[Owasp-leaders] OWASP IT Infrastructure updates & news

Matt Tesauro matt.tesauro at owasp.org
Mon Aug 6 04:20:57 UTC 2012

There's been a bunch of stuff going on behind the scenes to get the OWASP
IT infrastructure upgraded.  We've been busy getting things done and I've
not been good at communicating what's been going on so here's some updates:

(1) Mailman on lists.owasp.org
      You should have noticed (or probably not) the lack of bounce
notifications.  Thanks to a ton of work from Achim Hoffmann and a bit of
assistance from me, we've found and eradicated the problems which were
causing some crazy bounce notification and people getting removed
from lists due to excessive bounces.  We're still using Barracuda to block
inbound SPAM (and there's LOTS of it) but we're not seeing mail getting
spooled in Barracuda or excessive email errors from Mailman's mail server.
 Achim is still investigating an issue we seem to be
having sporadically but, for the most part, the big Mailman problems appear
to be a thing of the past.
  ** MAJOR props to Achim for the ton of time he's spent getting these
issue squared away **
      Thanks also to everyone who provided help, suggestions or email
headers to help up figure this stuff out.

(2) Migration of OWASP's servers to Rackspace's managed cloud
      OWASP will begin migrating the servers currently on Rackspace's
public cloud to Rackspace's managed cloud.  The big thing this gets OWASP
is someone minding our servers 24x7x365 with SLA's and all those good
things.  Details of what Rackspace  offers for Managed cloud customers can
be seen at:
The migrations will start tomorrow (August 6th) and will also include OWASP
moving over to OpenStack powered servers.  There is little to no downtime
expected with the migrations.  The servers will be "cloned" by Rackspace
and OWASP will verify the new servers are running as expected.  When OWASP
gives the OK, DNS will be switched to point the host names from the old
server to the new servers.
With your @owasp.org login, you can see a detailed migration plan here:

I'll also be adding status update here for any IT changes going forward
(which is public):


(3) MediaWiki updates for www.owasp.org
      OWASP has hired a MediaWiki contractor to do some work on our wiki.
 I'm working with them to setup access and coordinating timing between the
MediaWiki updates and the migration to managed cloud servers.  They will be
updating the MediaWiki software (and plugins) to the latest versions,
setting up banner ads (or really fixing the broken banner ads) and
documenting the setup of the wiki server.  Tentatively, they will begin
setting up a new wiki server starting early this week.

I've got some other things going on (like reviewing the OWASP DNS records,
checking SSL cert renewal dates, documenting domain registrations, etc)
but I think that's enough typing for now.

I should have updates dribbling into the OWASP IT Updates document [1]
linked above as the week goes on.

Also, we're in the process of adding a category for IT issues to the
"Contact Us" form (and making it MUCH prettier).  We'll send out an update
when that's in place.


-- Matt Tesauro
OWASP Board Member
OWASP WTE Project Lead
http://AppSecLive.org - Community and Download site
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.owasp.org/pipermail/owasp-leaders/attachments/20120805/8052b639/attachment-0001.html>

More information about the OWASP-Leaders mailing list