Commit message (Collapse) | Author | Age | Files | Lines | |
---|---|---|---|---|---|
* | Use more appropriate decoding/encoding when redirectingHEADmaster | Dan Fandrich | 2025-06-06 | 1 | -2/+2 |
| | |||||
* | Properly escape the target in then anti-robot redirect | Dan Fandrich | 2025-06-06 | 4 | -3/+20 |
| | | | | Any additional URL parameters after a & were previously dropped. | ||||
* | Increase LLVM build timeout | Jani Välimaa | 2025-06-03 | 1 | -3/+3 |
| | |||||
* | Use an absolute URL when redirecting | Dan Fandrich | 2025-05-23 | 1 | -3/+4 |
| | | | | | This reduces the possibility of a malicious URL redirecting to another domain. | ||||
* | Use a fixed random number in the cookie | Dan Fandrich | 2025-05-23 | 1 | -1/+1 |
| | | | | | The intent of this cookie isn't actually to track sessions, so eliminate any privacy impact by using a fixed number instead. | ||||
* | Add another allowed character for cookie redirects | Dan Fandrich | 2025-05-23 | 1 | -1/+1 |
| | |||||
* | Block expensive svnweb operations without a cookie | Dan Fandrich | 2025-05-23 | 3 | -0/+45 |
| | | | | | | | | | If an expensive request comes in from anyone without a cookie attached, redirect to a page where the cookie is set using JavaScript, then redirect back. This should block robots from these paths, most of which do not support JavaScript. The collateral damage is that a JavaScript browser is now required for users to access those paths. The contents of the cookie is not currently checked, merely that it is set. | ||||
* | Reduce the number of SVN paths considered too expensive | Dan Fandrich | 2025-05-23 | 1 | -4/+3 |
| | | | | | | | These two don't seem to contribute much to the load seen when robots start hitting svnweb that hard. Also, remove a separate query block that seems to not help much (and which was hard to find in a different location in the file). | ||||
* | Block expensive operations on another Google bot | Dan Fandrich | 2025-05-19 | 1 | -2/+2 |
| | | | | | | | The last range was actually another Google bot, which clearly doesn't support Crawl-Delay:. Rather than block one IP range, which isn't going to work long-term since they have so many ranges, block only expensive operations via its new User-Agent: string instead. | ||||
* | Block another abusive IP address range | Dan Fandrich | 2025-05-19 | 1 | -1/+1 |
| | |||||
* | Block more abusive IP address ranges | Dan Fandrich | 2025-05-17 | 1 | -1/+1 |
| | | | | These comprise roughly 20% of current requests. | ||||
* | Try to ensure sympa-outgoing.service being running | Jani Välimaa | 2025-05-16 | 1 | -0/+5 |
| | |||||
* | Limit PostgreSQL memory usage a bit | Jani Välimaa | 2025-05-11 | 1 | -4/+4 |
| | |||||
* | Fix typo in effective_cache_size PostgreSQL memory parameter | Jani Välimaa | 2025-05-11 | 1 | -1/+1 |
| | |||||
* | Tune more PostgreSQL memory parameters | Jani Välimaa | 2025-05-11 | 1 | -3/+3 |
| | |||||
* | Increase PostgreSQL server shared_buffers to 4GB | Jani Välimaa | 2025-05-11 | 1 | -1/+1 |
| | | | | According to upstream a reasonable starting value for shared_buffers is 25% of the memory which would be actually 8GB in sucuk. | ||||
* | Rotate apache logs weekly on sucuk to keep them smaller | Jani Välimaa | 2025-05-10 | 1 | -0/+3 |
| | |||||
* | Block Presto | Jani Välimaa | 2025-05-04 | 1 | -1/+1 |
| | | | | Most probably Presto is not used as user agent in browsers used by potential users of Mageia. | ||||
* | Block Trident | Jani Välimaa | 2025-05-04 | 1 | -1/+1 |
| | |||||
* | Add robots.txt for forums | Jani Välimaa | 2025-05-04 | 3 | -0/+18 |
| | |||||
* | Fix wiki robots.txt creation | Jani Välimaa | 2025-05-04 | 1 | -1/+3 |
| | |||||
* | Add robots.txt to wiki | Jani Välimaa | 2025-05-04 | 3 | -0/+14 |
| | |||||
* | Bump the timeouts in check_mirror | Dan Fandrich | 2025-04-23 | 1 | -2/+2 |
| | | | | | When servers are bogged down it can take longer than 9 seconds to connect. | ||||
* | Block a few more things | Pascal Terjan | 2025-04-16 | 1 | -1/+4 |
| | |||||
* | Disable rebuild action | Pascal Terjan | 2025-03-24 | 1 | -1/+0 |
| | | | | It has never worked | ||||
* | Expand the IP ranges banned for hosting spiders | Dan Fandrich | 2025-03-07 | 1 | -1/+1 |
| | | | | Widen the CIDR mask to catch many more addresses used by these bots. | ||||
* | Revert "Freeze cauldron until python 3.13 pkgs are moved into core/release" | Jani Välimaa | 2025-03-06 | 1 | -2/+2 |
| | | | | This reverts commit c2b78571ec2996723aeb5a34b78544fd3dc76951. | ||||
* | Freeze cauldron until python 3.13 pkgs are moved into core/release | Jani Välimaa | 2025-03-06 | 1 | -2/+2 |
| | |||||
* | Fix path in spec-tree-reports | Dan Fandrich | 2025-02-27 | 1 | -1/+1 |
| | | | | A script that has moved its location in spec-tree-2025.1 | ||||
* | Allow Bugzilla messages to a number of mailing lists (mga#33748) | Dan Fandrich | 2025-02-14 | 1 | -0/+8 |
| | | | | | | Bugzilla mails stopped being delivered to these in February 2024 when the Bugzilla From: address changed. This list comes from Sympa logs over the past 2 weeks, so there may be others. | ||||
* | Allow Bugzilla messages to the kernel list (mga#33748) | Dan Fandrich | 2025-02-14 | 2 | -1/+4 |
| | | | | | Extend the public mailing list template to allow hard-coding specific addresses, like the announce template allows. | ||||
* | Revert "Allow Bugzilla messages to the kernel list (mga#33748)" | Dan Fandrich | 2025-02-14 | 1 | -1/+0 |
| | | | | | | This reverts commit 75e464cc44c516f0bb274ca683e10310595fba4a. The public mailing list type doesn't support sender_email. | ||||
* | Allow Bugzilla messages to the kernel list (mga#33748) | Dan Fandrich | 2025-02-14 | 1 | -0/+1 |
| | |||||
* | Fix typos in mailing list names | Dan Fandrich | 2025-02-14 | 1 | -12/+12 |
| | |||||
* | Remove the DNS verification record (mga#34003) | Dan Fandrich | 2025-02-10 | 1 | -3/+1 |
| | |||||
* | Add DNS verification record for TLS certificate renewal (mga#34003) | Dan Fandrich | 2025-02-10 | 1 | -1/+3 |
| | |||||
* | youri-check: check gdk-pixbuf2.0 from Gnome | Jani Välimaa | 2025-01-14 | 1 | -0/+2 |
| | |||||
* | youri-check: run cauldron check on rabbit before report is created on sucuk | Jani Välimaa | 2025-01-06 | 1 | -2/+2 |
| | |||||
* | youri-check: check networkmanager-applet also from Fedora | Jani Välimaa | 2025-01-06 | 1 | -0/+2 |
| | |||||
* | youri-check: check networkmanager-applet from Gnome | Jani Välimaa | 2025-01-06 | 1 | -0/+2 |
| | |||||
* | youri-check: fix tabs vs spaces | Jani Välimaa | 2025-01-06 | 1 | -2/+2 |
| | |||||
* | youri-check: sort Fedora aliases | Jani Välimaa | 2025-01-06 | 1 | -19/+18 |
| | |||||
* | youri-check: add aliases for modemmanager and networkmanager | Jani Välimaa | 2025-01-06 | 1 | -0/+36 |
| | |||||
* | youri-check: don't check glibmm2.4 from Gnome | Jani Välimaa | 2025-01-05 | 1 | -4/+2 |
| | |||||
* | youri-check: don't check acme from Gnome we have another pkg with same name | Jani Välimaa | 2024-12-27 | 1 | -0/+2 |
| | |||||
* | youri-check: check pango2.0 from Gnome | Jani Välimaa | 2024-12-27 | 1 | -1/+4 |
| | |||||
* | youri-check: check notify-sharp3 from Gnome | Jani Välimaa | 2024-12-27 | 1 | -0/+5 |
| | |||||
* | youri-check: stop checking dropped gtkhtml from Gnome | Jani Välimaa | 2024-12-26 | 1 | -4/+0 |
| | |||||
* | youri-check: don't check gtksourceviewmm3.0 from Gnome | Jani Välimaa | 2024-12-26 | 1 | -0/+2 |
| | |||||
* | youri-check: don't check gtkmm-documentation3.0 from Gnome | Jani Välimaa | 2024-12-26 | 1 | -0/+2 |
| |