Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Pending Tasks for Production #49

Open
17 of 23 tasks
villanueval opened this issue Sep 21, 2023 · 5 comments
Open
17 of 23 tasks

Pending Tasks for Production #49

villanueval opened this issue Sep 21, 2023 · 5 comments
Assignees
@villanueval
Labels
accessibility Issues to meet accessibility requirements priority
Milestone
Production

Comments

@villanueval
Copy link
Member

villanueval commented Sep 21, 2023
edited

To do in DEV:

  • Remediate issues detected by accessibility scan (Accessibility Scan #43)
  • Remediate issues detected by device vulnerability scan (Nexpose)
  • Remediate issues detected by web vulnerability scan (Qualys; Request RITM0135889)
  • Update Tech Store

Setup Production:

  • Deliver high-level diagram
  • Setup Archer package (Request RITM0135942)
  • Get and mount NFS share for image previews
  • Request VM's
  • Access VM's
  • Request prod db
  • Setup httpd, Python env, load balancer
  • Install and run Osprey using PROD db
  • Setup TLS 1.2 Cert

Finishing PROD of Internal Instance:

  • Add to Web Site Listing table
  • Setup DNS for URL

Finishing External (Public) Instance:

  • Use stats of Internal to plan and tweak config
  • Request VM's
  • Access VM's
  • Setup httpd, Python env, load balancer
  • Install and run Osprey
  • Setup TLS 1.2 Cert
  • Add to Web Site Listing table
  • Setup DNS for URL
@villanueval villanueval self-assigned this Sep 21, 2023
@villanueval
Copy link
Member Author

Updated since Archer is a binder of info, not a security scan.

@villanueval
Copy link
Member Author

Had to create new VM requests, one per server. Fortunately, it was already approved by the CCB.

@villanueval
Copy link
Member Author

villanueval commented Sep 26, 2023
edited

Qualys found a level 2 issue:

Fixed in dfcffe2

villanueval added a commit that referenced this issue Sep 28, 2023
@villanueval
Improving links, securing cookie #49
dfcffe2
@villanueval
Copy link
Member Author

Vuln Scan found URL issues, I think mostly caused by the way Flask is handling arguments.

@villanueval villanueval added the accessibility Issues to meet accessibility requirements label Oct 2, 2023
@villanueval
Copy link
Member Author

No ETA provided yet for Archer package.

@villanueval villanueval added this to the Production milestone Nov 9, 2023
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@villanueval villanueval

Labels
accessibility Issues to meet accessibility requirements priority
Projects
None yet
Milestone
Production
Development

No branches or pull requests
1 participant
@villanueval