[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-bugs] #29863 [Obfuscation/Snowflake]: Add disk space monitoring for snowflake infrastructure

To: undisclosed-recipients: ;
Subject: Re: [tor-bugs] #29863 [Obfuscation/Snowflake]: Add disk space monitoring for snowflake infrastructure
From: "Tor Bug Tracker & Wiki" <blackhole@xxxxxxxxxxxxxx>
Date: Thu, 25 Apr 2019 01:06:50 -0000
Auto-submitted: auto-generated
Delivered-to: archiver@xxxxxxxx
Delivery-date: Wed, 24 Apr 2019 21:07:01 -0400
In-reply-to: <046.49af3e01c63d4c91d5c463484538d86c@torproject.org>
List-archive: <http://lists.torproject.org/pipermail/tor-bugs/>
List-help: <mailto:tor-bugs-request@lists.torproject.org?subject=help>
List-id: "auto: Tor bug tracker status mails" <tor-bugs.lists.torproject.org>
List-post: <mailto:tor-bugs@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs>, <mailto:tor-bugs-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-bugs>, <mailto:tor-bugs-request@lists.torproject.org?subject=unsubscribe>
References: <046.49af3e01c63d4c91d5c463484538d86c@torproject.org>
Reply-to: no-reply@xxxxxxxxxxxxxx, tor-assistants@xxxxxxxxxxxxxx
Sender: "tor-bugs" <tor-bugs-bounces@xxxxxxxxxxxxxxxxxxxx>

#29863: Add disk space monitoring for snowflake infrastructure
-----------------------------------+-----------------------------
 Reporter:  cohosh                 |          Owner:  (none)
     Type:  task                   |         Status:  merge_ready
 Priority:  Medium                 |      Milestone:
Component:  Obfuscation/Snowflake  |        Version:
 Severity:  Normal                 |     Resolution:
 Keywords:  snowflake              |  Actual Points:
Parent ID:  #30152                 |         Points:
 Reviewer:                         |        Sponsor:  Sponsor19
-----------------------------------+-----------------------------
Changes (by dcf):

 * status:  needs_review => merge_ready


Comment:

 Replying to [comment:13 cohosh]:
 > I edited /etc/init.d/prometheus-node-exporter and /etc/default
 /prometheus-node-exporter to add the following line:
 > {{{
 > ARGS="--no-collector.arp --no-collector.bcache --no-collector.bonding
 --no-collector.conntrack --no-collector.cpu --no-collector.edac --no-
 collector.entropy --no-collector.filefd --no-collector.hwmon --no-
 collector.infiniband --no-collector.ipvs --no-collector.loadavg --no-
 collector.mdadm --no-collector.meminfo --no-collector.netclass --no-
 collector.netdev --no-collector.netstat --no-collector.nfs --no-
 collector.nfsd --no-collector.sockstat --no-collector.stat --no-
 collector.textfile --no-collector.timex --no-collector.uname --no-
 collector.vmstat --no-collector.xfs --no-collector.zfs"
 > }}}

 Okay. The measurements in comment:22 look ok to export, even if they get
 accidentally disclosed. I'm thinking it's prudent to keep the IP address
 authentication for port 9100, to mitigate against potential
 vulnerabilities in prometheus-node-exporter itself.

 It's probably better not to modify /etc/init.d/prometheus-node-exporter
 because that will cause a conflict when upgrading. It looks to me like
 /etc/default/prometheus-node-exporter is the right place and is
 sufficient.

--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/29863#comment:24>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online

_______________________________________________
tor-bugs mailing list
tor-bugs@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs

Prev by Author: [tor-bugs] #30289 [Obfuscation/Pluggable transport]: Create a TapDance PT for Tor
Next by Author: Re: [tor-bugs] #21501 [Core Tor/Tor]: implement TFO aka TCP FAST OPEN to save RTT
Previous by thread: Re: [tor-bugs] #29863 [Obfuscation/Snowflake]: Add disk space monitoring for snowflake infrastructure
Next by thread: Re: [tor-bugs] #29863 [Obfuscation/Snowflake]: Add disk space monitoring for snowflake infrastructure
Index(es):
- Author
- Thread