Last modified: 2014-08-14 17:54:36 UTC

Wikimedia Bugzilla is closed!

Wikimedia migrated from Bugzilla to Phabricator. Bug reports are handled in Wikimedia Phabricator.
This static website is read-only and for historical purposes. It is not possible to log in and except for displaying bug reports and their history, links might be broken. See T71269, the corresponding Phabricator task for complete and up-to-date bug report information.
First Last Prev Next    This bug is not in your last search results.
Bug 69269 - Give all members of the deployment-prep project sudo
Give all members of the deployment-prep project sudo
Status: NEW
Product: Wikimedia Labs
Classification: Unclassified
deployment-prep (beta) (Other open bugs)
unspecified
All All
: Unprioritized enhancement
: ---
Assigned To: Nobody - You can work on this!
:
Depends on:
Blocks:
  Show dependency treegraph
 
Reported: 2014-08-07 21:42 UTC by Bryan Davis
Modified: 2014-08-14 17:54 UTC (History)
8 users (show)

See Also:
Web browser: ---
Mobile Platform: ---
Assignee Huggle Beta Tester: ---

Attachments
Add an attachment (proposed patch, testcase, etc.)

Description Bryan Davis 2014-08-07 21:42:46 UTC 
In a recent irc conversation {{citation needed}} it was determined that the requirement for people to have signed an NDA is bogus. The ability to sudo all commands should be restored for all members of the project.
Comment 1 Antoine "hashar" Musso (WMF) 2014-08-08 14:28:05 UTC 
That has been done because we want to deploy real SSL certificate on the HTTPS handlers (on beta cluster, that is nginx on the varnish instances):  bug 48501.   So I went with a sudoer group under_NDA.


I lack knowledge about how SSL Certificate authority and certs work.  There might be a way to have some custom SSL cert that we would not mind too much being stollen.
Comment 2 Bryan Davis 2014-08-08 15:36:32 UTC 
Making this change would essentially mean that we are abandoning the quest for installing commercially provided ssl certificates in beta and closing bug 48501 as WON'T FIX. We could still do something using self-signed certs of that is wanted/needed.

I would like to hear from Antoine and Chris McMahon on this topic. I'd personally come down on the side of allowing more people to participate in beta in a meaningful way, but I'm willing to be told that I'm missing a bigger picture need.
Note You need to log in before you can comment on or make changes to this bug.
First Last Prev Next    This bug is not in your last search results.

Navigation
Links