User Tools

Site Tools


BLUG Website

This page lists the daily routines for stuffs who maintain the websites and servers of BLUG.

  • Fix known vulnerabilities.
  • Recover and prevent any services from crashing.
  • Regenerate certificates every 90 days.
  • Mitigate ongoing DoS attacks and spamming.
  • Harden the system with better configuration and use cryptography properly.
  • Improve performance.



  • Migrate old wiki data
  • Migrate old website data
  • Upload some old photos


  • Content-Security-Policy
  • [✓ tonghuix, 2017-01-22]The layout of the frontpage still looks crappy...
  • [✓ shenmedouxing, 2016-10-26]WordPress's performance was terrible, one reason is the low-powered server, another main factor is the plugin we use, as the whole framework of the mainpage, is really slow.
    • [✓ shenmedouxing, 2016-10-26]PHP 7 was tested to improve the performance, but soon discovered some incompatibilities with plugins, need to port them to PHP 7. PHP 7 has been stopped temporarily.
    • [✓ shenmedouxing, 2016-10-26]Partially fixed a performance issue that requests tinyURL every time loading the mainpage.
  • [✓ tonghuix, 2017-01-22]The frontpage contains unsafe JavaScript usage, and sometimes also mixed content.
  • [✓ shenmedouxing, 2016-10-27]A domain replacement is scheduled, part of the reasons is resolve the DoS attack.
  • FrontPage needs:
    • [✓ tonghuix, 2017-01-22]Light weight
    • [✓ tonghuix, 2017-01-22]Security and LibreJS compatible
    • [✓ tonghuix, 2017-01-22]Suite for event calender
    • [✓ tonghuix, 2017-01-22]Mobile-friendly
    • [✓ tonghuix, 2017-01-22]Beautiful
    • [✓ tonghuix, 2017-01-22]Easy configuring


  • [Mitigated] [✓ shenmedouxing, 2016-10-26]Currently an ongoing DoS attack is still active. The attack source is a botnet that publishes large amount of spams to the wiki. As a countermeasure, active responses, such as IP-blacklist and URL-blacklist are used, public registration of the wiki is turned off.
    • [✓ shenmedouxing, 2016-10-26]We may use an anti-spam plugin to block bots from registering, and make the public registering open again.
  • [✓ tonghuix, 2017-04-19]Still lacks useful information, such as member lists, hardware recommendation, and event records and related introductions.
  • Monthly backup script
  • Promote wiki, let more people join.


  • [✓ shenmedouxing, 2016-10-26]Set a public conference room
  • [✓ shenmedouxing, 2016-10-26]sync the conference room with IRC channel
  • [✓ tonghuix, 2017-01-22]Support OTR Encryption


  • Sync IRC with other IM, such us Telegram, Tox, Matrix...
projects/website.txt · Last modified: 2017/08/10 11:13 by BLUG Admin