2022-08-05T00:09:33 *** teepee_ is now known as teepee 2022-08-05T11:05:10 hi cboltz 2022-08-05T11:05:33 patched gitlab version is available in darrix home project. do you want to install it? 2022-08-05T11:18:04 I don't want to keep the bug, therefore... ;-) 2022-08-05T11:25:02 update done, merging works again :-) 2022-08-05T11:43:55 thank you, cboltz! 2022-08-05T11:44:10 now I have one more favour to ask for 2022-08-05T11:44:27 would you mind re-encrypting the pass directory with my newly merged key? 2022-08-05T11:45:25 no problem, give me a minute... 2022-08-05T11:55:22 done 2022-08-05T11:55:47 for the records: I had to remove kbabioch's expired suse.de key 2022-08-05T11:56:53 *** teepee_ is now known as teepee 2022-08-05T11:58:25 cool, thank you very much 2022-08-05T11:58:31 kbabioch I cannot locate in the internal phone book 2022-08-05T11:58:56 he left SUSE a while ago - which also explains why the key expired ;-) 2022-08-05T12:01:06 makes sense. is the pass store not supposed to only have Heroes members? 2022-08-05T12:01:42 right, but being a Heroes member doesn't forbid to have a suse.de mail address ;-) 2022-08-05T12:02:22 sure! I made that under the assumption that they quit their Heroes participation with them leaving the corp, as I would have expected them to replace the key otherwise 2022-08-05T12:02:47 right, but we are usually too lazy to "clean up" when someone leaves (until things break / keys expire etc.) 2022-08-05T12:03:03 people don't always remember that their key might have been there too 2022-08-05T12:03:04 you know, theory and practise ;-) 2022-08-05T12:06:31 ye ye, I just always try to sneak in some good practice .. :-) 2022-08-05T12:07:38 I'm sure nobody will complain about that ;-) 2022-08-05T12:08:19 in a way I wish we had the account system based on freeipa and noggin, just because it would have had the option to get current gpg keys from the accounts instead of having them hardcoded in places 2022-08-05T12:08:57 but that's wishful thinking from me, because I don't think they would be any more up to date 2022-08-05T12:09:22 I already wondered about your optimism ;-) 2022-08-05T12:09:27 yes well, there is a LDAP attribute for PGP keys, and it would be easier to scan that for expired keys than to check a bunch of places manually 2022-08-05T12:09:48 we need to update freeipa at some point anyway 2022-08-05T12:10:03 since lars was nicely suggesting somebody should take maintenance of it 2022-08-05T12:10:13 besides that, we have much more heroes accouts than people who can access/decrypt the pass repo (intentionally, because many people "just" maintain a few services) 2022-08-05T12:10:44 we were also supposed to get care of that upgrade, I will have to find another suse employee to pester so that we can recover the network when it breaks 2022-08-05T12:10:53 ah, I was always under the impression everyone does everything 2022-08-05T12:11:01 because that upgrade will probably go wrong 2022-08-05T12:11:14 well, no, some people do do everything 2022-08-05T12:11:25 most people only do a few services 2022-08-05T12:11:35 LCP0968[m]: I can back your network part if you want, you would just have to tell me what to look for :-) 2022-08-05T12:11:47 ah I see 2022-08-05T12:12:06 alternative option: if you have a static IP, I can whitelist in the firewall so that you can get in with plain ssh even if the VPN login breaks 2022-08-05T12:12:47 (actually I wonder if I should do that for me, using the IP of a server I maintain) 2022-08-05T12:12:49 that's also an option, but there are a few too many potential points of failure 2022-08-05T12:13:32 honestly I should check if the most important services don't have hardcoded ip for freeipa in places, because I am really worried about that 2022-08-05T12:14:00 I hate dns 2022-08-05T12:14:10 but I hate hardcoded resolutions even more 2022-08-05T12:15:23 I've seen breakage with both variants, so whatever you do might explode ;-) 2022-08-05T12:19:37 and if you don't do anything it will explode for sure 😉 2022-08-05T12:20:40 agreed in general, but not in this case - if you don't change any IP or hostname, how should it explode? 2022-08-05T12:22:10 cosmic rays 2022-08-05T12:22:20 henne: speaking about explosions - maybe you can do something about https://progress.opensuse.org/issues/111956 ? ;-) 2022-08-05T12:23:46 https://progress.opensuse.org/issues/105846 is also something for you 2022-08-05T12:23:51 I can do anything.... 2022-08-05T12:24:13 if you make my day longer... 2022-08-05T12:25:59 the day has 24 hours, and if this isn't enough, you can also work in the night ;-) 2022-08-05T12:26:12 speaking of osem, I will be hosting a 24 hours event tomorrow and we are using osem for it, and after we are done with the event I will have a lot of things to fix with osem because it sucks for online events or 24 hours long events (also the schedule could be done better) 2022-08-05T12:26:55 patches welcome 🙂 2022-08-05T12:27:10 I do wanna use it, but my own hand crafted schedule last year was plain better 2022-08-05T12:27:20 henne: or move to Bajor, they have 26 hours per day ;-) 2022-08-05T12:27:25 https://suno.pona.la/2021/tenpo/ 2022-08-05T12:29:35 cboltz: and no global warming. perfect! 2022-08-05T12:29:36 NBG is on 🔥 2022-08-05T12:31:34 bold of you to assume irc clients can display emoji 2022-08-05T12:42:39 🤣 2022-08-05T13:37:21 has something changed in the US infrastructure? Some time ago I could ssh to provo-mirror.o.o and now I can't 2022-08-05T13:39:11 says connection refused like sshd is down 2022-08-05T13:42:52 anikitin: did you try provo-mirror.infra.opensuse.org ? 2022-08-05T13:43:09 ah good idea 2022-08-05T13:43:21 I can ssh to it.. well not past the login prompt :D 2022-08-05T13:49:12 yeah with heroes vpn I can connect, so probably it was just hardened 2022-08-05T13:59:02 ah you tried from e&i first. cool that it works now for you 2022-08-05T21:19:53 *** teepee_ is now known as teepee