Re: [tor-bugs] #30627 [Internal Services/Tor Sysadmin Team]: document how to map a service back to an underlying host

[Tor Bug Tracker & Wiki]

#30627: document how to map a service back to an underlying host
-+
 Reporter:  arma |  Owner:  tpa
 Type:  enhancement  | Status:  closed
 Priority:  Medium   |  Milestone:
Component:  Internal Services/Tor Sysadmin Team  |Version:
 Severity:  Normal   | Resolution:  fixed
 Keywords:   |  Actual Points:
Parent ID:   | Points:
 Reviewer:   |Sponsor:
-+
Changes (by anarcat):

 * status:  reopened => closed
 * resolution:   => fixed


Comment:

 >  Ok great, let's say that and call it good enough.

 done!

--
Ticket URL: 
Tor Bug Tracker & Wiki 
The Tor Project: anonymity online
___
tor-bugs mailing list
tor-bugs@lists.torproject.org
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs

Re: [tor-bugs] #30627 [Internal Services/Tor Sysadmin Team]: document how to map a service back to an underlying host

[Tor Bug Tracker & Wiki]

#30627: document how to map a service back to an underlying host
-+-
 Reporter:  arma |  Owner:  tpa
 Type:  enhancement  | Status:
 |  reopened
 Priority:  Medium   |  Milestone:
Component:  Internal Services/Tor Sysadmin Team  |Version:
 Severity:  Normal   | Resolution:
 Keywords:   |  Actual Points:
Parent ID:   | Points:
 Reviewer:   |Sponsor:
-+-

Comment (by arma):

 Replying to [comment:5 anarcat]:
 > Well, this guide is directed mostly at sysadmins. Most people should
 "contact us", which is:

 Ok great, let's say that and call it good enough.

 > Wait what? It isn't encrypt to me? What do you mean? I just git pulled
 the file and I *can* decrypt it.

 You're right! I just hadn't git pulled in a while.

 > We haven't changed approach on that front, as far as I know.

 Great.

--
Ticket URL: 
Tor Bug Tracker & Wiki 
The Tor Project: anonymity online
___
tor-bugs mailing list
tor-bugs@lists.torproject.org
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs

Re: [tor-bugs] #30627 [Internal Services/Tor Sysadmin Team]: document how to map a service back to an underlying host

[Tor Bug Tracker & Wiki]

#30627: document how to map a service back to an underlying host
-+-
 Reporter:  arma |  Owner:  tpa
 Type:  enhancement  | Status:
 |  reopened
 Priority:  Medium   |  Milestone:
Component:  Internal Services/Tor Sysadmin Team  |Version:
 Severity:  Normal   | Resolution:
 Keywords:   |  Actual Points:
Parent ID:   | Points:
 Reviewer:   |Sponsor:
-+-

Comment (by anarcat):

 >  Anybody who notices a service is down can be the first you. But most of
 them shouldn't be the ones to file a ticket with Hetzner, right? Most of
 them should... mail torproject-admin? Find us on irc?

 Well, this guide is directed mostly at sysadmins. Most people should
 "contact us", which is:

 https://help.torproject.org/tsa/doc/how-to-get-help/

 Maybe I should just throw that up there?

 >  Speaking of which, when I want to approach hetzner, I go to the tor-
 passwords repo and "gpg < hosts-extra-info"

 By the way, you '''really''' don't want to `gpg < foo`. It lets gpg "guess
 what you want", and it can do some pretty nasty stuff, in theory. In
 practice, it might be safe, but I was really unhappy about what I saw
 auditing that source path and I '''strongly recommend''' heeding the
 warnings that now bug you in GPG 2. What you want is `gpg -d < foo` or
 `gpg --decrypt < foo`.

 > and now I am more informed. But I notice that file isn't encrypted to
 anarcat. I guess that we have moved to some other approach. But I wonder
 what it is. :)

 Wait what? It isn't encrypt to me? What do you mean? I just git pulled the
 file and I *can* decrypt it.

 We haven't changed approach on that front, as far as I know.

--
Ticket URL: 
Tor Bug Tracker & Wiki 
The Tor Project: anonymity online
___
tor-bugs mailing list
tor-bugs@lists.torproject.org
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs

Re: [tor-bugs] #30627 [Internal Services/Tor Sysadmin Team]: document how to map a service back to an underlying host

[Tor Bug Tracker & Wiki]

#30627: document how to map a service back to an underlying host
-+-
 Reporter:  arma |  Owner:  tpa
 Type:  enhancement  | Status:
 |  reopened
 Priority:  Medium   |  Milestone:
Component:  Internal Services/Tor Sysadmin Team  |Version:
 Severity:  Normal   | Resolution:
 Keywords:   |  Actual Points:
Parent ID:   | Points:
 Reviewer:   |Sponsor:
-+-
Changes (by arma):

 * status:  closed => reopened
 * resolution:  fixed =>


Comment:

 Thanks!

 I've looked at the doc (and fixed a typo), but now the big question is
 that it shifts from which 'you' it thinks it's addressing:

 * At the beginning it is about how you can figure out which service or
 server is involved when something isn't working

 * And then suddenly it's about how you need to file a ticket with Hetzner.

 Anybody who notices a service is down can be the first you. But most of
 them shouldn't be the ones to file a ticket with Hetzner, right? Most of
 them should... mail torproject-admin? Find us on irc?

 Speaking of which, when I want to approach hetzner, I go to the tor-
 passwords repo and "gpg < hosts-extra-info" and now I am more informed.
 But I notice that file isn't encrypted to anarcat. I guess that we have
 moved to some other approach. But I wonder what it is. :)

--
Ticket URL: 
Tor Bug Tracker & Wiki 
The Tor Project: anonymity online
___
tor-bugs mailing list
tor-bugs@lists.torproject.org
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs

Re: [tor-bugs] #30627 [Internal Services/Tor Sysadmin Team]: document how to map a service back to an underlying host

[Tor Bug Tracker & Wiki]

#30627: document how to map a service back to an underlying host
-+
 Reporter:  arma |  Owner:  tpa
 Type:  enhancement  | Status:  closed
 Priority:  Medium   |  Milestone:
Component:  Internal Services/Tor Sysadmin Team  |Version:
 Severity:  Normal   | Resolution:  fixed
 Keywords:   |  Actual Points:
Parent ID:   | Points:
 Reviewer:   |Sponsor:
-+
Changes (by anarcat):

 * status:  new => closed
 * resolution:   => fixed


Comment:

 i'll assume the documentation i have written is satisfactory here and move
 on, reopen if you need anything else.

--
Ticket URL: 
Tor Bug Tracker & Wiki 
The Tor Project: anonymity online
___
tor-bugs mailing list
tor-bugs@lists.torproject.org
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs

Re: [tor-bugs] #30627 [Internal Services/Tor Sysadmin Team]: document how to map a service back to an underlying host

[Tor Bug Tracker & Wiki]

#30627: document how to map a service back to an underlying host
-+-
 Reporter:  arma |  Owner:  tpa
 Type:  enhancement  | Status:  new
 Priority:  Medium   |  Milestone:
Component:  Internal Services/Tor Sysadmin Team  |Version:
 Severity:  Normal   | Resolution:
 Keywords:   |  Actual Points:
Parent ID:   | Points:
 Reviewer:   |Sponsor:
-+-

Comment (by anarcat):

 is https://help.torproject.org/tsa/howto/incident-response/ what you had
 in mind?

--
Ticket URL: 
Tor Bug Tracker & Wiki 
The Tor Project: anonymity online
___
tor-bugs mailing list
tor-bugs@lists.torproject.org
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs

Re: [tor-bugs] #30627 [Internal Services/Tor Sysadmin Team]: document how to map a service back to an underlying host

[Tor Bug Tracker & Wiki]

#30627: document how to map a service back to an underlying host
-+-
 Reporter:  arma |  Owner:  tpa
 Type:  enhancement  | Status:  new
 Priority:  Medium   |  Milestone:
Component:  Internal Services/Tor Sysadmin Team  |Version:
 Severity:  Normal   | Resolution:
 Keywords:   |  Actual Points:
Parent ID:   | Points:
 Reviewer:   |Sponsor:
-+-

Comment (by arma):

 Two resources that will be helpful for documenting this process:

 weasel points me to https://nagios.torproject.org/cgi-
 bin/icinga/statusmap.cgi?host=all (though nobody can log in to our nagios
 to see this page unless somebody has explained to them how simple it is to
 log in.)

 And to figure out which service runs on which host (which will help you
 look for that host on the nagios tree), there's
 https://db.torproject.org/machines.cgi

--
Ticket URL: 
Tor Bug Tracker & Wiki 
The Tor Project: anonymity online
___
tor-bugs mailing list
tor-bugs@lists.torproject.org
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs

[tor-bugs] #30627 [Internal Services/Tor Sysadmin Team]: document how to map a service back to an underlying host

[Tor Bug Tracker & Wiki]

#30627: document how to map a service back to an underlying host
-+-
 Reporter:  arma |  Owner:  tpa
 Type:  enhancement  | Status:  new
 Priority:  Medium   |  Milestone:
Component:  Internal Services/Tor Sysadmin Team  |Version:
 Severity:  Normal   |   Keywords:
Actual Points:   |  Parent ID:
   Points:   |   Reviewer:
  Sponsor:   |
-+-
 Let's say check.tpo goes down, and is unpingable. That means something has
 probably gone wrong with the underlying host. How do I learn what
 underlying server is serving check.tpo?

 It would be great to have that process, of mapping a service back to which
 host it's on, written down, either on https://help.torproject.org/tsa/ or
 pointed to from there.

 Thanks!

--
Ticket URL: 
Tor Bug Tracker & Wiki 
The Tor Project: anonymity online
___
tor-bugs mailing list
tor-bugs@lists.torproject.org
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs