We regularly experience “503: Service Unavailable” on git.kolab.org as of late, even though the system is more up to date, and both fatter and leaner. Fatter, because more resources are allocated to it. More CPU, more memory, larger APC, opcache, and database services got separated out from the system, and put on to a MariaDB… Continue reading 503s on git.kolab.org
It’s been a while since we last updated Phabricator, and it’s been a while since the overall system that runs git.kolab.org was paid attention to. Suffice it to say that it’s time to upgrade the system. We’ve meanwhile packaged Phabricator and its dependencies, stripped off some superfluous external dependencies that it shipped, and fixed some… Continue reading Service Window: git.kolab.org migration
We’re going to need to free up a hypervisor and put its load on other hypervisors, in order to pull out the one hypervisor and have some of its faulty hardware replaced — but there’s two problems; The hypervisor to free up has asserted required CPU capabilities most of the eligible targets do not have… Continue reading Emergency Service Window for Kolab Now
Now that we’ve launched our Kolab Now Beta Program, I get to tell you more about what it is we learn from it. Before we start, the features that are a part of this program are not supported. You’re welcome to provide us with feedback on the Kolab Hub Beta Program forum, but feedback does… Continue reading Kolab Now Beta Program: An Update
I’m pleased to be able and allowed to introduce you to the Kolab Now Beta Program, which my colleagues and myself can use to deploy newer versions of software sooner, faster and with less strict guarantees of availability and stability (i.e. the concept of a “service window” does not apply). The first feature to be… Continue reading Introducing the Kolab Now Beta Program
Close your eyes and imagine a world in which a user visits a website. This website may be encrypted, and when it is, the SSL certificate used must somehow be validated. Traditionally, SSL certificates are issued by third parties that have their certificate authorities included in browsers and operating system’s bundles. This way, whichever SSL… Continue reading HPKP or DANE?
We’ve run several DNS zones for Kolab Now, using an in-house hidden nameserver topology — in order to protect the keys used to sign DNSSEC zones, both the hidden topology as well as keeping as much of it in-house as possible, have been absolute musts. More recently, we received a certain type of threat, causing… Continue reading rcode0: the absolute best of the bunch