Secure.wikimedia.org

From Wikitech
Revision as of 20:21, 16 September 2008 by JeLuF (Talk | contribs)

Jump to: navigation, search

Two services are serviced at this address:

  • SSL secured access to WMF projects like wikipedia, wiktionary, etc
  • OTRS

Wiki proxying

bart runs Apache 2.2, with an SSL interface for secure.wikimedia.org. Hits to this interface are proxied to the internal load balancer for our Apaches, on apache.pmtpa.wmnet, which serve the backend requests just like unencrypted hits.

Configuration

Running a custom-compiled Apache 2.2 in /usr/local/apache22

  • OTRS runs directly on bart.
  • Wikis are proxied.
  • Additionally, nagios, mail, noc, and planet may still be run out of this server on the port 80 o_O

Relevant config files...

  • wikimedia-ssl.conf -> the main SSL and proxy defs
  • ssl-redir.conf -> redirects for port 80 access to secure.wikimedia.org, ticket.wikimedia.org
  • mail.conf -> ??
  • nagios.conf ??
  • noc.conf ??
  • planet.conf -> planet.wikimedia.org
  • wikimedia-ssl-backend.conf on all apaches

Proxy defs: 

<Proxy *>
    Allow from all
</Proxy>
ProxyRequests Off
ProxyPreserveHost On
ProxyPass /otrs !
ProxyPass /otrs-2.1.3 !
ProxyPass /otrs-web !
ProxyPass / http://apaches.pmtpa.wmnet/
ProxyVia On

Root page

The root page https://secure.wikimedia.org/ can be edited on meta. mod_rewrite and extract2.php are being used to display that page.

Retrieved from "http://wikitech-old.wikimedia.org/index.php?title=Secure.wikimedia.org&oldid=16184"
Personal tools
Namespaces

Variants
Actions
Navigation
Ops documentation
Wiki
Toolbox