Paul Richards | 20 Oct 08:38 2014

Fwd: FW: [mantisbt] Simplify timezone configuration within Mantis (#387)

---------- Forwarded message ----------
Date: Mon, Oct 20, 2014 at 12:35 AM
Subject: FW: [mantisbt] Simplify timezone configuration within Mantis (#387)
To: developer discussions <mantisbt-dev-5NWGOfrQmnd4wTydcyPnfg@public.gmane.orgceforge.net>


Victor, that's just silly.

 

If you look at the pull request, my point before was that our date handling is over complicated.

 

On the initial PR that you raised, https://github.com/mantisbt/mantisbt/pull/380

 

Atrol/Rombert said +1 to your PR aka #380

I said "definitely a -1 to this, but before I go into details, are you hitting it on Centos/RHEL"

Damien also said -1, and then also said he’d do a PR.

 

Hence there are now 2 PR’s following up your initial work.

 

In the case of damien’s request, as I say I believe it overcomplicates our handling of date times and that we should look at simplifying the functionality.

 

If you actually spent the time to look, you may see my point.

 

Anyway, Given that I’ve got a -1 to Damien’s pull request and you’ve now given a -1 to my pull request, and both myself and damien gave a -1 to your pull request, we have now hit a situation where to move forward, I’d like to request a mailing list discussion on both Pull requests, as it seems we are not going to get agreement via Github.

 

It’s 12:30AM now so don’t have time now, I will write up arguments for and against the PR’s tomorrow, and then we can discuss, and if need be have a vote at the end.

 

Hopefully Damien will be more mature then yourself, and actually take the time to look and consider what we are actually trying to do.

 

Thanks

Paul

 

 

From: Victor Boctor [mailto:notifications-9UaJU3cA/F/QT0dZR+AlfA@public.gmane.org]

Sent: 20 October 2014 00:07
To: mantisbt/mantisbt
Cc: grangeway
Subject: Re: [mantisbt] Simplify timezone configuration within Mantis (#387)

 

-1 - I'm not even going to review this. We don't need 3 pull requests for a fix. If you have feedback give it to Damien who spent the time to write a thorough fix. There are two options here:

  • Give him the feedback that he can incorporate.
  • If you want to go further than he has the bandwidth to do as part of his checkin, then do follow up pull requests after his work is checked in.


Reply to this email directly or view it on GitHub.



------------------------------------------------------------------------------
Comprehensive Server Monitoring with Site24x7.
Monitor 10 servers for $9/Month.
Get alerted through email, SMS, voice calls or mobile push notifications.
Take corrective actions from your mobile device.
http://p.sf.net/sfu/Zoho
_______________________________________________
mantisbt-dev mailing list
mantisbt-dev@...
https://lists.sourceforge.net/lists/listinfo/mantisbt-dev
P Richards | 20 Oct 00:53 2014

1.3-Dev Users: Crypto_master_salt

If anyone’s running 1.3-dev on a ‘production box’, you might want to read the following:

 

Following Roland’s suggestion to victor to think about what config_is_private is “good for” [https://github.com/mantisbt/mantisbt/pull/386#issuecomment-59629700 ], and following reviewing our use of global-only config’s  - the next logical step was to review config_is_private:

 

I’ve put in a Pull Request following that (https://github.com/mantisbt/mantisbt/pull/509/files )

 

One of the changes in that pull request is as follows:

 

-                              case 'master_crypto_salt':

+                             case 'crypto_master_salt':

 

Within config.api, config_is_private function

 

If you are running a version of 1.3 as a “production” instance somewhere, I’d like to suggest you change your master salt and apply the patch in this Pull Request.

 

Paul

 

 

------------------------------------------------------------------------------
Comprehensive Server Monitoring with Site24x7.
Monitor 10 servers for $9/Month.
Get alerted through email, SMS, voice calls or mobile push notifications.
Take corrective actions from your mobile device.
http://p.sf.net/sfu/Zoho
_______________________________________________
mantisbt-dev mailing list
mantisbt-dev@...
https://lists.sourceforge.net/lists/listinfo/mantisbt-dev
P Richards | 19 Oct 18:20 2014

Github notifications

Apologies if anyone got some github notifications this morning – atrol got a few and gave me a poke so I was able to stop script that was generating them.

 

I’ve got a simple script that I basically use to automate some merging and testing

In essence, I was feeding in a batch of updates to update sql format for the db layer for 2.x to keep it up to date, and trying to do a local build to test.

 

Usually this works quite well, and I’ve used it multiple times before – it basically takes a change, pushes it into a new local branch, runs a build and then tidies up at end if all builds pass, or leaves files if they don’t. This was working its way through ~500 changes:


Anyway,

What happened here is

I had a pending change for master in my local master (https://github.com/mantisbt/mantisbt/pull/378 ) for pushing.

 

So instead of pushing locally, it pushed for a new remote PR (hence as atrol spotted, the reason for 2 commits in the branch)

 

On the bright side, if atrol hadn’t have spotted it, there were a considerable number more branches that would have been generated.

 

Paul

 

------------------------------------------------------------------------------
Comprehensive Server Monitoring with Site24x7.
Monitor 10 servers for $9/Month.
Get alerted through email, SMS, voice calls or mobile push notifications.
Take corrective actions from your mobile device.
http://p.sf.net/sfu/Zoho
_______________________________________________
mantisbt-dev mailing list
mantisbt-dev@...
https://lists.sourceforge.net/lists/listinfo/mantisbt-dev
P Richards | 19 Oct 01:29 2014

.

I like your maturity.

 

First you revert a commit that has been in a PR with no feedback for 7 days, without talking to me.

Then you remove access.

 

Paul

 

$ git push

 

 

ERROR: Permission to mantisbt/mantisbt.git denied to grangeway.

fatal: Could not read from remote repository.

 

Please make sure you have the correct access rights

and the repository exists.

------------------------------------------------------------------------------
Comprehensive Server Monitoring with Site24x7.
Monitor 10 servers for $9/Month.
Get alerted through email, SMS, voice calls or mobile push notifications.
Take corrective actions from your mobile device.
http://p.sf.net/sfu/Zoho
_______________________________________________
mantisbt-dev mailing list
mantisbt-dev@...
https://lists.sourceforge.net/lists/listinfo/mantisbt-dev
Damien Regad | 19 Oct 00:23 2014

1.2.18 release

Paul,

As you know we have several open security issues including some fairly 
critical ones. I have fixes ready to go for the most recent ones, and to 
close the loop I want to release 1.2.18 as soon as possible.

*I remind you that you owe us a series of security fixes since May*, and 
you agreed earlier this week on IRC [1] to send them to me via e-mail by 
Friday.

It is now late Saturday (early Sunday actually), and I still haven't 
received anything from you. To be blunt:

YOU ARE BLOCKING A SECURITY RELEASE

This is really unprofressional. Please act responsibly, and put on hold 
some of the trivialities you've been working on for the past few 
weeks/months for the few minutes it will take to send me patches. And 
please don't give me any of that shit again about your SSH access.

Damien

[1] 
http://www.mantisbt.org/irclogs/mantisbt/2014/mantisbt.2014-10-15.log.html

------------------------------------------------------------------------------
Comprehensive Server Monitoring with Site24x7.
Monitor 10 servers for $9/Month.
Get alerted through email, SMS, voice calls or mobile push notifications.
Take corrective actions from your mobile device.
http://p.sf.net/sfu/Zoho
Louis BAYLE | 18 Oct 23:43 2014
Picon

Mantis not working behind a reverse-proxy

Is there a 'good patch' to fix this realy problematic bug in Mantis ?

The patch I applied to our installation does not work very well.
IMHO this is realy a critical bug.
------------------------------------------------------------------------------
Comprehensive Server Monitoring with Site24x7.
Monitor 10 servers for $9/Month.
Get alerted through email, SMS, voice calls or mobile push notifications.
Take corrective actions from your mobile device.
http://p.sf.net/sfu/Zoho
_______________________________________________
mantisbt-dev mailing list
mantisbt-dev@...
https://lists.sourceforge.net/lists/listinfo/mantisbt-dev
P Richards | 16 Oct 23:23 2014

CodevTT

HI Louis (as this is aimed mainly at you ;))

 

I’m just taking some time to look at your application around mantis (I think it’s probably fair to say application rather than plugin in this case)

 

Whilst I could easily switch off at the site of mysql_query within the plugin ;)

 

I notice you have a comment on your plugin event:

 

# check BEFORE DELETE (but unfortunately after the 'are you sure?' page...)

'EVENT_BUG_DELETED' => 'checkTimetracks',

 

This strikes me as you are having to work around an issue with the placements of hooks within Mantis – would you care to elaborate on the issue? – as this might be a case of somewhere it would make sense for you to add an additional hook or better placed hook.

 

Paul

 

 

 

------------------------------------------------------------------------------
Comprehensive Server Monitoring with Site24x7.
Monitor 10 servers for $9/Month.
Get alerted through email, SMS, voice calls or mobile push notifications.
Take corrective actions from your mobile device.
http://p.sf.net/sfu/Zoho
_______________________________________________
mantisbt-dev mailing list
mantisbt-dev@...
https://lists.sourceforge.net/lists/listinfo/mantisbt-dev
Louis BAYLE | 16 Oct 10:27 2014
Picon

EVENT_MANAGE_PROJECT_DELETE

Hi,
I have not found any EVENT_MANAGE_PROJECT_DELETE in core/events_inc.php.
Do you know if someone has already worked on this ?

If not, I'll try to do it. Is there any chance that this would be integrated in future mantis 1.2.x releases or are you not interested in this event ?

Is there any documentation on adding events in mantis ?

Best regards,
------------------------------------------------------------------------------
Comprehensive Server Monitoring with Site24x7.
Monitor 10 servers for $9/Month.
Get alerted through email, SMS, voice calls or mobile push notifications.
Take corrective actions from your mobile device.
http://p.sf.net/sfu/Zoho
_______________________________________________
mantisbt-dev mailing list
mantisbt-dev@...
https://lists.sourceforge.net/lists/listinfo/mantisbt-dev
P Richards | 8 Oct 01:33 2014

mantisbt.org web server performance

Webserver is taking a long time to load some pages:

 

Time: 9.7297 seconds.

 

 

------------------------------------------------------------------------------
Meet PCI DSS 3.0 Compliance Requirements with EventLog Analyzer
Achieve PCI DSS 3.0 Compliant Status with Out-of-the-box PCI DSS Reports
Are you Audit-Ready for PCI DSS 3.0 Compliance? Download White paper
Comply to PCI DSS 3.0 Requirement 10 and 11.5 with EventLog Analyzer
http://pubads.g.doubleclick.net/gampad/clk?id=154622311&iu=/4140/ostg.clktrk
_______________________________________________
mantisbt-dev mailing list
mantisbt-dev@...
https://lists.sourceforge.net/lists/listinfo/mantisbt-dev
P Richards | 1 Oct 19:09 2014

MantisBT Logo

When we originally changed the logo for Mantis in 2012, my understanding was that we would be putting a copy of the logo in VECTOR format for people to use in the source repository.

 

Following damien’s comment <at> https://github.com/mantisbt/mantisbt/pull/328#issuecomment-57475687 , I’m concerned whether as a team we now own and have royalty-free access to our current logo.

 

As an open source project that can be developed by different people and other time the team has and I’m sure will continue to change, we should ensure that our logo is in the public domain.

 

When we originally discussed the logo before <at> http://www.mantisbt.org/bugs/view.php?id=7994 – we had a number of offers from users to design for free a logo in the public domain and to give it to us in vector format.

 

So given damien’s comment back to me, and roland’s request back in February 2012 below about having the logo available so we can freely modify it.

 

I have a simple question:

 

Is the current logo a free logo that can be made available in Vector format? If not, I suggest we reopen issue 7994 and look into designing a logo that is completely free for our use.

 

I work in a school and have some students and work colleagues that would happily design a logo in vector format that would be royalty free and in the public domain for our use if for some reason the existing logo cannot be made available. In an ideal world, I’d hope that it is the case that the logo we picked in 2012 was indeed a publicly available logo that was free for our use for any purposes. At least, indeed this was what I was led to believe when Victor originally emailed about the new logo and stated: “In the issue you will find the old proposals, the new proposals, the guidelines that I wrote about what we want,” referring to the guidelines that stated:

 

- The logo should be available in image and vector formats (e.g. PNG, Adobe Photoshop and Adobe Illustrator)”

 

Victor: could you send a copy of the logo in Vector Format to the mailing list, as per the original intention ?

 

Thanks

Paul

 

 

From: Roland Becker [mailto:roland-zVvRqJHQDrk@public.gmane.org]
Sent: 09 February 2012 09:32
To: developer discussions
Subject: Re: [mantisbt-dev] Misleading descriptions of MantisBT forks at github

 

> 1. Logo in Vector Format - I'll have the logo in Adobe Illustrator format as well as PNG format.

Please also SVG , so we could use open source solutions like Inkscape to modify whatever we want.
At least it will show us whether Illustrator SVG export and Inkscape's PNG rendering will produce the same result.
If the Inkscape output is different (I don't expect a 100% bit identical output), but what you can see is ok, we should use this one.



------------------------------------------------------------------------------
Meet PCI DSS 3.0 Compliance Requirements with EventLog Analyzer
Achieve PCI DSS 3.0 Compliant Status with Out-of-the-box PCI DSS Reports
Are you Audit-Ready for PCI DSS 3.0 Compliance? Download White paper
Comply to PCI DSS 3.0 Requirement 10 and 11.5 with EventLog Analyzer
http://pubads.g.doubleclick.net/gampad/clk?id=154622311&iu=/4140/ostg.clktrk
_______________________________________________
mantisbt-dev mailing list
mantisbt-dev@...
https://lists.sourceforge.net/lists/listinfo/mantisbt-dev
Roland Becker | 29 Sep 22:13 2014
Picon

No updates from translatewiki

Is there a problem with translatewiki and/or siebrand?

No feedback since 5 Seo
https://www.mantisbt.org/bugs/view.php?id=17628#c41176
Last activity on 26 Aug
https://github.com/siebrand?tab=activity
Last commit for mantisBT on 6 Aug
https://github.com/mantisbt/mantisbt/commit/97605c542e0c6df631b0880c6052fb13510e2cee

------------------------------------------------------------------------------
Slashdot TV.  Videos for Nerds.  Stuff that Matters.
http://pubads.g.doubleclick.net/gampad/clk?id=160591471&iu=/4140/ostg.clktrk

Gmane