Page MenuHomePhabricator

pajz (pajz)
User

Projects

Today

  • Clear sailing ahead.

Tomorrow

  • Clear sailing ahead.

Saturday

  • Clear sailing ahead.

User Details

User Since
Oct 3 2014, 12:44 PM (258 w, 5 d)
Availability
Available
IRC Nick
pajz (@wikimedia/pajz)
LDAP User
Unknown
MediaWiki User
Pajz [ Global Accounts ]

Former OTRS admin, member of the Ombudsman Commission, Wikipedia admin. See my user page on enwiki.

Recent Activity

Thu, Sep 5

pajz added a comment to T231954: Increase session length for OTRS ticket system.

Concerning security, I note that a few years ago it was noticed that an agent could inadvertedly share a URL with other agents or third parties that would allow the latter to take over their OTRS session. This could happen because: (1) While SessionUseCookie was set to true (default setting), when OTRS was unable to access the agent's cookies, it added the session ID to the URL (apparently the default behaviour). (2) SessionCheckRemoteIP was set to false in our OTRS instance because agents with highy dynamic/IPv6 IPs had issues accessing OTRS (T87217). The combination of (1) and (2) enabled the recipients of the URL to hijack the agent's session. (Furthermore, several now-fixed bugs were discovered in the past where a session ID was appended to a URL in certain circumstances even though the agent's cookies were working fine. T210861 perhaps being the latest example.) If the aforesaid still reflects the current behaviour of OTRS/Wikimedia's OTRS instance, I would submit that this cuts against a high SessionMaxTime/SessionMaxIdleTime from a risk mitigation point of view.

Thu, Sep 5, 12:57 AM · Security-Team, OTRS
pajz updated pajz.
Thu, Sep 5, 12:31 AM

Feb 24 2019

pajz renamed T216961: In mobile view, if a reference contains a link, the link may be positioned improperly in the footnote tooltip from In mobile view, if a reference contains a link, the link may be misformatted to In mobile view, if a reference contains a link, the link may be positioned improperly in the footnote tooltip.
Feb 24 2019, 4:25 PM · Product-QA (RW-Test-Cases), MW-1.34-notes (1.34.0-wmf.4; 2019-05-07), Patch-For-Review, Readers-Web-Backlog (Readers-Web-Kanbanana-Board-2018-19-Q4), MobileFrontend
pajz created T216961: In mobile view, if a reference contains a link, the link may be positioned improperly in the footnote tooltip.
Feb 24 2019, 4:22 PM · Product-QA (RW-Test-Cases), MW-1.34-notes (1.34.0-wmf.4; 2019-05-07), Patch-For-Review, Readers-Web-Backlog (Readers-Web-Kanbanana-Board-2018-19-Q4), MobileFrontend

Jul 4 2018

pajz added a comment to T198824: OTRS wipes email during edit.

I frequently run into the same issue. OTRS terminates the session after SessionMaxTime/SessionMaxIdleTime seconds (not sure what these values currently are in our installation, defaults are 16h/2h). As far as I'm aware it does not store the content of the email compose form anywhere, so if you are able to retrieve it nonetheless that should indeed be coming from your browser. As a workaround, there are a few browser add-ons that continually save forms and allow you to easily restore their content, such as Typio Form Recovery for Chrome (which I am using with OTRS).

Jul 4 2018, 11:35 PM · Upstream, OTRS

Apr 24 2018

pajz added a comment to T91683: Allow editors control of the page image.
  • What is the problem we're trying to solve?
    • Is it blacklisting certain images?
    • Is it allowing images not in the page (I think this could become a potential source of vandalism and unmaintainable)>
Apr 24 2018, 6:23 AM · Readers-Web-Backlog (Needs Product Owner Decisions), Readers-Community-Engagement, PageImages

Feb 28 2018

pajz added a comment to T188510: OTRS Spam bug/request.

I guess you're referring to one of the ticket boxes on the Dashboard (https://ticket.wikimedia.org/otrs/index.pl?Action=AgentDashboard). There's a certain server-side lag of perhaps one or two seconds, so if you click "Spam" from within a ticket and OTRS immediately sends you back to the dashboard, you may still see the ticket you've just marked a spam. That can be confusing. It doesn't/shouldn't happen in queue view (https://ticket.wikimedia.org/otrs/index.pl?Action=AgentTicketQueue), as far as I know.

Feb 28 2018, 2:28 PM · OTRS
pajz added a comment to T188510: OTRS Spam bug/request.

Simply do not close spam tickets, as is also recommended here: https://otrs-wiki.wikimedia.org/wiki/Help:What_to_do_with_Spam%3F#The_ticket_I_am_looking_at_is_spam_%E2%80%93_what_should_I_do?

Feb 28 2018, 2:18 PM · OTRS

Dec 5 2017

pajz updated subscribers of T182072: Upgrade OTRS to 5.0.25 or apply security patch manually.
Dec 5 2017, 11:02 AM · Security, OTRS
pajz updated the task description for T182072: Upgrade OTRS to 5.0.25 or apply security patch manually.
Dec 5 2017, 10:58 AM · Security, OTRS
pajz created T182072: Upgrade OTRS to 5.0.25 or apply security patch manually.
Dec 5 2017, 10:52 AM · Security, OTRS

Oct 19 2017

pajz created T178552: In source editor with Chrome, adding some text and an empty space at the end of a line in a multi-line paragraph breaks formatting.
Oct 19 2017, 8:35 AM · MediaWiki-Page-editing, Browser-Support-Google-Chrome

Oct 11 2017

pajz added a comment to T126449: In bulk ticket processing there Notice Messagebox are displayed at the top of the page, consuming screen space.

Can no longer reproduce this behavior in OTRS 5.0.23. If multiple tickets are selected, the bulk screen no longer contains the described orange notice boxes, one for each ticket, stacked at the top of the bulk processing screen; instead, OTRS now shows just one box with a comma-separated list of ticket numbers in it. Looks resolved to me.

Oct 11 2017, 11:30 AM · OTRS

Oct 6 2017

pajz created T177575: Opening multiple Special:Emailuser forms triggers rate limits.
Oct 6 2017, 7:34 AM · MW-1.31-release-notes (WMF-deploy-2017-10-24 (1.31.0-wmf.5)), MediaWiki-Platform-Team (MWPT-Q2-Oct-Dec-2017), MediaWiki-Email, MediaWiki-Special-pages, Patch-For-Review

Aug 30 2017

pajz added a comment to T173733: Automatically merge bounces/DSNs in ticket.

Still works as expected, e.g.

Aug 30 2017, 5:22 AM · Patch-For-Review, Mail, Operations, OTRS

Aug 24 2017

pajz added a comment to T173733: Automatically merge bounces/DSNs in ticket.

Did not work in https://ticket.wikimedia.org/otrs/index.pl?Action=AgentTicketZoom;TicketID=10208291, despite the header being set. Hm.

Aug 24 2017, 5:37 PM · Patch-For-Review, Mail, Operations, OTRS

Jul 11 2017

pajz added a comment to T170097: Some old accounts unable to login.

@jsn.sherman I now opened https://twlight-staging.wmflabs.org/ in my normal browser window, clicked on "Log in", then was shown a "Welcome to the Wikipedia Library Card Terms of Use and Privacy Statement!" dialogue. I accepted the terms of use, which got me to the "Editor profile information for Pajz" with a "Start new application" button. I suppose that means it now worked?

Jul 11 2017, 10:56 PM · Library-Card-Platform, MediaWiki-extensions-OAuth
pajz added a comment to T170097: Some old accounts unable to login.

@jsn.sherman Following your suggestion, I now (1) opened https://twlight-staging.wmflabs.org/ in a new icognito window, (2) clicked on "Log in", which prompted me to the log in screen on Meta, then (3) logged in with my credentials and (4) entered the 2FA code. I was then immediately shown the "Internal server error" again.

Jul 11 2017, 10:48 PM · Library-Card-Platform, MediaWiki-extensions-OAuth
pajz added a comment to T170097: Some old accounts unable to login.

Ok, I just clicked on "Log in", but was immediately prompted with the "Internal server error" page again.

Jul 11 2017, 10:36 PM · Library-Card-Platform, MediaWiki-extensions-OAuth
pajz added a comment to T170097: Some old accounts unable to login.

Still unable to log in via the staging environment or the library card page.

Jul 11 2017, 3:27 PM · Library-Card-Platform, MediaWiki-extensions-OAuth

Jul 10 2017

pajz added a comment to T170132: Wikipedia Library Server Error.

The first time I tried to log in today, yes, but I can't really remember what precisely it said (I was forwarded to some page on Meta, right? I think I clicked a button that said something like "link this application", after which I got the error). Now, everytime I click "log in", it just gives me this error, without any steps in between.

Jul 10 2017, 11:07 AM · Library-Card-Platform
pajz created T170132: Wikipedia Library Server Error.
Jul 10 2017, 10:56 AM · Library-Card-Platform

Jun 1 2017

pajz updated subscribers of T166753: New tickets are missing CustomerID.
Jun 1 2017, 1:32 AM · Upstream, OTRS
pajz added a comment to T166753: New tickets are missing CustomerID.

See https://bugs.otrs.org/show_bug.cgi?id=10691#c15, in short - as far as I can see -: They removed the automatic assignment of CustomerIDs for new tickets in 5.0.16, then re-introduced the functionality in 5.0.17, but ever since then it needs to be specifically enabled through PostMaster::NewTicket::AutoAssignCustomerIDForUnknownCustomers. We should probably do that, since we don't assign CustomerIDs manually anyway.

Jun 1 2017, 1:27 AM · Upstream, OTRS

May 31 2017

pajz added a comment to T95866: QueueView should show the last customer-created article.

Yes, indeed, looks like it. (Tested with permissions::permissions-de: If the latest article is an autoresponder message, it is omitted from Queue View - preview mode -.)

May 31 2017, 2:40 PM · Upstream, OTRS

May 12 2017

pajz added a comment to T95866: QueueView should show the last customer-created article.

(Finally) fixed in OTRS 5.0.18, per release notes.

May 12 2017, 12:34 PM · Upstream, OTRS
pajz moved T126759: Some URLs seem to get replaced with [##############2] when written in notes and responses. from Backlog to Patch proposed upstream on the Upstream board.

Upstream bug marked as resolved, fix slated to be deployed in OTRS 6.0.0.

May 12 2017, 12:22 PM · Upstream, OTRS

Apr 1 2017

pajz added a comment to T95866: QueueView should show the last customer-created article.

Just adding here that in order for this fix to take effect, we will, in addition to updating, need to make sure that Ticket::NewArticleIgnoreSystemSender is set to Yes. Per https://bugs.otrs.org/show_bug.cgi?id=12596#c11 (follow-up fix).

Apr 1 2017, 3:10 AM · Upstream, OTRS

Jan 16 2017

pajz added a project to T155398: Pasted wikitext of template with prefilled parameter is inserted as a block even if it's inlineable, so you can't then edit around it: VisualEditor.
Jan 16 2017, 7:04 AM · VisualEditor-MediaWiki-Templates, VisualEditor
pajz created T155398: Pasted wikitext of template with prefilled parameter is inserted as a block even if it's inlineable, so you can't then edit around it.
Jan 16 2017, 7:02 AM · VisualEditor-MediaWiki-Templates, VisualEditor

Jan 5 2017

pajz added a comment to T71729: [collapsibleTabs] If a tab's width changes after initial page load, endless animation loop can happen.

This has also been reported to us in OTRS, and I can easily reproduce it (at least in incognito mode) on local file description pages like https://de.wikipedia.org/wiki/Datei:Otzenrathpano2.jpg?uselang=de. So I'd also like to echo that this issue is easy to run into at the moment, which makes me wonder if this should really be treated as a low-priority issue.

Jan 5 2017, 7:05 PM · Readers-Web-Backlog (Tracking), Vector
pajz added a comment to F5235826: Jan 5 2017 4-15 PM.webm.

The image depicted is titled Otzenrathpano2.jpg, authored by Bodoklecksel and licensed under the GNU Free Documentation License, Version 1.2.

Jan 5 2017, 3:54 PM
pajz created T154668: At certain screen resolutions, navigation bar does not collapse properly.
Jan 5 2017, 3:52 PM

Dec 27 2016

pajz added a comment to T76062: Some e-mail text missing from OTRS ticket view.

I can no longer reproduce the issue in the ticket this report is based on. https://ticket.wikimedia.org/otrs/index.pl?Action=AgentTicketZoom;TicketID=7933750#9407303 displays all relevant parts of the email. There have been a couple of changes in OTRS 5 related to how emails with multiple parts are displayed, so this might have been fixed.

Dec 27 2016, 3:48 PM · OTRS

Dec 21 2016

pajz added a comment to T153820: In mail routed to OTRS, Spamassassin BAYES_xx scores no longer applied.

Only ops will be able to give you a server-side assessment, but looking at the most recent tickets in Junk, Bayes scores seem to get added as expected. Are you sure the reports are referring to mail received after the issue was reported as fixed? (The fix described above would only affect new mail, not re-classify existing tickets.) The amount of new tickets from the past 5 hours that were manually marked as spam/moved to Junk also looks unsuspicious to me.

Dec 21 2016, 5:20 PM · OTRS
pajz created T153820: In mail routed to OTRS, Spamassassin BAYES_xx scores no longer applied.
Dec 21 2016, 5:58 AM · OTRS

Dec 1 2016

pajz added a comment to T147331: No Tickets tab in Italian interface.

Can confirm that I can no longer reproduce the issue.

Dec 1 2016, 6:38 AM · Patch-For-Review, Upstream, OTRS

Nov 24 2016

pajz created T151511: [Regression 1.29.0-wmf.2] Only every second node displayed in footnote flyout in VE.
Nov 24 2016, 12:45 AM · MW-1.29-release (WMF-deploy-2016-12-06_(1.29.0-wmf.5)), Regression, VisualEditor-MediaWiki-References, VisualEditor

Nov 22 2016

pajz added a comment to T147331: No Tickets tab in Italian interface.

I can also still reproduce the issue; per https://bugs.otrs.org/show_bug.cgi?id=11878#c8, it seems to be an issue on our end, however. Quoting from there,

Can you please check, if you have a manually chenged template file for the widget (AgentDashboardUserOnline.tt) which still contains the unfixed code?

@akosiaris, could you check that? Perhaps this could be due to the fact that, if I'm not mistaken, we're modifying the Online user widget through our customized Wikimedia... package, so perhaps the old code is still contained there somehow?

Nov 22 2016, 3:25 PM · Patch-For-Review, Upstream, OTRS

Oct 27 2016

pajz moved T95866: QueueView should show the last customer-created article from Reported Upstream to Patch merged upstream on the Upstream board.

Slated to be fixed in OTRS 5.0.14, scheduled for release on November 1.

Oct 27 2016, 11:31 AM · Upstream, OTRS

Oct 20 2016

pajz removed a project from T148718: Import Enkonduko en la datenprilaboradon on beta.wikiversity.org: OTRS.
Oct 20 2016, 1:31 PM · ELiSo
pajz removed a project from T148720: Import Enkonduko en la uzadon de la Interreto on beta.wikiversity.org: OTRS.
Oct 20 2016, 1:31 PM · ELiSo
pajz removed a project from T148721: Import "Enkonduko al la teorio de strategiaj ludoj (Ludo-Teorio) " on beta.wikiversity.org: OTRS.
Oct 20 2016, 1:31 PM · ELiSo
pajz removed a project from T122790: Import AIS courses to wikiversity and wikify them: OTRS.

The OTRS Phabricator project tag currently is intended for reporting/discussing technical matters affecting OTRS, the software used by volunteer-response team members to process tickets. If you have questions about the permissions process concerning particular files, please use https://commons.wikimedia.org/wiki/Commons:OTRS/Noticeboard (or a local eowiki village pump page) instead. Thanks!

Oct 20 2016, 12:04 PM · ELiSo

Oct 19 2016

pajz added a comment to T148608: OTRS: autoresponses have incorrecting greeting line since last update.

We should probably remove this line alltogether (or replace it with something non-personalized) until we have that fixed. "Dear 'permissions-commons@wikimedia.org'," is very confusing indeed.

Oct 19 2016, 4:15 PM · OTRS
pajz added a comment to T148608: OTRS: autoresponses have incorrecting greeting line since last update.

Which <OTRS_...> variable in the corresponding autoresponse (Admin panel -> Auto responses) generates the 'permissions-commons@wikimedia.org' bit?

Oct 19 2016, 7:20 AM · OTRS

Oct 11 2016

pajz added a comment to T147397: Upgrade OTRS to 5.0.13.

Looks good. Looking at the histories of the most recent tickets, only one notification is sent per agent (as it should be), and the duplicates are also gone from the user settings panel. At least in my case, I can also say that my previous notification settings were unaffected, both according to my user settings and de facto. While the duplicate was in place, I started to get queue update notifications; but when I just tested this by moving a ticket from Junk to info-de and back, I no longer got such a notification. In other words, the previous behavior was fully restored.

Oct 11 2016, 11:55 AM · Operations, OTRS

Oct 6 2016

pajz added a comment to T146968: OTRS spam classification methods and systems.

Now, I can't say anything definite given the relevant servers are operated by the WMF, so I suppose only they'd be able to provide perfectly up-to-date information, but let me just add that the key Spamassassin configuration choices were made when we upgraded to OTRS 3. Essentially, there is a Bayes DB for mail routed to our OTRS instance. It is trained daily with email from our queues (Junk for spam, ordinary queues for ham) using a nightly-running export script in OTRS. See also https://wikitech.wikimedia.org/wiki/OTRS. Hence it's not like non-English mail isn't considered; however, naturally, it's outweighed by the much greater amount of English-language mail. This means we're basically feeding the Bayes DB with a very small amount of, say, Hungarian email. You would indeed expect this to generate non-ideal scoring results when it comes to queues for smaller languages.

Oct 6 2016, 10:59 AM · Operations, OTRS, Mail
pajz added a comment to T129056: Forms can't be scrolled on mobile.

Could you perhaps give some more detail (e.g., by providing a screenshot)? I've found an upstream bug related to non-scrollable iFrames in iOS, but that issue should have been fixed in the version we're currently using (http://bugs.otrs.org/show_bug.cgi?id=11717).

Oct 6 2016, 9:12 AM · Browser-Support-Apple-Safari, OTRS

Oct 5 2016

pajz added a comment to T95866: QueueView should show the last customer-created article.

I changed the version in the upstream bug to 5.0.13 because the issue persists. (Hope that doesn't go against some bug reporting best practice ...)

Oct 5 2016, 8:00 AM · Upstream, OTRS

Oct 4 2016

pajz added a project to T147331: No Tickets tab in Italian interface: Upstream.

This appears to be a known issue caused by the Online Agent widget (upstream bug report: http://bugs.otrs.org/show_bug.cgi?id=11878). According to the change notes, it's been fixed ever since OTRS 5.0.8 (our current version: 5.0.7; current stable version: 5.0.13). @akosiaris, do you know if there any plans to apply the latest of those patch-level updates? There are also one or two other bug reports here that likewise have seen upstream fixes since they were reported.

Oct 4 2016, 10:09 PM · Patch-For-Review, Upstream, OTRS

Sep 20 2016

pajz added a comment to T69263: some text/plain parts are not displayed at all.

This might be fixed as part of the fix to http://bugs.otrs.org/show_bug.cgi?id=5149 (deployed in OTRS 5.0.13, released today; we're currently on 5.0.7). Quoting from there,

Sep 20 2016, 8:53 AM · OTRS

Aug 5 2016

pajz created T142172: Dragging and dropping of text from wikitext editor to search box changes text.
Aug 5 2016, 5:25 AM · MediaWiki-General

Jul 26 2016

pajz closed T141351: Internal Server Error as Resolved.

Still looks fine. Closing ...

Jul 26 2016, 12:04 PM · OTRS
pajz added a comment to T141351: Internal Server Error.

Indeed, looks like the error has resolved itself. Seems to work fine again. I'll check again in a few minutes.

Jul 26 2016, 11:39 AM · OTRS
pajz triaged T141351: Internal Server Error as High priority.

Can confirm (tested for several queues, including info-de, and for different response templates, including "empty answer").

Jul 26 2016, 11:29 AM · OTRS

Jul 21 2016

pajz created T141039: In long footnote's VESurfaceWidget, hitting backspace scrolls you up to the top of the text field.
Jul 21 2016, 8:22 PM · MW-1.28-release (WMF-deploy-2016-08-16_(1.28.0-wmf.15)), VisualEditor-EditingTools, VisualEditor

Jun 29 2016

pajz added a comment to T138915: OTRS database is "too large".

Just noting here that OTRS started to include a script to move attachments from the database to the filesystem a couple of versions back, see https://otrs.github.io/doc/manual/admin/stable/en/html/performance-tuning.html#performance-tuning-otrs-storage (in case you want to go down that road).

Jun 29 2016, 12:02 PM · DBA, OTRS

Jun 26 2016

pajz added a comment to T125716: Moving a ticket from queue view opens the zoom view.

Personally, I haven't heard of any complaints about the current behavior. On the contrary, I would expect some people to complain if we switched to the alternative (i.e., #2 above) since it makes life hard for agents dealing with spam, as noted in the task description. It's also effectively more similar to the old behavior.

Jun 26 2016, 6:34 PM · OTRS

Jun 3 2016

pajz added a comment to T136917: Informing sender of merged tickets will start email with OTRS-email instead of CustomerName/ID .

An OTRS admin may want to check the current value of Ticket -> Ticket::Frontend::MergeText.

Jun 3 2016, 10:32 AM · Upstream, OTRS

May 1 2016

pajz added a comment to T126759: Some URLs seem to get replaced with [##############2] when written in notes and responses. .

Thanks, but fortunately the upstream ticket has just been reopened after another developer was able to reproduce it. So hopefully we can save the extra effort.

May 1 2016, 8:32 PM · Upstream, OTRS

Apr 29 2016

pajz updated subscribers of T126759: Some URLs seem to get replaced with [##############2] when written in notes and responses. .

Closed upstream as non-reproducible ("if possible please test it in a fresh installation"). @akosiaris (or perhaps @Krenair?), do we still have a test installation of OTRS 5 from the upgrade that could possibly be used for trying to reproduce this?

Apr 29 2016, 12:53 PM · Upstream, OTRS
pajz added a comment to T133959: Merging open and closed tickets should leave the final ticket as open.

I don't agree with the sentiment that it is "hella annoying for us": Sometimes you want the ticket to be re-opened, sometimes you want to keep it closed, it just depends on the circumstances. Neither alternative is universally better than the other one. At least the current behavior makes sense because the ticket will always retain its previous state, no matter what you merge to it. Your suggestion would reduce that predictability. It's important to keep in mind that there are more than two states; if the current behavior were abandoned, it wouldn't be clear, for instance, what would happen if you merge a ticket with state pending reminder or pending open to a closed one. Right now that's easy for everyone to determine because we know the original state of the linked ticket will prevail. If, however, we start to manipulate this behavior based on our assumptions about what the merging agent "likely" wanted to achieve, agents would have difficulties determining how other states relate to "closed." This is not trivial.

Apr 29 2016, 12:32 PM · OTRS

Apr 16 2016

pajz added a comment to T132822: OTRS has been eating 100% of mendelevium's CPU for the last fortnight.

Would it make sense to try to trace this down to the affected ticket? I just googled the text bit ("Saudi Arabia which faces inevitable military, politica") and it seems points to a "Voice of Bahrain" newsletter (http://english.voiceofbahrain.org/wp-content/uploads/2016/04/vob290.pdf) from this month by the "Bahrain Freedom Movement." There are indeed a few emails from the "Bahrain Freedom Movement" (info@vob.org), apparently containing such newsletters, e.g. "BFM Arabic Statement 15th April 2016", ticket 2016041510010245, but also others from past weeks.

Apr 16 2016, 9:17 AM · Operations, OTRS

Mar 15 2016

pajz added a comment to T126760: Statistics graph in dashboard will truncate entries on the Y axis with 4 or more digits.

OTRS 5.0.8 was released today, https://www.otrs.com/release-notes-otrs-5-patch-level-8/.

Mar 15 2016, 11:58 AM · Upstream, OTRS

Mar 2 2016

pajz added a project to T126760: Statistics graph in dashboard will truncate entries on the Y axis with 4 or more digits: Upstream.

Fixed in OTRS 5.0.8 (not yet released), per the change notes.

Mar 2 2016, 8:51 PM · Upstream, OTRS
pajz added a project to T126759: Some URLs seem to get replaced with [##############2] when written in notes and responses. : Upstream.

Reported upstream, http://bugs.otrs.org/show_bug.cgi?id=11910.

Mar 2 2016, 8:47 PM · Upstream, OTRS

Feb 16 2016

pajz updated subscribers of T108834: Browser tabs opened by clicking on OTRS links do not allow Javascript.

Well, the OTRS interface says so (hover over "Powered by OTRS 5" at the bottom), and @akosiaris confirmed he completed the update earlier today. So I hope everything worked fine. The 5.0.7 change notes are at https://github.com/OTRS/otrs/blob/master/CHANGES.md#507-2016-02-16 ("Fixed bug#11838 - New tabs opened from links in a sandboxed Iframe cannot execute JavaScript"). Not sure what the issue is, in this case.

Feb 16 2016, 6:23 PM · JavaScript, Patch-For-Review, Security-Other, OTRS
pajz added a comment to T108834: Browser tabs opened by clicking on OTRS links do not allow Javascript.

Could someone try to reproduce this? We were upgraded to OTRS 5.0.7 (which contains the fix referred to by @m00derp) today. According to the upstream bug report, that should now address the issue at least in Chrome, while Firefox users will have to wait pending Firefox support for the allow-popups-to-escape-sandbox tag (https://bugzilla.mozilla.org/show_bug.cgi?id=1190641).

Feb 16 2016, 4:40 PM · JavaScript, Patch-For-Review, Security-Other, OTRS

Feb 13 2016

pajz closed T94358: Window size of OTRS ticket reponses hides the send button inconveniently as Resolved.

Confirm it's been fixed. No longer an issue since our upgrade to 5.0.6.

Feb 13 2016, 9:20 PM · Upstream, OTRS

Feb 12 2016

pajz added a comment to T126760: Statistics graph in dashboard will truncate entries on the Y axis with 4 or more digits.

Reported upstream, http://bugs.otrs.org/show_bug.cgi?id=11855

Feb 12 2016, 6:33 PM · Upstream, OTRS

Feb 7 2016

pajz changed the status of T125716: Moving a ticket from queue view opens the zoom view from Open to Stalled.

For reference, it appears the behavior of the Ticket::Frontend::AgentTicketMove###NextScreen setting has changed from OTRS 3 to OTRS 5. Previously, the two available values were "LastScreenOverview" and "LastScreenView" (default); now, the two values are "LastScreenOverview" and "TicketZoom" (default). In both OTRS 3 and OTRS 5 we were on the default option. The functionality seems to have changed accordingly:

Feb 7 2016, 8:13 PM · OTRS

Feb 6 2016

pajz closed T58106: Additional text in outgoing forwarded emails not shown in ticket zoom view as Resolved.

Apparently solved by upgrading to OTRS 5. As an example, see https://ticket.wikimedia.org/otrs/index.pl?Action=AgentTicketZoom;TicketID=7065265#10646516 (compare to the preceding article in the ticket).

Feb 6 2016, 2:07 AM · OTRS

Feb 5 2016

pajz changed the status of T125756: Error while sending emails with OTRS from Stalled to Open.

Note that according to the Ganglia chart @akosiaris has linked to, memory usage has just hit 6 GB -- 7 GB including cache (dunno if that's important in this context). Looking at Ganglia's 1d chart for mendelevium, I also note that the amount of memory used has essentially been ever-increasing in the past ~12h, and indeed increased by 1GB in the last 4 hours, so I wonder if we run into the same issues as before in 4 or 8h time.

Feb 5 2016, 12:13 AM · Operations, OTRS

Feb 4 2016

pajz added a comment to T125756: Error while sending emails with OTRS.

Confirmed, just tried to send an email to myself, got the same error message and never received the email. (OTRS still created an article for it, though, https://ticket.wikimedia.org/otrs/index.pl?Action=AgentTicketZoom;TicketID=8965675.) Note that mail delivery wasn't always broken after the upgrade; e.g. there was an outbound email in https://ticket.wikimedia.org/otrs/index.pl?Action=AgentTicketZoom;TicketID=8965589 from Feb 3, 23:49 UTC for which we received the customer's reply a few minutes later.

Feb 4 2016, 12:58 AM · Operations, OTRS

Jan 23 2016

pajz added a comment to T74109: Upgrade OTRS to a more recent stable release.

To be honest, I don't see how that suddenly is a problem. How often did we have reports of minor translation mistakes? Off the top of my head, I'd guess maybe three, four times in the last couple of years? Given that, I can really understand the reluctance to maintain custom patches to fix a few translations, let alone implement a custom translation backend synchronizing with Transifex or another translation platform that would require extra maintenance efforts.

Jan 23 2016, 8:37 PM · Patch-For-Review, User-notice, Operations, OTRS

Dec 12 2015

pajz added a comment to T121319: e-mail not accepted in OTRS system.

I would guess that's because, according to the forwarded message, it was sent to "info-fr@wikipedia.org." (note the period after ".org").

Dec 12 2015, 5:47 PM · OTRS

Nov 16 2015

Restricted Application updated subscribers of T94358: Window size of OTRS ticket reponses hides the send button inconveniently.

Has been fixed in the latest OTRS 4 and OTRS 5 versions, according to the OTRS development team (see upstream report), hence depends on T74109.

Nov 16 2015, 5:24 PM · Upstream, OTRS

Sep 29 2015

pajz created T114132: Apply security patch to OTRS (Scheduler Process ID File Access vulnerability).
Sep 29 2015, 4:25 PM · Operations, OTRS

Sep 16 2015

pajz added a comment to T89068: Plain Format view does not work on some tickets.

Thanks for checking. However, the problems described there seem to differ from the issue addressed with this report. In our case, the problem does not occure when a (too large) email is sent (outbound), but when we receive one with a large attachment.

Sep 16 2015, 10:20 PM · OTRS

Sep 4 2015

pajz added a comment to T111532: EQIAD: 1 VM request for OTRS.

Are there practical implications of this for administrative maintenance of OTRS? Would this affect the server name (iodine)? Does it require a re-configuration of the Spamassassin instance currently running on iodine? When OTRS is moved to a VM, does that have implications for, say, existing syslogs/backups, or are these all carried over 1:1?

Sep 4 2015, 4:25 PM · Operations, OTRS, vm-requests

Jun 8 2015

pajz added a comment to T101767: OTRS adds good e-mails to junk.

The emails in question triggered a content-based filter (Bayes_999); since they all contain an identical text bit, it is not surprising to see them all going to Junk. The problem is that while, normally, OTRS would export identified false positives (i.e. emails moved back from Junk to a proper queue by hand) to SpamAssassin on a daily basis, this correction mechanism likely failed here because the emails were all merged to another ticket (ticket:2014121910011403). One of the side effects of merging a ticket to another one is, unfortunately, that this makes it impossible for the script we have in place to subsequently identify the false positive for the export job, so nothing gets exported. I don't think this is really a big problem in general as such a scenario generally seems highly improbable.

Jun 8 2015, 9:24 PM · OTRS
pajz claimed T101767: OTRS adds good e-mails to junk.
Jun 8 2015, 8:52 PM · OTRS

May 8 2015

pajz added a comment to T95846: If an external link contains a period, VisualEditor displays two links.

Yes, https://de.wikipedia.org/w/index.php?title=Outright_Monetary_Transactions&diff=140788890&oldid=140708948. That's the one corresponding to the screenshot.

May 8 2015, 2:38 PM · VisualEditor-MediaWiki-References, VisualEditor

May 1 2015

pajz created T97851: When saving an edit with VisualEditor, the "Watch page" checkbox is disabled even though the page is already on the watchlist.
May 1 2015, 8:25 PM · VisualEditor

Apr 18 2015

pajz created T96487: In VisualEditor, footnote immediately following a period sometimes wraps to new line even though there is space left in the line.
Apr 18 2015, 8:25 PM · MW-1.27-release (WMF-deploy-2015-12-08_(1.27.0-wmf.8)), VisualEditor-ContentEditable, VisualEditor

Apr 15 2015

pajz created T96190: When inserting a comment in VisualEditor, selected text should be transformed into text of comment.
Apr 15 2015, 9:24 PM · VisualEditor-EditingTools, VisualEditor

Apr 13 2015

pajz added a comment to T95954: Deploy Extension:Lockdown to the cluster and enable on OTRS Wiki.

The use case is as follows: Per current policies, we restrict access to OTRS Wiki to a subset of agents (mostly so-called "volunteer accounts," i.e. volunteers who work on info, permissions etc. queues). OTRS Wiki, however, serves a dual purpose: On the one hand, it hosts all the documentation as well as the coordination pages (say, a page to request account changes from an administrator); on the other hand, it is also a place where volunteers discuss, say, complicated cases that come up in the info-en::copyright queue. This is also why access it restricted to volunteer accounts, with all other OTRS agents only getting an account as needed.

Apr 13 2015, 9:48 PM · Wikimedia-extension-review-queue, Wikimedia-Extension-setup
pajz renamed T95819: Special characters menu in VisualEditor does not include en dash from Special characters menu in VisualEditor does not include em dash to Special characters menu in VisualEditor does not include en dash.
Apr 13 2015, 9:39 AM · VisualEditor 2014/15 Q4 blockers, WMF-deploy-2015-04-29_(1.26wmf4), VisualEditor-MediaWiki, VisualEditor-EditingTools, VisualEditor
pajz added a comment to T95819: Special characters menu in VisualEditor does not include en dash.

Well, the need for an en dash may be stronger on dewiki, but in the dewiki special characters menu, I cannot find any dash character at all. And I don't think there's any Wiki that doesn't use any kind of dash. However, I do not know whether the menu varies from Wiki to Wiki, and/or if this is a local configuration issue and/or if there's a thought behind it (e.g. Wikis should use MediaWiki:Visualeditor-quick-access-characters.json because the relevant symbols will differ among Wikis), etc. But at any rate it's important the symbol is made available on dewiki.

Apr 13 2015, 9:39 AM · VisualEditor 2014/15 Q4 blockers, WMF-deploy-2015-04-29_(1.26wmf4), VisualEditor-MediaWiki, VisualEditor-EditingTools, VisualEditor
pajz created T95875: When adding an internal link in VisualEditor, space character is not accepted.
Apr 13 2015, 8:45 AM · VisualEditor-MediaWiki-Links, VisualEditor

Apr 12 2015

pajz created T95846: If an external link contains a period, VisualEditor displays two links.
Apr 12 2015, 9:58 AM · VisualEditor-MediaWiki-References, VisualEditor

Apr 11 2015

pajz created T95819: Special characters menu in VisualEditor does not include en dash.
Apr 11 2015, 8:06 PM · VisualEditor 2014/15 Q4 blockers, WMF-deploy-2015-04-29_(1.26wmf4), VisualEditor-MediaWiki, VisualEditor-EditingTools, VisualEditor

Mar 29 2015

pajz added a comment to T94358: Window size of OTRS ticket reponses hides the send button inconveniently.

Reported upstream, http://bugs.otrs.org/show_bug.cgi?id=11205. I can confirm this behavior, and it's been reported on OTRS Wiki before.

Mar 29 2015, 8:11 PM · Upstream, OTRS

Feb 25 2015

pajz created T90808: With MathJax and live preview enabled, math is displayed properly only the first time you click "preview" in a new article.
Feb 25 2015, 11:18 PM · JavaScript, Math

Feb 13 2015

pajz added a comment to T87217: Make OTRS sessions IP-address-agnostic.

If I understand the documentation correctly, I would suggest, by the way, that, should we decide to implement this, we do not disable SessionCheckRemoteIP but only SessionDeleteIfNotRemoteID (both are enabled atm). As I understand it, that would also solve the problem, but OTRS would still keep track of IP address in the log, so we'd at least be able to invesitgate potential issues.

Feb 13 2015, 6:32 PM · Operations, Patch-For-Review, Security, OTRS
pajz added a comment to T87217: Make OTRS sessions IP-address-agnostic.

It looks like the session id is only added to the redirect on the initial login, and it doesn't look like there are many links off-site from there (from the default dashboard). I'm guessing the initial login page isn't one of the urls that people are likely to cut-and-paste into public places either? Under those assumptions, the security risk we're opening up by not checking the IP restriction shouldn't be too significant. It's unfortunate it's a site-wide config instead of per user-- I can certainly understand that some users would want the extra protection.

Feb 13 2015, 5:25 PM · Operations, Patch-For-Review, Security, OTRS

Jan 31 2015

pajz added a comment to T88224: Session gets killed after switch between IPv4 and corresponding IPv6.

[Removed, misunderstanding on my part]

Jan 31 2015, 10:38 PM · OTRS
pajz added a comment to T88224: Session gets killed after switch between IPv4 and corresponding IPv6.

It's not just ipv4 <-> ipv6. I had the same issue when using 2 different ipv4 isps.
We can disable 'SessionCheckRemoteIP'. I'm not sure if there's much to be gained by keeping it enabled...

Jan 31 2015, 10:15 PM · OTRS
pajz added a comment to T88224: Session gets killed after switch between IPv4 and corresponding IPv6.

See T87217 for a proposal to disable OTRS' IP-address check alltogether, which would obviously also solve this issue.

Jan 31 2015, 10:10 PM · OTRS