[Owasp-board] Critical Maintenance of OWASP's servers

Matt Tesauro matt.tesauro at owasp.org
Thu Mar 5 04:35:17 UTC 2015


It looks like there's a bad vulnerability in Xen - the hypervisor that
underpins Rackspace's Cloud Servers aka OpenStack Nova.  Rackspace is apply
patches and has to reboot the host server - something they _rarely_ do.

More details at: https://community.rackspace.com/general/f/53/t/4978

*What this means in simple English:*  Our servers are going to have brief
downtime based on the schedule below.  The downtime is short (a minute or
two) sometime in the overall time slot below:

OWASP WIki - Website
    *Critical Maintenance*: This server's host will be *rebooted between
Mar 6, 12:00 AM CST and Mar 6, 2:00 AM CST* to patch a security issue on
the host.

OWASP Wiki - database
    *Critical Maintenance*: This server's host will be *rebooted between
Mar 5, 10:00 PM CST and Mar 6, 12:00 AM CST* to patch a security issue on
the host

OWASP Mailman - lists.owasp.org
    *Critical Maintenance*: This server's host will be *rebooted between
Mar 5, 2:00 AM CST and Mar 5, 4:00 AM CST* to patch a security issue on the
host.

The conference archive sites and the Contact Us form server
    *Critical Maintenance*: This server's host will be *rebooted between
Mar 4, 10:00 PM CST and Mar 5, 12:00 AM CST* to patch a security issue on
the host.

AppSec USA 2015 has already had maintenance completed on its
hypervisor/host.

I'm getting many, many alerts from the monitoring I have setup on all our
Rackspace servers.  If you have downtime OUTSIDE the windows above, please
let me know.

Cheers!

--
-- Matt Tesauro
OWASP WTE Project Lead
http://www.owasp.org/index.php/Category:OWASP_Live_CD_Project
http://AppSecLive.org - Community and Download site
OWASP OpenStack Security Project Lead
https://www.owasp.org/index.php/OWASP_OpenStack_Security_Project
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.owasp.org/pipermail/owasp-board/attachments/20150304/56a7a0da/attachment.html>


More information about the Owasp-board mailing list