Opened 5 years ago

Last modified 5 months ago

#12802 assigned enhancement

BridgeDB needs Nagios checks for the Email Distributor

Reported by: isis Owned by:
Priority: High Milestone:
Component: Circumvention/BridgeDB Version:
Severity: Normal Keywords: bridgedb-email, nagios, anti-censorship-roadmap-october
Cc: isis, dawuud, sysrqb, Lunar, gaba Actual Points:
Parent ID: #30152 Points: 5
Reviewer: Sponsor: Sponsor30-must

Description

BridgeDB needs Nagios checks that the Email Distributor is working. The best way to do this would be to send an email to bridges@… which say "get help".

Child Tickets

Change History (16)

comment:1 Changed 5 years ago by isis

Cc: Lunar added

comment:2 Changed 5 years ago by dawuud

I think what is needed here is a passive style service check.
This check is runs on it's own schedule via cron or something; it sends e-mail to the Email Distributor
and then periodically checks it's e-mail inbox via IMAP...
If we don't receive an email with the heuristics we are looking for in X minutes then send an alert to the nagios server.

comment:3 Changed 5 years ago by isis

Status: newaccepted

I marked #10916 as a duplicate of this ticket. The pertinent points made there were:

Replying to sysrqb:

After chatting with lunar about it we began discussing additional monitoring for the email distributor. The check_email_delivery nagios plugin was suggested.


and

Replying to isis:

Replying to sysrqb:

I also wondered if we should consider whitelisting tp.o addresses for use by the monitoring system (among other reasons).

We can't safely whitelist torproject.org email addresses because the torproject.org mailserver doesn't do DKIM. Because of this, I started adding a (email_address, gpg_fingerprint) whitelisting feature, requiring that such whitelisted addresses be signed with a particular key. (See #9332 and note that this feature would present a maintainability nightmare.)


comment:4 Changed 2 years ago by teor

Severity: Normal

Set all open tickets without a severity to "Normal"

comment:5 Changed 13 months ago by gaba

Owner: changed from isis to hiro
Status: acceptedassigned

comment:6 Changed 11 months ago by gaba

Cc: gaba added

comment:7 Changed 11 months ago by gaba

Sponsor: Sponsor19

comment:8 Changed 11 months ago by gaba

Points: 4

comment:9 Changed 11 months ago by gaba

Points: 45

comment:10 Changed 10 months ago by dgoulet

Owner: changed from hiro to dgoulet

comment:11 Changed 8 months ago by phw

Parent ID: #30152

comment:12 Changed 7 months ago by phw

For what it's worth, we're now monitoring BridgeDB's SMTP port with sysmon. We will get notified if the SMTP server disappears but we are unable to detect more subtle, application-layer breakage.

comment:13 Changed 6 months ago by gaba

Keywords: ex-sponsor-19 added

Adding the keyword to mark everything that didn't fit into the time for sponsor 19.

comment:14 Changed 6 months ago by phw

Sponsor: Sponsor19Sponsor30-must

Moving from Sponsor 19 to Sponsor 30.

comment:15 Changed 6 months ago by gaba

Owner: dgoulet deleted

dgoulet will assign himself to the ones he is working on right now.

comment:16 Changed 5 months ago by gaba

Keywords: anti-censorship-roadmap-october added; ex-sponsor-19 removed
Note: See TracTickets for help on using tickets.