure-list/attachments/20091117/3e6e7186/attachment.sig>

From a.badger at gmail.com  Tue Nov 17 19:18:13 2009
From: a.badger at gmail.com (Toshio Kuratomi)
Date: Tue, 17 Nov 2009 11:18:13 -0800
Subject: PackageDB Update
Message-ID: <20091117191813.GE3153@clingman.lan>

Tomorrow, after change freeze is over, I'll be updating the PackageDB to
0.4.1.  This is a bugfix release so I don't expect any problems but you
never know :-)

-Toshio
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 197 bytes
Desc: not available
URL: <http://listman.redhat.com/archives/fedora-infrastructure-list/attachments/20091117/71be5066/attachment.sig>

From thinklinux.ssh at gmail.com  Wed Nov 18 07:40:44 2009
From: thinklinux.ssh at gmail.com (susmit shannigrahi)
Date: Wed, 18 Nov 2009 13:10:44 +0530
Subject: FWD: [Fedora-freemedia-list] SHA1 vs SHA256...
In-Reply-To: <398606b20911172337q239e230alf920def576433c47@mail.gmail.com>
References: <398606b20911172337q239e230alf920def576433c47@mail.gmail.com>
Message-ID: <ffadd1240911172340r124f9a69mbfc77cdaa8e0e39d@mail.gmail.com>

Can you please help with this?
Thanks.


---------- Forwarded message ----------
From: Jeff Shepherd <hummdis at gmail.com>
Date: Wed, Nov 18, 2009 at 1:07 PM
Subject: [Fedora-freemedia-list] SHA1 vs SHA256...
To: fedora-freemedia-list at redhat.com


Is it just me, or are the checksums to verify the Fedora 12 discs
incorrectly listed here on these pages:

https://fedoraproject.org/static/checksums/Fedora-12-i386-CHECKSUM
https://fedoraproject.org/static/checksums/Fedora-12-x86_64-CHECKSUM

The page says that it's SHA1, but my SHA1 looks nothing like those and
the SHA256 matches exactly.? I've verified this on Windows & Fedora
11.

At first I thought I had a bad download, so I downloaded again, only
to find that these are not SHA1 checksums, they're SHA256.

Can anyone else confirm?? Can anyone shed light as to why the page
says SHA1 when it's SHA256?? How do we go about getting this
corrected?

Thanks!
Jeff

--
Jeff Shepherd
hummdis at gmail.com

Scott Adams - "Men live in a fantasy world. I know this because I am
one, and I actually receive my mail there."

Ogden Nash ?- "The trouble with a kitten is that when it grows up,
it's always a cat."


--
Fedora-freemedia-list mailing list
Fedora-freemedia-list at redhat.com
https://www.redhat.com/mailman/listinfo/fedora-freemedia-list




-- 
Regards,
Susmit.

=============================================
http://www.fedoraproject.org/wiki/user:susmit
=============================================
Sent from Calcutta, WB, India



From sundaram at fedoraproject.org  Wed Nov 18 08:53:16 2009
From: sundaram at fedoraproject.org (Rahul Sundaram)
Date: Wed, 18 Nov 2009 14:23:16 +0530
Subject: FWD: [Fedora-freemedia-list] SHA1 vs SHA256...
In-Reply-To: <ffadd1240911172340r124f9a69mbfc77cdaa8e0e39d@mail.gmail.com>
References: <398606b20911172337q239e230alf920def576433c47@mail.gmail.com>
	<ffadd1240911172340r124f9a69mbfc77cdaa8e0e39d@mail.gmail.com>
Message-ID: <4B03B5FC.3080106@fedoraproject.org>

On 11/18/2009 01:10 PM, susmit shannigrahi wrote:
> Can you please help with this?
> Thanks.
> 
> 
> ---------- Forwarded message ----------
> From: Jeff Shepherd <hummdis at gmail.com>
> Date: Wed, Nov 18, 2009 at 1:07 PM
> Subject: [Fedora-freemedia-list] SHA1 vs SHA256...
> To: fedora-freemedia-list at redhat.com
> 
> 
> Is it just me, or are the checksums to verify the Fedora 12 discs
> incorrectly listed here on these pages:
> 
> https://fedoraproject.org/static/checksums/Fedora-12-i386-CHECKSUM
> https://fedoraproject.org/static/checksums/Fedora-12-x86_64-CHECKSUM

Refer to

https://www.redhat.com/archives/fedora-test-list/2009-November/msg00820.html

Rahul



From mvitvivek at gmail.com  Wed Nov 18 08:58:35 2009
From: mvitvivek at gmail.com (vivek pathak)
Date: Wed, 18 Nov 2009 14:28:35 +0530
Subject: [Fedora-freemedia-list] SHA1 vs SHA256...
In-Reply-To: <ffadd1240911172340r124f9a69mbfc77cdaa8e0e39d@mail.gmail.com>
References: <398606b20911172337q239e230alf920def576433c47@mail.gmail.com>
	<ffadd1240911172340r124f9a69mbfc77cdaa8e0e39d@mail.gmail.com>
Message-ID: <75f1bfa60911180058t6deee574wa4888f007c88f968@mail.gmail.com>

Hi

i am vivek from Pune workking for Hp india will u please tell me what the
error you are receiving and what exactlly is the issue are you installing
the fedora rpm package or non rpm package.

On Wed, Nov 18, 2009 at 1:10 PM, susmit shannigrahi <
thinklinux.ssh at gmail.com> wrote:

> Can you please help with this?
> Thanks.
>
>
> ---------- Forwarded message ----------
> From: Jeff Shepherd <hummdis at gmail.com>
> Date: Wed, Nov 18, 2009 at 1:07 PM
> Subject: [Fedora-freemedia-list] SHA1 vs SHA256...
> To: fedora-freemedia-list at redhat.com
>
>
> Is it just me, or are the checksums to verify the Fedora 12 discs
> incorrectly listed here on these pages:
>
> https://fedoraproject.org/static/checksums/Fedora-12-i386-CHECKSUM
> https://fedoraproject.org/static/checksums/Fedora-12-x86_64-CHECKSUM
>
> The page says that it's SHA1, but my SHA1 looks nothing like those and
> the SHA256 matches exactly.  I've verified this on Windows & Fedora
> 11.
>
> At first I thought I had a bad download, so I downloaded again, only
> to find that these are not SHA1 checksums, they're SHA256.
>
> Can anyone else confirm?  Can anyone shed light as to why the page
> says SHA1 when it's SHA256?  How do we go about getting this
> corrected?
>
> Thanks!
> Jeff
>
> --
> Jeff Shepherd
> hummdis at gmail.com
>
> Scott Adams - "Men live in a fantasy world. I know this because I am
> one, and I actually receive my mail there."
>
> Ogden Nash  - "The trouble with a kitten is that when it grows up,
> it's always a cat."
>
>
> --
> Fedora-freemedia-list mailing list
> Fedora-freemedia-list at redhat.com
> https://www.redhat.com/mailman/listinfo/fedora-freemedia-list
>
>
>
>
> --
> Regards,
> Susmit.
>
> =============================================
> http://www.fedoraproject.org/wiki/user:susmit
> =============================================
> Sent from Calcutta, WB, India
>
> _______________________________________________
> Fedora-infrastructure-list mailing list
> Fedora-infrastructure-list at redhat.com
> https://www.redhat.com/mailman/listinfo/fedora-infrastructure-list
>



-- 
Regards,

VIVEK PATHAK | ITO Storage & BUR | EDS an Hp Company| Tower IV, Cybercity,
Magarpatta, Hadapsar, PUNE 411 028| Mobile: +91-9011096344 |
vivekanand.priyadarshi at eds.com www.eds.com
Information transmitted by this e-mail is proprietary to MphasiS and/ or its
Customers and is intended for use only by the individual or entity to which
it is addressed, and may contain information that is privileged,
confidential or exempt from disclosure under applicable law. If you are not
the intended recipient or it appears that this mail has been forwarded to
you without proper authority, you are notified that any use or dissemination
of this information in any manner is strictly prohibited. In such cases,
please notify us immediately at mailmaster at mphasis.com and delete this mail
from your records
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://listman.redhat.com/archives/fedora-infrastructure-list/attachments/20091118/58511dd9/attachment.htm>

From an037-ooai8 at yahoo.com  Wed Nov 18 09:17:45 2009
From: an037-ooai8 at yahoo.com (Allen Kistler)
Date: Wed, 18 Nov 2009 03:17:45 -0600
Subject: FWD: [Fedora-freemedia-list] SHA1 vs SHA256...
In-Reply-To: <ffadd1240911172340r124f9a69mbfc77cdaa8e0e39d@mail.gmail.com>
References: <398606b20911172337q239e230alf920def576433c47@mail.gmail.com>
	<ffadd1240911172340r124f9a69mbfc77cdaa8e0e39d@mail.gmail.com>
Message-ID: <4B03BBB9.5050006@yahoo.com>

susmit shannigrahi wrote:
> Can you please help with this?
> Thanks.
> 
> ---------- Forwarded message ----------
> From: Jeff Shepherd
> Date: Wed, Nov 18, 2009 at 1:07 PM
> 
> Is it just me, or are the checksums to verify the Fedora 12 discs
> incorrectly listed here on these pages:
> 
> https://fedoraproject.org/static/checksums/Fedora-12-i386-CHECKSUM
> https://fedoraproject.org/static/checksums/Fedora-12-x86_64-CHECKSUM
> 
> The page says that it's SHA1, but my SHA1 looks nothing like those and
> the SHA256 matches exactly.  I've verified this on Windows & Fedora
> 11.
> 
> At first I thought I had a bad download, so I downloaded again, only
> to find that these are not SHA1 checksums, they're SHA256.
> 
> Can anyone else confirm?  Can anyone shed light as to why the page
> says SHA1 when it's SHA256?  How do we go about getting this
> corrected?

For the benefit of context (mind any line wrap):

> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA1
> 
> f0ad929cd259957e160ea442eb80986b5f01daaffdbcc7e5a1840a666c4447c7 *Fedora-12-i386-DVD.iso
> 2f548ce50c459a0270e85a7d63b2383c55239bf6aead9314a0f887f3623ddace *Fedora-12-i386-disc1.iso
> ce77d16d1b3362859aaa856f1f29c7197db69264d8ce6b9f8111dcee4d5e9ef7 *Fedora-12-i386-disc2.iso
> 8c39cb9e3c1583948dcad21f9fdbe48a3ff6a8d1b536462188d47747c2640b36 *Fedora-12-i386-disc3.iso
> 07f03f67d23331e8c7a37ad19e9a99062a4584a3e028beb40c49923bb5c70c6b *Fedora-12-i386-disc4.iso
> dff8c478fb73452a8799016deeecccde3097d40a0b756d681bfe6be2e56bb9eb *Fedora-12-i386-disc5.iso
> 128112527bdd4036ec82d678b5d5362aa7a11ac15a73647afd743d7a325f7df9 *Fedora-12-i386-netinst.iso
> -----BEGIN PGP SIGNATURE-----
> Version: GnuPG v1.4.5 (GNU/Linux)
> 
> iQIVAwUBSvurkZ0cw0hXu8y6AQIdQw//WuT1eE5LUzN3tBnBJzMsvD90/gz1kM0A
> 4qtM+SSRjrx0MwkVkP5spO/xfkk7sncTE51Bl88lDAvpC/00b+u3MQEya9aApZyT
> CmggKB/bmozQyX3C7HbXwUIMrCRmNVkYCkgQKLQd/MK+r73dXCuHNpyfeBSuZGsy
> iCpX003Wu6U92jlwljBkgU+FrgJwAmr6b7hEurQaf2fqmN1d4Nh+llwqOEIykd5A
> Ci1ApI05NBEX/z9KG+WR+YtCuRqUwD6U5SrjBSQD86NGLcsJ49gBrbu1um3cUvlC
> YRvCjT4zDBn32au+pBKXjlQf4TrCt3SooYnmf0D+1iefrN0Sijpft+bQ26poSjkp
> pj+wnVkUg2shfm+0imiPIGos6cJRmj0o4w3CzyDs6sOIcIcYB4ohyFasczsjYT40
> LSCcKBFZXNEw8OogcoPZpp79Yr7iX0C0JQ45xgzPrDegKSLVkTvpXyHCbmd21Zkz
> oPu2kFoR+tEVPfESVFqSqnYJC/TtwokEHbaVCUEpP44L3PpGiVTqK/uZnReQRbLM
> ZuMtXRa2j3i0iSlEKfAS0L+9mvWzGzp8UOQzH7UyZgb0RKfVRYcHW0oXpfMqFD9C
> IA/0pgDQNnQRq3OPxnjHfNKAtezfNBaaU45xA9gA2olzzVrhzgXKjn3MRK2tyrlA
> XpaHoVKUVFU=
> =HttN
> -----END PGP SIGNATURE-----


"Hash: SHA1" refers to the hash in the PGP signature, not the hash
values of the iso images.  The way digital signatures work, first you
take a hash of the message, which is this part:

> f0ad929cd259957e160ea442eb80986b5f01daaffdbcc7e5a1840a666c4447c7 *Fedora-12-i386-DVD.iso
> 2f548ce50c459a0270e85a7d63b2383c55239bf6aead9314a0f887f3623ddace *Fedora-12-i386-disc1.iso
> ce77d16d1b3362859aaa856f1f29c7197db69264d8ce6b9f8111dcee4d5e9ef7 *Fedora-12-i386-disc2.iso
> 8c39cb9e3c1583948dcad21f9fdbe48a3ff6a8d1b536462188d47747c2640b36 *Fedora-12-i386-disc3.iso
> 07f03f67d23331e8c7a37ad19e9a99062a4584a3e028beb40c49923bb5c70c6b *Fedora-12-i386-disc4.iso
> dff8c478fb73452a8799016deeecccde3097d40a0b756d681bfe6be2e56bb9eb *Fedora-12-i386-disc5.iso
> 128112527bdd4036ec82d678b5d5362aa7a11ac15a73647afd743d7a325f7df9 *Fedora-12-i386-netinst.iso

So what hash do you take of that?  SHA1

The message body could be a uuencoded jpg of your mother kissing Mickey
Mouse at Disneyland.  It doesn't matter.  If it's digitally signed,
there will be a line that says "Hash: SHA1" just after the start of the
message delimiter.  Don't be distracted by the fact that the message in
this case is a list of some other hash values, which happen to be SHA256.

After taking the hash of the message, you encrypt it with the private
key of the signer.  That's the signature included within the signature
delimiters.  The signer in this case is Fedora 12 itself with key ID
57bbccba.  You can get the public GPG keys (for verification) from

https://fedoraproject.org/static/fedora.gpg

HTH

I don't subscribe to fedora-freemedia-list, so feel free to repost this
response there.  Apologies to your mother, if required, as well.



From an037-ooai8 at yahoo.com  Wed Nov 18 09:42:13 2009
From: an037-ooai8 at yahoo.com (Allen Kistler)
Date: Wed, 18 Nov 2009 03:42:13 -0600
Subject: FWD: [Fedora-freemedia-list] SHA1 vs SHA256...
In-Reply-To: <4B03B5FC.3080106@fedoraproject.org>
References: <398606b20911172337q239e230alf920def576433c47@mail.gmail.com>	<ffadd1240911172340r124f9a69mbfc77cdaa8e0e39d@mail.gmail.com>
	<4B03B5FC.3080106@fedoraproject.org>
Message-ID: <4B03C175.3040502@yahoo.com>

Rahul Sundaram wrote:
> On 11/18/2009 01:10 PM, susmit shannigrahi wrote:
>> Can you please help with this?
>> Thanks.
>>
>> ---------- Forwarded message ----------
>> From: Jeff Shepherd
>> Date: Wed, Nov 18, 2009 at 1:07 PM
>> Subject: [Fedora-freemedia-list] SHA1 vs SHA256...
>> To: fedora-freemedia-list at redhat.com
>>
>>
>> Is it just me, or are the checksums to verify the Fedora 12 discs
>> incorrectly listed here on these pages:
>>
>> https://fedoraproject.org/static/checksums/Fedora-12-i386-CHECKSUM
>> https://fedoraproject.org/static/checksums/Fedora-12-x86_64-CHECKSUM
> 
> Refer to
> 
> https://www.redhat.com/archives/fedora-test-list/2009-November/msg00820.html

I think that thread is talking about some other page than the one that
confused Jeff.  In particular, this thread refers to changing some
string value on a page from "SHA1" to "SHA256."

1. If you alter a GPG-signed message, you've just screwed the signature,
since most of the value of the signature comes from being able to verify
that no one has changed the message.

2. Maybe it hasn't replicated, but I still see "SHA1" when I look at the
pages Jeff referenced.  And BTW that's a good thing.

Or am I the one confused?  I'm looking at only those pages Jeff lists above.



From tmz at pobox.com  Wed Nov 18 13:11:54 2009
From: tmz at pobox.com (Todd Zullinger)
Date: Wed, 18 Nov 2009 08:11:54 -0500
Subject: FWD: [Fedora-freemedia-list] SHA1 vs SHA256...
In-Reply-To: <4B03C175.3040502@yahoo.com>
References: <398606b20911172337q239e230alf920def576433c47@mail.gmail.com>
	<ffadd1240911172340r124f9a69mbfc77cdaa8e0e39d@mail.gmail.com>
	<4B03B5FC.3080106@fedoraproject.org> <4B03C175.3040502@yahoo.com>
Message-ID: <20091118131154.GW4509@inocybe.localdomain>

Allen Kistler wrote:
> I think that thread is talking about some other page than the one
> that confused Jeff.  In particular, this thread refers to changing
> some string value on a page from "SHA1" to "SHA256."
>
> 1. If you alter a GPG-signed message, you've just screwed the
> signature, since most of the value of the signature comes from being
> able to verify that no one has changed the message.
>
> 2. Maybe it hasn't replicated, but I still see "SHA1" when I look at
> the pages Jeff referenced.  And BTW that's a good thing.
>
> Or am I the one confused?  I'm looking at only those pages Jeff
> lists above.

That thread is on the mark.  The fix that Jesse is referring to is
likely that we'll add some text to the *CHECKSUM files explaining what
checksum tool to use for verification, perhaps pointing to the page at
https://fedoraproject.org/verify and some large print that says "USE
sha256sum TO VERIFY THE CHECKSUMS, DESPITE ANY PGP 'Hash:' LINE YOU
MAY SEE AND THINK YOU UNDERSTAND." :)

Unfortunately, many, many people confuse the 'Hash: SHA1' line which
is part of the PGP signature with the SHA256 checksum data that is in
the *CHECHKSUM files.  It would almost be better to just have
detatched PGP signature files.  That way, those who are not familiar
with PGP would not ever see a 'Hash: SHA1' line to confuse them.

Oddly, at some point the PGP signatures will be made using SHA256 as
well and that will then match the checksum used for the .iso files.
But as long as people conflate the PGP Hash header and the checksum
used to create the clearsigned data, we'll have this problem.

We've gotten a _lot_ of this question at the webmaster address.  I
never realized how many people made the flawed assumption that the PGP
Hash: header had anything to do with the checksum data in the files.

Please spread the message as much as possible that they are NOT
related in ANY way.

-- 
Todd        OpenPGP -> KeyID: 0xBEAF0CE3 | URL: www.pobox.com/~tmz/pgp
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Truth is like a well-known whore.  Everybody knows her but it's
embarrassing to meet her in the street.
    -- Wolfgang Borchert

-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 542 bytes
Desc: not available
URL: <http://listman.redhat.com/archives/fedora-infrastructure-list/attachments/20091118/326b0d24/attachment.sig>

From mmcgrath at redhat.com  Wed Nov 18 15:35:16 2009
From: mmcgrath at redhat.com (Mike McGrath)
Date: Wed, 18 Nov 2009 09:35:16 -0600 (CST)
Subject: Unfrozen!
Message-ID: <alpine.LFD.2.00.0911180934540.9503@laptop.mmcgrath.net>

We are unfrozen.  An excellent release as always, thanks to everyone who
helped!

	-Mike



From mmcgrath at redhat.com  Wed Nov 18 15:37:02 2009
From: mmcgrath at redhat.com (Mike McGrath)
Date: Wed, 18 Nov 2009 09:37:02 -0600 (CST)
Subject: Introduction
In-Reply-To: <245955dd0911161524r34a1b432n9dd29ec661ca43fe@mail.gmail.com>
References: <245955dd0911161524r34a1b432n9dd29ec661ca43fe@mail.gmail.com>
Message-ID: <alpine.LFD.2.00.0911180935480.9503@laptop.mmcgrath.net>

On Tue, 17 Nov 2009, Piotr Kral wrote:

> Hi
> My name is Piotr Kral. And I'd like to join Fedora community at
> general and fedora-infrastructure in particular since I'm a sysadmin
> myself. I'm learning/using Linux since about ten years. I started from
> Debian, but from several years I'm using Red Hat (from RHEL 3) in my
> company servers and Fedora on my desktop. I was able to gain an RHCE
> title and I'm a great Linux enthusiast (I've set up a first Linux
> production server in my company and now we have about 200 off them,
> mostly by my design). I feel that I must do something for fedora
> community to be able to evolve myself and to give back at least a
> small thing from me. I hope You can give me some guides what I should
> do next and I hope I'll be able to join You on next thursday at 20:00
> UTC on #fedora-meeting.
>

Excellent, the meetings are always good to attend.  Make sure to make
yourself known in case I forget.  At the end we always have an open floor
where people can talk about anything, that's a good time to introduce
yourself.  Have you seen our FIGs page?

http://fedoraproject.org/wiki/Infrastructure/FIGs

	-Mike



From stickster at gmail.com  Wed Nov 18 19:10:51 2009
From: stickster at gmail.com (Paul W. Frields)
Date: Wed, 18 Nov 2009 14:10:51 -0500
Subject: Unfrozen!
In-Reply-To: <alpine.LFD.2.00.0911180934540.9503@laptop.mmcgrath.net>
References: <alpine.LFD.2.00.0911180934540.9503@laptop.mmcgrath.net>
Message-ID: <20091118191051.GW3052@victoria.internal.frields.org>

On Wed, Nov 18, 2009 at 09:35:16AM -0600, Mike McGrath wrote:
> We are unfrozen.  An excellent release as always, thanks to everyone who
> helped!

As always, the Infrastructure team did an amazing job.  If anyone gets
a chance to publish some interesting load graphs to show the relative
painlessness of the release, it would be much appreciated.  I never
tire of tooting the horn of awesome Fedora teams!

-- 
Paul W. Frields                                http://paul.frields.org/
  gpg fingerprint: 3DA6 A0AC 6D58 FEC4 0233  5906 ACDB C937 BD11 3717
  http://redhat.com/   -  -  -  -   http://pfrields.fedorapeople.org/
  irc.freenode.net: stickster @ #fedora-docs, #fedora-devel, #fredlug



From smooge at gmail.com  Wed Nov 18 21:11:25 2009
From: smooge at gmail.com (Stephen John Smoogen)
Date: Wed, 18 Nov 2009 14:11:25 -0700
Subject: Unfrozen!
In-Reply-To: <20091118191051.GW3052@victoria.internal.frields.org>
References: <alpine.LFD.2.00.0911180934540.9503@laptop.mmcgrath.net>
	<20091118191051.GW3052@victoria.internal.frields.org>
Message-ID: <80d7e4090911181311s4e7b5eb3w67f14fba410e6854@mail.gmail.com>

On Wed, Nov 18, 2009 at 12:10 PM, Paul W. Frields <stickster at gmail.com> wrote:
> On Wed, Nov 18, 2009 at 09:35:16AM -0600, Mike McGrath wrote:
>> We are unfrozen. ?An excellent release as always, thanks to everyone who
>> helped!
>
> As always, the Infrastructure team did an amazing job. ?If anyone gets
> a chance to publish some interesting load graphs to show the relative
> painlessness of the release, it would be much appreciated. ?I never
> tire of tooting the horn of awesome Fedora teams!

I have not had to deal with any flashbacks to Red Hat Linux releases
(last minute ISO change, new website 2 hours before the release, NFS
issues, mirrors getting wrong bits before the release) and best of all
my pager did not go off for 48 hours before the release and 24 hours
afterwords. Its enough to make me tear up.

[Thanks to all the hardwork people have done to make it so easy to do this job.]


-- 
Stephen J Smoogen.

Ah, but a man's reach should exceed his grasp. Or what's a heaven for?
-- Robert Browning



From adrian at lisas.de  Thu Nov 19 09:03:18 2009
From: adrian at lisas.de (Adrian Reber)
Date: Thu, 19 Nov 2009 10:03:18 +0100
Subject: temporary rsync files visible on download-i2
Message-ID: <20091119090318.GG16031@lisas.de>

The configuration of download-i2 seems to be not the same as from the other
non I2 download servers:

rsync download-i2.fedora.redhat.com::fedora-linux-development/i386/debug/.~tmp~/

gives me a long list of files which should not be visible, whereas running rsync
against the non I2 download server gives me

rsync: link_stat "i386/debug/.~tmp~/." (in fedora-linux-development) failed: Permission denied (13)

So the directory (which probably should not be there at all) is on both
servers but the I2 server lets me also download it.

		Adrian



From ash.butters at gmail.com  Thu Nov 19 11:36:14 2009
From: ash.butters at gmail.com (Ashley Biar)
Date: Thu, 19 Nov 2009 22:36:14 +1100
Subject: New Subscriber - Introduction
Message-ID: <de73bf2c0911190336y1fdf462u6cbde1a09e03711d@mail.gmail.com>

Hi All,


My name is Ash and I have just joined the Fedora Infrastructure group.
I've been playing around with Fedora in my spare time (when I could be
bothered :P) since 'Core 6', and only recently have I become more eager to
discover more about the OS.
I built a file server for home on Fedora 10 a while ago, and will be
performing a fresh install of Fedora 12 - once the download finishes.

I have been working as a Unix Administrator for the past 18 months primarily
working with HP-UX and RHEL3, along with IBM and EMC based SAN storage.
I also have some experience with HP Data Protector 5.5. Out backup
infrastructure consists of 2 physical tape libraries and 2 virtual tape
libraries.


I would like to participate in the fedora project in some way, however I'm
not too sure what I can offer - I thought I'd check it out.


Kind Regards,


Ashley Biar.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://listman.redhat.com/archives/fedora-infrastructure-list/attachments/20091119/f14808dd/attachment.htm>

From ricky at fedoraproject.org  Thu Nov 19 20:35:14 2009
From: ricky at fedoraproject.org (Ricky Zhou)
Date: Thu, 19 Nov 2009 15:35:14 -0500
Subject: Meeting Log - 2009-11-19
Message-ID: <20091119203514.GC10714@alpha.rzhou.org>

20:00 < mmcgrath> #startmeeting Infrastructure
20:00 < zodbot> Meeting started Thu Nov 19 20:00:35 2009 UTC.  The chair is mmcgrath. Information about MeetBot at http://wiki.debian.org/MeetBot.
20:00 < zodbot> Useful Commands: #action #agreed #halp #info #idea #link #topic.
20:00 -!- zodbot changed the topic of #fedora-meeting to:  (Meeting topic: Infrastructure)
20:00 < mmcgrath> #topic Who's here?
20:00 -!- zodbot changed the topic of #fedora-meeting to: Who's here? (Meeting topic: Infrastructure)
20:00  * ricky 
20:00 < dgilmore> yo
20:00 -!- geppetto [n=james at code.and.org] has joined #fedora-meeting
20:00 < jcollie> yo
20:00 < pitr> helo
20:01 < jcollie> is the NFR conf call supposed to be streamed and recorded?
20:01 < mmcgrath> jcollie: no idea, is that mechanism all working?
20:01 -!- a-k [n=akistler at 2002:6390:a3ef:3:20d:56ff:fe10:bb8d] has joined #fedora-meeting
20:01 -!- sijis [n=sijis at adsl-70-131-60-234.dsl.emhril.sbcglobal.net] has joined #fedora-meeting
20:01  * nirik is hanging around in the back. 
20:01 -!- josemm [i=josemm at fedora/josemm] has joined #fedora-meeting
20:01 < jcollie> mmcgrath: should be
20:01  * a-k is around
20:02 < mmcgrath> Ok, lets get started.
20:02 < mmcgrath> #topic F12
20:02 -!- zodbot changed the topic of #fedora-meeting to: F12 (Meeting topic: Infrastructure)
20:02 < mmcgrath> .tiny https://fedorahosted.org/fedora-infrastructure/report/9
20:02 < zodbot> mmcgrath: http://tinyurl.com/5onzad
20:02 < mmcgrath> lets go through what hasn't been closed yet
20:02 < mmcgrath> .1787
20:02 < mmcgrath> that's me, I'll close it now
20:02 < mmcgrath> .ticket 1787
20:02 < zodbot> mmcgrath: #1787 (Change Freeze) - Fedora Infrastructure - Trac - https://fedorahosted.org/fedora-infrastructure/ticket/1787
20:02 < mmcgrath> .ticket 1788
20:02 < zodbot> mmcgrath: #1788 (Websites) - Fedora Infrastructure - Trac - https://fedorahosted.org/fedora-infrastructure/ticket/1788
20:02  * ricky closes all of the websites ones
20:02 < mmcgrath> k
20:02 -!- tmz [n=tmz at fedora/tmz] has joined #fedora-meeting
20:02 < ricky> Oops, they already were :-)
20:02  * sijis is here..
20:02 < mmcgrath> .ticket 1790
20:02 < zodbot> mmcgrath: #1790 (Verify RELENG permissions) - Fedora Infrastructure - Trac - https://fedorahosted.org/fedora-infrastructure/ticket/1790
20:03  * josemm is here
20:03 -!- RadicalRo [n=radical at 193.254.32.144] has joined #fedora-meeting
20:03 < mmcgrath> smooge mentioned he might be a little late to the meeting today but that one's him and I'm sure it's fine.
20:03 < mmcgrath> .ticket 1796
20:03 < zodbot> mmcgrath: #1796 (Disable wiki caching) - Fedora Infrastructure - Trac - https://fedorahosted.org/fedora-infrastructure/ticket/1796
20:03 < mmcgrath> I'll do it now
20:03 < mmcgrath> .ticket 1794
20:03 < zodbot> mmcgrath: #1794 (Lessons Learned) - Fedora Infrastructure - Trac - https://fedorahosted.org/fedora-infrastructure/ticket/1794
20:03 < mmcgrath> And the last one, lessons learned.
20:03 < mmcgrath> what did we learn this release?
20:03 < mmcgrath> what did and didn't go well?
20:03 < smooge> egooms is here just a little slow
20:03  * abadger1999 shows up
20:04 < sijis> sixxs is not allowing uploads. i checked yesterday
20:04 < mmcgrath> I think the number of mirrors we had at release time was quite good, sat at 85% for a long time
20:04 < mmcgrath> sijis: yeah I saw your note on that on release day, what's the deal?
20:04 < sijis> so i couldn't add the torrents for ipv6 folks
20:04 < mdomsch> the bitflip still caught some mirrors by surprise
20:04 < sijis> yeah, i dunno, i posted a message on the forum and i haven't heard back.
20:04 < mdomsch> even though I had told them about it beforehand
20:04 < mdomsch> someone wanted a reminder that they should run report_mirror after manually bitflipping
20:05 < mdomsch> before the bitflip, we had ~160 mirrors checked in and ready with ISOs
20:05 < mmcgrath> smooge: just checking if 1790 is done
20:05 < geppetto> having rsync of everything available was a huge win, IMO
20:05 < mdomsch> right after the bitflip, we had ~17 ready, up to almost 100 within a few hours, and by today, we're at about 140
20:06 < smooge> mmcgrath, closing right now
20:06 < mmcgrath> mdomsch: 'caught some mirrors by surprise' was it a pretty big problem or just general murmurings?
20:06 < mdomsch> mmcgrath, general
20:06 < smooge> which is an improvement off the old days :)
20:06 < mdomsch> our emails aren't necessarily high priority
20:06 < mmcgrath> yeah
20:06 < mmcgrath> nirik: were you hanging out in #fedora on release day?  How'd the mirrors hold out?
20:06 < mmcgrath> were people having problems getting to isos?
20:07 < dgilmore> sijis: they have never allowed uploads
20:07 < mmcgrath> EvilBob: how about you?
20:07 < mdomsch> also, we didn't have mirrors.*.kernel.org for several hours on release day due to their DNS breakage
20:07  * mmcgrath should have been in there but forgot.
20:07 < dgilmore> sijis: they allow you to recommend a torrent
20:07 < nirik> mmcgrath: things were good.
20:07 < sijis> dgilmore: that's what i meant. :|
20:07 < nirik> opening up the mirrors/torrents early really helped.
20:07 < EvilBob> mmcgrath: not that I noticed
20:07 < sijis> posting a link to the torrent
20:07 < mmcgrath> EvilBob: nirik: k, thanks
20:08 < mmcgrath> sijis: it's possible next release we'll have our own ipv6 torrent so that step might not be so important :)
20:08 < jcollie> yeah, my torrent seeded got pounded right after the announcement
20:08 < mmcgrath> One thing I wanted to note was the night before the release and the various problems nirik and I had with the torrent system.
20:08 < mmcgrath> but it was hard to say for sure if it was really a problem or just torrent behaving as it should.
20:08 < jcollie> s/seeded/seeder/
20:08 < mmcgrath> nirik: how'd your seeders hold up on actual release day?
20:08 < mmcgrath> jcollie: mine did too
20:08 < mdomsch> http://fpaste.org/tGQj/ shows in text the pre-bitflip (first 3) to post-bitflip hourly count of mirrors w/ ISOs, as MM knew it
20:09 < nirik> my torrents couldn't talk to the tracker at all when I got up. I wasn't seeding. ;(
20:09 < nirik> I switched over to transmission and everything came up ok.
20:09 < jcollie> i'm just glad i put a rate limit on
20:09 < mmcgrath> mdomsch: interesting
20:09 < jcollie> i enabled DHT on my seeder, hopefully that helped
20:09 < mmcgrath> nirik: so perhaps rtorrent is teh suck?  :(
20:10 -!- lxo [n=aoliva at 201.82.249.13] has joined #fedora-meeting
20:10 < nirik> yeah, on epel at least. ;( it works fine in fedora, so not sure whats going on there. ;(
20:10 < nirik> I guess I should file a bug on it.
20:10 -!- npatil [n=npatil at 115.240.103.68] has quit Client Quit
20:10 < mmcgrath> <nod>
20:10 < jcollie> i was using rtorrent on F12, i think it's much newer so hopefully fewer bugs
20:10 < mmcgrath> In general though, things went like clock work.
20:11 < mmcgrath> oh, there was one odd thing
20:11 < mmcgrath> stickster: you there?
20:11 < mmcgrath> What happened with the announcement?  Did someone approve it or are you on some auto-approver list?
20:11  * mdomsch seeded at max for a while, has dropped off quite a bit by now
20:12  * mmcgrath assumes mr stickster is a bit busy at the moment.
20:12 < mmcgrath> mdomsch: yeah same here, I actually closed most of my seeders.
20:12 < mmcgrath> Does anyone have anything else related to the release they'd like to discuss?
20:12 < stickster> mmcgrath: Right, it auto-approved for some reaso
20:12 < stickster> *reason
20:12 < stickster> Maybe because I'm on the list of owners/moderators?
20:13 < mmcgrath> stickster: I'm officially under the opinion that relying on moderation is not a good thing :)
20:13 < stickster> In any case, I put both my emails on the "auto-hold" list now
20:13 < stickster> So nothing I post should go straight through any more, as a check measure
20:13 < stickster> Thankfully I had checked all the links, and didn't post it until almost right at the appointed time.
20:13 < mmcgrath> <nod
20:13 < mmcgrath> Ok, if no one has anything else we'll move on to the next topic
20:13 < mmcgrath> #topic Fedora 13 - Jesse's Girl.
20:13 -!- zodbot changed the topic of #fedora-meeting to: Fedora 13 - Jesse's Girl. (Meeting topic: Infrastructure)
20:13  * ricky notes that we should all keep a good eye on the webmaster@ queue
20:14 < mmcgrath> So what do we want to see in F13 for infrastructure?
20:14 < mmcgrath> I have a couple of big wants
20:14 < smooge> ah man we need to name the release that
20:14 < mmcgrath> 1) a global search engine
20:14 < mmcgrath> 2) a proper CDN.
20:14 < josemm> +1
20:15 < mmcgrath> and probably a few other things I'm forgetting at the moment.
20:15 < mmcgrath> what do others want to be working on for this release?
20:15 < abadger1999> Packagedb-0.5  w/ tags for yum and critpath markings for bodhi, releng.
20:15 -!- lxo [n=aoliva at 201.82.249.13] has quit Read error: 60 (Operation timed out)
20:15 < mmcgrath> oh, 3) finalize alt.fp.o, secondary.fp.o, etc.
20:15 < mmcgrath> 4) death to the term cloud
20:15 < jcollie> is there any F/OSS CDN software? i've never gone looking
20:15 < mdomsch> MM push mechanism, maybe using qpid
20:15 < mmcgrath> but that's a bit out of scope :)
20:15  * lmacken rolls in late
20:16 < mmcgrath> jcollie: I've been talking on various mailing lists, it seems almost everyone rolls their own
20:16 < mmcgrath> and they do it with geiop
20:16 < abadger1999> amqp server that's receiving notifications from cvs and maybe a notification server working off of those messages to replace the cvs syncmail script.
20:16 < ricky> Geo DNS sounds cool :-)
20:16 < mmcgrath> mdomsch: BTW, remember that "have central servers redirect to us1.fedoraproject.org, de1.fedoraproject.org, etc idea?
20:16 < mmcgrath> Someone mentioned on another list that it does horrible things to search engines and page rank.
20:16 < mdomsch> mmcgrath, yes...
20:17 < mmcgrath> looks like everyone in almost every case is using geoip so I see no reason we shouldn't continue down that road.
20:17 < mdomsch> geoip and not geodns
20:17 < mmcgrath> err sorry, geodns
20:17 < mdomsch> ok
20:17 < mmcgrath> I guess I kind of group those into the same technology but they're really not are they?
20:17 < smooge> pretty much everyone I know has tried something else at one point and then just went with geoip after some flameout
20:17 < mdomsch> similar, but at different levels
20:18 < nirik> abadger1999: self service cvs requests? :)
20:18 < jcollie> hmm does BIND do geodns now?  iirc the powerdns stuff looked icky to me
20:18 < mdomsch> jcollie, yes, warthog9 wrote a patch for it
20:18 < mmcgrath> jcollie: it doesn't yet
20:18 < ricky> wikipedia uses pdns for what it's worth
20:18 < mmcgrath> not natively anyway
20:18 < abadger1999> nirik: Yeah, But not for 0.5.0; maybe 0.5.1.
20:18 < ricky> And it has a backend that takes bind-like zonefiles too
20:18 < mdomsch> everyone else uses pdns
20:18 < smooge> centos uses pdns
20:18 < abadger1999> nirik: I'm sorry, about the btw, it's pretty simple so I keep tossing it at new people but they keep tossing it back.  It must have the kiss of death or something.
20:19 < jcollie> does powerdns do dnssec too? i'd rather not go backwards on that front
20:19 < mmcgrath> smooge: oh, that's good to know.  Do you know who's primarly in charge of it?  z00dax or Evolution?
20:19 < nirik> abadger1999: no worries. Would be nice tho.
20:19 < mmcgrath> jcollie: my understanding is yes.
20:19 < mmcgrath> jcollie: but we'll have to verify that.
20:19 < smooge> I think it was Johnny at one point, but it may have moved to Evolution.
20:19  * mmcgrath will ping those guys and find out.
20:19 < smooge> I didn't ask to be blessed to the level of knowing.
20:20 < mmcgrath> Anyone have any other infrastructure technologies they'd like to see?
20:20 < mmcgrath> #help
20:20 < mmcgrath> #idea global search engine
20:20 < mmcgrath> #idea proper CDN probably with geodns and pdns
20:20 < mmcgrath> #idea finalization of the new primary mirror
20:20 < mmcgrath> #idea message bus
20:21 < mmcgrath> #idea MM messaging of some kind
20:21 < smooge> #idea cloud replacement
20:21 < mmcgrath> :)
20:21 < mmcgrath> am I forgetting anything?
20:21 < abadger1999> #idea pkgdb w/ tags and critpath
20:21 < mmcgrath> lmacken: do you guys have any major milestones to have done for this release wrt fcommunity?
20:21 < mmcgrath> #idea insight (probably very soon here)
20:21 < ricky> Zikula for docs would be awesome :-)
20:21 < jcollie> do we wanna go down the road of replacing CVS with ??? for packages? or leave that to rel-eng to figure out
20:21 < abadger1999> #idea notification server (amqp => email)
20:21 < lmacken> mmcgrath: ideally AMQP integration... hooks into our services and live widgets to expose them
20:22 < mmcgrath> <nod>
20:22 < mmcgrath> #idea fedoracommunity AMQP integration with widgets
20:22 < mmcgrath> jcollie: actually I believe there's goign to be a talk of that at fudcon
20:22 < jcollie> ftalk front end in fedoracommunity?
20:22 < lmacken> jcollie: I saw a 'talk' branch in git that ian was hacking on
20:22 < pitr> I'm new here but if You are still using cvs its quite easy to swith to svn from it
20:22 < mmcgrath> but I'm not sure if it'll make it for F13, maybe F14
20:23 < mmcgrath> pitr: we've discussed that in the past, what you gain by doing that is questionable.
20:23 < mmcgrath> people are generally looking to improve workflow, not just the technology on the back end.
20:23 < abadger1999> pitr: Yeah... but the only people who want to move are people who want dvcs so we'll either stick w/ cvs or go dvcs.
20:23 < smooge> rewrite of all infrastructure in go?
20:24 < jcollie> hg and git are the leading candidates, but it's kind of a religious question at this point
20:24 < abadger1999> is go the new javascript?
20:24 < abadger1999> :-)
20:24 -!- lxo [n=aoliva at 201.82.249.13] has joined #fedora-meeting
20:24 < mmcgrath> smooge: go ftw!
20:24 < jcollie> the few samples of go code i have seen so far are about as pretty as perl code
20:25 < smooge> abadger1999, only after its been made into a plugin
20:25 -!- Padula [n=rodrigop at 189.106.61.252] has joined #fedora-meeting
20:25 < mmcgrath> Ok, does anyone have anything else on this topic?  If not we'll move on to the next topic
20:25 < smooge> abadger1999, I thinks it going to be just someone will have to be a villain and say its X. so sorry
20:25 < dgilmore> mmcgrath: id like to try work on updating koji auth/ and notifications during F-13 life cycle
20:26 < ricky> PKI would be nice too :-)
20:26 -!- |pitr| [n=kvirc at 91.150.139.57] has joined #fedora-meeting
20:26 < mmcgrath> #idea updating koji auth and notifications
20:26 < mmcgrath> #idea pki (ricky says he'll do this and it'll be done by january)
20:26 < mmcgrath> :-P
20:26  * ricky runs
20:26 -!- Padula [n=rodrigop at 189.106.61.252] has quit Client Quit
20:26 < dgilmore> #idea further streamling and full integration of secondary arches
20:26 < mmcgrath> Ok, next topic then
20:26 < mmcgrath> #topic Search Engine
20:26 -!- zodbot changed the topic of #fedora-meeting to: Search Engine (Meeting topic: Infrastructure)
20:26 < mmcgrath> a-k: hit me!
20:26 < a-k> #link http://fedoraproject.org/wiki/Infrastructure/Search
20:26 < |pitr|> heh - I lost connection - it seams that ath9k dev's still have things to do ;)
20:27 < dgilmore> mmcgrath: i have a bunch of dogtag packages to review on the pki side of things
20:27 -!- llaumgui_ [n=llaumgui at lns-bzn-51f-81-56-136-221.adsl.proxad.net] has joined #fedora-meeting
20:27 < a-k> huzaifas and I were thinking we'd have candidates to try out on a PT server in January
20:27 < a-k> Nothing has blown us away yet, but we should have worked through most of the candidates by then
20:27 < a-k> If I can make Apache Solr work, it sounds really nice from the docs
20:27 < a-k> We'll have a better handle on specific PT requirements by January
20:28 < a-k> I think that's about it.
20:28 < mmcgrath> dgilmore: yeah I forgot about that.
20:28 < mmcgrath> a-k: thanks for the update.
20:28 < smooge> pki?
20:28 < smooge> sorry.. will talk off chan
20:28 < mmcgrath> smooge: yeah our pki right now is very... ehh manual
20:28 < mmcgrath> and not fun to manage :)
20:29 < mmcgrath> Ok, and I think that's really all I had for the meeting
20:29 < mmcgrath> #topic Open Floor
20:29 -!- zodbot changed the topic of #fedora-meeting to: Open Floor (Meeting topic: Infrastructure)
20:29 < mmcgrath> anyone have anything they'd like to discuss?
20:29 < mmcgrath> any new members want to make themselves known?
20:29 < jcollie> our first real f-talk meeting is under way...
20:29 < dgilmore> smooge: public key infrastructure
20:29 < dgilmore> jcollie: its going ok
20:29 < |pitr|> I'm new
20:30 < abadger1999> |pitr|: Welcome.  What would you like to do?
20:30 < abadger1999> :-)
20:30 < smooge> hi |pitr| welcome to Sysadmins Anonymous
20:30 < |pitr|> I've sent email 3 days ago on fedora-infrastructure
20:30 < ricky> Welcome!
20:31 < |pitr|> I'm not quite sure yet
20:31 -!- llaumgui_ [n=llaumgui at lns-bzn-51f-81-56-136-221.adsl.proxad.net] has quit Client Quit
20:31 < |pitr|> I wor as a some kind sysadmin at r&d department of my company
20:31 < |pitr|> I'm good at troubleshooting
20:32 < mmcgrath> |pitr|: have you seen - https://fedorahosted.org/fedora-infrastructure/report/1
20:32 < mmcgrath> it has a good list of things we're currently working on.
20:32 < |pitr|> right now I'm reading what I can find and trying to follow the discusion
20:32 < |pitr|> no
20:33 < mmcgrath> |pitr|: well welcome, also do hang out in #fedora-admin, that's the business end of the group :)
20:33 < |pitr|> thx
20:33 < mmcgrath> Ok, if no one has anything else to discuss we'll close the meeting in 30s.
20:34 < mmcgrath> alrighty!
20:34 < mmcgrath> #endmeeting
20:34 -!- zodbot changed the topic of #fedora-meeting to: Channel is used by various Fedora groups and committees for their regular meetings | Note that meetings often get logged | For questions about using Fedora please ask in #fedora | See http://fedoraproject.org/wiki/Communicate/FedoraMeetingChannel for meeting schedule
20:34 < zodbot> Meeting ended Thu Nov 19 20:34:51 2009 UTC.  Information about MeetBot at http://wiki.debian.org/MeetBot .
20:34 < zodbot> Minutes:        http://meetbot.fedoraproject.org/fedora-meeting/2009-11-19/fedora-meeting.2009-11-19-20.00.html
20:34 < zodbot> Minutes (text): http://meetbot.fedoraproject.org/fedora-meeting/2009-11-19/fedora-meeting.2009-11-19-20.00.txt
20:34 < zodbot> Log:            http://meetbot.fedoraproject.org/fedora-meeting/2009-11-19/fedora-meeting.2009-11-19-20.00.log.html
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 197 bytes
Desc: not available
URL: <http://listman.redhat.com/archives/fedora-infrastructure-list/attachments/20091119/b5b1ffe3/attachment.sig>

From bochecha at fedoraproject.org  Thu Nov 19 23:24:17 2009
From: bochecha at fedoraproject.org (Mathieu Bridon (bochecha))
Date: Fri, 20 Nov 2009 00:24:17 +0100
Subject: PKI (Was: Re: Meeting Log - 2009-11-19)
Message-ID: <2d319b780911191524q574dcd5ahe4449d4b800d20f5@mail.gmail.com>

Hi,

> 20:25 < dgilmore> mmcgrath: id like to try work on updating koji auth/ and notifications during F-13 life cycle
> 20:26 < ricky> PKI would be nice too :-)
> 20:26 -!- |pitr| [n=kvirc at 91.150.139.57] has joined #fedora-meeting
> 20:26 < mmcgrath> #idea updating koji auth and notifications
> 20:26 < mmcgrath> #idea pki (ricky says he'll do this and it'll be done by january)
> 20:26 < mmcgrath> :-P
> 20:26 ?* ricky runs
[snip]
> 20:28 < smooge> pki?
> 20:28 < smooge> sorry.. will talk off chan
> 20:28 < mmcgrath> smooge: yeah our pki right now is very... ehh manual
> 20:28 < mmcgrath> and not fun to manage :)

Not sure that's what you're looking for, but the guys I work with have
created this neat Python module to handle CAs and certs:
http://bitbucket.org/faide/pki/

It's free software (MIT or PSF).

Would that help ?


----------

Mathieu Bridon (bochecha)



From mmcgrath at redhat.com  Fri Nov 20 00:25:42 2009
From: mmcgrath at redhat.com (Mike McGrath)
Date: Thu, 19 Nov 2009 18:25:42 -0600 (CST)
Subject: PKI (Was: Re: Meeting Log - 2009-11-19)
In-Reply-To: <2d319b780911191524q574dcd5ahe4449d4b800d20f5@mail.gmail.com>
References: <2d319b780911191524q574dcd5ahe4449d4b800d20f5@mail.gmail.com>
Message-ID: <alpine.LFD.2.00.0911191824240.9503@laptop.mmcgrath.net>

On Fri, 20 Nov 2009, Mathieu Bridon (bochecha) wrote:

> Hi,
>
> > 20:25 < dgilmore> mmcgrath: id like to try work on updating koji auth/ and notifications during F-13 life cycle
> > 20:26 < ricky> PKI would be nice too :-)
> > 20:26 -!- |pitr| [n=kvirc at 91.150.139.57] has joined #fedora-meeting
> > 20:26 < mmcgrath> #idea updating koji auth and notifications
> > 20:26 < mmcgrath> #idea pki (ricky says he'll do this and it'll be done by january)
> > 20:26 < mmcgrath> :-P
> > 20:26 ?* ricky runs
> [snip]
> > 20:28 < smooge> pki?
> > 20:28 < smooge> sorry.. will talk off chan
> > 20:28 < mmcgrath> smooge: yeah our pki right now is very... ehh manual
> > 20:28 < mmcgrath> and not fun to manage :)
>
> Not sure that's what you're looking for, but the guys I work with have
> created this neat Python module to handle CAs and certs:
> http://bitbucket.org/faide/pki/
>
> It's free software (MIT or PSF).
>

I think anything helps, we've been looking at dogtag for a while but
nothing has materialized yet.  It's good to keep our options open.

	-Mike

From mmcgrath at redhat.com  Fri Nov 20 00:46:48 2009
From: mmcgrath at redhat.com (Mike McGrath)
Date: Thu, 19 Nov 2009 18:46:48 -0600 (CST)
Subject: temporary rsync files visible on download-i2
In-Reply-To: <20091119090318.GG16031@lisas.de>
References: <20091119090318.GG16031@lisas.de>
Message-ID: <alpine.LFD.2.00.0911191846380.9503@laptop.mmcgrath.net>

Are you seeing this regularly or just this one time?

	-Mike

On Thu, 19 Nov 2009, Adrian Reber wrote:

> The configuration of download-i2 seems to be not the same as from the other
> non I2 download servers:
>
> rsync download-i2.fedora.redhat.com::fedora-linux-development/i386/debug/.~tmp~/
>
> gives me a long list of files which should not be visible, whereas running rsync
> against the non I2 download server gives me
>
> rsync: link_stat "i386/debug/.~tmp~/." (in fedora-linux-development) failed: Permission denied (13)
>
> So the directory (which probably should not be there at all) is on both
> servers but the I2 server lets me also download it.
>
> 		Adrian
>
> _______________________________________________
> Fedora-infrastructure-list mailing list
> Fedora-infrastructure-list at redhat.com
> https://www.redhat.com/mailman/listinfo/fedora-infrastructure-list
>



From mmcgrath at redhat.com  Fri Nov 20 00:47:55 2009
From: mmcgrath at redhat.com (Mike McGrath)
Date: Thu, 19 Nov 2009 18:47:55 -0600 (CST)
Subject: New Subscriber - Introduction
In-Reply-To: <de73bf2c0911190336y1fdf462u6cbde1a09e03711d@mail.gmail.com>
References: <de73bf2c0911190336y1fdf462u6cbde1a09e03711d@mail.gmail.com>
Message-ID: <alpine.LFD.2.00.0911191847120.9503@laptop.mmcgrath.net>

On Thu, 19 Nov 2009, Ashley Biar wrote:

> Hi All,
>
>
> My name is Ash and I have just joined the Fedora Infrastructure group.
> I've been playing around with Fedora in my spare time (when I could be bothered :P) since 'Core 6', and only recently
> have I become more eager to discover more about the OS.
> I built a file server for home on Fedora 10 a while ago, and will be performing a fresh install of Fedora 12 - once the
> download finishes.
>
> I have been working as a Unix Administrator for the past 18 months primarily working with HP-UX and RHEL3, along with IBM
> and EMC based SAN storage.
> I also have some experience with HP Data Protector 5.5. Out backup infrastructure consists of 2 physical tape libraries
> and 2 virtual tape libraries.
>
>
> I would like to participate in the fedora project in some way, however I'm not too sure what I can offer - I thought I'd
> check it out.
>

Sounds like you're in the right place.  Have you seen our getting started
page?

http://fedoraproject.org/wiki/Infrastructure/GettingStarted

	-Mike



From gregswift at gmail.com  Fri Nov 20 01:26:42 2009
From: gregswift at gmail.com (Greg Swift)
Date: Thu, 19 Nov 2009 19:26:42 -0600
Subject: PKI (Was: Re: Meeting Log - 2009-11-19)
In-Reply-To: <alpine.LFD.2.00.0911191824240.9503@laptop.mmcgrath.net>
References: <2d319b780911191524q574dcd5ahe4449d4b800d20f5@mail.gmail.com>
	<alpine.LFD.2.00.0911191824240.9503@laptop.mmcgrath.net>
Message-ID: <4e3f91d70911191726q2727547cn4488d0d228225e6f@mail.gmail.com>

On Thu, Nov 19, 2009 at 18:25, Mike McGrath <mmcgrath at redhat.com> wrote:

> On Fri, 20 Nov 2009, Mathieu Bridon (bochecha) wrote:
>
> > Hi,
> >
> > > 20:25 < dgilmore> mmcgrath: id like to try work on updating koji auth/
> and notifications during F-13 life cycle
> > > 20:26 < ricky> PKI would be nice too :-)
> > > 20:26 -!- |pitr| [n=kvirc at 91.150.139.57] has joined #fedora-meeting
> > > 20:26 < mmcgrath> #idea updating koji auth and notifications
> > > 20:26 < mmcgrath> #idea pki (ricky says he'll do this and it'll be done
> by january)
> > > 20:26 < mmcgrath> :-P
> > > 20:26  * ricky runs
> > [snip]
> > > 20:28 < smooge> pki?
> > > 20:28 < smooge> sorry.. will talk off chan
> > > 20:28 < mmcgrath> smooge: yeah our pki right now is very... ehh manual
> > > 20:28 < mmcgrath> and not fun to manage :)
> >
> > Not sure that's what you're looking for, but the guys I work with have
> > created this neat Python module to handle CAs and certs:
> > http://bitbucket.org/faide/pki/
> >
> > It's free software (MIT or PSF).
> >
>
> I think anything helps, we've been looking at dogtag for a while but
> nothing has materialized yet.  It's good to keep our options open.
>
>
I played with koji a while back, and one thought that I had at the time was
about getting it to work with certmaster.   I would think that based on the
description from its product page that it would meet the conceptual
requirements:

>From https://fedorahosted.org/certmaster/

   - Certmaster is a set of tools and a library for easily distributing SSL
   certificates to applications that need them
   - Certmaster originated in the Func <https://fedorahosted.org/func>project
   - Any application can use certmaster for easy exchange of SSL
   certificates
   - Certmaster has a a python API and command line tool provided
   ("certmaster-request") for requesting certificates
   - A daemon, called "certmaster" is included to hand certificates out
   - The tool "certmaster-ca" is used to list certs and sign them when
   requests come in.
   - autosigning of new certificate requests is also supported but is off by
   default.
   - configuration is all done via minimal text files
   - certmaster has extensive audit logs of certificate operation

When I've looked at certmaster in the past I personally felt it needed a
touch more configuration to allow for the actual signing of certificates by
multiple applications, but a good frame work is in place, and its works
fairly well for func.

One part I know it is definitely lacking is the user certificates.

-greg
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://listman.redhat.com/archives/fedora-infrastructure-list/attachments/20091119/e3e09107/attachment.htm>

From a.badger at gmail.com  Fri Nov 20 03:50:43 2009
From: a.badger at gmail.com (Toshio Kuratomi)
Date: Thu, 19 Nov 2009 19:50:43 -0800
Subject: PackageDB 0.5.x branched
Message-ID: <20091120035043.GE6665@clingman.lan>

This is just a notice that PackageDB development is shifting to the 0.5.x
branch and what that means if you have a checkout for hacking.

First, the big news is that 0.5.x has been branched.  We'll be working on
stabilizing this with the goal of having a working version before Fedora
13 alpha (Currently scheduled for 2010-02-09).  We'll have test releases
on https://admin.stg.fedoraproject.org/pkgdb/ before that time.

0.4.x is in maintainance mode.  There probably won't be another release off
of this branch although I will be committing any hotfixes that we generate
for Fedora Infrastructure to it.

If you want to work with 0.5.x the command to check it out is::

  bzr branch bzr+ssh://bzr.fedorahosted.org/bzr/packagedb/0.5.x

If you presently have an 0.4.x branch that you'd like to switch over to the
0.5.x branch, you'll need to do::

  cd 0.4.x
  bzr merge bzr+ssh://bzr.fedorahosted.org/bzr/packagedb/0.5.x
  # Take care of any conflicts
  bzr commit
  bzr pull --remember bzr+ssh://bzr.fedorahosted.org/bzr/packagedb/0.5.x
  # Next time you push, use --remember as well to switch the branch you push
  # to by default
  # bzr push --remember bzr+ssh://bzr.fedorahosted.org/bzr/packagedb/0.5.x

If you have changes that are going to change the API, are big changes, or
destabilize things, please let me know and we can decide whether there's
time to push them to 0.5.x or if they should go to fedora-packagedb-devel.
We will be pushing a few more planned features to the 0.5.x branch but in
general, we have a schedule to hit so we need to concentrate on getting the
required features stable by the deadline.

There are several big new features in the 0.5.x version and a reorganization
of quite a bit of the code so I'll be spending quite a lot of my time
working on this.  If you need me for something else, I'll be on IRC but
this is just a warning that I may not be able to help with random things
as much as usual.

-Toshio
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 197 bytes
Desc: not available
URL: <http://listman.redhat.com/archives/fedora-infrastructure-list/attachments/20091119/64d7cd32/attachment.sig>

From adrian at lisas.de  Fri Nov 20 18:21:01 2009
From: adrian at lisas.de (Adrian Reber)
Date: Fri, 20 Nov 2009 19:21:01 +0100
Subject: temporary rsync files visible on download-i2
In-Reply-To: <alpine.LFD.2.00.0911191846380.9503@laptop.mmcgrath.net>
References: <20091119090318.GG16031@lisas.de>
	<alpine.LFD.2.00.0911191846380.9503@laptop.mmcgrath.net>
Message-ID: <20091120182101.GG30477@lisas.de>

I saw it during the initial F12 sync and it has been there since.

		Adrian

On Thu, Nov 19, 2009 at 06:46:48PM -0600, Mike McGrath wrote:
> Are you seeing this regularly or just this one time?
> 
> 	-Mike
> 
> On Thu, 19 Nov 2009, Adrian Reber wrote:
> 
> > The configuration of download-i2 seems to be not the same as from the other
> > non I2 download servers:
> >
> > rsync download-i2.fedora.redhat.com::fedora-linux-development/i386/debug/.~tmp~/
> >
> > gives me a long list of files which should not be visible, whereas running rsync
> > against the non I2 download server gives me
> >
> > rsync: link_stat "i386/debug/.~tmp~/." (in fedora-linux-development) failed: Permission denied (13)
> >
> > So the directory (which probably should not be there at all) is on both
> > servers but the I2 server lets me also download it.
> >
> > 		Adrian



From rene.purcell at gmail.com  Fri Nov 20 18:47:17 2009
From: rene.purcell at gmail.com (Rene Purcell)
Date: Fri, 20 Nov 2009 13:47:17 -0500
Subject: Introduction New subscriber - Contributor
Message-ID: <7eaa835c0911201047m1e8b5b25waf49de2c04b83973@mail.gmail.com>

Hi all,
My name is Ren? Jr Purcell and I'd like to join the Fedora community and I
think the Infrastructure group is a good place to start!

I started using Linux with Slackware 4.0, I remember all those night trying
to understand this "new way of thinking and using computer" I had a lot of
fun and I really started to understand and have fun after few weeks of work
trying LFS (Linux From Scratch).

I've been working as a Linux administrator for ther past 6 years, working
with Suse linux enterprise server, RHEL and CentOS. During the past two
years I got my CLP and RHCE certification which push me to try and use
RedHat product. For now I'm trying to learn the administration of Oracle on
Linux and I'm working hard to become a master of RHEV. I'm using Fedora
daily, since Core 3 and I appreciate the work done by the community and I
think it's the time for me to give back!

Just like Ashley Biar ( who posted yesterday ) I'm not sure where I can
start helping, I would like to learn first how everyone work together on the
project, where are the biggest needs and I'll see later.. For now my main
interest are the system administration and I'm trying to find if my
knowledge of RPM could lead me to maintain/package rpms.

Looking forward to see/chat with you on IRC.

Regards
Ren? Jr Purcell
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://listman.redhat.com/archives/fedora-infrastructure-list/attachments/20091120/a00c73b8/attachment.htm>

From mmcgrath at redhat.com  Fri Nov 20 21:39:33 2009
From: mmcgrath at redhat.com (Mike McGrath)
Date: Fri, 20 Nov 2009 15:39:33 -0600 (CST)
Subject: Introduction New subscriber - Contributor
In-Reply-To: <7eaa835c0911201047m1e8b5b25waf49de2c04b83973@mail.gmail.com>
References: <7eaa835c0911201047m1e8b5b25waf49de2c04b83973@mail.gmail.com>
Message-ID: <alpine.LFD.2.00.0911201539110.9503@laptop.mmcgrath.net>

On Fri, 20 Nov 2009, Rene Purcell wrote:

> Hi all,
> My name is Ren? Jr Purcell and I'd like to join the Fedora community and I think the Infrastructure group is a good place
> to start!
>
> I started using Linux with Slackware 4.0, I remember all those night trying to understand this "new way of thinking and
> using computer" I had a lot of fun and I really started to understand and have fun after few weeks of work trying LFS
> (Linux From Scratch).
>
> I've been working as a Linux administrator for ther past 6 years, working with Suse linux enterprise server, RHEL and
> CentOS. During the past two years I got my CLP and RHCE certification which push me to try and use RedHat product. For
> now I'm trying to learn the administration of Oracle on Linux and I'm working hard to become a master of RHEV. I'm using
> Fedora daily, since Core 3 and I appreciate the work done by the community and I think it's the time for me to give back!
>
> Just like Ashley Biar ( who posted yesterday ) I'm not sure where I can start helping, I would like to learn first how
> everyone work together on the project, where are the biggest needs and I'll see later.. For now my main interest are the
> system administration and I'm trying to find if my knowledge of RPM could lead me to maintain/package rpms.
>
> Looking forward to see/chat with you on IRC.
>

Getting a feel for things is always good, make sure you stop by
#fedora-admin on irc.freenode.net and make yourself known.

	-Mike

From mmcgrath at redhat.com  Fri Nov 20 22:09:17 2009
From: mmcgrath at redhat.com (Mike McGrath)
Date: Fri, 20 Nov 2009 16:09:17 -0600 (CST)
Subject: DNSSEC and Geodns
Message-ID: <alpine.LFD.2.00.0911201607510.9503@laptop.mmcgrath.net>

Nothing's ever easy, is it?

So I got pdns up and going this afternoon with it's geo back end.  It's
working as expected and everything is good.  The problem is pdns's dnssec
implementation is...  not particularly mature or really even usable AFAIK
with geodns.

Anyone out there doing both geo location and dnssec with their name
servers?

	-Mike



From smooge at gmail.com  Fri Nov 20 23:29:23 2009
From: smooge at gmail.com (Stephen John Smoogen)
Date: Fri, 20 Nov 2009 16:29:23 -0700
Subject: DNSSEC and Geodns
In-Reply-To: <alpine.LFD.2.00.0911201607510.9503@laptop.mmcgrath.net>
References: <alpine.LFD.2.00.0911201607510.9503@laptop.mmcgrath.net>
Message-ID: <80d7e4090911201529h5b3fb200yb0a00d6a3ca4b9ef@mail.gmail.com>

On Fri, Nov 20, 2009 at 3:09 PM, Mike McGrath <mmcgrath at redhat.com> wrote:
> Nothing's ever easy, is it?
>
> So I got pdns up and going this afternoon with it's geo back end. ?It's
> working as expected and everything is good. ?The problem is pdns's dnssec
> implementation is... ?not particularly mature or really even usable AFAIK
> with geodns.
>
> Anyone out there doing both geo location and dnssec with their name
> servers?

Not really. Most places I know do not do dns-sec (either waiting until
.com/.org is signed or until its required) or if they are doing
dns-sec aren't doing geoip. The solutions that comes to mind would be
to have the geoip code in an unsigned sub-zone. Its not great but
until 2011 I don't see it being much better.


> ? ? ? ?-Mike
>
> _______________________________________________
> Fedora-infrastructure-list mailing list
> Fedora-infrastructure-list at redhat.com
> https://www.redhat.com/mailman/listinfo/fedora-infrastructure-list
>



-- 
Stephen J Smoogen.

Ah, but a man's reach should exceed his grasp. Or what's a heaven for?
-- Robert Browning



From mmcgrath at redhat.com  Sat Nov 21 03:13:08 2009
From: mmcgrath at redhat.com (Mike McGrath)
Date: Fri, 20 Nov 2009 21:13:08 -0600 (CST)
Subject: DNSSEC and Geodns
In-Reply-To: <80d7e4090911201529h5b3fb200yb0a00d6a3ca4b9ef@mail.gmail.com>
References: <alpine.LFD.2.00.0911201607510.9503@laptop.mmcgrath.net>
	<80d7e4090911201529h5b3fb200yb0a00d6a3ca4b9ef@mail.gmail.com>
Message-ID: <alpine.LFD.2.00.0911202112400.9503@laptop.mmcgrath.net>

On Fri, 20 Nov 2009, Stephen John Smoogen wrote:

> On Fri, Nov 20, 2009 at 3:09 PM, Mike McGrath <mmcgrath at redhat.com> wrote:
> > Nothing's ever easy, is it?
> >
> > So I got pdns up and going this afternoon with it's geo back end. ?It's
> > working as expected and everything is good. ?The problem is pdns's dnssec
> > implementation is... ?not particularly mature or really even usable AFAIK
> > with geodns.
> >
> > Anyone out there doing both geo location and dnssec with their name
> > servers?
>
> Not really. Most places I know do not do dns-sec (either waiting until
> .com/.org is signed or until its required) or if they are doing
> dns-sec aren't doing geoip. The solutions that comes to mind would be
> to have the geoip code in an unsigned sub-zone. Its not great but
> until 2011 I don't see it being much better.
>

Ugh, I really don't want to have to choose, nb did great work with getting
dnssec going.

	-Mike

From smooge at gmail.com  Sat Nov 21 03:18:57 2009
From: smooge at gmail.com (Stephen John Smoogen)
Date: Fri, 20 Nov 2009 20:18:57 -0700
Subject: DNSSEC and Geodns
In-Reply-To: <alpine.LFD.2.00.0911202112400.9503@laptop.mmcgrath.net>
References: <alpine.LFD.2.00.0911201607510.9503@laptop.mmcgrath.net>
	<80d7e4090911201529h5b3fb200yb0a00d6a3ca4b9ef@mail.gmail.com>
	<alpine.LFD.2.00.0911202112400.9503@laptop.mmcgrath.net>
Message-ID: <80d7e4090911201918p7b109766x29679b0c0653a9c0@mail.gmail.com>

On Fri, Nov 20, 2009 at 8:13 PM, Mike McGrath <mmcgrath at redhat.com> wrote:
> On Fri, 20 Nov 2009, Stephen John Smoogen wrote:
>
>> On Fri, Nov 20, 2009 at 3:09 PM, Mike McGrath <mmcgrath at redhat.com> wrote:
>> > Nothing's ever easy, is it?
>> >
>> > So I got pdns up and going this afternoon with it's geo back end. ?It's
>> > working as expected and everything is good. ?The problem is pdns's dnssec
>> > implementation is... ?not particularly mature or really even usable AFAIK
>> > with geodns.
>> >
>> > Anyone out there doing both geo location and dnssec with their name
>> > servers?
>>
>> Not really. Most places I know do not do dns-sec (either waiting until
>> .com/.org is signed or until its required) or if they are doing
>> dns-sec aren't doing geoip. The solutions that comes to mind would be
>> to have the geoip code in an unsigned sub-zone. Its not great but
>> until 2011 I don't see it being much better.
>>
>
> Ugh, I really don't want to have to choose, nb did great work with getting
> dnssec going.

I would only do it for a subzone and not for the main one. Basically
have ns1/ns2 have the signed zones and the subzones on another one.



-- 
Stephen J Smoogen.

Ah, but a man's reach should exceed his grasp. Or what's a heaven for?
-- Robert Browning



From dev at nigelj.com  Sat Nov 21 03:27:05 2009
From: dev at nigelj.com (Nigel Jones)
Date: Sat, 21 Nov 2009 13:27:05 +1000
Subject: DNSSEC and Geodns
In-Reply-To: <80d7e4090911201918p7b109766x29679b0c0653a9c0@mail.gmail.com>
References: <alpine.LFD.2.00.0911201607510.9503@laptop.mmcgrath.net>
	<80d7e4090911201529h5b3fb200yb0a00d6a3ca4b9ef@mail.gmail.com>
	<alpine.LFD.2.00.0911202112400.9503@laptop.mmcgrath.net>
	<80d7e4090911201918p7b109766x29679b0c0653a9c0@mail.gmail.com>
Message-ID: <69fe28d70911201927i60676b77n6b1b49260b7c3e69@mail.gmail.com>

On Sat, Nov 21, 2009 at 1:18 PM, Stephen John Smoogen <smooge at gmail.com> wrote:
> On Fri, Nov 20, 2009 at 8:13 PM, Mike McGrath <mmcgrath at redhat.com> wrote:
>> On Fri, 20 Nov 2009, Stephen John Smoogen wrote:
>>
>>> On Fri, Nov 20, 2009 at 3:09 PM, Mike McGrath <mmcgrath at redhat.com> wrote:
>>> > Nothing's ever easy, is it?
>>> >
>>> > So I got pdns up and going this afternoon with it's geo back end. ?It's
>>> > working as expected and everything is good. ?The problem is pdns's dnssec
>>> > implementation is... ?not particularly mature or really even usable AFAIK
>>> > with geodns.
>>> >
>>> > Anyone out there doing both geo location and dnssec with their name
>>> > servers?
>>>
>>> Not really. Most places I know do not do dns-sec (either waiting until
>>> .com/.org is signed or until its required) or if they are doing
>>> dns-sec aren't doing geoip. The solutions that comes to mind would be
>>> to have the geoip code in an unsigned sub-zone. Its not great but
>>> until 2011 I don't see it being much better.
>>>
>>
>> Ugh, I really don't want to have to choose, nb did great work with getting
>> dnssec going.
>
> I would only do it for a subzone and not for the main one. Basically
> have ns1/ns2 have the signed zones and the subzones on another one.
Surely this is going to increase the time needed for clients to
perform DNS lookups on the content we got GEO-Located (i.e.
fedoraproject.org/admin.fedoraproject.org)

- Nigel



From smooge at gmail.com  Sat Nov 21 03:36:36 2009
From: smooge at gmail.com (Stephen John Smoogen)
Date: Fri, 20 Nov 2009 20:36:36 -0700
Subject: DNSSEC and Geodns
In-Reply-To: <69fe28d70911201927i60676b77n6b1b49260b7c3e69@mail.gmail.com>
References: <alpine.LFD.2.00.0911201607510.9503@laptop.mmcgrath.net>
	<80d7e4090911201529h5b3fb200yb0a00d6a3ca4b9ef@mail.gmail.com>
	<alpine.LFD.2.00.0911202112400.9503@laptop.mmcgrath.net>
	<80d7e4090911201918p7b109766x29679b0c0653a9c0@mail.gmail.com>
	<69fe28d70911201927i60676b77n6b1b49260b7c3e69@mail.gmail.com>
Message-ID: <80d7e4090911201936u7eec68b0y21e78c0cc3a0d4ea@mail.gmail.com>

On Fri, Nov 20, 2009 at 8:27 PM, Nigel Jones <dev at nigelj.com> wrote:
> On Sat, Nov 21, 2009 at 1:18 PM, Stephen John Smoogen <smooge at gmail.com> wrote:
>> On Fri, Nov 20, 2009 at 8:13 PM, Mike McGrath <mmcgrath at redhat.com> wrote:

>>> Ugh, I really don't want to have to choose, nb did great work with getting
>>> dnssec going.
>>
>> I would only do it for a subzone and not for the main one. Basically
>> have ns1/ns2 have the signed zones and the subzones on another one.
> Surely this is going to increase the time needed for clients to
> perform DNS lookups on the content we got GEO-Located (i.e.
> fedoraproject.org/admin.fedoraproject.org)

Usually the time is really pretty small.

> - Nigel
>
> _______________________________________________
> Fedora-infrastructure-list mailing list
> Fedora-infrastructure-list at redhat.com
> https://www.redhat.com/mailman/listinfo/fedora-infrastructure-list
>



-- 
Stephen J Smoogen.

Ah, but a man's reach should exceed his grasp. Or what's a heaven for?
-- Robert Browning



From jeff at ocjtech.us  Sat Nov 21 03:49:28 2009
From: jeff at ocjtech.us (Jeffrey Ollie)
Date: Fri, 20 Nov 2009 21:49:28 -0600
Subject: DNSSEC and Geodns
In-Reply-To: <alpine.LFD.2.00.0911201607510.9503@laptop.mmcgrath.net>
References: <alpine.LFD.2.00.0911201607510.9503@laptop.mmcgrath.net>
Message-ID: <935ead450911201949r2599a360tdc59e68324287417@mail.gmail.com>

On Fri, Nov 20, 2009 at 4:09 PM, Mike McGrath <mmcgrath at redhat.com> wrote:
> Nothing's ever easy, is it?
>
> So I got pdns up and going this afternoon with it's geo back end. ?It's
> working as expected and everything is good. ?The problem is pdns's dnssec
> implementation is... ?not particularly mature or really even usable AFAIK
> with geodns.
>
> Anyone out there doing both geo location and dnssec with their name
> servers?

Hmm... not sure if this rates as a 'clever' or 'ugly' hack:

http://phix.me/geodns/

-- 
Jeff Ollie



From mmcgrath at redhat.com  Sat Nov 21 04:09:14 2009
From: mmcgrath at redhat.com (Mike McGrath)
Date: Fri, 20 Nov 2009 22:09:14 -0600 (CST)
Subject: DNSSEC and Geodns
In-Reply-To: <80d7e4090911201918p7b109766x29679b0c0653a9c0@mail.gmail.com>
References: <alpine.LFD.2.00.0911201607510.9503@laptop.mmcgrath.net>
	<80d7e4090911201529h5b3fb200yb0a00d6a3ca4b9ef@mail.gmail.com>
	<alpine.LFD.2.00.0911202112400.9503@laptop.mmcgrath.net>
	<80d7e4090911201918p7b109766x29679b0c0653a9c0@mail.gmail.com>
Message-ID: <alpine.LFD.2.00.0911202208140.9503@laptop.mmcgrath.net>

On Fri, 20 Nov 2009, Stephen John Smoogen wrote:

> On Fri, Nov 20, 2009 at 8:13 PM, Mike McGrath <mmcgrath at redhat.com> wrote:
> > On Fri, 20 Nov 2009, Stephen John Smoogen wrote:
> >
> >> On Fri, Nov 20, 2009 at 3:09 PM, Mike McGrath <mmcgrath at redhat.com> wrote:
> >> > Nothing's ever easy, is it?
> >> >
> >> > So I got pdns up and going this afternoon with it's geo back end. ?It's
> >> > working as expected and everything is good. ?The problem is pdns's dnssec
> >> > implementation is... ?not particularly mature or really even usable AFAIK
> >> > with geodns.
> >> >
> >> > Anyone out there doing both geo location and dnssec with their name
> >> > servers?
> >>
> >> Not really. Most places I know do not do dns-sec (either waiting until
> >> .com/.org is signed or until its required) or if they are doing
> >> dns-sec aren't doing geoip. The solutions that comes to mind would be
> >> to have the geoip code in an unsigned sub-zone. Its not great but
> >> until 2011 I don't see it being much better.
> >>
> >
> > Ugh, I really don't want to have to choose, nb did great work with getting
> > dnssec going.
>
> I would only do it for a subzone and not for the main one. Basically
> have ns1/ns2 have the signed zones and the subzones on another one.
>

So, for example 'fedoraproject.org' wouldn't be signed, but
'us.fedoraproject.org' would be?  I *think* that's possible but I haven't
gotten it to work.  If I can get that to work though I guess that makes
sense because A) it'd work for now and B) I'm sure over time pdns's dnssec
will continue to mature.

	-Mike

From mmcgrath at redhat.com  Sat Nov 21 04:22:19 2009
From: mmcgrath at redhat.com (Mike McGrath)
Date: Fri, 20 Nov 2009 22:22:19 -0600 (CST)
Subject: DNSSEC and Geodns
In-Reply-To: <alpine.LFD.2.00.0911202208140.9503@laptop.mmcgrath.net>
References: <alpine.LFD.2.00.0911201607510.9503@laptop.mmcgrath.net>
	<80d7e4090911201529h5b3fb200yb0a00d6a3ca4b9ef@mail.gmail.com>
	<alpine.LFD.2.00.0911202112400.9503@laptop.mmcgrath.net>
	<80d7e4090911201918p7b109766x29679b0c0653a9c0@mail.gmail.com>
	<alpine.LFD.2.00.0911202208140.9503@laptop.mmcgrath.net>
Message-ID: <alpine.LFD.2.00.0911202218380.9503@laptop.mmcgrath.net>

On Fri, 20 Nov 2009, Mike McGrath wrote:

> On Fri, 20 Nov 2009, Stephen John Smoogen wrote:
>
> > On Fri, Nov 20, 2009 at 8:13 PM, Mike McGrath <mmcgrath at redhat.com> wrote:
> > > On Fri, 20 Nov 2009, Stephen John Smoogen wrote:
> > >
> > >> On Fri, Nov 20, 2009 at 3:09 PM, Mike McGrath <mmcgrath at redhat.com> wrote:
> > >> > Nothing's ever easy, is it?
> > >> >
> > >> > So I got pdns up and going this afternoon with it's geo back end. ?It's
> > >> > working as expected and everything is good. ?The problem is pdns's dnssec
> > >> > implementation is... ?not particularly mature or really even usable AFAIK
> > >> > with geodns.
> > >> >
> > >> > Anyone out there doing both geo location and dnssec with their name
> > >> > servers?
> > >>
> > >> Not really. Most places I know do not do dns-sec (either waiting until
> > >> .com/.org is signed or until its required) or if they are doing
> > >> dns-sec aren't doing geoip. The solutions that comes to mind would be
> > >> to have the geoip code in an unsigned sub-zone. Its not great but
> > >> until 2011 I don't see it being much better.
> > >>
> > >
> > > Ugh, I really don't want to have to choose, nb did great work with getting
> > > dnssec going.
> >
> > I would only do it for a subzone and not for the main one. Basically
> > have ns1/ns2 have the signed zones and the subzones on another one.
> >
>
> So, for example 'fedoraproject.org' wouldn't be signed, but
> 'us.fedoraproject.org' would be?  I *think* that's possible but I haven't
> gotten it to work.  If I can get that to work though I guess that makes
> sense because A) it'd work for now and B) I'm sure over time pdns's dnssec
> will continue to mature.
>

I should explain this to people not familiar with pdns with the geo
backend (as I was unfamiliar about 12 hours ago :)

right now I've got powerdns to literally pull from our normal bind configs
(with a few modifications).  pdns uses this for most of it's data.  But
the geo ip lookups would happen prior to the bind lookups and the way it's
setup now would return a cname.  So, depending on where you are located
and how we set things up.  'fedoraproject.org' would point to
us.fedoraproject.org or de.fedoraproject.org or maybe even na or
eu.fedoraproject.org.

AFAIK, that cname can't be signed with the way pdns currently works.
*however* I think what the cname points to could be signed.  I'm not sure
if this completely bypasses what dnssec would get us or not but I suspect
it's the a record signings that are the most important.

Thoughts?

	-Mike

From smooge at gmail.com  Sat Nov 21 04:27:05 2009
From: smooge at gmail.com (Stephen John Smoogen)
Date: Fri, 20 Nov 2009 21:27:05 -0700
Subject: DNSSEC and Geodns
In-Reply-To: <alpine.LFD.2.00.0911202208140.9503@laptop.mmcgrath.net>
References: <alpine.LFD.2.00.0911201607510.9503@laptop.mmcgrath.net>
	<80d7e4090911201529h5b3fb200yb0a00d6a3ca4b9ef@mail.gmail.com>
	<alpine.LFD.2.00.0911202112400.9503@laptop.mmcgrath.net>
	<80d7e4090911201918p7b109766x29679b0c0653a9c0@mail.gmail.com>
	<alpine.LFD.2.00.0911202208140.9503@laptop.mmcgrath.net>
Message-ID: <80d7e4090911202027u460d488fn638a98e5c49c35a7@mail.gmail.com>

On Fri, Nov 20, 2009 at 9:09 PM, Mike McGrath <mmcgrath at redhat.com> wrote:
> On Fri, 20 Nov 2009, Stephen John Smoogen wrote:
>
>> On Fri, Nov 20, 2009 at 8:13 PM, Mike McGrath <mmcgrath at redhat.com> wrote:
>> > On Fri, 20 Nov 2009, Stephen John Smoogen wrote:
>> >
>> >> On Fri, Nov 20, 2009 at 3:09 PM, Mike McGrath <mmcgrath at redhat.com> wrote:
>> >> > Nothing's ever easy, is it?
>> >> >
>> >> > So I got pdns up and going this afternoon with it's geo back end. ?It's
>> >> > working as expected and everything is good. ?The problem is pdns's dnssec
>> >> > implementation is... ?not particularly mature or really even usable AFAIK
>> >> > with geodns.
>> >> >
>> >> > Anyone out there doing both geo location and dnssec with their name
>> >> > servers?
>> >>
>> >> Not really. Most places I know do not do dns-sec (either waiting until
>> >> .com/.org is signed or until its required) or if they are doing
>> >> dns-sec aren't doing geoip. The solutions that comes to mind would be
>> >> to have the geoip code in an unsigned sub-zone. Its not great but
>> >> until 2011 I don't see it being much better.
>> >>
>> >
>> > Ugh, I really don't want to have to choose, nb did great work with getting
>> > dnssec going.
>>
>> I would only do it for a subzone and not for the main one. Basically
>> have ns1/ns2 have the signed zones and the subzones on another one.
>>
>
> So, for example 'fedoraproject.org' wouldn't be signed, but
> 'us.fedoraproject.org' would be? ?I *think* that's possible but I haven't
> gotten it to work. ?If I can get that to work though I guess that makes
> sense because A) it'd work for now and B) I'm sure over time pdns's dnssec
> will continue to mature.

I meant more like fedoraproject.org would be signed
xxx.mirrors.fedoraproject.org wouldn't be. But now I see that doens't
cover the items we have.





-- 
Stephen J Smoogen.

Ah, but a man's reach should exceed his grasp. Or what's a heaven for?
-- Robert Browning



From jeff at ocjtech.us  Sat Nov 21 04:28:29 2009
From: jeff at ocjtech.us (Jeffrey Ollie)
Date: Fri, 20 Nov 2009 22:28:29 -0600
Subject: DNSSEC and Geodns
In-Reply-To: <alpine.LFD.2.00.0911202208140.9503@laptop.mmcgrath.net>
References: <alpine.LFD.2.00.0911201607510.9503@laptop.mmcgrath.net>
	<80d7e4090911201529h5b3fb200yb0a00d6a3ca4b9ef@mail.gmail.com>
	<alpine.LFD.2.00.0911202112400.9503@laptop.mmcgrath.net>
	<80d7e4090911201918p7b109766x29679b0c0653a9c0@mail.gmail.com>
	<alpine.LFD.2.00.0911202208140.9503@laptop.mmcgrath.net>
Message-ID: <935ead450911202028p3a200f4cu1c7df7d5347294fb@mail.gmail.com>

On Fri, Nov 20, 2009 at 10:09 PM, Mike McGrath <mmcgrath at redhat.com> wrote:
>
> So, for example 'fedoraproject.org' wouldn't be signed, but
> 'us.fedoraproject.org' would be? ?I *think* that's possible but I haven't
> gotten it to work. ?If I can get that to work though I guess that makes
> sense because A) it'd work for now and B) I'm sure over time pdns's dnssec
> will continue to mature.

No, that wouldn't really work, because then you couldn't trust lookups
from the fedoraproject.org zone, which would include delegations to
the subdomains, the main website itself, MX records, etc.

-- 
Jeff Ollie



From mmcgrath at redhat.com  Sat Nov 21 04:30:20 2009
From: mmcgrath at redhat.com (Mike McGrath)
Date: Fri, 20 Nov 2009 22:30:20 -0600 (CST)
Subject: DNSSEC and Geodns
In-Reply-To: <935ead450911202028p3a200f4cu1c7df7d5347294fb@mail.gmail.com>
References: <alpine.LFD.2.00.0911201607510.9503@laptop.mmcgrath.net>
	<80d7e4090911201529h5b3fb200yb0a00d6a3ca4b9ef@mail.gmail.com>
	<alpine.LFD.2.00.0911202112400.9503@laptop.mmcgrath.net>
	<80d7e4090911201918p7b109766x29679b0c0653a9c0@mail.gmail.com>
	<alpine.LFD.2.00.0911202208140.9503@laptop.mmcgrath.net>
	<935ead450911202028p3a200f4cu1c7df7d5347294fb@mail.gmail.com>
Message-ID: <alpine.LFD.2.00.0911202230000.9503@laptop.mmcgrath.net>

On Fri, 20 Nov 2009, Jeffrey Ollie wrote:

> On Fri, Nov 20, 2009 at 10:09 PM, Mike McGrath <mmcgrath at redhat.com> wrote:
> >
> > So, for example 'fedoraproject.org' wouldn't be signed, but
> > 'us.fedoraproject.org' would be? ?I *think* that's possible but I haven't
> > gotten it to work. ?If I can get that to work though I guess that makes
> > sense because A) it'd work for now and B) I'm sure over time pdns's dnssec
> > will continue to mature.
>
> No, that wouldn't really work, because then you couldn't trust lookups
> from the fedoraproject.org zone, which would include delegations to
> the subdomains, the main website itself, MX records, etc.
>

But if fedoraproject.org pointed to some place that wasn't signed or was
signed incorrectly, wouldn't that fail?

	-Mike

From jeff at ocjtech.us  Sat Nov 21 04:34:20 2009
From: jeff at ocjtech.us (Jeffrey Ollie)
Date: Fri, 20 Nov 2009 22:34:20 -0600
Subject: DNSSEC and Geodns
In-Reply-To: <alpine.LFD.2.00.0911202230000.9503@laptop.mmcgrath.net>
References: <alpine.LFD.2.00.0911201607510.9503@laptop.mmcgrath.net>
	<80d7e4090911201529h5b3fb200yb0a00d6a3ca4b9ef@mail.gmail.com>
	<alpine.LFD.2.00.0911202112400.9503@laptop.mmcgrath.net>
	<80d7e4090911201918p7b109766x29679b0c0653a9c0@mail.gmail.com>
	<alpine.LFD.2.00.0911202208140.9503@laptop.mmcgrath.net>
	<935ead450911202028p3a200f4cu1c7df7d5347294fb@mail.gmail.com>
	<alpine.LFD.2.00.0911202230000.9503@laptop.mmcgrath.net>
Message-ID: <935ead450911202034w7ea67a61m863b70be8d18616f@mail.gmail.com>

On Fri, Nov 20, 2009 at 10:30 PM, Mike McGrath <mmcgrath at redhat.com> wrote:
> On Fri, 20 Nov 2009, Jeffrey Ollie wrote:
>
>> On Fri, Nov 20, 2009 at 10:09 PM, Mike McGrath <mmcgrath at redhat.com> wrote:
>> >
>> > So, for example 'fedoraproject.org' wouldn't be signed, but
>> > 'us.fedoraproject.org' would be? ?I *think* that's possible but I haven't
>> > gotten it to work. ?If I can get that to work though I guess that makes
>> > sense because A) it'd work for now and B) I'm sure over time pdns's dnssec
>> > will continue to mature.
>>
>> No, that wouldn't really work, because then you couldn't trust lookups
>> from the fedoraproject.org zone, which would include delegations to
>> the subdomains, the main website itself, MX records, etc.
>>
>
> But if fedoraproject.org pointed to some place that wasn't signed or was
> signed incorrectly, wouldn't that fail?

fedoraproject.org can't be a CNAME because it has other records like
MX, NS, SOA, etc.  We'd have to switch to using
'www.fedoraproject.org' which could be a CNAME into an unsigned
subzone.

But then you'd still have the problem of relying on an unsigned zone
serving up DNS data, eventually no one is going to trust it.

-- 
Jeff Ollie



From mmcgrath at redhat.com  Sat Nov 21 05:05:46 2009
From: mmcgrath at redhat.com (Mike McGrath)
Date: Fri, 20 Nov 2009 23:05:46 -0600 (CST)
Subject: DNSSEC and Geodns
In-Reply-To: <935ead450911202034w7ea67a61m863b70be8d18616f@mail.gmail.com>
References: <alpine.LFD.2.00.0911201607510.9503@laptop.mmcgrath.net>
	<80d7e4090911201529h5b3fb200yb0a00d6a3ca4b9ef@mail.gmail.com>
	<alpine.LFD.2.00.0911202112400.9503@laptop.mmcgrath.net>
	<80d7e4090911201918p7b109766x29679b0c0653a9c0@mail.gmail.com>
	<alpine.LFD.2.00.0911202208140.9503@laptop.mmcgrath.net>
	<935ead450911202028p3a200f4cu1c7df7d5347294fb@mail.gmail.com>
	<alpine.LFD.2.00.0911202230000.9503@laptop.mmcgrath.net>
	<935ead450911202034w7ea67a61m863b70be8d18616f@mail.gmail.com>
Message-ID: <alpine.LFD.2.00.0911202305340.9503@laptop.mmcgrath.net>

On Fri, 20 Nov 2009, Jeffrey Ollie wrote:

> On Fri, Nov 20, 2009 at 10:30 PM, Mike McGrath <mmcgrath at redhat.com> wrote:
> > On Fri, 20 Nov 2009, Jeffrey Ollie wrote:
> >
> >> On Fri, Nov 20, 2009 at 10:09 PM, Mike McGrath <mmcgrath at redhat.com> wrote:
> >> >
> >> > So, for example 'fedoraproject.org' wouldn't be signed, but
> >> > 'us.fedoraproject.org' would be? ?I *think* that's possible but I haven't
> >> > gotten it to work. ?If I can get that to work though I guess that makes
> >> > sense because A) it'd work for now and B) I'm sure over time pdns's dnssec
> >> > will continue to mature.
> >>
> >> No, that wouldn't really work, because then you couldn't trust lookups
> >> from the fedoraproject.org zone, which would include delegations to
> >> the subdomains, the main website itself, MX records, etc.
> >>
> >
> > But if fedoraproject.org pointed to some place that wasn't signed or was
> > signed incorrectly, wouldn't that fail?
>
> fedoraproject.org can't be a CNAME because it has other records like
> MX, NS, SOA, etc.  We'd have to switch to using
> 'www.fedoraproject.org' which could be a CNAME into an unsigned
> subzone.
>
> But then you'd still have the problem of relying on an unsigned zone
> serving up DNS data, eventually no one is going to trust it.
>

At this very moment, what is dnssec buying us?

	-Mike

From dev at nigelj.com  Sat Nov 21 05:24:22 2009
From: dev at nigelj.com (Nigel Jones)
Date: Sat, 21 Nov 2009 15:24:22 +1000
Subject: DNSSEC and Geodns
In-Reply-To: <alpine.LFD.2.00.0911202305340.9503@laptop.mmcgrath.net>
References: <alpine.LFD.2.00.0911201607510.9503@laptop.mmcgrath.net>
	<80d7e4090911201529h5b3fb200yb0a00d6a3ca4b9ef@mail.gmail.com>
	<alpine.LFD.2.00.0911202112400.9503@laptop.mmcgrath.net>
	<80d7e4090911201918p7b109766x29679b0c0653a9c0@mail.gmail.com>
	<alpine.LFD.2.00.0911202208140.9503@laptop.mmcgrath.net>
	<935ead450911202028p3a200f4cu1c7df7d5347294fb@mail.gmail.com>
	<alpine.LFD.2.00.0911202230000.9503@laptop.mmcgrath.net>
	<935ead450911202034w7ea67a61m863b70be8d18616f@mail.gmail.com>
	<alpine.LFD.2.00.0911202305340.9503@laptop.mmcgrath.net>
Message-ID: <69fe28d70911202124i5acd48e1sbb00389d2543e7e0@mail.gmail.com>

At the moment? Nothing.

On 21/11/2009, Mike McGrath <mmcgrath at redhat.com> wrote:
> On Fri, 20 Nov 2009, Jeffrey Ollie wrote:
>
>> On Fri, Nov 20, 2009 at 10:30 PM, Mike McGrath <mmcgrath at redhat.com>
>> wrote:
>> > On Fri, 20 Nov 2009, Jeffrey Ollie wrote:
>> >
>> >> On Fri, Nov 20, 2009 at 10:09 PM, Mike McGrath <mmcgrath at redhat.com>
>> >> wrote:
>> >> >
>> >> > So, for example 'fedoraproject.org' wouldn't be signed, but
>> >> > 'us.fedoraproject.org' would be? ?I *think* that's possible but I
>> >> > haven't
>> >> > gotten it to work. ?If I can get that to work though I guess that
>> >> > makes
>> >> > sense because A) it'd work for now and B) I'm sure over time pdns's
>> >> > dnssec
>> >> > will continue to mature.
>> >>
>> >> No, that wouldn't really work, because then you couldn't trust lookups
>> >> from the fedoraproject.org zone, which would include delegations to
>> >> the subdomains, the main website itself, MX records, etc.
>> >>
>> >
>> > But if fedoraproject.org pointed to some place that wasn't signed or was
>> > signed incorrectly, wouldn't that fail?
>>
>> fedoraproject.org can't be a CNAME because it has other records like
>> MX, NS, SOA, etc.  We'd have to switch to using
>> 'www.fedoraproject.org' which could be a CNAME into an unsigned
>> subzone.
>>
>> But then you'd still have the problem of relying on an unsigned zone
>> serving up DNS data, eventually no one is going to trust it.
>>
>
> At this very moment, what is dnssec buying us?
>
> 	-Mike

-- 
Sent from my mobile device

-- Nigel Jones



From dev at nigelj.com  Sat Nov 21 05:27:34 2009
From: dev at nigelj.com (Nigel Jones)
Date: Sat, 21 Nov 2009 15:27:34 +1000
Subject: DNSSEC and Geodns
In-Reply-To: <69fe28d70911202124i5acd48e1sbb00389d2543e7e0@mail.gmail.com>
References: <alpine.LFD.2.00.0911201607510.9503@laptop.mmcgrath.net>
	<80d7e4090911201529h5b3fb200yb0a00d6a3ca4b9ef@mail.gmail.com>
	<alpine.LFD.2.00.0911202112400.9503@laptop.mmcgrath.net>
	<80d7e4090911201918p7b109766x29679b0c0653a9c0@mail.gmail.com>
	<alpine.LFD.2.00.0911202208140.9503@laptop.mmcgrath.net>
	<935ead450911202028p3a200f4cu1c7df7d5347294fb@mail.gmail.com>
	<alpine.LFD.2.00.0911202230000.9503@laptop.mmcgrath.net>
	<935ead450911202034w7ea67a61m863b70be8d18616f@mail.gmail.com>
	<alpine.LFD.2.00.0911202305340.9503@laptop.mmcgrath.net>
	<69fe28d70911202124i5acd48e1sbb00389d2543e7e0@mail.gmail.com>
Message-ID: <69fe28d70911202127m1a9e79a0j2c8d2410d98661bf@mail.gmail.com>

Actually it does buy us some trust but as the roots aren't signed it's
fairly moot.

On 21/11/2009, Nigel Jones <dev at nigelj.com> wrote:
> At the moment? Nothing.
>
> On 21/11/2009, Mike McGrath <mmcgrath at redhat.com> wrote:
>> On Fri, 20 Nov 2009, Jeffrey Ollie wrote:
>>
>>> On Fri, Nov 20, 2009 at 10:30 PM, Mike McGrath <mmcgrath at redhat.com>
>>> wrote:
>>> > On Fri, 20 Nov 2009, Jeffrey Ollie wrote:
>>> >
>>> >> On Fri, Nov 20, 2009 at 10:09 PM, Mike McGrath <mmcgrath at redhat.com>
>>> >> wrote:
>>> >> >
>>> >> > So, for example 'fedoraproject.org' wouldn't be signed, but
>>> >> > 'us.fedoraproject.org' would be? ?I *think* that's possible but I
>>> >> > haven't
>>> >> > gotten it to work. ?If I can get that to work though I guess that
>>> >> > makes
>>> >> > sense because A) it'd work for now and B) I'm sure over time pdns's
>>> >> > dnssec
>>> >> > will continue to mature.
>>> >>
>>> >> No, that wouldn't really work, because then you couldn't trust
>>> >> lookups
>>> >> from the fedoraproject.org zone, which would include delegations to
>>> >> the subdomains, the main website itself, MX records, etc.
>>> >>
>>> >
>>> > But if fedoraproject.org pointed to some place that wasn't signed or
>>> > was
>>> > signed incorrectly, wouldn't that fail?
>>>
>>> fedoraproject.org can't be a CNAME because it has other records like
>>> MX, NS, SOA, etc.  We'd have to switch to using
>>> 'www.fedoraproject.org' which could be a CNAME into an unsigned
>>> subzone.
>>>
>>> But then you'd still have the problem of relying on an unsigned zone
>>> serving up DNS data, eventually no one is going to trust it.
>>>
>>
>> At this very moment, what is dnssec buying us?
>>
>> 	-Mike
>
> --
> Sent from my mobile device
>
> -- Nigel Jones
>

-- 
Sent from my mobile device

-- Nigel Jones



From fedora-lists at mkdir.name  Sat Nov 21 16:43:32 2009
From: fedora-lists at mkdir.name (Andreas Osowski)
Date: Sat, 21 Nov 2009 17:43:32 +0100
Subject: Introduction -- new subscriber
Message-ID: <4B0818B4.8070501@mkdir.name>

Hello,
My name is Andreas Osowski, I've been a Packager for the past ~6 months
and joining Infrastructure has been on my todo-list for quite some time.
After all, there is far more to Fedora than just Packaging :)
I started using GNU/Linux on a regular base about 4 years ago, going from
Debian to Fedora (and eventually from there on to Gentoo and back :) )
I've been a sysadmin at my school for the past 3 years where we are using
a Linux distribution for schools (called Musterl?sung) using PSQL,
LDAP, Moodle and Linbo (an OSS solution for self-healing workstations).
During the past few years, I have been running and administering various
dedicated (and home) servers mostly based upon Gentoo Hardened, Debian or
CentOS.
I'm on good terms with RoR and Python and have used TurboGears from time to time in the
past, mainly for recreational projects. I've been using Java and C++
for the past 4 years, too, but I am more interested in other areas right now.

So yeah, I guess that I'm most interested in sysadmin-web for now, but I'm
still unsure here; it might be a good start.

By joining the sysadmin group I hope to be able to refine my skills in
sysadmin matters and eventually become better in web development, too :)

Regards,

Andreas

https://fedoraproject.org/wiki/User:Th0br0



From pablo.daniel.martinez at gmail.com  Sat Nov 21 20:08:06 2009
From: pablo.daniel.martinez at gmail.com (pablomar)
Date: Sat, 21 Nov 2009 15:08:06 -0500
Subject: introduction
Message-ID: <1681d7760911211208m3ed6a420w61a3fdb49bc877c4@mail.gmail.com>

hi guys,

my name is pablo martinez, I've been using fedora at home since version 3
I'm C/C++ and Java programmer and I did a little of python some years ago (I
still use it for small things). I've also worked with Oracle and Pro*C
I want to collaborate as much as I can


regards,
                pablomar
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://listman.redhat.com/archives/fedora-infrastructure-list/attachments/20091121/ec0ca8bd/attachment.htm>

From jonstanley at gmail.com  Mon Nov 23 05:12:18 2009
From: jonstanley at gmail.com (Jon Stanley)
Date: Mon, 23 Nov 2009 00:12:18 -0500
Subject: Permission for an off-site copy of CVS
Message-ID: <da159fda0911222112h1305dcd4k5947ddd76b9f97f7@mail.gmail.com>

In an effort to work on the cvs side of
https://fedorahosted.org/packagedb/ticket/165 I'd like to have an
offsite copy of cvs1:/cvs/pkgs to test on. Being that this is in
violation of our security policy
(http://infrastructure.fedoraproject.org/csi/security-policy/en-US/html/EndUser-Standard-Introduction.html)
and requires written permission, I'm asking for that permission here
:) I just need two sysadmin-main members to +1 it, and I'll rsync it
off tomorrow or so,



From dev at nigelj.com  Mon Nov 23 05:18:15 2009
From: dev at nigelj.com (Nigel Jones)
Date: Mon, 23 Nov 2009 15:18:15 +1000
Subject: Permission for an off-site copy of CVS
In-Reply-To: <da159fda0911222112h1305dcd4k5947ddd76b9f97f7@mail.gmail.com>
References: <da159fda0911222112h1305dcd4k5947ddd76b9f97f7@mail.gmail.com>
Message-ID: <69fe28d70911222118y515b02b7ia5a6ca9495409a3f@mail.gmail.com>

On Mon, Nov 23, 2009 at 3:12 PM, Jon Stanley <jonstanley at gmail.com> wrote:
> In an effort to work on the cvs side of
> https://fedorahosted.org/packagedb/ticket/165 I'd like to have an
> offsite copy of cvs1:/cvs/pkgs to test on. Being that this is in
> violation of our security policy
> (http://infrastructure.fedoraproject.org/csi/security-policy/en-US/html/EndUser-Standard-Introduction.html)
> and requires written permission, I'm asking for that permission here
> :) I just need two sysadmin-main members to +1 it, and I'll rsync it
> off tomorrow or so,
+1



From mmcgrath at redhat.com  Mon Nov 23 15:45:15 2009
From: mmcgrath at redhat.com (Mike McGrath)
Date: Mon, 23 Nov 2009 09:45:15 -0600 (CST)
Subject: Permission for an off-site copy of CVS
In-Reply-To: <69fe28d70911222118y515b02b7ia5a6ca9495409a3f@mail.gmail.com>
References: <da159fda0911222112h1305dcd4k5947ddd76b9f97f7@mail.gmail.com>
	<69fe28d70911222118y515b02b7ia5a6ca9495409a3f@mail.gmail.com>
Message-ID: <alpine.LFD.2.00.0911230945080.19106@laptop.mmcgrath.net>

On Mon, 23 Nov 2009, Nigel Jones wrote:

> On Mon, Nov 23, 2009 at 3:12 PM, Jon Stanley <jonstanley at gmail.com> wrote:
> > In an effort to work on the cvs side of
> > https://fedorahosted.org/packagedb/ticket/165 I'd like to have an
> > offsite copy of cvs1:/cvs/pkgs to test on. Being that this is in
> > violation of our security policy
> > (http://infrastructure.fedoraproject.org/csi/security-policy/en-US/html/EndUser-Standard-Introduction.html)
> > and requires written permission, I'm asking for that permission here
> > :) I just need two sysadmin-main members to +1 it, and I'll rsync it
> > off tomorrow or so,
> +1
>

+1

	-Mike



From kanarip at kanarip.com  Mon Nov 23 16:18:13 2009
From: kanarip at kanarip.com (Jeroen van Meeuwen)
Date: Mon, 23 Nov 2009 17:18:13 +0100
Subject: Permission for an off-site copy of CVS
In-Reply-To: <da159fda0911222112h1305dcd4k5947ddd76b9f97f7@mail.gmail.com>
References: <da159fda0911222112h1305dcd4k5947ddd76b9f97f7@mail.gmail.com>
Message-ID: <4B0AB5C5.4020708@kanarip.com>

On 11/23/2009 06:12 AM, Jon Stanley wrote:
> In an effort to work on the cvs side of
> https://fedorahosted.org/packagedb/ticket/165 I'd like to have an
> offsite copy of cvs1:/cvs/pkgs to test on. Being that this is in
> violation of our security policy
> (http://infrastructure.fedoraproject.org/csi/security-policy/en-US/html/EndUser-Standard-Introduction.html)
> and requires written permission, I'm asking for that permission here
> :) I just need two sysadmin-main members to +1 it, and I'll rsync it
> off tomorrow or so,
>

Just curious, what part of the policy does a local copy from a public 
rsync location conflict with?



From kanarip at kanarip.com  Mon Nov 23 16:24:00 2009
From: kanarip at kanarip.com (Jeroen van Meeuwen)
Date: Mon, 23 Nov 2009 17:24:00 +0100
Subject: Permission for an off-site copy of CVS
In-Reply-To: <4B0AB5C5.4020708@kanarip.com>
References: <da159fda0911222112h1305dcd4k5947ddd76b9f97f7@mail.gmail.com>
	<4B0AB5C5.4020708@kanarip.com>
Message-ID: <4B0AB720.50400@kanarip.com>

On 11/23/2009 05:18 PM, Jeroen van Meeuwen wrote:
> On 11/23/2009 06:12 AM, Jon Stanley wrote:
>> In an effort to work on the cvs side of
>> https://fedorahosted.org/packagedb/ticket/165 I'd like to have an
>> offsite copy of cvs1:/cvs/pkgs to test on. Being that this is in
>> violation of our security policy
>> (http://infrastructure.fedoraproject.org/csi/security-policy/en-US/html/EndUser-Standard-Introduction.html)
>>
>> and requires written permission, I'm asking for that permission here
>> :) I just need two sysadmin-main members to +1 it, and I'll rsync it
>> off tomorrow or so,
>>
>
> Just curious, what part of the policy does a local copy from a public
> rsync location conflict with?
>

Having pressed Ctrl+Enter before I was done typing the message, I wanted 
to ask whether it was something I was missing, or something other then 
cvs1:/cvs/pkgs/ that conflicted with the security policy?

Kind regards,

-- Jeroen



From mmcgrath at redhat.com  Mon Nov 23 17:27:02 2009
From: mmcgrath at redhat.com (Mike McGrath)
Date: Mon, 23 Nov 2009 11:27:02 -0600 (CST)
Subject: Permission for an off-site copy of CVS
In-Reply-To: <4B0AB720.50400@kanarip.com>
References: <da159fda0911222112h1305dcd4k5947ddd76b9f97f7@mail.gmail.com>
	<4B0AB5C5.4020708@kanarip.com> <4B0AB720.50400@kanarip.com>
Message-ID: <alpine.LFD.2.00.0911231125260.19106@laptop.mmcgrath.net>

On Mon, 23 Nov 2009, Jeroen van Meeuwen wrote:

> On 11/23/2009 05:18 PM, Jeroen van Meeuwen wrote:
> > On 11/23/2009 06:12 AM, Jon Stanley wrote:
> > > In an effort to work on the cvs side of
> > > https://fedorahosted.org/packagedb/ticket/165 I'd like to have an
> > > offsite copy of cvs1:/cvs/pkgs to test on. Being that this is in
> > > violation of our security policy
> > > (http://infrastructure.fedoraproject.org/csi/security-policy/en-US/html/EndUser-Standard-Introduction.html)
> > >
> > > and requires written permission, I'm asking for that permission here
> > > :) I just need two sysadmin-main members to +1 it, and I'll rsync it
> > > off tomorrow or so,
> > >
> >
> > Just curious, what part of the policy does a local copy from a public
> > rsync location conflict with?
> >
>
> Having pressed Ctrl+Enter before I was done typing the message, I wanted to
> ask whether it was something I was missing, or something other then
> cvs1:/cvs/pkgs/ that conflicted with the security policy?
>

Not everything under /cvs/pkgs/ world readable, in particular:
/cvs/pkgs/CVSROOT/admin/

	-Mike



From kanarip at kanarip.com  Mon Nov 23 17:33:08 2009
From: kanarip at kanarip.com (Jeroen van Meeuwen)
Date: Mon, 23 Nov 2009 18:33:08 +0100
Subject: Permission for an off-site copy of CVS
In-Reply-To: <alpine.LFD.2.00.0911231125260.19106@laptop.mmcgrath.net>
References: <da159fda0911222112h1305dcd4k5947ddd76b9f97f7@mail.gmail.com>	<4B0AB5C5.4020708@kanarip.com>
	<4B0AB720.50400@kanarip.com>
	<alpine.LFD.2.00.0911231125260.19106@laptop.mmcgrath.net>
Message-ID: <4B0AC754.2000601@kanarip.com>

On 11/23/2009 06:27 PM, Mike McGrath wrote:
> On Mon, 23 Nov 2009, Jeroen van Meeuwen wrote:
>
>> On 11/23/2009 05:18 PM, Jeroen van Meeuwen wrote:
>>> Just curious, what part of the policy does a local copy from a public
>>> rsync location conflict with?
>>>
>>
>> Having pressed Ctrl+Enter before I was done typing the message, I wanted to
>> ask whether it was something I was missing, or something other then
>> cvs1:/cvs/pkgs/ that conflicted with the security policy?
>>
>
> Not everything under /cvs/pkgs/ world readable, in particular:
> /cvs/pkgs/CVSROOT/admin/
>

Aha!

Thanks Mike ;-)

-- Jeroen



From mmcgrath at redhat.com  Mon Nov 23 21:26:40 2009
From: mmcgrath at redhat.com (Mike McGrath)
Date: Mon, 23 Nov 2009 15:26:40 -0600 (CST)
Subject: iptables heads up
Message-ID: <alpine.LFD.2.00.0911231525590.19106@laptop.mmcgrath.net>

I just moved several hosts to using our new iptables module from the old
configs template.  It shouldn't have any impact on the firewalls as the
rules haven't changed.  But if people see anything... odd going on.  Let
me know.

	-Mike



From tmz at pobox.com  Tue Nov 24 00:21:35 2009
From: tmz at pobox.com (Todd Zullinger)
Date: Mon, 23 Nov 2009 19:21:35 -0500
Subject: iptables heads up
In-Reply-To: <alpine.LFD.2.00.0911231525590.19106@laptop.mmcgrath.net>
References: <alpine.LFD.2.00.0911231525590.19106@laptop.mmcgrath.net>
Message-ID: <20091124002135.GQ4509@inocybe.localdomain>

Mike McGrath wrote:
> I just moved several hosts to using our new iptables module from the
> old configs template.  It shouldn't have any impact on the firewalls
> as the rules haven't changed.  But if people see anything... odd
> going on.  Let me know.

In the "No good deed goes unpunished" category:

[tmz at proxy1 ~]$ sudo /usr/sbin/puppetd -tv
Password: 
info: Retrieving plugins
err: Could not retrieve catalog: Failed to parse template system/ip6tables-template.conf.erb: Could not find value for 'custom' at /var/lib/puppet/git/manifests/servergroups/proxy.pp:865 on node proxy1.fedora.phx.redhat.com
warning: Not using cache on failed catalog

-- 
Todd        OpenPGP -> KeyID: 0xBEAF0CE3 | URL: www.pobox.com/~tmz/pgp
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
The surest sign that intelligent life exists elsewhere in the universe
is that it has never tried to contact us.
    -- Bill Watterson (Calvin and Hobbes)

-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 542 bytes
Desc: not available
URL: <http://listman.redhat.com/archives/fedora-infrastructure-list/attachments/20091123/cb3d65c6/attachment.sig>

From mmcgrath at redhat.com  Tue Nov 24 00:38:48 2009
From: mmcgrath at redhat.com (Mike McGrath)
Date: Mon, 23 Nov 2009 18:38:48 -0600 (CST)
Subject: iptables heads up
In-Reply-To: <20091124002135.GQ4509@inocybe.localdomain>
References: <alpine.LFD.2.00.0911231525590.19106@laptop.mmcgrath.net>
	<20091124002135.GQ4509@inocybe.localdomain>
Message-ID: <alpine.LFD.2.00.0911231838210.19106@laptop.mmcgrath.net>

On Mon, 23 Nov 2009, Todd Zullinger wrote:

> Mike McGrath wrote:
> > I just moved several hosts to using our new iptables module from the
> > old configs template.  It shouldn't have any impact on the firewalls
> > as the rules haven't changed.  But if people see anything... odd
> > going on.  Let me know.
>
> In the "No good deed goes unpunished" category:
>
> [tmz at proxy1 ~]$ sudo /usr/sbin/puppetd -tv
> Password:
> info: Retrieving plugins
> err: Could not retrieve catalog: Failed to parse template system/ip6tables-template.conf.erb: Could not find value for 'custom' at /var/lib/puppet/git/manifests/servergroups/proxy.pp:865 on node proxy1.fedora.phx.redhat.com
> warning: Not using cache on failed catalog
>

K, got that fixed.  Curious that puppet didn't email us about that.

	-Mike



From a.badger at gmail.com  Tue Nov 24 02:53:57 2009
From: a.badger at gmail.com (Toshio Kuratomi)
Date: Mon, 23 Nov 2009 18:53:57 -0800
Subject: introduction
In-Reply-To: <1681d7760911211208m3ed6a420w61a3fdb49bc877c4@mail.gmail.com>
References: <1681d7760911211208m3ed6a420w61a3fdb49bc877c4@mail.gmail.com>
Message-ID: <20091124025357.GM3724@clingman.lan>

On Sat, Nov 21, 2009 at 03:08:06PM -0500, pablomar wrote:
> hi guys,
> 
> my name is pablo martinez, I've been using fedora at home since version 3
> I'm C/C++ and Java programmer and I did a little of python some years ago (I
> still use it for small things). I've also worked with Oracle and Pro*C
> I want to collaborate as much as I can
> 
Welcome!

We do a fair amount of coding in Fedora Infrastructure creating web
applications for the project.  Most of that work is done in python.  We're
using the TurboGears1 and TurboGears2 frameworks for those.  If you're
interested in that we can help get you started.

If you're more interested in doing some work in C++, there's a few upstream
projects that would definitely benefit Fedora for getting some attention.

For instance, we have been wanting to get a good open source whiteboarding
tool working with Fedora so that we can make mockups, create diagrams, and
make use of other pictorial things during meetings.  Inkscape has the
beginnings of a plugin but it needs someone to work on it to actually make
it actually work.  If you're interested in that, the upstream developers are
quite interested in getting some help and one of the devs is willing to help
get someone up to speed on what needs to be done:

Blog post on getting the whiteboard plugin worked on:
  http://www.advogato.org/person/badger/diary/82.html

The KDE SIG is another Fedora group that is in need of C++ coders.  Right
now we have a good group of KDE packagers but having a few more coders will
let them work more closely on any bugs that occur and also help drive
features upstream.  If you use the KDE desktop, they'd be very happy to hear
from more coders:
  https://fedoraproject.org/wiki/SIGs/KDE

-Toshio
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 198 bytes
Desc: not available
URL: <http://listman.redhat.com/archives/fedora-infrastructure-list/attachments/20091123/b39f5f15/attachment.sig>

From mmcgrath at redhat.com  Tue Nov 24 03:11:17 2009
From: mmcgrath at redhat.com (Mike McGrath)
Date: Mon, 23 Nov 2009 21:11:17 -0600 (CST)
Subject: Introduction -- new subscriber
In-Reply-To: <4B0818B4.8070501@mkdir.name>
References: <4B0818B4.8070501@mkdir.name>
Message-ID: <alpine.LFD.2.00.0911232110270.19106@laptop.mmcgrath.net>

On Sat, 21 Nov 2009, Andreas Osowski wrote:

> Hello,
> My name is Andreas Osowski, I've been a Packager for the past ~6 months
> and joining Infrastructure has been on my todo-list for quite some time.
> After all, there is far more to Fedora than just Packaging :)
> I started using GNU/Linux on a regular base about 4 years ago, going from
> Debian to Fedora (and eventually from there on to Gentoo and back :) )
> I've been a sysadmin at my school for the past 3 years where we are using
> a Linux distribution for schools (called Musterl?sung) using PSQL,
> LDAP, Moodle and Linbo (an OSS solution for self-healing workstations).
> During the past few years, I have been running and administering various
> dedicated (and home) servers mostly based upon Gentoo Hardened, Debian or
> CentOS.
> I'm on good terms with RoR and Python and have used TurboGears from time to time in the
> past, mainly for recreational projects. I've been using Java and C++
> for the past 4 years, too, but I am more interested in other areas right now.
>
> So yeah, I guess that I'm most interested in sysadmin-web for now, but I'm
> still unsure here; it might be a good start.
>
> By joining the sysadmin group I hope to be able to refine my skills in
> sysadmin matters and eventually become better in web development, too :)
>

Welcome, if you've used TG in the past you'll fit right in here.  We use
it a lot.  Stop by #fedora-admin on irc.freenode.net and we'll find
something for you.

	-Mike

From gps at signbit.org  Tue Nov 24 04:11:16 2009
From: gps at signbit.org (Gregory Sieranski)
Date: Mon, 23 Nov 2009 22:11:16 -0600
Subject: Introduction
Message-ID: <6283a3900911232011l441abb24w9c4b4a97d1193a53@mail.gmail.com>

Hi guys,
I just wanted to introduce myself. I am a Programmer Analyst who works for a
large fortune 500 company. I have been using Fedora for over 3 years and
would love to give back in any way that I can. I absolutely love what Fedora
and open source does and believe in both 100%. I am skilled in Java, J2EE,
C, C++, Python, HTML, CSS and a bunch of other technologies. I am an avid
programming language enthusiast and am working toward getting my Masters in
Computer Science. I would love to contribute to the website project in any
way that I can. I deal with website technology on a daily basis and feel
that I would be able to provide a lot of help to the fedora website team. No
task is to small. If you guys just need someone to enter text or change a
CSS style I am willing to do it. Thank you for your time and I look forward
to talking with all of you!

-- 
--
Regards,
Gregory Sieranski
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://listman.redhat.com/archives/fedora-infrastructure-list/attachments/20091123/50444888/attachment.htm>

From pablo.daniel.martinez at gmail.com  Tue Nov 24 14:22:09 2009
From: pablo.daniel.martinez at gmail.com (pablomar)
Date: Tue, 24 Nov 2009 09:22:09 -0500
Subject: introduction
In-Reply-To: <20091124025357.GM3724@clingman.lan>
References: <1681d7760911211208m3ed6a420w61a3fdb49bc877c4@mail.gmail.com>
	<20091124025357.GM3724@clingman.lan>
Message-ID: <1681d7760911240622t3cdfd14fi7ed3891120180cd4@mail.gmail.com>

hey Toshio,


thank you very much. I'll join the whiteboarding project

regards,
          pablomar


On Mon, Nov 23, 2009 at 9:53 PM, Toshio Kuratomi <a.badger at gmail.com> wrote:

> On Sat, Nov 21, 2009 at 03:08:06PM -0500, pablomar wrote:
> > hi guys,
> >
> > my name is pablo martinez, I've been using fedora at home since version 3
> > I'm C/C++ and Java programmer and I did a little of python some years ago
> (I
> > still use it for small things). I've also worked with Oracle and Pro*C
> > I want to collaborate as much as I can
> >
> Welcome!
>
> We do a fair amount of coding in Fedora Infrastructure creating web
> applications for the project.  Most of that work is done in python.  We're
> using the TurboGears1 and TurboGears2 frameworks for those.  If you're
> interested in that we can help get you started.
>
> If you're more interested in doing some work in C++, there's a few upstream
> projects that would definitely benefit Fedora for getting some attention.
>
> For instance, we have been wanting to get a good open source whiteboarding
> tool working with Fedora so that we can make mockups, create diagrams, and
> make use of other pictorial things during meetings.  Inkscape has the
> beginnings of a plugin but it needs someone to work on it to actually make
> it actually work.  If you're interested in that, the upstream developers
> are
> quite interested in getting some help and one of the devs is willing to
> help
> get someone up to speed on what needs to be done:
>
> Blog post on getting the whiteboard plugin worked on:
>  http://www.advogato.org/person/badger/diary/82.html
>
> The KDE SIG is another Fedora group that is in need of C++ coders.  Right
> now we have a good group of KDE packagers but having a few more coders will
> let them work more closely on any bugs that occur and also help drive
> features upstream.  If you use the KDE desktop, they'd be very happy to
> hear
> from more coders:
>  https://fedoraproject.org/wiki/SIGs/KDE
>
> -Toshio
>
> _______________________________________________
> Fedora-infrastructure-list mailing list
> Fedora-infrastructure-list at redhat.com
> https://www.redhat.com/mailman/listinfo/fedora-infrastructure-list
>
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://listman.redhat.com/archives/fedora-infrastructure-list/attachments/20091124/2b11f0d0/attachment.htm>

From tmz at pobox.com  Tue Nov 24 15:33:16 2009
From: tmz at pobox.com (Todd Zullinger)
Date: Tue, 24 Nov 2009 10:33:16 -0500
Subject: Creating a trusted sha256sum.exe binary for verifying *-CHECKSUM
 files on Windows
Message-ID: <20091124153316.GU4509@inocybe.localdomain>

Some of you might be aware that the instructions for verifying our
*-CHECKSUM files on Windows have been broken since we moved to SHA256.
Previously, we linked users to a sha1sum.exe built by the GnuPG
project.  With SHA256, we don't have that ability.

Fortunately, the good folks working on MingW have made it possible for
us to build a sha256sum.exe from the coreutils sources.  We can do
this in koji even.  (A huge thanks to Richard Jones for his help and
patches.)

Much of this is discussed at https://bugzilla.redhat.com/527060.

I've created a simple mingw32-sha256sum package, built it in koji and
tested it on the lone Windows XP system I have readily available.  Of
course, I just built this as a scratch build, so it will expire at
some point.

What I'm here for is to gather ideas for how to properly go about
building the mingw32-sha256sum and keeping it around so that when I
extract the sha256sum.exe and upload it to fedoraproject.org we will
have the koji built rpm to compare the binary against.  Otherwise, the
whole process falls back to "Trust that Todd didn't trojan the
executable."  And while I'd be flattered if folks had that much trust
in me, I think it would be unwise to encourage or expect. :)

(I really don't want to maintain the mingw32-sha256sum package for
Fedora, as it's just a quick and dirty hack to built a small subset of
of coreutils for Windows.)

Thoughts?

-- 
Todd        OpenPGP -> KeyID: 0xBEAF0CE3 | URL: www.pobox.com/~tmz/pgp
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Courage is not the absence of fear, but rather the judgment that
something else is more important than fear.
    -- Ambrose Redmoon

-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 542 bytes
Desc: not available
URL: <http://listman.redhat.com/archives/fedora-infrastructure-list/attachments/20091124/72c90f30/attachment.sig>

From thinklinux.ssh at gmail.com  Tue Nov 24 15:45:32 2009
From: thinklinux.ssh at gmail.com (susmit shannigrahi)
Date: Tue, 24 Nov 2009 21:15:32 +0530
Subject: Is there F11/12 test boxes around?
Message-ID: <ffadd1240911240745t621d1164nda7c7c50836100a3@mail.gmail.com>

Hi,

When I try to test TG2 apps on publictest machines, they shout about
python 2.4 and what not.
Is there a spare machine which runs python 2.6? If yes, I could use it.
Thanks.

-- 
Regards,
Susmit.

=============================================
http://www.fedoraproject.org/wiki/user:susmit
=============================================



From onekopaka at gmail.com  Tue Nov 24 15:56:00 2009
From: onekopaka at gmail.com (Darren VanBuren)
Date: Tue, 24 Nov 2009 07:56:00 -0800
Subject: Is there F11/12 test boxes around?
In-Reply-To: <ffadd1240911240745t621d1164nda7c7c50836100a3@mail.gmail.com>
References: <ffadd1240911240745t621d1164nda7c7c50836100a3@mail.gmail.com>
Message-ID: <CFB94A1F-0112-443F-B751-BF8ABE83D854@gmail.com>

I hadn't heard of any rebuilds of pt machines to F11 or F12. You might  
be able to rebuild one machine, but I don't know any free pt boxes  
that are currently Fedora, the ones I know are free are RHEL.

Darren VanBuren
-------------------------
Sent from my iPod

Take control of your desktop with Fedora 11. Reign. http://fedoraproject.org/

On Nov 24, 2009, at 7:45, susmit shannigrahi  
<thinklinux.ssh at gmail.com> wrote:

> Hi,
>
> When I try to test TG2 apps on publictest machines, they shout about
> python 2.4 and what not.
> Is there a spare machine which runs python 2.6? If yes, I could use  
> it.
> Thanks.
>
> -- 
> Regards,
> Susmit.
>
> =============================================
> http://www.fedoraproject.org/wiki/user:susmit
> =============================================
>
> _______________________________________________
> Fedora-infrastructure-list mailing list
> Fedora-infrastructure-list at redhat.com
> https://www.redhat.com/mailman/listinfo/fedora-infrastructure-list



From jkeating at redhat.com  Tue Nov 24 16:25:50 2009
From: jkeating at redhat.com (Jesse Keating)
Date: Tue, 24 Nov 2009 08:25:50 -0800
Subject: Creating a trusted sha256sum.exe binary for verifying
 *-CHECKSUM files on Windows
In-Reply-To: <20091124153316.GU4509@inocybe.localdomain>
References: <20091124153316.GU4509@inocybe.localdomain>
Message-ID: <1259079950.11317.2.camel@localhost.localdomain>

On Tue, 2009-11-24 at 10:33 -0500, Todd Zullinger wrote:
> Some of you might be aware that the instructions for verifying our
> *-CHECKSUM files on Windows have been broken since we moved to SHA256.
> Previously, we linked users to a sha1sum.exe built by the GnuPG
> project.  With SHA256, we don't have that ability.
> 
> Fortunately, the good folks working on MingW have made it possible for
> us to build a sha256sum.exe from the coreutils sources.  We can do
> this in koji even.  (A huge thanks to Richard Jones for his help and
> patches.)
> 
> Much of this is discussed at https://bugzilla.redhat.com/527060.
> 
> I've created a simple mingw32-sha256sum package, built it in koji and
> tested it on the lone Windows XP system I have readily available.  Of
> course, I just built this as a scratch build, so it will expire at
> some point.
> 
> What I'm here for is to gather ideas for how to properly go about
> building the mingw32-sha256sum and keeping it around so that when I
> extract the sha256sum.exe and upload it to fedoraproject.org we will
> have the koji built rpm to compare the binary against.  Otherwise, the
> whole process falls back to "Trust that Todd didn't trojan the
> executable."  And while I'd be flattered if folks had that much trust
> in me, I think it would be unwise to encourage or expect. :)
> 
> (I really don't want to maintain the mingw32-sha256sum package for
> Fedora, as it's just a quick and dirty hack to built a small subset of
> of coreutils for Windows.)
> 
> Thoughts?

Well, if you have to use a tool from the project, to verify other bits
from the project, the verification just became a lot less trusted.  If
you don't trust the bits you got from the project, why would you trust
the tool the project gives you to verify the bits?  "Here use this tool
to verify our bits.  Trust us, we swear!"

-- 
Jesse Keating
Fedora -- Freedom? is a feature!
identi.ca: http://identi.ca/jkeating
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 198 bytes
Desc: This is a digitally signed message part
URL: <http://listman.redhat.com/archives/fedora-infrastructure-list/attachments/20091124/f75f8f92/attachment.sig>

From a.badger at gmail.com  Tue Nov 24 16:30:57 2009
From: a.badger at gmail.com (Toshio Kuratomi)
Date: Tue, 24 Nov 2009 08:30:57 -0800
Subject: Is there F11/12 test boxes around?
In-Reply-To: <ffadd1240911240745t621d1164nda7c7c50836100a3@mail.gmail.com>
References: <ffadd1240911240745t621d1164nda7c7c50836100a3@mail.gmail.com>
Message-ID: <20091124163057.GO3724@clingman.lan>

On Tue, Nov 24, 2009 at 09:15:32PM +0530, susmit shannigrahi wrote:
> Hi,
> 
> When I try to test TG2 apps on publictest machines, they shout about
> python 2.4 and what not.
> Is there a spare machine which runs python 2.6? If yes, I could use it.
> Thanks.
>
Fedora Community is TG2 and it runs on python2.4... Is it a dep of the
particular app that requires a newer python?

-Toshio
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 198 bytes
Desc: not available
URL: <http://listman.redhat.com/archives/fedora-infrastructure-list/attachments/20091124/5b4ce1de/attachment.sig>

From thinklinux.ssh at gmail.com  Tue Nov 24 16:37:55 2009
From: thinklinux.ssh at gmail.com (susmit shannigrahi)
Date: Tue, 24 Nov 2009 22:07:55 +0530
Subject: Is there F11/12 test boxes around?
In-Reply-To: <20091124163057.GO3724@clingman.lan>
References: <ffadd1240911240745t621d1164nda7c7c50836100a3@mail.gmail.com> 
	<20091124163057.GO3724@clingman.lan>
Message-ID: <ffadd1240911240837t73455eabmdbf7f0aaa1575602@mail.gmail.com>

> Fedora Community is TG2 and it runs on python2.4... Is it a dep of the
> particular app that requires a newer python?

Nah, the problem I am having is:
easy_install -U pysqlite
is not working for last few hours.
(Download error: (-3, 'Temporary failure in name resolution') -- Some
packages may not be found! )




-- 
Regards,
Susmit.

=============================================
http://www.fedoraproject.org/wiki/user:susmit
=============================================
Sent from Calcutta, WB, India



From thinklinux.ssh at gmail.com  Tue Nov 24 16:42:14 2009
From: thinklinux.ssh at gmail.com (susmit shannigrahi)
Date: Tue, 24 Nov 2009 22:12:14 +0530
Subject: Is there F11/12 test boxes around?
In-Reply-To: <ffadd1240911240837t73455eabmdbf7f0aaa1575602@mail.gmail.com>
References: <ffadd1240911240745t621d1164nda7c7c50836100a3@mail.gmail.com> 
	<20091124163057.GO3724@clingman.lan>
	<ffadd1240911240837t73455eabmdbf7f0aaa1575602@mail.gmail.com>
Message-ID: <ffadd1240911240842g3306e6bdu68472fe022451aaa@mail.gmail.com>

> easy_install -U pysqlite
> is not working for last few hours.

http://pastebin.com/m343eee84
Thanks.

-- 
Regards,
Susmit.

=============================================
http://www.fedoraproject.org/wiki/user:susmit
=============================================
Sent from Calcutta, WB, India



From smooge at gmail.com  Tue Nov 24 16:45:56 2009
From: smooge at gmail.com (Stephen John Smoogen)
Date: Tue, 24 Nov 2009 09:45:56 -0700
Subject: Creating a trusted sha256sum.exe binary for verifying
	*-CHECKSUM files on Windows
In-Reply-To: <1259079950.11317.2.camel@localhost.localdomain>
References: <20091124153316.GU4509@inocybe.localdomain>
	<1259079950.11317.2.camel@localhost.localdomain>
Message-ID: <80d7e4090911240845y6c89efbai4c2b80dbdf7016f9@mail.gmail.com>

On Tue, Nov 24, 2009 at 9:25 AM, Jesse Keating <jkeating at redhat.com> wrote:
> On Tue, 2009-11-24 at 10:33 -0500, Todd Zullinger wrote:
>> Some of you might be aware that the instructions for verifying our
>> *-CHECKSUM files on Windows have been broken since we moved to SHA256.
>> Previously, we linked users to a sha1sum.exe built by the GnuPG
>> project. ?With SHA256, we don't have that ability.
>>
>> Fortunately, the good folks working on MingW have made it possible for
>> us to build a sha256sum.exe from the coreutils sources. ?We can do
>> this in koji even. ?(A huge thanks to Richard Jones for his help and
>> patches.)
>>
>> Much of this is discussed at https://bugzilla.redhat.com/527060.
>>
>> I've created a simple mingw32-sha256sum package, built it in koji and
>> tested it on the lone Windows XP system I have readily available. ?Of
>> course, I just built this as a scratch build, so it will expire at
>> some point.
>>
>> What I'm here for is to gather ideas for how to properly go about
>> building the mingw32-sha256sum and keeping it around so that when I
>> extract the sha256sum.exe and upload it to fedoraproject.org we will
>> have the koji built rpm to compare the binary against. ?Otherwise, the
>> whole process falls back to "Trust that Todd didn't trojan the
>> executable." ?And while I'd be flattered if folks had that much trust
>> in me, I think it would be unwise to encourage or expect. :)
>>
>> (I really don't want to maintain the mingw32-sha256sum package for
>> Fedora, as it's just a quick and dirty hack to built a small subset of
>> of coreutils for Windows.)
>>
>> Thoughts?
>
> Well, if you have to use a tool from the project, to verify other bits
> from the project, the verification just became a lot less trusted. ?If
> you don't trust the bits you got from the project, why would you trust
> the tool the project gives you to verify the bits? ?"Here use this tool
> to verify our bits. ?Trust us, we swear!"

Well giving people the instructions on how to compile this and getting
a 'neutral' party to make these for the various Linux distributions
would help. Depending on your level of trust, we could ask linux
foundation, fsf or heck even micros.. ok scratch that one. But
basically we can make our own for the time being and give out plain
instructions for people to make them so that they can be replicated.



-- 
Stephen J Smoogen.

Ah, but a man's reach should exceed his grasp. Or what's a heaven for?
-- Robert Browning



From kanarip at kanarip.com  Tue Nov 24 16:46:58 2009
From: kanarip at kanarip.com (Jeroen van Meeuwen)
Date: Tue, 24 Nov 2009 17:46:58 +0100
Subject: Creating a trusted sha256sum.exe binary for verifying *-CHECKSUM
 files on Windows
In-Reply-To: <1259079950.11317.2.camel@localhost.localdomain>
References: <20091124153316.GU4509@inocybe.localdomain>
	<1259079950.11317.2.camel@localhost.localdomain>
Message-ID: <4B0C0E02.8080205@kanarip.com>

On 11/24/2009 05:25 PM, Jesse Keating wrote:
> On Tue, 2009-11-24 at 10:33 -0500, Todd Zullinger wrote:
>> (I really don't want to maintain the mingw32-sha256sum package for
>> Fedora, as it's just a quick and dirty hack to built a small subset of
>> of coreutils for Windows.)
>>
>> Thoughts?
> 
> Well, if you have to use a tool from the project, to verify other bits
> from the project, the verification just became a lot less trusted.  If
> you don't trust the bits you got from the project, why would you trust
> the tool the project gives you to verify the bits?  "Here use this tool
> to verify our bits.  Trust us, we swear!"
> 

While this is completely true for, say winxpsp2.iso vs. m$-md5um.exe,
mind that the sources to sha256sum.exe are actually available and can be
verified on a completely verifiable stack one does already trust
(verifiable except for x86 CPU inaccuracy of course).

If not the transparency helps to boost the trustworthiness, or if that's
not trustworthy enough, then how does one verify a binary rpm actually
comes from the source that is shipped alongside with it, not to even
mention gnupg shipped by Fedora against RPMs shipped by Fedora.

Then, if trust was anything worth being concerned about why would you
even need a .exe in the first place? For all you know the OS itself
makes the .exe say OK or NOT OK in very, very arbitrary ways you can't
verify.

The goal is, of course, to verify the .iso against what is listed as
it's sha256sum. Whether the tools ultimately come from the same source
doesn't matter. It should, though, be advisable to not include the
sha246sum.exe on the mirrors, and only serve the file over http over ssl.

-- Jeroen



From a.badger at gmail.com  Tue Nov 24 17:16:40 2009
From: a.badger at gmail.com (Toshio Kuratomi)
Date: Tue, 24 Nov 2009 09:16:40 -0800
Subject: Is there F11/12 test boxes around?
In-Reply-To: <ffadd1240911240842g3306e6bdu68472fe022451aaa@mail.gmail.com>
References: <ffadd1240911240745t621d1164nda7c7c50836100a3@mail.gmail.com>
	<20091124163057.GO3724@clingman.lan>
	<ffadd1240911240837t73455eabmdbf7f0aaa1575602@mail.gmail.com>
	<ffadd1240911240842g3306e6bdu68472fe022451aaa@mail.gmail.com>
Message-ID: <20091124171640.GP3724@clingman.lan>

On Tue, Nov 24, 2009 at 10:12:14PM +0530, susmit shannigrahi wrote:
> > easy_install -U pysqlite
> > is not working for last few hours.
> 
> http://pastebin.com/m343eee84
> Thanks.
> 
AFAIK, pysqlite has moved to googlecode -- if something is redirecting to
pysqlite.org, then that needs to be fixed pysqlite side.  In the meantime,
is there a reason that yum install python-sqlite2 doesn't give you what you
need?

-Toshio
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 198 bytes
Desc: not available
URL: <http://listman.redhat.com/archives/fedora-infrastructure-list/attachments/20091124/e2b6e593/attachment.sig>

From thinklinux.ssh at gmail.com  Tue Nov 24 17:25:36 2009
From: thinklinux.ssh at gmail.com (susmit shannigrahi)
Date: Tue, 24 Nov 2009 22:55:36 +0530
Subject: Is there F11/12 test boxes around?
In-Reply-To: <20091124171640.GP3724@clingman.lan>
References: <ffadd1240911240745t621d1164nda7c7c50836100a3@mail.gmail.com> 
	<20091124163057.GO3724@clingman.lan>
	<ffadd1240911240837t73455eabmdbf7f0aaa1575602@mail.gmail.com> 
	<ffadd1240911240842g3306e6bdu68472fe022451aaa@mail.gmail.com> 
	<20091124171640.GP3724@clingman.lan>
Message-ID: <ffadd1240911240925p6dd412a2x21f7b02212bb1c2c@mail.gmail.com>

> AFAIK, pysqlite has moved to googlecode -- if something is redirecting to
> pysqlite.org, then that needs to be fixed pysqlite side. ?In the meantime,
> is there a reason that yum install python-sqlite2 doesn't give you what you
> need?

python-sqlite2 and the libs were there, I had to install pysqlite from source.
Now that I have solved it, it now complains about
sqlalchemy.exc.ProgrammingError:.
I can get it working, that's not the problem, but was looking for a
easy solution :)






-- 
Regards,
Susmit.

=============================================
http://www.fedoraproject.org/wiki/user:susmit
=============================================
Sent from Calcutta, WB, India



From thinklinux.ssh at gmail.com  Tue Nov 24 17:45:28 2009
From: thinklinux.ssh at gmail.com (susmit shannigrahi)
Date: Tue, 24 Nov 2009 23:15:28 +0530
Subject: Is there F11/12 test boxes around?
In-Reply-To: <ffadd1240911240925p6dd412a2x21f7b02212bb1c2c@mail.gmail.com>
References: <ffadd1240911240745t621d1164nda7c7c50836100a3@mail.gmail.com> 
	<20091124163057.GO3724@clingman.lan>
	<ffadd1240911240837t73455eabmdbf7f0aaa1575602@mail.gmail.com> 
	<ffadd1240911240842g3306e6bdu68472fe022451aaa@mail.gmail.com> 
	<20091124171640.GP3724@clingman.lan>
	<ffadd1240911240925p6dd412a2x21f7b02212bb1c2c@mail.gmail.com>
Message-ID: <ffadd1240911240945n1f17a995kbff9a40195e402cd@mail.gmail.com>

Thanks for all your help, I can do without F11/12 for a few more days. :)
The problems are fixed finally.

-- 
Regards,
Susmit.

=============================================
http://www.fedoraproject.org/wiki/user:susmit
=============================================
Sent from Calcutta, WB, India



From tmz at pobox.com  Tue Nov 24 18:06:03 2009
From: tmz at pobox.com (Todd Zullinger)
Date: Tue, 24 Nov 2009 13:06:03 -0500
Subject: Creating a trusted sha256sum.exe binary for verifying *-CHECKSUM
 files on Windows
In-Reply-To: <1259079950.11317.2.camel@localhost.localdomain>
References: <20091124153316.GU4509@inocybe.localdomain>
	<1259079950.11317.2.camel@localhost.localdomain>
Message-ID: <20091124180603.GW4509@inocybe.localdomain>

Jesse Keating wrote:
> Well, if you have to use a tool from the project, to verify other
> bits from the project, the verification just became a lot less
> trusted.  If you don't trust the bits you got from the project, why
> would you trust the tool the project gives you to verify the bits?
> "Here use this tool to verify our bits.  Trust us, we swear!"

At some point, people need to bootstrap.  The situation now is that
there isn't a well trusted tool on Windows that we can point users to
for verifying the *-CHECKSUM files (if you know differently, please
let me know).  I'd like to improve that by providing a sha256sum.exe
that we can provide source code for, just as any decent cryptographic
tool should have.

I also think it's important to keep in mind that the use for the
sha256sum.exe is to verify that the bits they downloaded are intact,
not that they have not been altered.  To verify authenticity, checking
the PGP signature on the *-CHECKSUM file is required.  We explain how
to do both on https://fedoraproject.org/verify.  Many users,
especially Windows users, only care about verifying the data's
integrity.

I believe that providing a sha256sum.exe via https://fp.o/ is surely
an improvement over "Download the .iso and hope it works or check it
with some third-party checksum tool that we can't even hope to
verify."

-- 
Todd        OpenPGP -> KeyID: 0xBEAF0CE3 | URL: www.pobox.com/~tmz/pgp
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
You will rue this day!  Well, go on!  Start ruing!
    -- Stewie Griffin

-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 542 bytes
Desc: not available
URL: <http://listman.redhat.com/archives/fedora-infrastructure-list/attachments/20091124/863d75c7/attachment.sig>

From tmz at pobox.com  Tue Nov 24 18:08:44 2009
From: tmz at pobox.com (Todd Zullinger)
Date: Tue, 24 Nov 2009 13:08:44 -0500
Subject: Creating a trusted sha256sum.exe binary for verifying *-CHECKSUM
 files on Windows
In-Reply-To: <4B0C0E02.8080205@kanarip.com>
References: <20091124153316.GU4509@inocybe.localdomain>
	<1259079950.11317.2.camel@localhost.localdomain>
	<4B0C0E02.8080205@kanarip.com>
Message-ID: <20091124180844.GX4509@inocybe.localdomain>

Jeroen van Meeuwen wrote:
> The goal is, of course, to verify the .iso against what is listed as
> it's sha256sum. Whether the tools ultimately come from the same
> source doesn't matter. It should, though, be advisable to not
> include the sha246sum.exe on the mirrors, and only serve the file
> over http over ssl.

Indeed, that's the plan.  It would be served up via SSL, just as the
GPG keys and *-CHECKSUM files are currently.  That way, if someone
comes to https://fedoraproject.org/verify, they at least have our SSL
certificate as a starting point for trust.

-- 
Todd        OpenPGP -> KeyID: 0xBEAF0CE3 | URL: www.pobox.com/~tmz/pgp
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Chemistry is applied theology.
    -- Augustus Owsley Stanley

-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 542 bytes
Desc: not available
URL: <http://listman.redhat.com/archives/fedora-infrastructure-list/attachments/20091124/bac0ac85/attachment.sig>

From jkeating at redhat.com  Tue Nov 24 18:13:02 2009
From: jkeating at redhat.com (Jesse Keating)
Date: Tue, 24 Nov 2009 10:13:02 -0800
Subject: Creating a trusted sha256sum.exe binary for verifying
 *-CHECKSUM files on Windows
In-Reply-To: <20091124180603.GW4509@inocybe.localdomain>
References: <20091124153316.GU4509@inocybe.localdomain>
	<1259079950.11317.2.camel@localhost.localdomain>
	<20091124180603.GW4509@inocybe.localdomain>
Message-ID: <1259086382.11317.10.camel@localhost.localdomain>

On Tue, 2009-11-24 at 13:06 -0500, Todd Zullinger wrote:
> I believe that providing a sha256sum.exe via https://fp.o/ is surely
> an improvement over "Download the .iso and hope it works or check it
> with some third-party checksum tool that we can't even hope to
> verify." 

I agree, I just wanted to point out the catch-22.

-- 
Jesse Keating
Fedora -- Freedom? is a feature!
identi.ca: http://identi.ca/jkeating
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 198 bytes
Desc: This is a digitally signed message part
URL: <http://listman.redhat.com/archives/fedora-infrastructure-list/attachments/20091124/4ec324ca/attachment.sig>

From tmz at pobox.com  Tue Nov 24 18:23:41 2009
From: tmz at pobox.com (Todd Zullinger)
Date: Tue, 24 Nov 2009 13:23:41 -0500
Subject: Creating a trusted sha256sum.exe binary for verifying *-CHECKSUM
 files on Windows
In-Reply-To: <1259086382.11317.10.camel@localhost.localdomain>
References: <20091124153316.GU4509@inocybe.localdomain>
	<1259079950.11317.2.camel@localhost.localdomain>
	<20091124180603.GW4509@inocybe.localdomain>
	<1259086382.11317.10.camel@localhost.localdomain>
Message-ID: <20091124182341.GZ4509@inocybe.localdomain>

Jesse Keating wrote:
> I agree, I just wanted to point out the catch-22.

Heh.  I'm sorry if I came off a bit defensive. :)

-- 
Todd        OpenPGP -> KeyID: 0xBEAF0CE3 | URL: www.pobox.com/~tmz/pgp
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
The most overlooked advantage to owning a computer is that if they
foul up, there's no law against whacking them around a little.
    -- Eric Porterfield

-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 542 bytes
Desc: not available
URL: <http://listman.redhat.com/archives/fedora-infrastructure-list/attachments/20091124/890c888a/attachment.sig>

From an037-ooai8 at yahoo.com  Tue Nov 24 21:57:30 2009
From: an037-ooai8 at yahoo.com (Allen Kistler)
Date: Tue, 24 Nov 2009 15:57:30 -0600
Subject: Creating a trusted sha256sum.exe binary for verifying *-CHECKSUM
 files on Windows
In-Reply-To: <1259079950.11317.2.camel@localhost.localdomain>
References: <20091124153316.GU4509@inocybe.localdomain>
	<1259079950.11317.2.camel@localhost.localdomain>
Message-ID: <4B0C56CA.9040202@yahoo.com>

Jesse Keating wrote:
> Well, if you have to use a tool from the project, to verify other bits
> from the project, the verification just became a lot less trusted.  If
> you don't trust the bits you got from the project, why would you trust
> the tool the project gives you to verify the bits?  "Here use this tool
> to verify our bits.  Trust us, we swear!"

I have the same opinion of signing the page with the hashes.  The pages
that list the hashes for F12 are:

https://fedoraproject.org/static/checksums/Fedora-12-i386-CHECKSUM
https://fedoraproject.org/static/checksums/Fedora-12-x86_64-CHECKSUM

They are PGP-signed using *self-signed* keys listed in:

https://fedoraproject.org/static/fedora.gpg

One web page is signed using keys on another web page.  So someone

1. Downloads the ISOs
2. Checks the hash vs. the web page
3. Checks the signature on the web page vs. a key on another web page
4. Cannot check the key

Unless you want people to:

4. Check the key vs. the one on the ISOs

which gets circular.

If we don't trust the page which has the hashes, why do we trust the
page which has the keys more?  If someone can alter the ISOs and then
alter the published hashes to hide their tracks, why not alter the
published keys, as well?  Ultimately I'm wondering what problem we're
solving by signing the web page in the first place.

Sign the hash page with a key which descends from a verifiable, trusted
root (even a key signed by the release manager would be better than
self-signed), or don't sign the page.  I lean toward not signing, and
IRL I'm a paranoid security guy.



From tmz at pobox.com  Tue Nov 24 22:27:11 2009
From: tmz at pobox.com (Todd Zullinger)
Date: Tue, 24 Nov 2009 17:27:11 -0500
Subject: Creating a trusted sha256sum.exe binary for verifying *-CHECKSUM
 files on Windows
In-Reply-To: <4B0C56CA.9040202@yahoo.com>
References: <20091124153316.GU4509@inocybe.localdomain>
	<1259079950.11317.2.camel@localhost.localdomain>
	<4B0C56CA.9040202@yahoo.com>
Message-ID: <20091124222711.GC4509@inocybe.localdomain>

Allen Kistler wrote:
> I have the same opinion of signing the page with the hashes.  The pages
> that list the hashes for F12 are:
>
> https://fedoraproject.org/static/checksums/Fedora-12-i386-CHECKSUM
> https://fedoraproject.org/static/checksums/Fedora-12-x86_64-CHECKSUM
>
> They are PGP-signed using *self-signed* keys listed in:
>
> https://fedoraproject.org/static/fedora.gpg
>
> One web page is signed using keys on another web page.  So someone
>
> 1. Downloads the ISOs
> 2. Checks the hash vs. the web page
> 3. Checks the signature on the web page vs. a key on another web page
> 4. Cannot check the key
>
> Unless you want people to:
>
> 4. Check the key vs. the one on the ISOs
>
> which gets circular.
>
> If we don't trust the page which has the hashes, why do we trust the
> page which has the keys more?  If someone can alter the ISOs and
> then alter the published hashes to hide their tracks, why not alter
> the published keys, as well?  Ultimately I'm wondering what problem
> we're solving by signing the web page in the first place.
>
> Sign the hash page with a key which descends from a verifiable,
> trusted root (even a key signed by the release manager would be
> better than self-signed), or don't sign the page.  I lean toward not
> signing, and IRL I'm a paranoid security guy.

To be fair, the *-CHECKSUM files were only added to
https://fedoraproject.org/static/checksums/ recently (F-11).  And they
are still widely available via mirrors and bit torrent.  The GPG
signatures are quite useful for anyone downloading the CHECKSUM files
by those methods.

I don't mind that the GPG keys are role keys and are not signed by
(m)any other keys (though Jesse has signed some of them in the past).
Using SSL to get the keys seems reasonable to me.  All trust has to
start somewhere.

-- 
Todd        OpenPGP -> KeyID: 0xBEAF0CE3 | URL: www.pobox.com/~tmz/pgp
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Some of the narrowest minds are found in the fattest heads.
    -- Anonymous

-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 542 bytes
Desc: not available
URL: <http://listman.redhat.com/archives/fedora-infrastructure-list/attachments/20091124/cd2cc3e1/attachment.sig>

From bruno at wolff.to  Wed Nov 25 03:32:44 2009
From: bruno at wolff.to (Bruno Wolff III)
Date: Tue, 24 Nov 2009 21:32:44 -0600
Subject: Creating a trusted sha256sum.exe binary for verifying *-CHECKSUM
 files on Windows
In-Reply-To: <20091124153316.GU4509@inocybe.localdomain>
References: <20091124153316.GU4509@inocybe.localdomain>
Message-ID: <20091125033244.GA24856@wolff.to>

On Tue, Nov 24, 2009 at 10:33:16 -0500,
  Todd Zullinger <tmz at pobox.com> wrote:
> 
> What I'm here for is to gather ideas for how to properly go about
> building the mingw32-sha256sum and keeping it around so that when I
> extract the sha256sum.exe and upload it to fedoraproject.org we will
> have the koji built rpm to compare the binary against.  Otherwise, the
> whole process falls back to "Trust that Todd didn't trojan the
> executable."  And while I'd be flattered if folks had that much trust
> in me, I think it would be unwise to encourage or expect. :)

I was thinking about what the gpl requirements are for publishing 
executables built with mingw are for another project that might be
set up on fedorahosted. Since mingw stuff is likely to include staticly
linked libraries, I think you need to have pointers to the sources for
the versions of all of the included libraries.

So while I haven't asked someone about this before, I was thinking that
I would probably need to determine the libraries that got linked in and
then note the versions that were used to do the build and include links
into koji for all of the involved src rpms prominently on the download
page.



From poelstra at redhat.com  Wed Nov 25 17:48:56 2009
From: poelstra at redhat.com (John Poelstra)
Date: Wed, 25 Nov 2009 09:48:56 -0800
Subject: Do overlapping release dates matter for our mirrors?
Message-ID: <4B0D6E08.9050104@redhat.com>

Infrastructure People,

In the interest of maintaining good will with our mirrors and 
appreciation for the great service they provide to Fedora... I'm looking 
for some guidance and preferences from the Infrastructure team on how to 
go forward.

During the schedule planning for Fedora 13, Jesse suggested looking at 
the other releases to see where our final date was landing.  Jesse dug 
up the dates and I add my own editorial comments (see below)

Thanks,
John

Here are the questions as it relates to the mirrors that carry Fedora 
and other distros:

1) What is the minimum distance in days that we have to put between our 
release and other distros?

2) Is it the release date that matters most or the date the staging starts?

3) On a scale of 1 to 5 (1 = doesn't matter, 3 = moderate impact, 5 = 
critical, we'd be out of our minds not to) how important is it that we 
bend our schedule to not land as close as we might be potentially 
landing with the dates below (assuming we do not slip)?

I'm really looking for a scale to get a sense of the severity and not 
subjective responses like "it will be bad" or "people will hate us."  I 
want to know "how much."

4) Our current options as I understand them are:
    a) Overlap closely (see below)
    b) Add two weeks to Fedora 13

   Is there an "option C" that we could implement or go with so as not 
to have to add two weeks to our scheduled GA date if the consensus score 
from #3 is high?

------------------------------------------------------

Debian                2010-March (Freeze, not an actual release date)

Fedora 13             2010-04-27 (since Fedora 8 every release has been 
late >= 2 weeks)

Ubuntu 10.4           2010-04-29 (I'm told they have never slipped)

OpenSUSE              2010-05-05 (no idea on their "on time arrival 
history")



From Matt_Domsch at dell.com  Wed Nov 25 18:09:41 2009
From: Matt_Domsch at dell.com (Matt Domsch)
Date: Wed, 25 Nov 2009 12:09:41 -0600
Subject: Do overlapping release dates matter for our mirrors?
In-Reply-To: <4B0D6E08.9050104@redhat.com>
References: <4B0D6E08.9050104@redhat.com>
Message-ID: <20091125180941.GA3912@auslistsprd01.us.dell.com>

On Wed, Nov 25, 2009 at 09:48:56AM -0800, John Poelstra wrote:
> 1) What is the minimum distance in days that we have to put between our 
> release and other distros?

The mirrors spike for about 2 days at the release of Ubuntu and
Fedora.

Ubuntu 9.10 released on Thursday, Oct 29.  Looking at the bandwidth
logs from mirrors.kernel.org, they spiked through Thursday, but by
Saturday were back to normal loads.

openSuSE 11.2 released on Thursday, Nov. 12.  They peaked on the 13th,
and were back to normal by the 15th.

Fedora 12 released on Tuesday, Nov. 17.  Due to DNS problems at
kernel.org, they didn't actually bitflip and start serving users until
late the 17th, but peaked and were back to normal by Saturday.

>From this, I'd argue that the minimum distance is 3 days, though both
the Ubuntu and Fedora have higher demand on these mirrors than
openSUSE (we could probably move closer to openSUSE if we had to).  5
days would be plenty.

 
> 2) Is it the release date that matters most or the date the staging starts?

It seems we can stage to our mirrors and have openSUSE release at the
same time without problem.  I doubt that's true of Ubuntu though - I
wouldn't want their release spike to coincide with our staging.

 
> 3) On a scale of 1 to 5 (1 = doesn't matter, 3 = moderate impact, 5 = 
> critical, we'd be out of our minds not to) how important is it that we 
> bend our schedule to not land as close as we might be potentially 
> landing with the dates below (assuming we do not slip)?

Depends who we collide with.  5 for ubuntu, 1 for anyone else.

Also, it's only a problem for mirrors carrying both.  I don't know how
many that is (MM doesn't track ubuntu URLs).  our Tier 1s certainly,
and maybe half of our Tier 2s.
 
> I'm really looking for a scale to get a sense of the severity and not 
> subjective responses like "it will be bad" or "people will hate us."  I 
> want to know "how much."
> 
> 4) Our current options as I understand them are:
>    a) Overlap closely (see below)
>    b) Add two weeks to Fedora 13
> 
>   Is there an "option C" that we could implement or go with so as not 
> to have to add two weeks to our scheduled GA date if the consensus score 
> from #3 is high?
> 
> ------------------------------------------------------
> 
> Debian                2010-March (Freeze, not an actual release date)
>
> Fedora 13             2010-04-27 (since Fedora 8 every release has been late >= 2 weeks)
> 
> Ubuntu 10.4           2010-04-29 (I'm told they have never slipped)
> 
> OpenSUSE              2010-05-05 (no idea on their "on time arrival history")

pull F13 in a week, or push 2 weeks.  Both falling the same week would
cause slower delivery to both our sets of end users.


-- 
Matt Domsch
Technology Strategist, Dell Office of the CTO
linux.dell.com & www.dell.com/linux



From mmcgrath at redhat.com  Thu Nov 26 18:15:24 2009
From: mmcgrath at redhat.com (Mike McGrath)
Date: Thu, 26 Nov 2009 12:15:24 -0600 (CST)
Subject: Meeting today
Message-ID: <alpine.LFD.2.00.0911261214230.28251@laptop.mmcgrath.net>

Just a note about our weekly meeting this week.  I know I won't be there
and it seems likely several people won't be around as it's holiday in the
US.  Having said that, I certainly wouldn't want to stop anyone from
having a meeting, there's always lots to discuss so if people show up and
have a meeting, just make sure you send the meeting notes to the list.  If
no one shows up, happy holidays :)

	-Mike



From maravillo at gmail.com  Thu Nov 26 19:41:13 2009
From: maravillo at gmail.com (Mike Maravillo)
Date: Fri, 27 Nov 2009 03:41:13 +0800
Subject: introduction
Message-ID: <a66f992a0911261141g4b7c1dddhe1d14aaf3444245f@mail.gmail.com>

Hi everyone,

My name is Mike Maravillo and I'd like to join the Fedora community,
particularly the Infrastructure group.  I started using Linux way back
with Slackware 3.0 as a system administrator for a local ISP in the
Philippines.  Since then, I've been connected with companies doing
consulting, training, and technical support using Linux and Open
Source.  I've also done software development projects using C, PHP,
Perl, and Python/PyGTK.

Joining the Infrastructure group would be a good chance for me to
contribute and bring back to the community, and hopefully would quench
that thirst to learn more of what's current since I've been mostly
involved with programming lately. :)

Cheers,
Mike



From john at stantonnet.org  Fri Nov 27 20:56:23 2009
From: john at stantonnet.org (John Stanton)
Date: Fri, 27 Nov 2009 16:56:23 -0400
Subject: Intro
Message-ID: <1259355383.4392.10.camel@localhost>

Hi, 

I always suck at these things, but here goes. 

I have been using Fedora for the past year and am loving it. I am
looking to gain more experience and skills. Also I am wanting to
contribute however I can to the fedora project. 

I can also contribute 20gb of space and around 900GB to 1000GB of
bandwidth per month. 

Skills/Experience:

System Administration: 

      * RHCE Certified, Red Hat Enterprise Linux, Fedora, Ubuntu. 

Development: 

      * Perl, Shell scripting, Very little Python(Looking to learn).

Networking: 

      * TCP/IP in both Internet and LAN related aspects. 
      * DNS, Apache, NFS. 
        
TRAINING/CERTIFICATION:

      * Red Hat Certified Engineer (RHCE) #805009697437335.
      * RH300 Red Hat Linux Networking and Security Administration.
      * Red Hat Certified Technician (RHCT) #605008014222023.
      * RH133 Red Hat Linux System Administration.
      * ITIL V3 Certificate.
      * ITIL V3 Foundations Challenge Course.
      * Perl Programming.
      * CompTIA Security+, Network+, A+.
      * Microsoft MCP (Windows XP).

If anyone wants to know more about me or my experience just ask. 

John 




From sundaram at fedoraproject.org  Fri Nov 27 20:55:10 2009
From: sundaram at fedoraproject.org (Rahul Sundaram)
Date: Sat, 28 Nov 2009 02:25:10 +0530
Subject: Intro
In-Reply-To: <1259355383.4392.10.camel@localhost>
References: <1259355383.4392.10.camel@localhost>
Message-ID: <4B103CAE.4030904@fedoraproject.org>

On 11/28/2009 02:26 AM, John Stanton wrote:
> Hi, 
> 
> I always suck at these things, but here goes. 
> 
> I have been using Fedora for the past year and am loving it. I am
> looking to gain more experience and skills. Also I am wanting to
> contribute however I can to the fedora project. 
> 
> I can also contribute 20gb of space and around 900GB to 1000GB of
> bandwidth per month. 

Quick question: Have you consider setting your system as a Fedora mirror?

http://fedoraproject.org/wiki/Infrastructure/Mirroring

Rahul



From mmcgrath at redhat.com  Fri Nov 27 23:26:03 2009
From: mmcgrath at redhat.com (Mike McGrath)
Date: Fri, 27 Nov 2009 17:26:03 -0600 (CST)
Subject: introduction
In-Reply-To: <a66f992a0911261141g4b7c1dddhe1d14aaf3444245f@mail.gmail.com>
References: <a66f992a0911261141g4b7c1dddhe1d14aaf3444245f@mail.gmail.com>
Message-ID: <alpine.LFD.2.00.0911271725300.28251@laptop.mmcgrath.net>

On Fri, 27 Nov 2009, Mike Maravillo wrote:

> Hi everyone,
>
> My name is Mike Maravillo and I'd like to join the Fedora community,
> particularly the Infrastructure group.  I started using Linux way back
> with Slackware 3.0 as a system administrator for a local ISP in the
> Philippines.  Since then, I've been connected with companies doing
> consulting, training, and technical support using Linux and Open
> Source.  I've also done software development projects using C, PHP,
> Perl, and Python/PyGTK.
>
> Joining the Infrastructure group would be a good chance for me to
> contribute and bring back to the community, and hopefully would quench
> that thirst to learn more of what's current since I've been mostly
> involved with programming lately. :)
>

Are you primarly looking to do administration or development?  Have you
seen our getting started page?  -
http://fedoraproject.org/wiki/Infrastructure/GettingStarted

	-Mike



From maravillo at gmail.com  Sat Nov 28 03:29:14 2009
From: maravillo at gmail.com (Mike Maravillo)
Date: Sat, 28 Nov 2009 11:29:14 +0800
Subject: introduction
In-Reply-To: <alpine.LFD.2.00.0911271725300.28251@laptop.mmcgrath.net>
References: <a66f992a0911261141g4b7c1dddhe1d14aaf3444245f@mail.gmail.com>
	<alpine.LFD.2.00.0911271725300.28251@laptop.mmcgrath.net>
Message-ID: <a66f992a0911271929k767413c4y84af511d8917677b@mail.gmail.com>

On Sat, Nov 28, 2009 at 7:26 AM, Mike McGrath <mmcgrath at redhat.com> wrote:
>
> Are you primarly looking to do administration or development? ?Have you
> seen our getting started page? ?-
> http://fedoraproject.org/wiki/Infrastructure/GettingStarted

Hi Mike,

I was thinking of doing administration and some development on the
side, either under the sysadmin-web or sysadmin-tools FIGs.  Or simply
anything that would get me to familiarize and get started would be
great.


Cheers,
Mike



From a.badger at gmail.com  Sat Nov 28 06:15:24 2009
From: a.badger at gmail.com (Toshio Kuratomi)
Date: Fri, 27 Nov 2009 22:15:24 -0800
Subject: CSRF protection done!
Message-ID: <20091128061523.GB22261@clingman.lan>

I'd just like to say thanks to G_work, mdomsch, lmacken, ricky,
ivazquez, mikem, and mbonnet.  Thanks to the efforts of all of these people
we have finally succeeded in adding csrf protection to all of the web apps
we've coded for infrastructure[1]_.  Congratulations guys on closing a
security flaw that plagues other major proprietary sites [2]_ to this day!

.. _[1]: https://fedorahosted.org/fedora-infrastructure/ticket/992
.. _[2]:
http://www.internetnews.com/security/article.php/3849616/Facebook+Hit+With+New+CSRF+Worm.htm

-Toshio
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 198 bytes
Desc: not available
URL: <http://listman.redhat.com/archives/fedora-infrastructure-list/attachments/20091127/37153f69/attachment.sig>

From frankc.fedora at gmail.com  Sat Nov 28 16:20:15 2009
From: frankc.fedora at gmail.com (Frank Chiulli)
Date: Sat, 28 Nov 2009 08:20:15 -0800
Subject: CSRF protection done!
In-Reply-To: <20091128061523.GB22261@clingman.lan>
References: <20091128061523.GB22261@clingman.lan>
Message-ID: <c81273270911280820r6633f840ie11b041ab4da43e@mail.gmail.com>

On Fri, Nov 27, 2009 at 10:15 PM, Toshio Kuratomi <a.badger at gmail.com> wrote:
> I'd just like to say thanks to G_work, mdomsch, lmacken, ricky,
> ivazquez, mikem, and mbonnet. ?Thanks to the efforts of all of these people
> we have finally succeeded in adding csrf protection to all of the web apps
> we've coded for infrastructure[1]_. ?Congratulations guys on closing a
> security flaw that plagues other major proprietary sites [2]_ to this day!
>
> .. _[1]: https://fedorahosted.org/fedora-infrastructure/ticket/992
> .. _[2]:
> http://www.internetnews.com/security/article.php/3849616/Facebook+Hit+With+New+CSRF+Worm.htm
>
> -Toshio
>
> _______________________________________________
> Fedora-infrastructure-list mailing list
> Fedora-infrastructure-list at redhat.com
> https://www.redhat.com/mailman/listinfo/fedora-infrastructure-list
>
>

Hip Hip Hurray !!!!!



From hackerboymayabhi at gmail.com  Sun Nov 29 13:03:19 2009
From: hackerboymayabhi at gmail.com (Abhishek Indoria)
Date: Sun, 29 Nov 2009 05:03:19 -0800
Subject: Getting Started
Message-ID: <d643693a0911290503m7f820c69q3f2e79b2f9c0b583@mail.gmail.com>

Hello all,

I am Abhishek Indoria, 14 from India. I am interested in contributing
to Fedora project as being a part of Fedora Infrastructure group.

I am 14, so please don't expect much, but here's my brief information:

Name: Abhishek Indoria
Age: 14
D.O.B. : March 18,1995
Address:
 22/C-30,
Pratap Nagar
Sanganer, Jaipur
INDIA
Time Zone: +5.30 UTC

Skills/programming languages: C,C#,CPP, Basic, GLBasic, A bit of
Python and Perl, XML, Javascript and some bits of SQL and VBScript.

Experience:

I am currently volunteering as software developer in one laptop per
child foundation(olpc) and SugarLabs. I am also in RT-Administrator
gang(known as olpc Support-Gang) in olpc as well as in developers
squad in SugarLabs.

Please check out both of them here:
http://wiki.laptop.org and http://laptop.org
http://wiki.sugarlabs.org and http://sugarlabs.org

I am currently owner of Free & Open Source Software For Youth
Foundation, Phoenix-Team and AceX(Pronounced A6), all of which have
more than 25 members working with me.
My group and I are currently active in developing a game using CPP,
XML and SDL specially for olpc XO platform and Linux alongwith Mac and
probably, Windows. We are also working on a spreadsheet program.

Please see our group pages at:
http://fossfy.co.cc
http://phoenix-team.tk
Our Free Software News Portal Blog at:
http://fsnp.co.cc


Is there anything else I am required to submit. Can anyone please help
me get started? It will be appreciated.

Thanks :)

-- 
Abhishek Indoria
OLPC Support Volunteer
http://support.laptop.org



From mustafa.golam at gmail.com  Sun Nov 29 14:23:14 2009
From: mustafa.golam at gmail.com (Mustafa Golam -)
Date: Sun, 29 Nov 2009 20:23:14 +0600
Subject: Getting Started
In-Reply-To: <d643693a0911290503m7f820c69q3f2e79b2f9c0b583@mail.gmail.com>
References: <d643693a0911290503m7f820c69q3f2e79b2f9c0b583@mail.gmail.com>
Message-ID: <c72973e60911290623u358d4841p9d22076eb5c4861b@mail.gmail.com>

On Sun, Nov 29, 2009 at 7:03 PM, Abhishek Indoria <
hackerboymayabhi at gmail.com> wrote:

> Hello all,
>
> I am Abhishek Indoria, 14 from India. I am interested in contributing
> to Fedora project as being a part of Fedora Infrastructure group.
>


>
> I am currently owner of Free & Open Source Software For Youth
> Foundation, Phoenix-Team and AceX(Pronounced A6), all of which have
> more than 25 members working with me.
> My group and I are currently active in developing a game using CPP,
> XML and SDL specially for olpc XO platform and Linux alongwith Mac and
> probably, Windows. We are also working on a spreadsheet program.
>
> That's too much for a kid of 14 ;;)
Congrats and welcome to the group..
//Mustafa




-- 
--
*??)
?.???.?*??) ?.?*?)
(?.?? (?.?` *Mustafa Golam,'.'`,.
-.*.--.*.--.*.--.*.--.*.--.*.--.*.--.*.-.'.'`,..
Email  : mustafa.golam at gmail.com
GSM: +88-0167-2977-483/+234-(7060460120)
Facebook   : http://www.facebook.com/mustafa.golam
LinkedIn     : http://www.linkedin.com/in/mustafagolam
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://listman.redhat.com/archives/fedora-infrastructure-list/attachments/20091129/5b195a9f/attachment.htm>

From mmcgrath at redhat.com  Mon Nov 30 02:04:41 2009
From: mmcgrath at redhat.com (Mike McGrath)
Date: Sun, 29 Nov 2009 20:04:41 -0600 (CST)
Subject: Disabling bapp1 for a bit
Message-ID: <alpine.LFD.2.00.0911292002550.5656@laptop.mmcgrath.net>

I'm disabling bapp1 for a bit until I either build another one or until we
get xen13 back online.  This won't have a major impact on the users except
that some sites won't have up to date data if they are updated (like
docs.fedoraproject.org)

Atm xen13 doesn't pass a POST so I'll be on the phone with IBM shortly.

	-Mike



From Matt_Domsch at Dell.com  Mon Nov 30 03:52:53 2009
From: Matt_Domsch at Dell.com (Matt_Domsch at Dell.com)
Date: Sun, 29 Nov 2009 21:52:53 -0600
Subject: Disabling bapp1 for a bit
In-Reply-To: <alpine.LFD.2.00.0911292002550.5656@laptop.mmcgrath.net>
References: <alpine.LFD.2.00.0911292002550.5656@laptop.mmcgrath.net>
Message-ID: <1B9798A3396AB0429545ADFEA20793150D226E7F1F@AUSX7MCPS302.AMER.DELL.COM>

All of MirrorManager's cronjobs like update-master-directory-list and the crawlers run on bapp1.  So getting it back online somewhere would be valuable to me.

Thanks,
Matt

-----Original Message-----
From: fedora-infrastructure-list-bounces at redhat.com [mailto:fedora-infrastructure-list-bounces at redhat.com] On Behalf Of Mike McGrath
Sent: Sunday, November 29, 2009 8:05 PM
To: Fedora Infrastructure List
Subject: Disabling bapp1 for a bit

I'm disabling bapp1 for a bit until I either build another one or until we
get xen13 back online.  This won't have a major impact on the users except
that some sites won't have up to date data if they are updated (like
docs.fedoraproject.org)

Atm xen13 doesn't pass a POST so I'll be on the phone with IBM shortly.

	-Mike

_______________________________________________
Fedora-infrastructure-list mailing list
Fedora-infrastructure-list at redhat.com
https://www.redhat.com/mailman/listinfo/fedora-infrastructure-list



From mmcgrath at redhat.com  Mon Nov 30 14:01:26 2009
From: mmcgrath at redhat.com (Mike McGrath)
Date: Mon, 30 Nov 2009 08:01:26 -0600 (CST)
Subject: Disabling bapp1 for a bit
In-Reply-To: <1B9798A3396AB0429545ADFEA20793150D226E7F1F@AUSX7MCPS302.AMER.DELL.COM>
References: <alpine.LFD.2.00.0911292002550.5656@laptop.mmcgrath.net>
	<1B9798A3396AB0429545ADFEA20793150D226E7F1F@AUSX7MCPS302.AMER.DELL.COM>
Message-ID: <alpine.LFD.2.00.0911300800560.5656@laptop.mmcgrath.net>

On Sun, 29 Nov 2009, Matt_Domsch at Dell.com wrote:

> All of MirrorManager's cronjobs like update-master-directory-list and the crawlers run on bapp1.  So getting it back online somewhere would be valuable to me.
>

I got it back online lastnight but forgot to send an update to the list,
still working on root cause of what happened as I suspect it'll happen
again.

	-Mike

> Thanks,
> Matt
>
> -----Original Message-----
> From: fedora-infrastructure-list-bounces at redhat.com [mailto:fedora-infrastructure-list-bounces at redhat.com] On Behalf Of Mike McGrath
> Sent: Sunday, November 29, 2009 8:05 PM
> To: Fedora Infrastructure List
> Subject: Disabling bapp1 for a bit
>
> I'm disabling bapp1 for a bit until I either build another one or until we
> get xen13 back online.  This won't have a major impact on the users except
> that some sites won't have up to date data if they are updated (like
> docs.fedoraproject.org)
>
> Atm xen13 doesn't pass a POST so I'll be on the phone with IBM shortly.
>
> 	-Mike
>
> _______________________________________________
> Fedora-infrastructure-list mailing list
> Fedora-infrastructure-list at redhat.com
> https://www.redhat.com/mailman/listinfo/fedora-infrastructure-list
>
> _______________________________________________
> Fedora-infrastructure-list mailing list
> Fedora-infrastructure-list at redhat.com
> https://www.redhat.com/mailman/listinfo/fedora-infrastructure-list
>