This page lists the daily routines for stuffs who maintain the websites and servers of BLUG.

• Fix known vulnerabilities.
• Recover and prevent any services from crashing.
• Regenerate certificates every 90 days.
• Mitigate ongoing DoS attacks and spamming.
• Harden the system with better configuration and use cryptography properly.
• Improve performance.

• Migrate old wiki data
• Migrate old website data
• Upload some old photos

• Content-Security-Policy
• [✓ tonghuix, 2017-01-22]The layout of the frontpage still looks crappy...
• [✓ shenmedouxing, 2016-10-26]WordPress's performance was terrible, one reason is the low-powered server, another main factor is the plugin we use, as the whole framework of the mainpage, is really slow.
  • [✓ shenmedouxing, 2016-10-26]PHP 7 was tested to improve the performance, but soon discovered some incompatibilities with plugins, need to port them to PHP 7. PHP 7 has been stopped temporarily.
  • [✓ shenmedouxing, 2016-10-26]Partially fixed a performance issue that requests tinyURL every time loading the mainpage.
• [✓ tonghuix, 2017-01-22]The frontpage contains unsafe JavaScript usage, and sometimes also mixed content.
• [✓ shenmedouxing, 2016-10-27]A domain replacement is scheduled, part of the reasons is resolve the DoS attack.
• FrontPage needs:
  • [✓ tonghuix, 2017-01-22]Light weight
  • [✓ tonghuix, 2017-01-22]Security and LibreJS compatible
  • [✓ tonghuix, 2017-01-22]Suite for event calender
  • [✓ tonghuix, 2017-01-22]Mobile-friendly
  • [✓ tonghuix, 2017-01-22]Beautiful
  • [✓ tonghuix, 2017-01-22]Easy configuring

• [Mitigated] [✓ shenmedouxing, 2016-10-26]Currently an ongoing DoS attack is still active. The attack source is a botnet that publishes large amount of spams to the wiki. As a countermeasure, active responses, such as IP-blacklist and URL-blacklist are used, public registration of the wiki is turned off.
  • [✓ shenmedouxing, 2016-10-26]We may use an anti-spam plugin to block bots from registering, and make the public registering open again.
• [✓ tonghuix, 2017-04-19]Still lacks useful information, such as member lists, hardware recommendation, and event records and related introductions.
• Monthly backup script
• Promote wiki, let more people join.

• [✓ shenmedouxing, 2016-10-26]Set a public conference room
• [✓ shenmedouxing, 2016-10-26]sync the conference room with IRC channel
• [✓ tonghuix, 2017-01-22]Support OTR Encryption

• Sync IRC with other IM, such us Telegram, Tox, Matrix...