Index: branches/fc19-dev/server/fedora/config/etc/aliases
===================================================================
--- branches/fc19-dev/server/fedora/config/etc/aliases (revision 2403)
+++ branches/fc19-dev/server/fedora/config/etc/aliases (revision 2434)
@@ -89,5 +89,5 @@
# Person who should get root's mail
-root: andersk@mit.edu, quentin@mit.edu, geofft+root@mit.edu, mitchb@mit.edu, ezyang@mit.edu, xavid@mit.edu, adehnert-sipb@mit.edu, achernya@mit.edu, glasgall@mit.edu
+root: andersk@mit.edu, quentin@mit.edu, geofft+root@mit.edu, mitchb@mit.edu, ezyang@mit.edu, xavid@mit.edu, adehnert-sipb@mit.edu, achernya@mit.edu, glasgall@mit.edu, tboning@mit.edu
scripts: root
@@ -105,4 +105,6 @@
# ro21531: spam to rosmosis.net: added 2011-06-25, see mail to -root 2011-06-03
ro21531: /dev/null
+# buechley: not responsive to mail sent by -root on 2013-05-14, added 2013-07-04
+buechley: /dev/null
# Temporary to clear the queue
Index: branches/fc19-dev/server/fedora/config/etc/httpd/vhosts.d/feed.conf
===================================================================
--- branches/fc19-dev/server/fedora/config/etc/httpd/vhosts.d/feed.conf (revision 2434)
+++ branches/fc19-dev/server/fedora/config/etc/httpd/vhosts.d/feed.conf (revision 2434)
@@ -0,0 +1,36 @@
+# do not trailing-slash DocumentRoot
+
+
+ ServerName feed.mit.edu
+ ServerAlias feed
+ DocumentRoot /afs/sipb.mit.edu/project/feed/web_scripts
+ Alias /~feed /afs/sipb.mit.edu/project/feed/web_scripts
+ SuExecUserGroup feed feed
+ Include conf.d/vhosts-common.conf
+
+
+
+
+ ServerName feed.mit.edu
+ ServerAlias feed
+ DocumentRoot /afs/sipb.mit.edu/project/feed/web_scripts
+ Alias /~feed /afs/sipb.mit.edu/project/feed/web_scripts
+ SuExecUserGroup feed feed
+ Include conf.d/vhosts-common-ssl.conf
+ SSLCertificateFile /etc/pki/tls/certs/feed.pem
+ SSLCertificateChainFile /etc/pki/tls/certs/feed.pem
+ SSLCertificateKeyFile /etc/pki/tls/private/scripts.key
+
+
+ ServerName feed.mit.edu
+ ServerAlias feed
+ DocumentRoot /afs/sipb.mit.edu/project/feed/web_scripts
+ Alias /~feed /afs/sipb.mit.edu/project/feed/web_scripts
+ SuExecUserGroup feed feed
+ Include conf.d/vhosts-common-ssl.conf
+ Include conf.d/vhosts-common-ssl-cert.conf
+ SSLCertificateFile /etc/pki/tls/certs/feed.pem
+ SSLCertificateChainFile /etc/pki/tls/certs/feed.pem
+ SSLCertificateKeyFile /etc/pki/tls/private/scripts.key
+
+
Index: branches/fc19-dev/server/fedora/config/etc/httpd/vhosts.d/ties.conf
===================================================================
--- branches/fc19-dev/server/fedora/config/etc/httpd/vhosts.d/ties.conf (revision 2403)
+++ branches/fc19-dev/server/fedora/config/etc/httpd/vhosts.d/ties.conf (revision 2434)
@@ -19,4 +19,5 @@
Include conf.d/vhosts-common-ssl.conf
SSLCertificateFile /etc/pki/tls/certs/ties.pem
+ SSLCertificateChainFile /etc/pki/tls/certs/ties.pem
SSLCertificateKeyFile /etc/pki/tls/private/scripts.key
@@ -30,4 +31,5 @@
Include conf.d/vhosts-common-ssl-cert.conf
SSLCertificateFile /etc/pki/tls/certs/ties.pem
+ SSLCertificateChainFile /etc/pki/tls/certs/ties.pem
SSLCertificateKeyFile /etc/pki/tls/private/scripts.key
Index: branches/fc19-dev/server/fedora/config/etc/pki/tls/certs/feed.pem
===================================================================
--- branches/fc19-dev/server/fedora/config/etc/pki/tls/certs/feed.pem (revision 2434)
+++ branches/fc19-dev/server/fedora/config/etc/pki/tls/certs/feed.pem (revision 2434)
@@ -0,0 +1,65 @@
+-----BEGIN CERTIFICATE-----
+MIIGYTCCBUmgAwIBAgIQerZzAzqO3bEveZoQ9czSHDANBgkqhkiG9w0BAQUFADBR
+MQswCQYDVQQGEwJVUzESMBAGA1UEChMJSW50ZXJuZXQyMREwDwYDVQQLEwhJbkNv
+bW1vbjEbMBkGA1UEAxMSSW5Db21tb24gU2VydmVyIENBMB4XDTEzMDUyMzAwMDAw
+MFoXDTE2MDUyMjIzNTk1OVowgdAxCzAJBgNVBAYTAlVTMQ4wDAYDVQQREwUwMjEz
+OTELMAkGA1UECBMCTWExEjAQBgNVBAcTCUNhbWJyaWRnZTEdMBsGA1UECRMUNzcg
+TWFzc2FjaHVzZXR0cyBBdmUxLjAsBgNVBAoTJU1hc3NhY2h1c2V0dHMgSW5zdGl0
+dXRlIG9mIFRlY2hub2xvZ3kxKjAoBgNVBAsUIUluZm9ybWF0aW9uIFNlcnZpY2Vz
+ICYgVGVjaG5vbG9neTEVMBMGA1UEAxMMZmVlZC5taXQuZWR1MIICIjANBgkqhkiG
+9w0BAQEFAAOCAg8AMIICCgKCAgEAv6Pye5jMFqdX5pKFNFbx42KDnmpPNZ3wz4mH
+c+OT97cBVzhu6fxZTSTrpxdHyixRDkXIt2jJDjIm4JHTBlyMfA5smQyyRgUPTfGw
+x141BmL+KtYPGyy1AiRMwwZx7JTKHaqvfrktwFVLzLxRPXZoW9PtNdADuhts86DY
+09xrRLBeAVHTAsxK2lIS3jUxaRZaSIsPzq1N5NWLETZ/hxz9hNpDLocvQXCsrd9U
+wO32IVH6xQbwG+uhsL9NHEI0itVv9yVmc49gxNeNM5H0RjqXCVkB/8NklEBIMGjw
+bgMmdMKhs9fLlPxuU4oqnv2xT8R0ViVjH6q9lSV4nEVGGwwhceuElNCy8dpS9tF/
+Yx0II1JfwvlNrKRE5ZpUcPzJ/NTUtx11lQDjvz5M80PDlscJKilFEtIx1nlMiudU
+JyLGgK6HI1bxjUmbyPrtM1tfVnbID36FFGnESDEHOaU0gfJrFVAi+7ssrUuE6lVk
+995WndC20H0eG1FQN0SU5sQV60Ux8bPsD7OpDPgcR8dRAAXv7rA9n34Hpzjog0w9
+2zS2JAyQV8D50GQUipNHm0H1oxQdnhhd1dhmr/XzyC+8pwKn79zwDsdHjS7WqGJC
+k1t89TX4MRB7ONRAJGiBEyfL+3YO0ZkU2NXr92lkj6+PgrskKfnUKR3O5hS6TIsJ
+/0bOi20CAwEAAaOCAbMwggGvMB8GA1UdIwQYMBaAFEhPWvovSppe4FDza3tVpd71
+vjRdMB0GA1UdDgQWBBTLEbcBX4ZVT0VeqydpvuE8iXpVYjAOBgNVHQ8BAf8EBAMC
+BaAwDAYDVR0TAQH/BAIwADAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIw
+ZwYDVR0gBGAwXjBSBgwrBgEEAa4jAQQDAQEwQjBABggrBgEFBQcCARY0aHR0cHM6
+Ly93d3cuaW5jb21tb24ub3JnL2NlcnQvcmVwb3NpdG9yeS9jcHNfc3NsLnBkZjAI
+BgZngQwBAgIwPQYDVR0fBDYwNDAyoDCgLoYsaHR0cDovL2NybC5pbmNvbW1vbi5v
+cmcvSW5Db21tb25TZXJ2ZXJDQS5jcmwwbwYIKwYBBQUHAQEEYzBhMDkGCCsGAQUF
+BzAChi1odHRwOi8vY2VydC5pbmNvbW1vbi5vcmcvSW5Db21tb25TZXJ2ZXJDQS5j
+cnQwJAYIKwYBBQUHMAGGGGh0dHA6Ly9vY3NwLmluY29tbW9uLm9yZzAXBgNVHREE
+EDAOggxmZWVkLm1pdC5lZHUwDQYJKoZIhvcNAQEFBQADggEBACrCCJCDctLYlLtq
+6Ot7m7Pi+uudrCpsU4iyIV4knW2uncCdN1WXX7Xa7ZDM7oGr5dNqpdNeNXP9FV2p
+Z2ycFjmfE5VUX0PADxYRXvlLWZFtviYf1buUHE4mj7zHTBY+uEAfee5UGhuM49+N
+PGvQN04JFr4izXk2ZAAf2gltUSUIeoSm3+cZdEnIDk6Rd74UaEu2AmxCCDCJuhLo
+K8fUTgAbOuSNQwZuADqx5Cw4OAfnL2vHmzoBmKMeP2Ly7x3qYfFDlR60UxFzyuON
+m0dFO8IB92+BbUiZUMwSUm3ZHMGR+njVmQOk4b4RjbIIzsyAmmbCcuYJ5wAgIygS
+tsdUWXE=
+-----END CERTIFICATE-----
+-----BEGIN CERTIFICATE-----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+-----END CERTIFICATE-----
Index: branches/fc19-dev/server/fedora/config/etc/pki/tls/certs/ties.pem
===================================================================
--- branches/fc19-dev/server/fedora/config/etc/pki/tls/certs/ties.pem (revision 2403)
+++ branches/fc19-dev/server/fedora/config/etc/pki/tls/certs/ties.pem (revision 2434)
@@ -1,110 +1,65 @@
-From mitcert@MIT.EDU Mon May 14 09:29:28 2012
-Date: Mon, 14 May 2012 09:29:26 -0400
-From: mitcert@MIT.EDU
-To: achernya@mit.edu
-Subject: [help.mit.edu #1987094] certificate renewal for scripts-vhost ties.mit.edu
-
-Certificate:
- Data:
- Version: 3 (0x2)
- Serial Number:
- ad:4d:c7:9a:02:c8:7e:1c:b7:4d:e1:c4:bc:c8:69:fe
- Signature Algorithm: sha1WithRSAEncryption
- Issuer: C=US, ST=Massachusetts, O=Massachusetts Institute of Technology, OU=MIT Certification Authority
- Validity
- Not Before: May 12 16:00:00 2012 GMT
- Not After : May 14 16:00:00 2013 GMT
- Subject: C=US, ST=Massachusetts, L=Cambridge, O=Massachusetts Institute of Technology, OU=scripts.mit.edu web hosting service, CN=ties.mit.edu/emailAddress=scripts@mit.edu
- Subject Public Key Info:
- Public Key Algorithm: rsaEncryption
- RSA Public Key: (4096 bit)
- Modulus (4096 bit):
- 00:bf:a3:f2:7b:98:cc:16:a7:57:e6:92:85:34:56:
- f1:e3:62:83:9e:6a:4f:35:9d:f0:cf:89:87:73:e3:
- 93:f7:b7:01:57:38:6e:e9:fc:59:4d:24:eb:a7:17:
- 47:ca:2c:51:0e:45:c8:b7:68:c9:0e:32:26:e0:91:
- d3:06:5c:8c:7c:0e:6c:99:0c:b2:46:05:0f:4d:f1:
- b0:c7:5e:35:06:62:fe:2a:d6:0f:1b:2c:b5:02:24:
- 4c:c3:06:71:ec:94:ca:1d:aa:af:7e:b9:2d:c0:55:
- 4b:cc:bc:51:3d:76:68:5b:d3:ed:35:d0:03:ba:1b:
- 6c:f3:a0:d8:d3:dc:6b:44:b0:5e:01:51:d3:02:cc:
- 4a:da:52:12:de:35:31:69:16:5a:48:8b:0f:ce:ad:
- 4d:e4:d5:8b:11:36:7f:87:1c:fd:84:da:43:2e:87:
- 2f:41:70:ac:ad:df:54:c0:ed:f6:21:51:fa:c5:06:
- f0:1b:eb:a1:b0:bf:4d:1c:42:34:8a:d5:6f:f7:25:
- 66:73:8f:60:c4:d7:8d:33:91:f4:46:3a:97:09:59:
- 01:ff:c3:64:94:40:48:30:68:f0:6e:03:26:74:c2:
- a1:b3:d7:cb:94:fc:6e:53:8a:2a:9e:fd:b1:4f:c4:
- 74:56:25:63:1f:aa:bd:95:25:78:9c:45:46:1b:0c:
- 21:71:eb:84:94:d0:b2:f1:da:52:f6:d1:7f:63:1d:
- 08:23:52:5f:c2:f9:4d:ac:a4:44:e5:9a:54:70:fc:
- c9:fc:d4:d4:b7:1d:75:95:00:e3:bf:3e:4c:f3:43:
- c3:96:c7:09:2a:29:45:12:d2:31:d6:79:4c:8a:e7:
- 54:27:22:c6:80:ae:87:23:56:f1:8d:49:9b:c8:fa:
- ed:33:5b:5f:56:76:c8:0f:7e:85:14:69:c4:48:31:
- 07:39:a5:34:81:f2:6b:15:50:22:fb:bb:2c:ad:4b:
- 84:ea:55:64:f7:de:56:9d:d0:b6:d0:7d:1e:1b:51:
- 50:37:44:94:e6:c4:15:eb:45:31:f1:b3:ec:0f:b3:
- a9:0c:f8:1c:47:c7:51:00:05:ef:ee:b0:3d:9f:7e:
- 07:a7:38:e8:83:4c:3d:db:34:b6:24:0c:90:57:c0:
- f9:d0:64:14:8a:93:47:9b:41:f5:a3:14:1d:9e:18:
- 5d:d5:d8:66:af:f5:f3:c8:2f:bc:a7:02:a7:ef:dc:
- f0:0e:c7:47:8d:2e:d6:a8:62:42:93:5b:7c:f5:35:
- f8:31:10:7b:38:d4:40:24:68:81:13:27:cb:fb:76:
- 0e:d1:99:14:d8:d5:eb:f7:69:64:8f:af:8f:82:bb:
- 24:29:f9:d4:29:1d:ce:e6:14:ba:4c:8b:09:ff:46:
- ce:8b:6d
- Exponent: 65537 (0x10001)
- X509v3 extensions:
- X509v3 Basic Constraints:
- CA:FALSE
- Netscape Cert Type:
- SSL Client, SSL Server, S/MIME
- X509v3 Extended Key Usage:
- TLS Web Server Authentication, E-mail Protection, TLS Web Client Authentication
- X509v3 Key Usage:
- Digital Signature, Non Repudiation, Key Encipherment
- X509v3 Subject Key Identifier:
- CB:11:B7:01:5F:86:55:4F:45:5E:AB:27:69:BE:E1:3C:89:7A:55:62
- X509v3 CRL Distribution Points:
- URI:http://ca.mit.edu/ca/mitserver.crl
-
- Signature Algorithm: sha1WithRSAEncryption
- 23:ec:34:e2:79:a4:07:a4:12:8f:ce:72:42:7f:c7:30:4a:93:
- 7f:de:52:9f:76:0c:6b:41:fd:d5:09:45:33:84:9d:b4:6c:ec:
- de:53:61:4d:78:06:34:3d:d2:2d:4b:16:0a:86:77:13:47:78:
- 4b:7e:4b:f6:fc:64:1d:13:5e:7a:dc:06:47:3a:34:74:7c:ee:
- 39:c0:5a:b2:9b:f3:b0:1e:5a:93:3e:a3:61:67:52:b2:db:13:
- a2:ed:8c:d1:40:fe:1d:8e:53:e2:d5:e3:d4:f2:b2:d2:3f:8f:
- f4:5f:a1:44:19:b8:6b:2d:86:5a:5c:d7:4f:11:11:3b:ae:dc:
- 93:92
-----BEGIN CERTIFICATE-----
-MIIFADCCBGmgAwIBAgIRAK1Nx5oCyH4ct03hxLzIaf4wDQYJKoZIhvcNAQEFBQAw
-ezELMAkGA1UEBhMCVVMxFjAUBgNVBAgTDU1hc3NhY2h1c2V0dHMxLjAsBgNVBAoT
-JU1hc3NhY2h1c2V0dHMgSW5zdGl0dXRlIG9mIFRlY2hub2xvZ3kxJDAiBgNVBAsT
-G01JVCBDZXJ0aWZpY2F0aW9uIEF1dGhvcml0eTAeFw0xMjA1MTIxNjAwMDBaFw0x
-MzA1MTQxNjAwMDBaMIHOMQswCQYDVQQGEwJVUzEWMBQGA1UECBMNTWFzc2FjaHVz
-ZXR0czESMBAGA1UEBxMJQ2FtYnJpZGdlMS4wLAYDVQQKEyVNYXNzYWNodXNldHRz
-IEluc3RpdHV0ZSBvZiBUZWNobm9sb2d5MSwwKgYDVQQLEyNzY3JpcHRzLm1pdC5l
-ZHUgd2ViIGhvc3Rpbmcgc2VydmljZTEVMBMGA1UEAxMMdGllcy5taXQuZWR1MR4w
-HAYJKoZIhvcNAQkBFg9zY3JpcHRzQG1pdC5lZHUwggIiMA0GCSqGSIb3DQEBAQUA
-A4ICDwAwggIKAoICAQC/o/J7mMwWp1fmkoU0VvHjYoOeak81nfDPiYdz45P3twFX
-OG7p/FlNJOunF0fKLFEORci3aMkOMibgkdMGXIx8DmyZDLJGBQ9N8bDHXjUGYv4q
-1g8bLLUCJEzDBnHslModqq9+uS3AVUvMvFE9dmhb0+010AO6G2zzoNjT3GtEsF4B
-UdMCzEraUhLeNTFpFlpIiw/OrU3k1YsRNn+HHP2E2kMuhy9BcKyt31TA7fYhUfrF
-BvAb66Gwv00cQjSK1W/3JWZzj2DE140zkfRGOpcJWQH/w2SUQEgwaPBuAyZ0wqGz
-18uU/G5Tiiqe/bFPxHRWJWMfqr2VJXicRUYbDCFx64SU0LLx2lL20X9jHQgjUl/C
-+U2spETlmlRw/Mn81NS3HXWVAOO/PkzzQ8OWxwkqKUUS0jHWeUyK51QnIsaArocj
-VvGNSZvI+u0zW19WdsgPfoUUacRIMQc5pTSB8msVUCL7uyytS4TqVWT33lad0LbQ
-fR4bUVA3RJTmxBXrRTHxs+wPs6kM+BxHx1EABe/usD2ffgenOOiDTD3bNLYkDJBX
-wPnQZBSKk0ebQfWjFB2eGF3V2Gav9fPIL7ynAqfv3PAOx0eNLtaoYkKTW3z1Nfgx
-EHs41EAkaIETJ8v7dg7RmRTY1ev3aWSPr4+CuyQp+dQpHc7mFLpMiwn/Rs6LbQID
-AQABo4GrMIGoMAkGA1UdEwQCMAAwEQYJYIZIAYb4QgEBBAQDAgXgMCcGA1UdJQQg
-MB4GCCsGAQUFBwMBBggrBgEFBQcDBAYIKwYBBQUHAwIwCwYDVR0PBAQDAgXgMB0G
-A1UdDgQWBBTLEbcBX4ZVT0VeqydpvuE8iXpVYjAzBgNVHR8ELDAqMCigJqAkhiJo
-dHRwOi8vY2EubWl0LmVkdS9jYS9taXRzZXJ2ZXIuY3JsMA0GCSqGSIb3DQEBBQUA
-A4GBACPsNOJ5pAekEo/OckJ/xzBKk3/eUp92DGtB/dUJRTOEnbRs7N5TYU14BjQ9
-0i1LFgqGdxNHeEt+S/b8ZB0TXnrcBkc6NHR87jnAWrKb87AeWpM+o2FnUrLbE6Lt
-jNFA/h2OU+LV49TystI/j/RfoUQZuGsthlpc108RETuu3JOS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-----END CERTIFICATE-----
-
+-----BEGIN CERTIFICATE-----
+MIIEwzCCA6ugAwIBAgIQf3HB06ImsNKxE/PmgWdkPjANBgkqhkiG9w0BAQUFADBv
+MQswCQYDVQQGEwJTRTEUMBIGA1UEChMLQWRkVHJ1c3QgQUIxJjAkBgNVBAsTHUFk
+ZFRydXN0IEV4dGVybmFsIFRUUCBOZXR3b3JrMSIwIAYDVQQDExlBZGRUcnVzdCBF
+eHRlcm5hbCBDQSBSb290MB4XDTEwMTIwNzAwMDAwMFoXDTIwMDUzMDEwNDgzOFow
+UTELMAkGA1UEBhMCVVMxEjAQBgNVBAoTCUludGVybmV0MjERMA8GA1UECxMISW5D
+b21tb24xGzAZBgNVBAMTEkluQ29tbW9uIFNlcnZlciBDQTCCASIwDQYJKoZIhvcN
+AQEBBQADggEPADCCAQoCggEBAJd8x8j+s+kgaqOkT46ONFYGs3psqhCbSGErNpBp
+4zQKR6e7e96qavvrgpWPyh1/r3WmqEzaIGdhGg2GwcrBh6+sTuTeYhsvnbGYr8YB
++xdw26wUWexvPzN/ppgL5OI4r/V/hW0OdASd9ieGx5uP53EqCPQDAkBjJH1AV49U
+4FR+thNIYfHezg69tvpNmLLZDY15puCqzQyRmqXfq3O7yhR4XEcpocrFup/H2mD3
+/+d/8tnaoS0PSRan0wCSz4pH2U341ZVm03T5gGMAT0yEFh+z9SQfoU7e6JXWsgsJ
+iyxrx1wvjGPJmctSsWJ7cwFif2Ns2Gig7mqojR8p89AYrK0CAwEAAaOCAXcwggFz
+MB8GA1UdIwQYMBaAFK29mHo0tCb3+sQmVO8DveAky1QaMB0GA1UdDgQWBBRIT1r6
+L0qaXuBQ82t7VaXe9b40XTAOBgNVHQ8BAf8EBAMCAQYwEgYDVR0TAQH/BAgwBgEB
+/wIBADARBgNVHSAECjAIMAYGBFUdIAAwRAYDVR0fBD0wOzA5oDegNYYzaHR0cDov
+L2NybC51c2VydHJ1c3QuY29tL0FkZFRydXN0RXh0ZXJuYWxDQVJvb3QuY3JsMIGz
+BggrBgEFBQcBAQSBpjCBozA/BggrBgEFBQcwAoYzaHR0cDovL2NydC51c2VydHJ1
+c3QuY29tL0FkZFRydXN0RXh0ZXJuYWxDQVJvb3QucDdjMDkGCCsGAQUFBzAChi1o
+dHRwOi8vY3J0LnVzZXJ0cnVzdC5jb20vQWRkVHJ1c3RVVE5TR0NDQS5jcnQwJQYI
+KwYBBQUHMAGGGWh0dHA6Ly9vY3NwLnVzZXJ0cnVzdC5jb20wDQYJKoZIhvcNAQEF
+BQADggEBAJNmIYB0RYVLwqvOMrAp/t3f1iRbvwNqb1A+DhuzDYijW+7EpBI7Vu8G
+f89/IZVWO0Ex/uGqk9KV85UNPEerylwmrT7x+Yw0bhG+9GfjAkn5pnx7ZCXdF0by
+UOPjCiE6SSTNxoRlaGdosEUtR5nNnKuGKRFy3NacNkN089SXnlag/l9AWNLV1358
+xY4asgRckmYOha0uBs7Io9jrFCeR3s8XMIFTtmYSrTfk9e+WXCAONumsYn0ZgYr1
+kGGmSavOPN/mymTugmU5RZUWukEGAJi6DFZh5MbGhgHPZqkiKQLWPc/EKo2Z3vsJ
+FJ4O0dXG14HdrSSrrAcF4h1ow3BmX9M=
+-----END CERTIFICATE-----
Index: branches/fc19-dev/server/fedora/config/etc/postfix/blocked_users
===================================================================
--- branches/fc19-dev/server/fedora/config/etc/postfix/blocked_users (revision 2403)
+++ branches/fc19-dev/server/fedora/config/etc/postfix/blocked_users (revision 2434)
@@ -3,2 +3,3 @@
bsu
delian
+buechley
Index: branches/fc19-dev/server/fedora/config/etc/scripts/prune-mailq
===================================================================
--- branches/fc19-dev/server/fedora/config/etc/scripts/prune-mailq (revision 2434)
+++ branches/fc19-dev/server/fedora/config/etc/scripts/prune-mailq (revision 2434)
@@ -0,0 +1,89 @@
+#!/bin/sh
+
+set -eu
+shopt -s failglob
+
+usage="Usage:
+ $0 list
+ $0 show-rand
+ $0 email lockers...
+ $0 purge lockers..."
+
+clean_locker() {
+ echo "${1%%@scripts.mit.edu}"
+}
+
+list() {
+ echo "Top twenty users by number of queued messages:"
+ mailq | tail -n +2 | grep -v '^ *(' | awk 'BEGIN { RS = "" } { print $8 }' | sort | uniq -c | sort -n | tail -n 20
+}
+
+show_rand() {
+ files=$(ls /var/spool/postfix/deferred/?/* | shuf | head -n 3)
+ for file in $files; do
+ echo ">>>> $file";
+ strings "$file"
+ echo;
+ done
+}
+
+tmpl_email() {
+ sender=${SSH_GSSAPI_NAME%%/*}
+ if [[ $# -eq 0 ]]; then
+ echo "Please specific a locker to generate template for." >&2
+ exit 1
+ fi
+ for locker in "$@"; do
+ locker=$(clean_locker "$locker")
+ echo "fs la /mit/$locker/"
+ fs la "/mit/$locker"
+ echo
+ cat <<-EOF
+The scripts.mit.edu servers currently have a large number of email messages destined for the *$locker* account that are not being handled by your account and are being queued. Sufficiently large numbers of queued messages can cause stability issues for the servers, so we would like you to ensure that your account can handle all messages it receives by two weeks from now.
+
+You will be able to process the incoming messages if you sign up for the mail scripts service (http://scripts.mit.edu/mail/). You're welcome to simply forward all incoming mail to another address (the default is to forward it to the mit.edu address of the user who signs up); otherwise, you can configure mail scripts to process the incoming messages in some suitable fashion.
+
+Frequently, large numbers of queued messages are a sign that some wiki, blog, forum, or other site has been spammed. If this is the case, you should apply some appropriate spam-blocking mechanism.
+
+If you have any questions, feel free to contact us.
+
+Thanks,
+scripts.mit.edu team
+scripts@mit.edu --- semi-private
+scripts-root@mit.edu --- service maintainers only
+EOF
+ echo;echo
+ done
+}
+
+purge() {
+ if [[ $# -eq 0 ]]; then
+ echo "Please specific a locker to purge emails for." >&2
+ exit 1
+ fi
+ for locker in "$@"; do
+ locker=$(clean_locker "$locker")
+ echo "$locker..."
+ mailq | tail -n +2 | grep -v '^ *(' | awk "BEGIN { RS = \"\" } (\$8 == \"$locker@scripts.mit.edu\" && \$9 == \"\") { print \$1 }" | tr -d '*!' | postsuper -d -
+ echo
+ done
+}
+
+op=${1:-}
+
+# We want to go ahead and show the usage message if there are no args, so
+# don't let the shift fail and end the script because of "set -e"
+shift || :
+
+case "$op" in
+ list) list;;
+ show-rand) show_rand;;
+ email) tmpl_email "$@";;
+ purge) purge "$@";;
+ *)
+ echo "$usage" >&2;
+ exit 1
+ ;;
+esac
+
+# vim: set sts=4 sw=4 et:
Index: branches/fc19-dev/server/fedora/config/etc/ssh/sshd_config
===================================================================
--- branches/fc19-dev/server/fedora/config/etc/ssh/sshd_config (revision 2403)
+++ branches/fc19-dev/server/fedora/config/etc/ssh/sshd_config (revision 2434)
@@ -6,4 +6,5 @@
GSSAPICleanupCredentials yes
GSSAPIStrictAcceptorCheck no
+GSSAPIKeyExchange yes
UsePAM yes
AcceptEnv LANG LC_CTYPE LC_NUMERIC LC_TIME LC_COLLATE LC_MONETARY LC_MESSAGES