[18:32:44] <yurik>	 hi, could someone remind me the labs site that has all the perf counters? thx!
[18:33:09] <Reedy>	 perf counters?
[18:33:13] <Reedy>	 Labs ganglia?
[18:33:30] <yurik>	 Reedy: possibly - i saw it had tons of graphs
[18:34:16] <Reedy>	 http://ganglia.wmflabs.org/
[18:35:02] <yurik>	 and it uses labs account, right?
[18:35:29] <Reedy>	 don't think you need to login
[18:35:43] <yurik>	 oh, i tried ganglia.wikimedia.org, guess its different
[18:35:49] <yurik>	 thanks Reedy !
[18:36:33] <Reedy>	 yeah, there's some known security issues on the wikimedia one
[18:36:37] <Reedy>	 so it's locked down for now
[18:37:15] <Krenair>	 which don't apply to the labs one?
[18:38:04] <Reedy>	 No idea
[18:38:09] <Reedy>	 But they're completely different versions
[18:38:20] <Reedy>	 3.3.5 on labs, 3.5.4 on production
[18:38:47] <yurik>	 Reedy: hmm, it looks similar, but i think i saw a different one - where you could configure every perf counter to see on the main sites
[18:38:49] <ori-l>	 I think they're XSS vulnerabilities, so it's significant ganglia.wmflabs.org is on wmflabs.org TLD and ganglia.wikimedia.org is on wikimedia.org TLD.
[18:39:00] <yurik>	 like API is all 0s here
[18:39:09] <Reedy>	 Could just be broken
[18:39:29] <yurik>	 doubt it - it had a long list of all available perf counters that are defined by various modules
[18:39:44] <ori-l>	 binasher's graphite thingy? Where was that again..
[18:39:45] <yurik>	 and here its just various WM services, not software components
[18:40:11] <yurik>	 http://graphite.wikimedia.org/
[18:40:39] <yurik>	 that's the one! thanks ori!!!
[18:40:53] <Reedy>	 That's not a labs site ;)
[18:40:57] <yurik>	 and it also uses labs log in
[18:41:11] <yurik>	 is that NTLM security it uses?
[18:41:19] <yurik>	 the browser authentication pop-up
[18:41:58] <ori-l>	 I don't know what NTLM is, but "labs log in" (on labs specifically and elsewhere) is LDAP
[18:42:15] <Reedy>	 Would seem strange to use Microsoft protocols
[18:42:43] <ori-l>	 We use AJAX :)
[18:43:13] <ori-l>	 (AJAX being an example of a Microsoft protocol, I mean..)
[18:43:17] <yurik>	 i don't remember the proper name for this auth - but its browser supported, not html
[18:44:16] <yurik>	 yeah! ajax rules! cudos microsoft!  funny - with IE they tried to stall web development as an OS as much as possible, and yet they gave everyone the tool to kill it
[18:45:25] <Reedy>	 ajax isn't exactly a protocol
[18:45:53] <yurik>	 api :)
[19:28:22] <yurik>	 some "smart" developers are using API through an XML-FM method (html formatted xml), about 250 requests per second...
[19:28:30] <yurik>	 any ideas how we could track them?