Page MenuHomePhabricator
Create Task
Maniphest T346631

[wmcs-cookbooks] SAL messages are shown differently when logging via wm-bot
Open, LowPublic
Actions

Description

When running WMCS cookbooks from a laptop (or from any host that is not allowed to send TCP messages to tcpircbot on alert1001.wikimedia.org), we send SAL messages through wm-bot instead.

These messages have the same format {user}@{host} {message}, but user and host could be easily spoofed so we are currently not displaying those in the second column of https://sal.toolforge.org/ and instead we display <wm-bot2> in that column, and user@host at the start of the message.

It would be nice to have a more consistent output, and to prevent users from spoofing the username/hostname.

Screenshot 2023-09-18 at 14.47.41.png (208×2 px, 100 KB)

Details

ProjectBranchLines +/-Subject
labs/tools/stashbotmaster+9 -1Parse user@host in wm-bot2 messages
Customize query in gerrit

Event Timeline

fnegri created this task.Mon, Sep 18, 12:49 PM
Restricted Application added a subscriber: Aklapper. · View Herald TranscriptMon, Sep 18, 12:49 PM
fnegri triaged this task as Low priority.Mon, Sep 18, 12:50 PM
fnegri moved this task from Backlog to wmcs-cookbooks on the Cloud-VPS board.
gerritbot added a comment.Mon, Sep 18, 12:50 PM

Change 958439 had a related patch set uploaded (by FNegri; author: FNegri):

[labs/tools/stashbot@master] Parse user@host in wm-bot2 messages

https://gerrit.wikimedia.org/r/958439

gerritbot added a project: Patch-For-Review.Mon, Sep 18, 12:50 PM
fnegri added a comment.Mon, Sep 18, 12:53 PM

One option could be to connect to wm-bot through a proxy host (e.g. login.toolforge.org), and display the username on that host (e.g. fnegri@tools-sgebastion-10). In this way we could also increase the security of wm-bot that is currently openly accessible on the internet.

fnegri updated the task description. (Show Details)Mon, Sep 18, 12:53 PM
fnegri added a subscriber: taavi.
fnegri added a subscriber: dcaro.Mon, Sep 18, 5:18 PM

@dcaro suggested we could in the meantime add a prefix like wmbot. to the user@host string, so that we know it was received from wm-bot and it could be spoofed. I have updated my patch to do this. Restricting access to wm-bot and enforcing a proper authentication could be handled in a separate task.

Content licensed under Creative Commons Attribution-ShareAlike 4.0 (CC-BY-SA) unless otherwise noted; code licensed under GNU General Public License (GPL) or other open source licenses. By using this site, you agree to the Terms of Use, Privacy Policy, and Code of Conduct. · Wikimedia Foundation · Privacy Policy · Code of Conduct · Terms of Use · Disclaimer · CC-BY-SA · GPL