F-Droid devops

9 Members
Sysadmin work around F-Droid3 Servers

Load older messages

30 Jun 2022
@SylvieLorxu:matrix.orgSylviaProbably the mail server switch will fix that13:22:31
@festplattenschnitzel:matrix.orgFestplattenSchnitzel Hehe: we can phone Ciaran. https://www.whois.com/whois/acge.com 13:34:32
@SylvieLorxu:matrix.orgSylviaI don't want to go down the route of being more annoying, nobody will be happy in that route :P I'll just send a reminder mail for the email stuff13:38:25
4 Jul 2022
@eighthave:matrix.org_hcFYI the contact email for verification.f-droid.org and the GitLab CI Runner VMs at pep.security (pEp) is it@pep.security12:14:28
6 Jul 2022
@eighthave:matrix.org_hcAnd sysadmin@calyxinstitute.org is the contact for the f-droid.org deployserver.05:50:13
13 Jul 2022
@eighthave:matrix.org_hcthe deployserver now has 12 cores and 16GB of RAM, before it had 8 cores, so it should run faster now. That'll let us launch more languages15:30:43
@eighthave:matrix.org_hc michael: just saw Ciaran's email. Do you think we should just take over running the buildserver? I think Ciaran now runs them on Hetzner anyway. Before he had them as local bare metal at his home. 15:33:23
@jochensp:matrix.orgjochensp+1 for taking them :)15:34:08
@uniq:matrix.orguniqIf Ciaran wants to hand them over, we probably should. We can certainly move all servers to the donations paid account, to begin with. But I won't be able to put any meaningful amount of time in before September. :(20:31:38
@jochensp:matrix.orgjochenspI guess signing will still be done by Ciaran, so we would need some interface to transfer the files (I think Bubu was working on that some time ago). Anyone knows the state?20:35:59
@uniq:matrix.orguniqI think not.20:36:28
@uniq:matrix.orguniqIf Ciaran is already running the buildserver at Hetzner20:36:54
@uniq:matrix.orguniqHe must have all of that already worked out and running20:37:10
@uniq:matrix.orguniqSo I guess Ciaran would just fetch all new unsigned builds with rsync or something20:38:02
@jochensp:matrix.orgjochenspthat would work, sure20:38:15
@jochensp:matrix.orgjochenspI guess we should work out some plan how to secure the server then20:38:37
@jochensp:matrix.orgjochensp..I guess we could run the Ansible setup and hand ssh accounts to Ciaran and how else wants to maintain it20:40:35
@jochensp:matrix.orgjochensp(I'm open to help with it)20:40:53
20 Jul 2022
@uniq:matrix.orguniq _hc jochensp Do you think Calyx might still be interested in providing secure hosting for our buildserver? 15:01:35
@eighthave:matrix.org_hcseems worth asking16:16:59
29 Sep 2022
@uniq:matrix.orguniq changed their display name from michael to uniq.20:32:23
1 Oct 2022
@eighthave:matrix.org_hc Sylvia: could you create some kind of account on mailcow so that the buildserver can log into SMTP and send email? 17:03:37
@SylvieLorxu:matrix.orgSylviaI'll make it an account after midnight/tomorrow. Do note that the DNS records of F-Droid aren't correct so if buildserver uses Mailcow to mail it'll end up in spam guaranteed17:53:28
1 Nov 2022
@uniq:matrix.orguniqhmm, ssl patch didn't land in debian yet :/15:49:46
@jochensp:matrix.orgjochenspI think it is not public yet, at least I don't see it on https://www.openssl.org/15:50:41
@jochensp:matrix.orgjochenspnow: https://mta.openssl.org/pipermail/openssl-announce/2022-November/date.html15:55:30
@jochensp:matrix.orgjochensp(and the webserver is under serious load)15:55:48
@jochensp:matrix.orgjochensp..also, stable is not affected (if I got it right) and unstable will probably get it soon (I hope)16:07:47
2 Nov 2022
@uniq:matrix.orguniqthanks, just double checked and we're apparently not vulnerable :)11:10:45

There are no newer messages yet.

Back to Room List