[11:00:56] <ema>	 moritzm: all cache nodes rebooted
[11:01:53] <moritzm>	 great!
[11:08:50] <moritzm>	 could you also upgrade/reboot the test/spare cp* hosts for completeness? 1046, 1047, 1059, 1060, 3004, 3005, 3006, 2003, 2009, 2015, 2021?
[11:10:49] <ema>	 will do
[11:12:41] <moritzm>	 thanks
[11:14:30] <ema>	 moritzm: eqiad and esams LVSs {{done}}
[11:16:09] <moritzm>	 nice
[11:18:04] <moritzm>	 sorry for being so annoying, but could you also upgrade/reboot the lvs spares: 1011/1012 :-)
[11:19:05] <ema>	 haha sure!
[13:44:38] <moritzm>	 can I reboot dns4* or would that mess with any experiments?
[14:07:33] <bblack>	 moritzm: they're free to reboot
[14:07:44] <moritzm>	 k, will reboot later on
[14:45:42] <wikibugs>	 10Traffic, 10Analytics-Cluster, 10Analytics-Kanban, 10Operations, 10User-Elukey: TLS security review of the Kafka stack - https://phabricator.wikimedia.org/T182993#3889866 (10BBlack) That looks about right (disable all hashes older than SHA256, disable RSA+DSA), although it's hard to suss exactly what th...
[14:53:33] <wikibugs>	 10Traffic, 10Analytics-Cluster, 10Analytics-Kanban, 10Operations, 10User-Elukey: TLS security review of the Kafka stack - https://phabricator.wikimedia.org/T182993#3889872 (10Ottomata) > Does that mean SHA1 is disabled, except in the cases that it's the root cert of a chain stored in the jdkCA's default...
[14:58:48] <wikibugs>	 10Traffic, 10Analytics-Cluster, 10Analytics-Kanban, 10Operations, 10User-Elukey: TLS security review of the Kafka stack - https://phabricator.wikimedia.org/T182993#3889885 (10BBlack) Yeah, seems reasonable to just set it system-wide on these systems.
[16:00:13] <wikibugs>	 10Domains, 10Traffic, 10Operations, 10Research, 10Patch-For-Review: Create subdomain for Research landing page - https://phabricator.wikimedia.org/T183916#3890099 (10bmansurov) Also blocked on a final review by @DarTar and project owners.
[16:33:03] <wikibugs>	 10Traffic, 10Analytics-Cluster, 10Analytics-Kanban, 10Operations, and 2 others: TLS security review of the Kafka stack - https://phabricator.wikimedia.org/T182993#3890215 (10Ottomata) Oook, I've set this on all jumbo Kafka brokers.  @bblack anything else?
[20:03:11] <Krenair>	 https://gerrit.wikimedia.org/r/#/c/403326/
[20:03:20] <Krenair>	 the error I mentioned *might* only affect new installations, not sure
[20:03:26] <Krenair>	 worth keeping an eye on
[20:03:30] <Krenair>	 may need legal review to fix
[21:09:28] <Platonides>	 oh, they issued a new one?
[21:11:26] <Platonides>	 I have been using LE-SA-v1.0.1-July-27-2015.pdf for a long time
[21:11:33] <Platonides>	 and nothing seems to have broken…