Page MenuHomePhabricator
Create Task
Maniphest T265595

Diffscan: host off-infra
Open, LowPublic
Actions

Description

Diffscan currently runs from a Cloud VM, which has the main advantages of:

  1. Being puppetized
  2. Not hitting external rate-limiters
  3. Low latency

However the main drawback is that the scan is coming from a 172.16.0.0/21 IP:

  1. Which is not representative of an external scan (different paths and ACLs)
  2. Enabling NAT (see T209011) might not be an option (could overload the NAT table)

Ideally that host has IPv6 connectivity for T265329

As the tool is quite lightweight (only needs python, internet and SMTP) it might be worth running it from an external server, like wikitech-static.

Related Objects

Event Timeline

ayounsi created this task.Oct 15 2020, 12:41 PM
Restricted Application added a subscriber: Aklapper. · View Herald TranscriptOct 15 2020, 12:41 PM
ayounsi updated the task description. (Show Details)Oct 15 2020, 1:21 PM
Volans updated the task description. (Show Details)Oct 15 2020, 5:07 PM
jbond updated the task description. (Show Details)Oct 15 2020, 5:10 PM
jbond added a comment.EditedOct 15 2020, 5:14 PM

im not sure what the hosting for wikitech-static is but if we go this route, which i think is a good idea, we should inform the hosting provider of our intensions just incase they have there own rate limits or outbound filters

Volans added a comment.Oct 15 2020, 5:17 PM
In T265595#6547582, @jbond wrote:

im not sure what the hosting for wikitech-static is

That's currently on rackspace

Aklapper added a project: Infrastructure-Foundations.Jun 21 2021, 8:59 PM
ayounsi mentioned this in T306245: Upgrade diffscan to Bullseye.Apr 20 2022, 5:51 AM
lmata subscribed.Apr 25 2022, 12:03 PM

wikitech-static may be moving off rackspace: T304688

joanna_borun triaged this task as Low priority.Dec 11 2023, 3:30 PM
Content licensed under Creative Commons Attribution-ShareAlike (CC BY-SA) 4.0 unless otherwise noted; code licensed under GNU General Public License (GPL) 2.0 or later and other open source licenses. By using this site, you agree to the Terms of Use, Privacy Policy, and Code of Conduct. · Wikimedia Foundation · Privacy Policy · Code of Conduct · Terms of Use · Disclaimer · CC-BY-SA · GPL · Credits