Page MenuHomePhabricator
Create Task
Maniphest T193376

Gather 24h data cluster wide of AES128-SHA usage
Closed, ResolvedPublic
Actions

Description

After gathering some batches of 10 minutes traffic we need to validate the data with a 24 hours capture of User Agents using the AES128-SHA ciphersuite

Details

SubjectRepoBranchLines +/-
varnishtlsinspector: Stop collecting TLS dataoperations/puppetproduction+2 -2
varnishtlsinspector: fix class name (typo)operations/puppetproduction+2 -2
varnishtlsinspector: send TLS connection details to logstashoperations/puppetproduction+108 -0
varnishtlsinspector: send TLS connection details to logstashoperations/puppetproduction+218 -0
Customize query in gerrit

Related Objects
Search...

Event Timeline

Vgutierrez triaged this task as Medium priority.Apr 30 2018, 7:20 AM
Vgutierrez created this task.
Vgutierrez moved this task from Backlog to TLS on the Traffic board.
gerritbot subscribed.Apr 30 2018, 2:18 PM

Change 429810 had a related patch set uploaded (by Vgutierrez; owner: Vgutierrez):
[operations/puppet@production] varnishtlsinspector: send TLS connection details to logstash

https://gerrit.wikimedia.org/r/429810

gerritbot added a project: Patch-For-Review.Apr 30 2018, 2:18 PM
Vgutierrez mentioned this in T192555: Begin execution of non-forward-secret ciphers deprecation.Apr 30 2018, 3:09 PM
gerritbot added a comment.May 3 2018, 1:21 PM

Change 430593 had a related patch set uploaded (by Vgutierrez; owner: Vgutierrez):
[operations/puppet@production] varnishtlsinspector: send TLS connection details to logstash

https://gerrit.wikimedia.org/r/430593

gerritbot added a comment.May 3 2018, 1:21 PM

Change 429810 abandoned by Vgutierrez:
varnishtlsinspector: send TLS connection details to logstash

Reason:
let's use the version that benefits from varnishlog refactor: https://gerrit.wikimedia.org/r/430593

https://gerrit.wikimedia.org/r/429810

gerritbot added a comment.May 3 2018, 2:42 PM

Change 430593 merged by Vgutierrez:
[operations/puppet@production] varnishtlsinspector: send TLS connection details to logstash

https://gerrit.wikimedia.org/r/430593

gerritbot added a comment.May 3 2018, 2:51 PM

Change 430600 had a related patch set uploaded (by Vgutierrez; owner: Vgutierrez):
[operations/puppet@production] varnishtlsinspector: fix class name (typo)

https://gerrit.wikimedia.org/r/430600

gerritbot added a comment.May 3 2018, 2:53 PM

Change 430600 merged by Vgutierrez:
[operations/puppet@production] varnishtlsinspector: fix class name (typo)

https://gerrit.wikimedia.org/r/430600

Vgutierrez added a comment.May 3 2018, 5:49 PM

Data is currently being gathered, it can be seen here: https://logstash.wikimedia.org/app/kibana#/discover/958769b0-4eef-11e8-8e04-89a38b6a810e?_g=()

gerritbot added a comment.May 4 2018, 2:03 PM

Change 430911 had a related patch set uploaded (by Vgutierrez; owner: Vgutierrez):
[operations/puppet@production] varnishtlsinspector: Stop collecting TLS data

https://gerrit.wikimedia.org/r/430911

gerritbot added a comment.May 4 2018, 5:42 PM

Change 430911 merged by Vgutierrez:
[operations/puppet@production] varnishtlsinspector: Stop collecting TLS data

https://gerrit.wikimedia.org/r/430911

Vgutierrez closed this task as Resolved.May 7 2018, 1:12 PM
Vgutierrez claimed this task.
Vgutierrez removed a project: Patch-For-Review.
Vgutierrez mentioned this in T194380: Identify bots using AES128-SHA maintainers running on toolforge.May 14 2018, 3:22 PM
Vgutierrez mentioned this in T196371: Provide a multi-language user-faced warning regarding AES128-SHA deprecation.Jun 4 2018, 2:09 PM
Vvjjkkii renamed this task from Gather 24h data cluster wide of AES128-SHA usage to rzdaaaaaaa.Jul 1 2018, 1:13 AM
Vvjjkkii reopened this task as Open.
Vvjjkkii removed Vgutierrez as the assignee of this task.
Vvjjkkii raised the priority of this task from Medium to High.
Vvjjkkii added projects: CheckUser, Connected-Open-Heritage-Batch-uploads (RAÄ-KMB_1_2017-02), Tamil-Sites, Gamepress, Hashtags, Jade, KartoEditor, Language-2018-Apr-June, New-Editor-Experiences, Mail, TCB-Team (now WMDE-TechWish).
Vvjjkkii updated the task description. (Show Details)
Vvjjkkii removed subscribers: gerritbot, Aklapper.
Vgutierrez renamed this task from rzdaaaaaaa to Gather 24h data cluster wide of AES128-SHA usage.Jul 1 2018, 7:59 AM
Vgutierrez closed this task as Resolved.
Vgutierrez claimed this task.
Vgutierrez lowered the priority of this task from High to Medium.
Vgutierrez removed projects: TCB-Team (now WMDE-TechWish), Mail, New-Editor-Experiences, Language-2018-Apr-June, KartoEditor, Jade, Hashtags, Gamepress, Tamil-Sites, Connected-Open-Heritage-Batch-uploads (RAÄ-KMB_1_2017-02), CheckUser.
Vgutierrez updated the task description. (Show Details)
Vgutierrez added a subscriber: Aklapper.
Content licensed under Creative Commons Attribution-ShareAlike (CC BY-SA) 4.0 unless otherwise noted; code licensed under GNU General Public License (GPL) 2.0 or later and other open source licenses. By using this site, you agree to the Terms of Use, Privacy Policy, and Code of Conduct. · Wikimedia Foundation · Privacy Policy · Code of Conduct · Terms of Use · Disclaimer · CC-BY-SA · GPL