Page MenuHomePhabricator

Dsharpe (Dsharpe)
UserAdministrator

Today

  • Clear sailing ahead.

Tomorrow

  • Clear sailing ahead.

Saturday

  • Clear sailing ahead.

User Details

User Since
Jan 14 2019, 7:34 PM (126 w, 2 d)
Roles
Administrator
Availability
Available
LDAP User
Dsharpe
MediaWiki User
DSharpe (WMF) [ Global Accounts ]

Recent Activity

Fri, Jun 11

Dsharpe lowered the priority of T284833: Vendor Review For Tray.io from High to Medium.

I spoke with the requestor. We came up with a plan to hit their 1 July 2021 date, and we will work that through the normal Coupa process.

Fri, Jun 11, 8:55 PM · Security Supplier Assessments, Security-Team, Security

Tue, Jun 8

Dsharpe closed T284543: Please add Jelto to security@wikimedia.org mailing list as Resolved.

Done. Welcome aboard!

Tue, Jun 8, 3:23 PM · SecTeam-Processed, Security-Team

Fri, Jun 4

Dsharpe added a comment to T277336: Element (Matrix client) Bridge Encryption - security review request.

Thanks @bcampbell !

Fri, Jun 4, 4:36 PM · Security Supplier Assessments, Security-Team, Security

Wed, Jun 2

Dsharpe closed T283987: Replace "Review required by" with "Last reviewed on" info on SOP pages as Resolved.

I changed the two identified to "Last reviewed on" as suggested. If there are more, we'll clean those up as well when we find them. Thank you!

Wed, Jun 2, 6:11 PM · SecTeam-Processed, Documentation, Security-Team

Sun, May 30

Dsharpe added a comment to T283987: Replace "Review required by" with "Last reviewed on" info on SOP pages.

https://www.mediawiki.org/w/index.php?title=Security/SOP/Access_to_Phabricator_Security_Issues&oldid=4423633 (15mo) has been corrected as suggested in this task. We don't review SOPs annually. We do for things like security policy. Thanks for pointing this out. I'll leave the other finding for the folks that maintain that article.

Sun, May 30, 8:22 PM · SecTeam-Processed, Documentation, Security-Team

Tue, May 25

Dsharpe closed T283346: Provide access to T265845 as Resolved.
Tue, May 25, 3:28 PM · SecTeam-Processed, Security-Team
Dsharpe added a comment to T283346: Provide access to T265845.

Hello @RoySmith ! Can you access T265845 now?

Tue, May 25, 3:21 PM · SecTeam-Processed, Security-Team

Sat, May 22

Dsharpe added a comment to T283175: Should WMCS be getting CF protection?.

Is there anything at all hosted in WMCS that is too risky (e.g. production depends on it to function) to leave exposed to being DDoSed?

Sat, May 22, 4:37 AM · SRE, SecTeam-Processed, Traffic, Cloud-Services, cloud-services-team (Kanban), Security, Security-Team
Dsharpe moved T281203: dumps distribution servers space issues from Incoming to In Progress on the Security-Team board.
Sat, May 22, 4:32 AM · Security-Team, Data-Services, cloud-services-team (Kanban)

Thu, May 20

Dsharpe updated the task description for T283230: Move SRE-related IRC channels to Libera.
Thu, May 20, 2:40 PM · wikimedia-irc-libera, SRE
Dsharpe updated the task description for T283230: Move SRE-related IRC channels to Libera.
Thu, May 20, 2:36 PM · wikimedia-irc-libera, SRE
Dsharpe updated the task description for T283230: Move SRE-related IRC channels to Libera.
Thu, May 20, 2:35 PM · wikimedia-irc-libera, SRE
Dsharpe updated the task description for T283230: Move SRE-related IRC channels to Libera.
Thu, May 20, 2:35 PM · wikimedia-irc-libera, SRE

May 12 2021

Dsharpe closed T282663: Please add me to security@wikimedia.org mailing list as Resolved.

Done. Welcome aboard!

May 12 2021, 3:11 PM · SecTeam-Processed, Security-Team

May 6 2021

Dsharpe updated the task description for T281903: Onboarding Maryum Styles to the Security Team as a Security Engineer.
May 6 2021, 5:04 AM · Security-Team
Dsharpe added a member for acl*security_secteam: Mstyles.
May 6 2021, 5:02 AM
Dsharpe added a member for acl*security_team: Mstyles.
May 6 2021, 5:01 AM

May 2 2021

Dsharpe closed T281357: Request to Join Security Mailing List, a subtask of T281344: SRE Onboarding for Marc Mandere, as Resolved.
May 2 2021, 2:41 AM · SRE, SRE-Access-Requests
Dsharpe closed T281357: Request to Join Security Mailing List as Resolved.

Hello @MMandere ! Done. You will start receiving email sent to security@wikimedia.org starting now.

May 2 2021, 2:41 AM · SecTeam-Processed, SRE, Security-Team

Apr 23 2021

Dsharpe closed T277336: Element (Matrix client) Bridge Encryption - security review request as Resolved.

As long as the new vendor-maintained solution works in accordance with the writeup we got on 24 July 2020, the vendor security review portion of this request is fine.

Apr 23 2021, 7:09 PM · Security Supplier Assessments, Security-Team, Security
Dsharpe closed T280045: Security Readiness Review For Diff Calendar as Resolved.

If you decide to proceed, we'll catch this request as it flows through Coupa (please make sure to mark "yes" for "Is this a SaaS request, and that will cause our part of the review process to start).

Apr 23 2021, 7:07 PM · SecTeam-Processed, Security Supplier Assessments, Security-Team, Security

Apr 19 2021

Dsharpe added a comment to T280045: Security Readiness Review For Diff Calendar.

Yes, it is the current process for most things. We'll jump in as part of the Coupa process (for SaaS-related vendors only right now) because we don't have the capacity to review potentially several vendors for every initiative across the Foundation. Once a team has progressed far enough to where they are ready to buy, then we take a look. The Coupa process might also, depending on what is being purchased, kick off other helpful reviews by Legal and Privacy.

Apr 19 2021, 6:29 PM · SecTeam-Processed, Security Supplier Assessments, Security-Team, Security
Dsharpe added a comment to T280045: Security Readiness Review For Diff Calendar.

Hello @CKoerner_WMF ! My understanding ready through this task is that we haven't bought anything from https://theeventscalendar.com/ yet. If the Foundation decides to do so, then when that spend flows through Coupa it should be marked as a SaaS-related request and automatically trigger a vendor security review. I haven't seen anything about this purchase in Coupa. Did I miss something?

Apr 19 2021, 3:53 PM · SecTeam-Processed, Security Supplier Assessments, Security-Team, Security

Apr 17 2021

Dsharpe added a comment to T277336: Element (Matrix client) Bridge Encryption - security review request.

Hi @bcampbell ! Is the last diagram from the vendor from our 24 July 2020 meeting still accurate given what the vendor has created now, especially for the part about burning keys after use? I'll send over the link if that helps. Are the listed pros and cons from that document still exactly the same with their current offering and our planned implementation?

Apr 17 2021, 4:04 AM · Security Supplier Assessments, Security-Team, Security

Apr 8 2021

Dsharpe closed T279709: Please add me to acl*security_steward as Resolved.

Done. Thank you!

Apr 8 2021, 7:42 PM · SecTeam-Processed, Security-Team
Dsharpe added a member for acl*security_steward: DerHexer.
Apr 8 2021, 7:40 PM

Mar 15 2021

zeljkofilipin awarded T277179: Security Issue Removal Request for zeljkofilipin a Party Time token.
Mar 15 2021, 4:42 PM · SecTeam-Processed, Quality-and-Test-Engineering-Team (QTE), User-zeljkofilipin, Security-Team, Security
Dsharpe added a member for acl*security_sre: RKemper.
Mar 15 2021, 3:00 AM
Dsharpe removed a member for Security: zeljkofilipin.
Mar 15 2021, 2:48 AM
Dsharpe closed T277179: Security Issue Removal Request for zeljkofilipin, a subtask of T267313: Off-board from Release Engineering, as Resolved.
Mar 15 2021, 2:44 AM · User-zeljkofilipin, Quality-and-Test-Engineering-Team (QTE)
Dsharpe closed T277179: Security Issue Removal Request for zeljkofilipin as Resolved.

Complete. Access removed.

Mar 15 2021, 2:44 AM · SecTeam-Processed, Quality-and-Test-Engineering-Team (QTE), User-zeljkofilipin, Security-Team, Security
Dsharpe removed a member for acl*security_releng: zeljkofilipin.
Mar 15 2021, 2:43 AM

Mar 8 2021

Dsharpe added a member for acl*security_team: sguebo_WMF.
Mar 8 2021, 8:43 PM
Dsharpe added a comment to T276852: Onboarding Samuel Guebo to the Security Team as a Privacy Engineer.

I added you the acl*security_team group already.

Mar 8 2021, 7:25 PM · Security-Team
Dsharpe added a member for acl*security_secteam: sguebo_WMF.
Mar 8 2021, 7:15 PM

Mar 5 2021

Dsharpe added a project to T276267: Security Issue Access Request for esanders: SecTeam-Processed.
Mar 5 2021, 7:19 PM · SecTeam-Processed, Security, Security-Team
Dsharpe closed T276267: Security Issue Access Request for esanders as Resolved.

Access granted. Please let me know if you have any problems.

Mar 5 2021, 7:19 PM · SecTeam-Processed, Security, Security-Team
Dsharpe added a member for acl*security_developer: Esanders.
Mar 5 2021, 7:18 PM
Dsharpe closed T275880: Security Issue Access Request for 2021 Stewards as Resolved.

Done. The requested access has been configured for all 5.

Mar 5 2021, 7:08 PM · SecTeam-Processed, Stewards-and-global-tools, Security-Team, Security, User-revi
Dsharpe added a project to T275880: Security Issue Access Request for 2021 Stewards: SecTeam-Processed.
Mar 5 2021, 7:07 PM · SecTeam-Processed, Stewards-and-global-tools, Security-Team, Security, User-revi
Dsharpe updated the task description for T275880: Security Issue Access Request for 2021 Stewards.
Mar 5 2021, 7:06 PM · SecTeam-Processed, Stewards-and-global-tools, Security-Team, Security, User-revi
Dsharpe added a member for acl*security_steward: Wiki13.
Mar 5 2021, 7:05 PM
Dsharpe added a member for acl*security_steward: Operator873.
Mar 5 2021, 7:05 PM
Dsharpe added a member for acl*security_steward: DeltaQuad.
Mar 5 2021, 7:05 PM
Dsharpe added a member for acl*security_steward: Stanglavine.
Mar 5 2021, 7:05 PM
Dsharpe added a member for acl*security_steward: Teles.
Mar 5 2021, 7:04 PM

Mar 4 2021

Dsharpe added a comment to T276267: Security Issue Access Request for esanders.

Hi @Esanders ! Having access to security content in Phabricator requires enabling 2FA: https://www.mediawiki.org/wiki/Phabricator/Help#Multi-factor_authentication. Would you mind getting that set up please? Thank you!

Mar 4 2021, 3:20 PM · SecTeam-Processed, Security, Security-Team

Mar 2 2021

Dsharpe added a comment to T275880: Security Issue Access Request for 2021 Stewards.

For the accounts listed for removal, I removed the ones I could find from acl*security_steward access. As for granting the new people's access, I am working on confirming any required NDA/confidentiality agreements are done and recorded.

Mar 2 2021, 1:31 PM · SecTeam-Processed, Stewards-and-global-tools, Security-Team, Security, User-revi
Dsharpe updated the task description for T275880: Security Issue Access Request for 2021 Stewards.
Mar 2 2021, 1:28 PM · SecTeam-Processed, Stewards-and-global-tools, Security-Team, Security, User-revi
Dsharpe removed a member for acl*security_steward: Krd.
Mar 2 2021, 1:23 PM
Dsharpe removed a member for acl*security_steward: BRPever.
Mar 2 2021, 1:23 PM
Dsharpe updated the task description for T275880: Security Issue Access Request for 2021 Stewards.
Mar 2 2021, 1:18 PM · SecTeam-Processed, Stewards-and-global-tools, Security-Team, Security, User-revi

Feb 18 2021

Dsharpe closed T275142: Security Access Request - Phabricator - Tobias Klausmann as Resolved.

Done. Please let me know if you have any issues with your access.

Feb 18 2021, 5:29 PM · SecTeam-Processed, Security-Team, Security
Dsharpe added a member for acl*security_sre: klausman.
Feb 18 2021, 5:26 PM

Feb 2 2021

Dsharpe added a project to T273641: Security Issue Access Request for (lmata): SecTeam-Processed.
Feb 2 2021, 4:39 PM · SecTeam-Processed, Security-Team, Security
Dsharpe closed T273641: Security Issue Access Request for (lmata) as Resolved.

Done. Please let us know if you have any issues with this access.

Feb 2 2021, 4:36 PM · SecTeam-Processed, Security-Team, Security
Dsharpe triaged T273641: Security Issue Access Request for (lmata) as Medium priority.
Feb 2 2021, 4:36 PM · SecTeam-Processed, Security-Team, Security
Dsharpe moved T273641: Security Issue Access Request for (lmata) from Incoming to Our Part Is Done on the Security-Team board.
Feb 2 2021, 4:36 PM · SecTeam-Processed, Security-Team, Security
Dsharpe added a member for acl*security_sre: lmata.
Feb 2 2021, 4:34 PM

Feb 1 2021

Dsharpe added a project to T273311: Security Issue Access Request for razzi: SecTeam-Processed.
Feb 1 2021, 4:32 PM · SecTeam-Processed, Security-Team, Security
Dsharpe added a project to T273289: Security Issue Access Request for dcaro: SecTeam-Processed.
Feb 1 2021, 4:32 PM · SecTeam-Processed, Security-Team, Security

Jan 29 2021

Dsharpe closed T273311: Security Issue Access Request for razzi as Resolved.

Done. Please let me know if you have any issues with this access.

Jan 29 2021, 6:42 PM · SecTeam-Processed, Security-Team, Security
Dsharpe triaged T273311: Security Issue Access Request for razzi as Medium priority.
Jan 29 2021, 6:41 PM · SecTeam-Processed, Security-Team, Security
Dsharpe moved T273311: Security Issue Access Request for razzi from Incoming to Our Part Is Done on the Security-Team board.
Jan 29 2021, 6:41 PM · SecTeam-Processed, Security-Team, Security
Dsharpe added a member for acl*security_sre: razzi.
Jan 29 2021, 6:39 PM
Dsharpe closed T273289: Security Issue Access Request for dcaro as Resolved.

Done. Please let me know if you have any trouble with your new access.

Jan 29 2021, 6:26 PM · SecTeam-Processed, Security-Team, Security
Dsharpe added a member for acl*security_sre: dcaro.
Jan 29 2021, 6:25 PM

Dec 8 2020

Dsharpe closed T269639: Add legoktm to security@wikimedia.org as Resolved.

Done.

Dec 8 2020, 12:26 AM · Security-Team

Nov 30 2020

Dsharpe closed T269015: Requesting access to security@ as Resolved.

Done. Thank you!

Nov 30 2020, 5:45 PM · Security-Team

Nov 12 2020

Dsharpe reopened T267800: Access to #mediawiki_security IRC channel for DannyS712 as "Open".

Maybe I should leave this open to make sure you have access to the IRC channel that you intended. I granted access for you to to #wikimedia-security. That is the only one I can do.

Nov 12 2020, 3:49 PM · User-DannyS712, SRE
Dsharpe closed T267800: Access to #mediawiki_security IRC channel for DannyS712 as Resolved.

Done. I added you to #wikimedia-security. That is the only one I can do.

Nov 12 2020, 3:45 PM · User-DannyS712, SRE
Dsharpe added a comment to T267798: Security Issue Access Request for DannyS712.

Hello @DannyS712 ! This task would have only gotten you access to security content in Phabricator. Your T267800 request was necessary to work toward access to #wikimedia-security.

Nov 12 2020, 3:45 PM · User-DannyS712, Security-Team, Security
Dsharpe closed T267798: Security Issue Access Request for DannyS712 as Resolved.

Done. Please let me know if anything isn't working.

Nov 12 2020, 3:28 PM · User-DannyS712, Security-Team, Security
Dsharpe triaged T267798: Security Issue Access Request for DannyS712 as Medium priority.
Nov 12 2020, 3:28 PM · User-DannyS712, Security-Team, Security
Dsharpe moved T267798: Security Issue Access Request for DannyS712 from Incoming to Our Part Is Done on the Security-Team board.
Nov 12 2020, 3:27 PM · User-DannyS712, Security-Team, Security
Dsharpe added a member for acl*security_volunteer: DannyS712.
Nov 12 2020, 3:26 PM

Oct 11 2020

Dsharpe updated the task description for T265147: Offboard Chase Pettet from Security Team.
Oct 11 2020, 3:47 AM · SRE, Security-Team
Dsharpe closed T265175: Remove Chase Pettet from security@ alias in Google, a subtask of T265147: Offboard Chase Pettet from Security Team, as Resolved.
Oct 11 2020, 3:46 AM · SRE, Security-Team
Dsharpe closed T265175: Remove Chase Pettet from security@ alias in Google as Resolved.

I am able to make this change as an owner of that group in Google. Done.

Oct 11 2020, 3:46 AM · Security-Team

Sep 28 2020

Dsharpe closed T263791: Security Issue Access Request for Clarakosi as Resolved.

Thank you! The requested access has been configured for you.

Sep 28 2020, 2:59 PM · Security-Team, Security
Dsharpe added a member for acl*security_developer: Clarakosi.
Sep 28 2020, 2:58 PM
Dsharpe claimed T263791: Security Issue Access Request for Clarakosi.
Sep 28 2020, 4:01 AM · Security-Team, Security
Dsharpe added a comment to T263791: Security Issue Access Request for Clarakosi.

Hi @Clarakosi ! There are two things that our process for granting this type of access calls for that don't appear to be set yet on you Phabricator account.

Sep 28 2020, 4:01 AM · Security-Team, Security

Sep 22 2020

Dsharpe closed T262871: Requesting access to #wikimedia-security for razzi as Resolved.
Sep 22 2020, 10:31 PM · Security-Team

Sep 21 2020

Dsharpe added a comment to T262871: Requesting access to #wikimedia-security for razzi.

Hi @razzi ! Welcome aboard! Can you access #wikimedia-security now?

Sep 21 2020, 7:36 AM · Security-Team
Dsharpe claimed T262871: Requesting access to #wikimedia-security for razzi.
Sep 21 2020, 4:49 AM · Security-Team

Sep 18 2020

Dsharpe added a comment to T262871: Requesting access to #wikimedia-security for razzi.

Welcome aboard @razzi ! Would you mind going through the IRC nickname/cloak instructions at https://office.wikimedia.org/wiki/ITS/IRC#Register_your_nickname please? That provides a little more protection around your account.

Sep 18 2020, 5:18 AM · Security-Team

Sep 14 2020

Dsharpe closed T262307: Security Issue Access Request for dpifke as Resolved.

Access granted.

Sep 14 2020, 8:06 AM · Security-Team, Security
Dsharpe added a member for acl*security_developer: dpifke.
Sep 14 2020, 8:04 AM

Sep 13 2020

Dsharpe added a comment to T261765: Requesting access to #wikimedia-security for sobanski.

I just now invited you again. Please try again.

Sep 13 2020, 8:42 PM · Security-Team

Sep 11 2020

Dsharpe added a comment to T261765: Requesting access to #wikimedia-security for sobanski.

Hi @LSobanski I invited you to #wikimedia-security . Can you successfully access that channel now?

Sep 11 2020, 4:44 PM · Security-Team

Sep 4 2020

Dsharpe closed T262042: Security Issue Access Request for LSobanski as Resolved.

Done.

Sep 4 2020, 7:56 PM · Security-Team, Security

Sep 3 2020

Dsharpe added a comment to T261765: Requesting access to #wikimedia-security for sobanski.

@LSobanski I'll check every couple days to see when the cloak change goes into effect, but if you see it first, please update here. Thank you!

Sep 3 2020, 6:44 PM · Security-Team

Sep 2 2020

Dsharpe added a comment to T261765: Requesting access to #wikimedia-security for sobanski.

Welcome aboard @LSobanski ! Would you mind first going through the IRC nickname/cloak instructions at https://office.wikimedia.org/wiki/ITS/IRC#Register_your_nickname please? That provides a little more protection around your account.

Sep 2 2020, 4:17 AM · Security-Team

Jul 27 2020

Dsharpe closed T258830: Security Issue Access Request for nnikkhoui as Resolved.

Done.

Jul 27 2020, 2:37 PM · Security-Team, Security
Dsharpe triaged T258830: Security Issue Access Request for nnikkhoui as Medium priority.
Jul 27 2020, 2:36 PM · Security-Team, Security
Dsharpe moved T258830: Security Issue Access Request for nnikkhoui from In Progress to Our Part Is Done on the Security-Team board.
Jul 27 2020, 2:36 PM · Security-Team, Security
Dsharpe added a member for acl*security_developer: nnikkhoui.
Jul 27 2020, 2:35 PM
Dsharpe claimed T258830: Security Issue Access Request for nnikkhoui.
Jul 27 2020, 5:14 AM · Security-Team, Security
Dsharpe moved T258830: Security Issue Access Request for nnikkhoui from Incoming to In Progress on the Security-Team board.
Jul 27 2020, 5:11 AM · Security-Team, Security