[14:31:02] <bblack>	 cp3036 bumped to nginx wmf12 package.  will move the rest of prod caches to that on monday.  it's basically the same functionality as our first openssl-1.1-based nginx deploy, but nginx is rolled forward to latest-master (picks up some relevant http/2 fixes if nothing else), CVE-2016-1247 is patched, and the openssl read_ahead mitigation is patched in (which should kill the client-side SSL errors
[14:31:08] <bblack>	  on large thumbnail pages)