[Owasp-leaders] Windows XP
Dirk Wetter
dirk at owasp.org
Wed Feb 13 08:02:41 UTC 2019
Hi all,
don't know whether this gets through...
So, if I get this right, we as OWASP are running an OS which is almost five years without
patches as it has no vendor support anymore. FYAI: Ubuntu stopped supporting
this at the same time as Microsoft stopped supporting Windows XP: April 2014.
Looking forward: Can't we just set up an Ubuntu 18.04 and rsync the data over?
I don't know how we got in this deep sh* but can the board please help get this resolved one
way or another? Last but not least security (here: C, I, A) is a management issue.
Dirk
On 12.02.19 22:34, Matt Tesauro wrote:
>
> On Tue, Feb 12, 2019 at 4:03 AM Dirk Wetter <dirk at owasp.org <mailto:dirk at owasp.org>> wrote:
>
> Hi all / Matt,
>
> short update, see below. This time our germany list seems unknown.
>
>
> All of the lists were unknown for some time starting last night (GMT -6) - not just "our
> germany list". The server that hosts mailman went down in a spectacular fashion. It took a
> while to get it back up but it's running again. Items which complicated things:
>
> * that server's been running on the same VM since 2013
> * it's running an EOL/EOS OS (Ubuntu 10.04 - a 9 year old OS)
> * Rack's support does not cover Mailman and we're running an out of date version that is a
> major release behind current (2.x vs 3.x)
> * technically, Rack's support doesn't cover EOL/EOS OS'es but they still helped us get back
> online
> * the OS is so old, Rack's monitoring and backup agents are no longer supported nor run on the OS
> * the VM configuration and type used for that host is no longer offered by Rackspace causing
> complications which both caused the initial outage and complicated the restoring the server
> * since monitoring is no longer supported for that server, no alerts were sent when it went down
> * since the back agent can no longer run on a server that old, the most recent file-level
> backup is from July 17, 2017
> * Full VM image backups were still in place and working. However, restoring those backups to
> different type and configuration of VM caused issues that took working with Rack's support
> team to get resolved.
>
> Even with all those strikes against it, it's up and running again. Not too bad to have one
> (regrettably long) outage in 6 years.
>
> Props to the several people on Rack's support team that helped me get the Mailman VM back up
> and running as they were able to do the 'behind the cloud'' work required to get the VM working
> again.
>
> The system you seem to love to hate, Barracuda, spooled all the inbound email and that is
> flowing again. Once the retry period is over and that spool is empty, things should return to
> normal. For a while, delivery of emails that came in during the outage may be delayed a bit.
> Barracuda, BTW, is also unlicensed and continues to work without any agreement in place.
> Thanks to Barracuda for now cutting us off.
>
> I also added a block volume to that VM to allow for a file-level backup workaround as an
> interim solution while we wind down Mailman and retire it this year.
>
> When do we get a reliable mail delivery system for our lists?
>
>
> Have you considered switching to Google Groups? I'm pretty sure that Google has a slightly
> larger IT staff and budget than OWASP does. There's also discourse.owasp.org
> <http://discourse.owasp.org> which is a SaaS alternative we have in place as well. Or you
> could try the OWASP Slack instance too.
>
> Thanks again for all your patience and understanding.
>
> Cheers!
>
> -- Matt Tesauro
>
>
>
> Dirk
>
>
> -------- Forwarded Message --------
> Subject: Delivery Status Notification (Failure)
> Date: Tue, 12 Feb 2019 01:13:15 -0800 (PST)
> From: Mail Delivery Subsystem <mailer-daemon at googlemail.com
> <mailto:mailer-daemon at googlemail.com>>
> To: dirk at owasp.org <mailto:dirk at owasp.org>
>
>
>
> Error Icon
>
>
> Address not found
>
> Your message wasn't delivered to *owasp-germany at lists.owasp.org
> <mailto:owasp-germany at lists.owasp.org>* because the address couldn't
> be found, or is unable to receive mail.
>
> The response from the remote server was:
>
> 550 permanent failure for one or more recipients (owasp-germany at lists.owasp.org:550
> <http://[email protected]:550> 5.1.1
> <owasp-germany at lists.owasp.org <mailto:owasp-germany at lists.owasp.org>>... User unknown)
>
>
> Attached Message Part
>
> Reporting-MTA: dns; googlemail.com <http://googlemail.com>
> Received-From-MTA: dns; dirk at owasp.org <mailto:dirk at owasp.org>
> Arrival-Date: Tue, 12 Feb 2019 01:13:12 -0800 (PST)
> X-Original-Message-ID: <2326a30c-8ecb-5ea2-65d6-87b549c23f6a at owasp.org
> <mailto:2326a30c-8ecb-5ea2-65d6-87b549c23f6a at owasp.org>>
>
> Final-Recipient: rfc822; owasp-germany at lists.owasp.org <mailto:owasp-germany at lists.owasp.org>
> Action: failed
> Status: 5.0.0
> Remote-MTA: dns; d15006a.ess.barracudanetworks.com
> <http://d15006a.ess.barracudanetworks.com>. (209.222.82.126, the
> server for the domain lists.owasp.org <http://lists.owasp.org>.)
> Diagnostic-Code: smtp; 550 permanent failure for one or more recipients
> (owasp-germany at lists.owasp.org:550 <http://[email protected]:550> 5.1.1
> <owasp-germany at lists.owasp.org <mailto:owasp-germany at lists.owasp.org>>... User unknown)
> Last-Attempt-Date: Tue, 12 Feb 2019 01:13:15 -0800 (PST)
>
>
>
>
> --
> OWASP Volunteer
> Send me encrypted mails (Key ID 0xD0A74569)
> @drwetter
>
--
OWASP Volunteer
Send me encrypted mails (Key ID 0xD0A74569)
@drwetter
More information about the OWASP-Leaders
mailing list