Re: Ethics Guidelines was Fwd: Re: > The machines that run sa-update stuff are offline at the moment.

On 6/21/2017 3:26 AM, Frank Urban wrote: that's a lot of information now. I'm not sure what kind of job you are planning for me. You wrote "Admin" and in a later email "Committer". I have no idea what will be the job of a Committer. The documents from Jochen seemed to be created for someone

Re: Things just keep happening

I consider you all part of the ASF family so I am glad things are looking better. Never too much info especially if it helps you feel better to know we understand. The project will still be here so no sweat on our part and we welcome any help you can give whenever that is. Anything you

Ethics Guidelines was Fwd: Re: > The machines that run sa-update stuff are offline at the moment.

Frank, my friend Joey who is also German wrote back. He has been on holiday and apologizes for the delay! He would like to help make sure you are good to go with the project. I've cc'd him and the other sysadmins on the project. Because people donate us their mail corpora of both ham &

Slack Conversations

I asked Chris if I could forward this as it will bring a thought process as you guys learn about managing things under the asf. Regards, KAM I have an action item from the Board to follow up with something mentioned in your prior report. It seems in that report there is mention of Slack

Re: Fwd: Re: Errors since upgrading to 3.4.1: "meta test ... with a zero score"

Thought. Get the update nums from previous turn back on and copy those files to a higher number and update dns. That will revert back to last known good. Regards, KAM On June 15, 2017 9:24:37 PM EDT, Dave Jones wrote: >Ugg! I asked for some help QA'ing the rules for over a

Re: Fwd: New CrashPlan Backup Alerts

On 6/15/2017 1:30 PM, Dave Jones wrote: It is Java... We could setup supervisord to make sure it's running. Joking aside, I have this on a lot of boxes. We changed RAM & CPUs. I'll keep an eye on it for now.

Re: Think I locked myself out of the SVN

On 6/14/2017 11:01 AM, Bryan Vest wrote: hipchat was great, I had actually locked out my IP. Chris Thistlewaite worked with me to get it unblocked and tested. --Bryan Perfect! I try not to use hipchat unless it's time-sensitive, FYI.

Re: Main Developer

On 6/14/2017 10:19 AM, Bryan Vest wrote: There are deeper details, this is just the summary. Just throwing this in the mix for my agreement SA is no doubt very versatile. :-) Agreed. It's an amazing tool. I use it for things other than email as well :-)

Re: Main Developer

On 6/14/2017 8:40 AM, Bryan Vest wrote: Yes I keep up with rspamd, read into what it can do but have not tested it yet. I have read mentions of SA V4 in the different lists. Where does that stand? Are there any dev notes for changes/additions in V4? v4 the big difference is switching to more

Re: bugzilla canconfirm Can confirm a bug.

On 6/12/2017 3:14 PM, Bryan Vest wrote: I already have the keys to start the engine, might as well give me the keys to the that castle too.:) Done!

Re: Main Developer

Some comments in-line below: On 6/14/2017 9:47 AM, Dave Jones wrote: There are soo many bugs already open. I looked around BZ some last week and it seems like there is no real recent movement on anything. I would like to create a BZ to get a DMARC plugin started but on the users mailing

Re: Fwd: Re: [Bug 7432] Update cron jobs on sa-vm1 to run at UTC and ignore daylight savings change

Jun 2017 13:31:02 -0500 From: Dave Jones <da...@apache.org> To: sysadmins@spamassassin.apache.org Thanks, In a few hours, I will change the TZ and update the /etc/cron.d/automc with the real hours in UTC. This will be much better! Dave On 06/13/2017 01:11 PM, Kevin A. McGrail wrote

Re: Main Developer

On 6/14/2017 8:04 AM, Dave Jones wrote: That seems correct from what I have seen. Speaking of development. rspamd is starting to really take off: https://rspamd.com/ I hope we can keep SA out there as the leader that everyone compares themselves to: https://rspamd.com/comparison.html

Re: Think I locked myself out of the SVN

On 6/14/2017 9:21 AM, Bryan Vest wrote: I received an email from Sidney Markowitz that my SVN access had bren setup and to test a commit by editing the CREDITS file. I think I locked myself out using the wrong password. Before I open a ticket with INFRA I wanted to make sure that is the correct

Re: bugzilla canconfirm Can confirm a bug.

On 6/12/2017 2:50 PM, Dave Jones wrote: I am fine with leaving the existing perms to be all or nothing. No need to make more work if it's not necessary. My comment was more toward the "take" link/option should be available to all accounts by default. I guess BZ wasn't setup that way. You

Re: Main Developer

On 6/14/2017 7:58 AM, Bryan Vest wrote: This may seem like a question I should know the answer to and I think I do but just want to verify. Who is the main developer on SA? I know overall development is a crew of volunteer's and would assume Kevin has the final say, just want to make sure.

Re: Fwd: Re: [Bug 7432] Update cron jobs on sa-vm1 to run at UTC and ignore daylight savings change

On 6/13/2017 2:31 PM, Dave Jones wrote: Thanks, In a few hours, I will change the TZ and update the /etc/cron.d/automc with the real hours in UTC. This will be much better! ty.

Fwd: Re: [Bug 7432] Update cron jobs on sa-vm1 to run at UTC and ignore daylight savings change

FYI Forwarded Message Subject: Re: [Bug 7432] Update cron jobs on sa-vm1 to run at UTC and ignore daylight savings change Date: Tue, 13 Jun 2017 10:33:19 -0700 From: Chris Lambertus <c...@apache.org> To: Kevin A. McGrail <kevin.mcgr...@mcgrail.com> CC

Re: Cron <automc@sa-vm1> ~/svn/trunk/build/mkupdates/do-stable-update-with-scores > /dev/null

I am also working on a patch for sha256 fyi if you see oddities. Regards, KAM On June 13, 2017 10:39:53 AM EDT, Dave Jones wrote: >That's an optional module caused by the "make" process. I did have to >install a few perl modules to get the make to work but I didn't worry

Re: bugzilla canconfirm Can confirm a bug.

Never really thought about it much. Most of the project committees just ask and get everything. If you want less than everything I can send you a list and you can tell me which you want. Regards, KAM On June 12, 2017 2:28:16 PM EDT, Dave Jones wrote: >Really? I would think

Re: bugzilla canconfirm Can confirm a bug.

There is no set level of permissions per se. Would you like the keys to the castle? On 6/12/2017 8:54 AM, Bryan Vest wrote: I only seem to have the bugzilla permission "canconfirm Can confirm a bug". Should I have different permissions? Just making sure everything is like it should be. My

Re: Minor problem with ruleqa

Just an FYI that I did not get time on this today. On 6/10/2017 10:38 PM, Kevin A. McGrail wrote: Ok. I will put at least two hours on it.when I get home tomorrow at noon. Regards, KAM On June 10, 2017 10:12:54 PM EDT, Dave Jones <da...@apache.org> wrote: Kevin, There seems to be a

Re: DNS history in SVN

On 6/11/2017 12:55 PM, Dave Jones wrote: I have setup sa-vm1:/usr/local/bin/pushDNStoSVN.sh to run weekly to update SVN (dns repo) with the current zone dump. This will give us history of all of the DNS changes for the spamassassin.org zone. We will get an email from the script via this list

Re: checkMasscheckContribs.sh on sa-vm1.apache.org - not enough contributors for SVN 1798299

Yes, good point. Need me to check any old logs for the delay? Regards, KAM On June 10, 2017 8:19:50 AM EDT, Dave Jones wrote: >I need to update this to wait longer on Saturdays since the net checks >are running today. I will add this logic now to the script. > >Dave > >On

Re: Tracking tasks/work for sysadmins

On 6/8/2017 12:56 PM, Bryan Vest wrote: Another thought if it sounds interesting and it is allowed by the ASF. Setting up a slack channel for the admin group. More direct communication, and the webhooks could be used to notify of situations the admin's need to be or would like to be notified

Re: Mirrors

On 6/8/2017 1:19 PM, Bryan Vest wrote: As I read through the email's there was some talk about mirrors. Does SA need more mirrors at this time? We run on a 10Gb/s backbone, well multiple backbone providers that add up to about 10Gb/s. Depending on the bandwidth/hardware requirements to run a

Re: Tracking tasks/work for sysadmins

On 6/8/2017 12:29 PM, Bryan Vest wrote: I also like this idea. There will always be things to do and that will help a lot. Welcome back! The idea is great because I've been writing notes for eons about things that could be done and it will give me a place to document and discuss them all so

Re: Tracking tasks/work for sysadmins

On 6/8/2017 12:05 PM, Dave Jones wrote: Kevin, Do we have access to something like Jira or BZ where we can put in our tasks for this team and track them? I think it will be essential to plan out future goals and track issues/tasks for our group. Yes, that is a GREAT idea. We have

Fwd: [jira] [Updated] (INFRA-14294) Increase RAM and VMs for SA-VM1

up now. Increase RAM and VMs for SA-VM1 --- Key: INFRA-14294 URL: https://issues.apache.org/jira/browse/INFRA-14294 Project: Infrastructure Issue Type: Project Components: VM Reporter: Kevin A. M

Re: Fwd: [jira] [Updated] (INFRA-14294) Increase RAM and VMs for SA-VM1

inute or less outage. Dave On 06/07/2017 08:28 AM, Kevin A. McGrail wrote: Dave, see re new cores and ram. They don't use swap space on vms so let me know if more ram is needed. Regards, KAM Original Message From: "Chris Lambertus (JIRA)" <j...@apache.org>

Fwd: [jira] [Updated] (INFRA-14294) Increase RAM and VMs for SA-VM1

pe: Project > Components: VM >Reporter: Kevin A. McGrail >Assignee: Chris Lambertus >Priority: Critical > > Hello Infra! We have successfully migrated some of our backend from zones2 > and spamassassin-vm to sa-vm1. > How

Re: Potential problem with do-stable-update-with-scores cron job

On 6/2/2017 9:10 AM, Dave Jones wrote: On the ruleqa list yesterday, John Hardin confirmed that buildbot was running before to centrally process the full uploaded corpora. Sigh. This is going to be difficult to figure out and get going again so we need to focus on the distributed masscheck

Re: Questions about build/mkupdates/run_part2

? Regards, KAM -- Kevin A. McGrail Asst. Treasurer & VP Fundraising, Apache Software Foundation Chair Emeritus Apache SpamAssassin Project

Re: Potential problem with do-stable-update-with-scores cron job

I think you are right. And that the system needs a run to create the files for the scores on the new server. On 5/30/2017 8:25 PM, Kevin A. McGrail wrote: It's quite possible bb does update rule qa. Don't take what I say as absolute... Will look at this more tomorrow. Regards, KAM On May

Re: Backups & Crashplan

On 6/1/2017 9:30 AM, Dave Jones wrote: Where should I put the private key then? If you are going to personally see Greg, then it may make more sense for you to generate it offline so the private key is not checked into SVN or emailed from me to you. Sorry, I wasn't clear. In my head, I had

Re: Backups & Crashplan

On 5/31/2017 2:52 PM, Dave Jones wrote: On 05/30/2017 05:44 PM, Kevin A. McGrail wrote: We should add /etc and /var/www and exclude /usr/local/spamassassin/backups since it's so large. Added/excluded as suggested. Thanks very much for the feedback Do we need to setup crashplan to run under

Re: Cron <root@sa-vm1> cd / && run-parts --report /etc/cron.hourly

Sounds awesome and feel free to spam sysadmins@ I did not get to look at the other issue but I will. Regards, KAM On May 31, 2017 7:27:53 PM EDT, Dave Jones wrote: >This is a script I am testing out just for notifications to my email >address. I will set it up to be silent

Re: Potential problem with do-stable-update-with-scores cron job

;your advice and post on the dev mailing list to see if anyone knows >anything or has some backups somewhere. > >Dave > >On 05/30/2017 07:00 PM, Kevin A. McGrail wrote: >> Ahh. This was for the quick masschecks for the preflight rules. I >> don't think it is used nor is th

Re: Potential problem with do-stable-update-with-scores cron job

. Dave On 05/30/2017 12:17 PM, Kevin A. McGrail wrote: On 5/27/2017 3:12 PM, Dave Jones wrote: This script: https://svn.apache.org/repos/asf/spamassassin/trunk/masses/rule-update-score-gen/do-nightly-rescore-example refers to '/home/dos/sa-score-gen/nightly-rescore-via-cron' which

Re: Potential problem with do-stable-update-with-scores cron job

to remember, sorry. I can try and dig too but it's confusing to me as well. However, an important thing is are we running the correct scripts. Since I don't see /home/dos on spamassassin-vm1 in my backups, I'm guessing it was on a different server. Regards, KAM -- Kevin A. McGrail Asst

Re: What a mess!

On 5/28/2017 5:29 PM, Dave Jones wrote: I have been all day on the do-stable-update-with-scores script. There is a build problem now that has me stumped. All of these scripts are a mess! They all do similar things in very different ways making it very hard to follow and troubleshoot. I

Backups & Crashplan was Re: What a mess!

. They call this managing a headless box. See https://support.code42.com/CrashPlan/4/Configuring/Use_CrashPlan_on_a_headless_computer_version_4.2_and_earlier for more details. Regards, KAM -- Kevin A. McGrail Asst. Treasurer & VP Fundraising, Apache Software Foundation Chair Emeritus Ap

Re: SA updates files archive

On 5/30/2017 9:57 AM, Dave Jones wrote: I setup an archive dir under the updates dir that is excluded from rsync so we would still keep the files on the server but they would drop off of the rsync out to the mirrors. I haven't moved any files yet. What I'd suggest is: - See my "soon to be

Re: SA updates files archive

On 5/30/2017 9:47 AM, Dave Jones wrote: Ok. That's fine. To be clear, if we can confirm better backup situation, the archive dir idea sounds great! Working through your other emails. I was camping with BSA for Memorial Day weekend. Regards, KAM On 05/30/2017 08:23 AM, Kevin A. McGrail

Re: > The machines that run sa-update stuff are offline at the moment.

, Networking (Cisco > >Routers) >The last thing I have done with Windows was my MCP on NT4. The last >Windows I used was Windows7. So here I can't help too much. > >Greetings > >Frank > >Am 20.05.2017 um 16:26 schrieb Kevin A. McGrail: >> On 5/18/2017 2:35 PM, Frank U

Re: sa-update mirror addition

I think there is a leap missing, sorry. Ok, so mirrored.by is in svn in site/. The copy for rsync should perhaps be a checkout with the extra files on top. Then an svn up keeps things in sync. Mirrored.by should be cleared.up how to update. On 5/22/2017 8:15 PM, Dave Jones wrote: I

Re: Question about sabuildtools/bin

On 5/21/2017 9:36 PM, Dave Jones wrote: I can replace them if that is the direction you want to go. They look like old versions of perl and GnuPG. I will start with what the script is actually calling from that bin directory and try to replace with system versions from packages. Agreed.

Re: Questions about build/mkupdates/run_part2

On 5/21/2017 9:45 PM, Dave Jones wrote: It does look like run_part2 was working from cron so I guess I will continue to do the same thing. Maybe someone removed the passphrase from the gpgkey so it could be completely automated and didn't update the script description in the heading. That

Re: Question about sabuildtools/bin

I have been trying to.get rid of sabintools. It is a collection of many different items so you might have to look exe by exe and ask me questions Years ago I got all the items in sabuildtools working on a developer box of mine. It might be our only hope. Regards, KAM On May 21, 2017 6:00:44

Fwd: Re: [Ticket#954980087406] SpamAssassin update mirror hosting at http://sa-update.secnap.net

Woot! Forwarded Message Subject: Re: [Ticket#954980087406] SpamAssassin update mirror hosting at http://sa-update.secnap.net Date: Thu, 18 May 2017 13:40:42 -0400 From: SECNAP Network Security Organization: SECNAP Network Security To:

Fwd: [auto] do-nightly-rescore-example 127

Dave, there should have been cron logs as well but I didn't see them come into moderation. Regards, KAM Forwarded Message Subject:[auto] do-nightly-rescore-example 127 Date: Tue, 16 May 2017 02:25:02 -0700 (PDT) From: UpdatesD Cron

Re: sa-update mirror addition

You should be able to edit mirrored by and good to go. Might want to start out with a low weight. We should also try and svn that info without the actual updates. Regards, KAM On May 15, 2017 6:58:30 PM EDT, Dave Jones wrote: >Have setup sa-update.ena.com and they are ready

Re: PowerDNS web interface

security notices, we are considering other >options, >but that's neither here/there. if we switch vault providers in six >months... we'll *still* have one for an SA recovery key. > > >On Mon, May 15, 2017 at 5:27 PM, Kevin A. McGrail ><kevin.mcgr...@mcgrail.com >> wrote:

Re: PowerDNS web interface

Hi Bryan, A) My default answer is always going to be add it to the wiki with sensitive portions redacted and point to SVN files that are encrypted. This follows in kind to how extremely, sensitive items B) In my line of work, it is absolutely a failure of any security audit to use a

Re: ApacheCon 2017

Thanks. I think getting 3.4.2 will be my goal. I still have a lot of little issues to fix. Regards, KAM On May 15, 2017 8:40:11 AM EDT, Dave Jones wrote: >Kevin, >Good luck this week in Miami. I think you were trying to get SA 4.0 >built, released, and announced so I hope

Re: ruleqa.spamassassin.org

What server and path? I will see if my backups are better Regards, KAM On May 14, 2017 3:00:49 PM EDT, Dave Jones wrote: >Nevermind. I figured it out. I needed to have some data files for the > >script to read. It's working now showing the last backup we had on Jan > >26th.

Re: SysAdmin Tasklist was Re: Next priority to get running on sa-vm1.apache.org

On 5/14/2017 10:11 AM, Dave Jones wrote: Do we want to subscribe root like this? It doesn't need to receive any of these emails that will just fill up the root mailbox or possibly create a mail loop. I was thinking about allowing it as a non-member poster. I am more familiar with Mailman

Buildbot is likely a priority

with the files I need and then overridden DNS on my local machine so the scripts just "think" it worked. Regards, KAM -- Kevin A. McGrail Asst. Treasurer, Apache Software Foundation Chair Emeritus Apache SpamAssassin Project

Re: SysAdmin Tasklist was Re: Next priority to get running on sa-vm1.apache.org

nnouncement has been made on the spamassassin developer mailing list. anoncorpus mass-check result download area, available via anonymous access. -- Kevin A. McGrail Asst. Treasurer, Apache Software Foundation Chair Emeritus Apache SpamAssassin Project #!/usr/bin/perl # host -t txt 2.3.3.upda

Re: Rsync config on sa-vm1.apache.org

On 5/13/2017 4:47 PM, Dave Jones wrote: It's working now. Seeing a lot of clients syncing now in rsyncd.log. BTW, I have setup a redundant mirror of sa-update.ena.com to add to the MIRRORED.BY. I have to get some firewall ACL help on Monday to allow port 80 to the servers. After that, you

Fwd: SA-Update Mirror Check: http://sa-update.secnap.net/ is up again

NOTE, we'll likely be changing this to go to the sysadmins@s.a.o list since we now have that list. Forwarded Message Subject:SA-Update Mirror Check: http://sa-update.secnap.net/ is up again Date: Sat, 13 May 2017 17:01:12 -0400 From: root

Re: Rsync config on sa-vm1.apache.org

On 5/13/2017 3:16 PM, Dave Jones wrote: Are you going to pop on the box and scp your tar over? Another option is to use https://filedrop.ena.com and send it to me (djo...@ena.com) that way. The /var/www/bbmass.spamassassin.org dir is going to have most of the files. It's a lot of files in

Re: Encryption and Backups was Re: Onboarding, Documentation, etc.

gards, KAM -- Kevin A. McGrail Asst. Treasurer, Apache Software Foundation Chair Emeritus Apache SpamAssassin Project

Re: Onboarding, Documentation, etc.

On 5/13/2017 9:50 AM, Dave Jones wrote: I am not sure about my goal since it may be in slight conflict with your goal. :) I would like SA to be a little more toward a complete spam filter out of the box so people don't have to spend years learning all of the ins and outs to make it

Encryption and Backups was Re: Onboarding, Documentation, etc.

On 5/12/2017 7:32 PM, Dave Jones wrote: One thing we need to specify in more detail is the way we are going to encrypt things in the sysadmins repo. We don't want to put the encryption details on the wiki per se since it's public. The only thing I envision in the repo encrypted is passwords.

Re: Onboarding, Documentation, etc.

On 5/13/2017 9:13 AM, Kevin A. McGrail wrote: On 5/12/2017 7:32 PM, Dave Jones wrote: I have all of this information on https://wiki.apache.org/spamassassin/InfraNotes2017 now. Please review and comment/update as needed. Overall, the organization and edits are very good. Thanks for fixing

Re: Onboarding, Documentation, etc.

On 5/12/2017 7:32 PM, Dave Jones wrote: I have all of this information on https://wiki.apache.org/spamassassin/InfraNotes2017 now. Please review and comment/update as needed. Overall, the organization and edits are very good. Thanks for fixing Tenets, I knew that word looked wrong! I

Re: SVN update area

/10/2017 08:32 PM, Kevin A. McGrail wrote: On 5/10/2017 8:49 PM, Dave Jones wrote: Kevin, I was wanting to setup /usr/local/spamassassin/svn as a check out area and a general update area. Do you normally set it up with your own creds or is there a generic user that was used on the previous

Fwd: [jira] [Commented] (INFRA-14045) Setup davej with access to sa-vm1.apache.org with sudo access

browse/INFRA-14045 Project: Infrastructure Issue Type: Task Components: ColoTasks Reporter: Kevin A. McGrail Assignee: Chris Lambertus Priority: Minor Please setup davej so he can ssh to sa-vm1.apache.org after he adds his ssh pu

Re: Next priority to get running on sa-vm1.apache.org

On 5/12/2017 12:34 PM, Bryan Vest wrote: I see the step I missed. I'll get it fixed up. Excellent. When you have done that, then Dave or I need to open a Jira ticket. -- Kevin A. McGrail Asst. Treasurer, Apache Software Foundation Chair Emeritus Apache SpamAssassin Project

Re: Fwd: [jira] [Updated] (INFRA-14135) Please change DNS Servers for spamassassin.org

On 5/11/2017 12:54 PM, Dave Jones wrote: Excellent. Now we are all green here (ignore the MX record since we intentionally don't have one): https://intodns.com/spamassassin.org In a week or two we should be able to add in ns2.ena.com after getting the nod from our CTO who is out of pocket

Fwd: [jira] [Updated] (INFRA-14135) Please change DNS Servers for spamassassin.org

ervers for spamassassin.org -- Key: INFRA-14135 URL: https://issues.apache.org/jira/browse/INFRA-14135 Project: Infrastructure Issue Type: Task Components: DNS Reporter: Kevin A. McGrail As

Re: DNS hosting of spamassassin.org

very far behind and will be handing out incorrect records when we get everything rolling again soon. Roger that. We had talked about it so it was cool for you to open a JIRA but I did it anyway for you: https://issues.apache.org/jira/browse/INFRA-14135 Regards, KAM -- Kevin A. McGrail Asst

Notes from when SpamAssassin zones box died

pdate-6153/dns-backup/3.3.3 /var/named/updates.spamassassin.org.d/3.3.3 cp: accessing `/var/named/updates.spamassassin.org.d/3.3.3': Permission denied + set -e + (( I++ )) + (( I<=3 )) + exit 5 Exit Status 5 is not zero for mkupdate-with-scores -- Kevin A. McGrail Asst. Treasurer, Apache Software Foundation Chair Emeritus Apache SpamAssassin Project

Re: Next priority to get running on sa-vm1.apache.org

% / /dev/sdb1 1.2T 426G 678G 39% /x1 If we need the space, use it and remount how you would like! Regards, KAM -- Kevin A. McGrail Asst. Treasurer, Apache Software Foundation Chair Emeritus Apache SpamAssassin Project

Re: Fwd: Re: Copy of the current SA Zone?

On 5/2/2017 9:31 AM, Dave Jones wrote: On 5/2/17 8:20 AM, Kevin A. McGrail wrote: On 5/2/2017 9:14 AM, Dave Jones wrote: My plan is to setup a script on sa-vm1.apache.org that would run daily and email if there are record differences since we don't have control of the public DNS servers

Fwd: Re: Copy of the current SA Zone?

And the sonic copy spamassassin.org Description: Lotus Organizer

<    1   2   3