Ops One AG platform status and maintenance announcements. Times are indicated in local Swiss time. https://opsone.ch/.
All systems are operational
Scheduled Maintenance
Managed Server 10: OpenSSH Security Configuration

For several years, we have followed the OpenSSH recommendations published by Mozilla to ensure a secure and reliable SSH environment. As Mozilla has discontinued updates to these guidelines, we have decided to align our configuration with the latest recommendations from OpenSSH and Debian. This change brings our setup in line with current best practices and ensures continued security and compatibility. The update affects the Ciphers, MACs, and KexAlgorithms used in our OpenSSH server configuration.

We do not expect any issues for our customers. However, if you experience any unexpected behavior, please let us know. We are happy to adjust the configuration for individual servers as needed.

Start maintenance window: 24/11/2025 09:00
Stop maintenance window: 24/11/2025 12:00

Update Collabora 25.04.7.2.1

We will update Collabora to version 25.04.7.2.1.

Reference: #1599

Start maintenance window: 24/11/2025 23:00
Stop maintenance window: 25/11/2025 02:00

LimeSurvey 6.15.23

We will update LimeSurvey to version 6.15.23.

Reference: #67

Start maintenance window: 24/11/2025 23:00
Stop maintenance window: 25/11/2025 02:00

Past Incidents

Tuesday 18th November 2025

No incidents reported

Monday 17th November 2025

Gotenberg 8.25.0, scheduled 21 hours ago

We will update Gotenberg to version 8.25.0.

Reference: #25

Start maintenance window: 17/11/2025 23:00
Stop maintenance window: 18/11/2025 02:00

Managed Server 8: Debian Updates, scheduled 21 hours ago

We will update the following packages to the latest version.

  • bind9-dnsutils/oldoldstable-security 1:9.16.50-1~deb11u4 amd64 [upgradable from: 1:9.16.50-1~deb11u3]
  • bind9-host/oldoldstable-security 1:9.16.50-1~deb11u4 amd64 [upgradable from: 1:9.16.50-1~deb11u3]
  • bind9-libs/oldoldstable-security 1:9.16.50-1~deb11u4 amd64 [upgradable from: 1:9.16.50-1~deb11u3]
  • blackfire/any 2:2.29.4 amd64 [upgradable from: 2:2.29.3]
  • dnsutils/oldoldstable-security 1:9.16.50-1~deb11u4 all [upgradable from: 1:9.16.50-1~deb11u3]
  • libarchive13/oldoldstable-security 3.4.3-2+deb11u3 amd64 [upgradable from: 3.4.3-2+deb11u2]
  • libunbound8/oldoldstable-security 1.13.1-1+deb11u6 amd64 [upgradable from: 1.13.1-1+deb11u5]
  • unbound-anchor/oldoldstable-security 1.13.1-1+deb11u6 amd64 [upgradable from: 1.13.1-1+deb11u5]
  • unbound/oldoldstable-security 1.13.1-1+deb11u6 amd64 [upgradable from: 1.13.1-1+deb11u5]

Start maintenance window: 17/11/2025 23:00
Stop maintenance window: 18/11/2025 24:00

Managed Server 9: Debian Updates, scheduled 21 hours ago

We will update the following packages to the latest version.

  • linux-compiler-gcc-12-x86/oldstable-security 6.1.158-1 amd64 [upgradable from: 6.1.153-1]
  • linux-headers-amd64/oldstable-security 6.1.158-1 amd64 [upgradable from: 6.1.153-1]
  • linux-image-amd64/oldstable-security 6.1.158-1 amd64 [upgradable from: 6.1.153-1]
  • linux-kbuild-6.1/oldstable-security 6.1.158-1 amd64 [upgradable from: 6.1.153-1]
  • linux-libc-dev/oldstable-security 6.1.158-1 amd64 [upgradable from: 6.1.153-1]
  • lxd-client/oldstable-security 5.0.2-5+deb12u2 amd64 [upgradable from: 5.0.2-5+deb12u1]
  • lxd/oldstable-security 5.0.2-5+deb12u2 amd64 [upgradable from: 5.0.2-5+deb12u1]

Start maintenance window: 17/11/2025 23:00
Stop maintenance window: 18/11/2025 24:00

Managed Server 10: Debian Updates, scheduled 21 hours ago

We will update the following packages to the latest version.

  • base-files/stable 13.8+deb13u2 amd64 [upgradable from: 13.8+deb13u1]
  • console-setup-linux/stable 1.242~deb13u1 all [upgradable from: 1.240]
  • console-setup/stable 1.242~deb13u1 all [upgradable from: 1.240]
  • curl/stable 8.14.1-2+deb13u2 amd64 [upgradable from: 8.14.1-2]
  • distro-info-data/stable 0.66+deb13u1 all [upgradable from: 0.66]
  • imagemagick-7-common/stable 8:7.1.1.43+dfsg1-1+deb13u3 all [upgradable from: 8:7.1.1.43+dfsg1-1+deb13u2]
  • keyboard-configuration/stable 1.242~deb13u1 all [upgradable from: 1.240]
  • libapache2-mod-security2/stable 2.9.11-1+deb13u1 amd64 [upgradable from: 2.9.11-1]
  • libcommons-lang3-java/stable 3.17.0-1+deb13u1 all [upgradable from: 3.17.0-1]
  • libcommons-lang-java/stable 2.6-10+deb13u1 all [upgradable from: 2.6-10]
  • libcups2t64/stable 2.4.10-3+deb13u2 amd64 [upgradable from: 2.4.10-3+deb13u1]
  • libcurl3t64-gnutls/stable 8.14.1-2+deb13u2 amd64 [upgradable from: 8.14.1-2]
  • libcurl4-openssl-dev/stable 8.14.1-2+deb13u2 amd64 [upgradable from: 8.14.1-2]
  • libcurl4t64/stable 8.14.1-2+deb13u2 amd64 [upgradable from: 8.14.1-2]
  • libldb2/stable 2:2.11.0+samba4.22.6+dfsg-0+deb13u1 amd64 [upgradable from: 2:2.11.0+samba4.22.4+dfsg-1~deb13u1]
  • libmagickcore-7.q16-10/stable 8:7.1.1.43+dfsg1-1+deb13u3 amd64 [upgradable from: 8:7.1.1.43+dfsg1-1+deb13u2]
  • libmagickwand-7.q16-10/stable 8:7.1.1.43+dfsg1-1+deb13u3 amd64 [upgradable from: 8:7.1.1.43+dfsg1-1+deb13u2]
  • libnss-systemd/stable 257.9-1~deb13u1 amd64 [upgradable from: 257.8-1~deb13u2]
  • libpam-systemd/stable 257.9-1~deb13u1 amd64 [upgradable from: 257.8-1~deb13u2]
  • libpam-wtmpdb/stable 0.73.0-3+deb13u1 amd64 [upgradable from: 0.73.0-3]
  • libsmbclient0/stable 2:4.22.6+dfsg-0+deb13u1 amd64 [upgradable from: 2:4.22.4+dfsg-1~deb13u1]
  • libssh-4/stable 0.11.2-1+deb13u1 amd64 [upgradable from: 0.11.2-1]
  • libssl3t64/stable 3.5.4-1~deb13u1 amd64 [upgradable from: 3.5.1-1+deb13u1]
  • libssl-dev/stable 3.5.4-1~deb13u1 amd64 [upgradable from: 3.5.1-1+deb13u1]
  • libsystemd0/stable 257.9-1~deb13u1 amd64 [upgradable from: 257.8-1~deb13u2]
  • libsystemd-shared/stable 257.9-1~deb13u1 amd64 [upgradable from: 257.8-1~deb13u2]
  • libtalloc2/stable 2:2.4.3+samba4.22.6+dfsg-0+deb13u1 amd64 [upgradable from: 2:2.4.3+samba4.22.4+dfsg-1~deb13u1]
  • libtdb1/stable 2:1.4.13+samba4.22.6+dfsg-0+deb13u1 amd64 [upgradable from: 2:1.4.13+samba4.22.4+dfsg-1~deb13u1]
  • libtevent0t64/stable 2:0.16.2+samba4.22.6+dfsg-0+deb13u1 amd64 [upgradable from: 2:0.16.2+samba4.22.4+dfsg-1~deb13u1]
  • libudev1/stable 257.9-1~deb13u1 amd64 [upgradable from: 257.8-1~deb13u2]
  • libwbclient0/stable 2:4.22.6+dfsg-0+deb13u1 amd64 [upgradable from: 2:4.22.4+dfsg-1~deb13u1]
  • libwtmpdb0/stable 0.73.0-3+deb13u1 amd64 [upgradable from: 0.73.0-3]
  • libxml2/stable 2.12.7+dfsg+really2.9.14-2.1+deb13u2 amd64 [upgradable from: 2.12.7+dfsg+really2.9.14-2.1+deb13u1]
  • linux-image-amd64/stable 6.12.57-1 amd64 [upgradable from: 6.12.48-1]
  • linux-libc-dev/stable 6.12.57-1 all [upgradable from: 6.12.48-1]
  • lnav/stable 0.12.4-1+deb13u1 amd64 [upgradable from: 0.12.4-1]
  • monitoring-plugins-basic/stable 2.4.0-3+deb13u1 amd64 [upgradable from: 2.4.0-3]
  • monitoring-plugins-common/stable 2.4.0-3+deb13u1 amd64 [upgradable from: 2.4.0-3]
  • monitoring-plugins/stable 2.4.0-3+deb13u1 all [upgradable from: 2.4.0-3]
  • monitoring-plugins-standard/stable 2.4.0-3+deb13u1 amd64 [upgradable from: 2.4.0-3]
  • openssl-provider-legacy/stable 3.5.4-1~deb13u1 amd64 [upgradable from: 3.5.1-1+deb13u1]
  • openssl/stable 3.5.4-1~deb13u1 amd64 [upgradable from: 3.5.1-1+deb13u1]
  • postfix/stable 3.10.5-1~deb13u1 amd64 [upgradable from: 3.10.4-1~deb13u1]
  • proftpd-core/stable 1.3.8.c+dfsg-4+deb13u1 amd64 [upgradable from: 1.3.8.c+dfsg-4]
  • proftpd-mod-crypto/stable 1.3.8.c+dfsg-4+deb13u1 amd64 [upgradable from: 1.3.8.c+dfsg-4]
  • proftpd-mod-wrap/stable 1.3.8.c+dfsg-4+deb13u1 amd64 [upgradable from: 1.3.8.c+dfsg-4]
  • qemu-guest-agent/stable 1:10.0.6+ds-0+deb13u2 amd64 [upgradable from: 1:10.0.3+ds-0+deb13u1]
  • ruby-sys-filesystem/stable 1.4.4-1+deb13u1 all [upgradable from: 1.4.4-1]
  • samba-libs/stable 2:4.22.6+dfsg-0+deb13u1 amd64 [upgradable from: 2:4.22.4+dfsg-1~deb13u1]
  • systemd/stable 257.9-1~deb13u1 amd64 [upgradable from: 257.8-1~deb13u2]
  • systemd-sysv/stable 257.9-1~deb13u1 amd64 [upgradable from: 257.8-1~deb13u2]
  • systemd-timesyncd/stable 257.9-1~deb13u1 amd64 [upgradable from: 257.8-1~deb13u2]
  • udev/stable 257.9-1~deb13u1 amd64 [upgradable from: 257.8-1~deb13u2]
  • wtmpdb/stable 0.73.0-3+deb13u1 amd64 [upgradable from: 0.73.0-3]
  • x11-common/stable 1:7.7+24+deb13u1 all [upgradable from: 1:7.7+24]

Start maintenance window: 17/11/2025 23:00
Stop maintenance window: 18/11/2025 24:00

Keycloak 26.4.5, scheduled 21 hours ago

We will update Keycloak to version 26.4.5.

Start maintenance window: 17/11/2025 23:00
Stop maintenance window: 18/11/2025 02:00

GitLab Runner Configuration Update, scheduled 21 hours ago

We will update our GitLab Runner configuration.

Reference: oe/saas/gitlab-runner#76

Start maintenance window: 17/11/2025 23:00
Stop maintenance window: 18/11/2025 02:00

Kibana 8.19.7, scheduled 21 hours ago

We will update Kibana to version 8.19.7.

Start maintenance window: 17/11/2025 23:00
Stop maintenance window: 18/11/2025 02:00

Elasticsearch 8.19.7, scheduled 21 hours ago

We will update Elasticsearch to version 8.19.7.

Start maintenance window: 17/11/2025 23:00
Stop maintenance window: 18/11/2025 02:00

Cockpit Maintenance: Login provider migration, scheduled 1 day ago

On Monday, November 17, 2025, between 6:00 p.m. and 10:00 p.m., we will be replacing the existing user management system.

The cockpit will not be available during this time. This is a complete change of the login infrastructure. For this reason, the existing password and two-factor authentication (TOTP, passkey) cannot be transferred, and a one-time password reset will be necessary.

All cockpit users were also informed by e-mail.

FAQ / Frequently asked questions

Q: When will the changeover take place?
A: On Monday, November 17, 2025, between 6:00 p.m. and 10:00 p.m.

Q: Can I continue to use the cockpit during the changeover?
A: No, the cockpit will not be available for the duration of the maintenance window.

Q: Do I need to do anything before November 17, 2025?
A: No, you do not need to do anything in advance.

Q: Do I need to do anything after November 17, 2025?
A: Yes, reset your password and 2FA the next time you log in.

Q: Can I set the same password again?
A: Yes, you are free to do so.

Q: Will the existing 2FA remain in place?
A: No, 2FA must also be reset.

Start maintenance window: 17/11/2025 18:00
Stop maintenance window: 17/11/2025 22:00

Matomo 5.2.2, scheduled 1 day ago

We will update Matomo to version 5.2.2.

Start maintenance window: 17/11/2025 14:00
Stop maintenance window: 17/11/2025 17:00

Sunday 16th November 2025

No incidents reported

Saturday 15th November 2025

No incidents reported

Friday 14th November 2025

No incidents reported

Thursday 13th November 2025

Managed Server 9: Debian Updates, scheduled 4 days ago

We will update the following packages to the latest version.

  • chromium-common/oldstable-security 142.0.7444.162-1~deb12u1 amd64 [upgradable from: 142.0.7444.134-1~deb12u1]
  • chromium/oldstable-security 142.0.7444.162-1~deb12u1 amd64 [upgradable from: 142.0.7444.134-1~deb12u1]
  • chromium-sandbox/oldstable-security 142.0.7444.162-1~deb12u1 amd64 [upgradable from: 142.0.7444.134-1~deb12u1]

Start maintenance window: 13/11/2025 23:00
Stop maintenance window: 14/11/2025 02:00

GitLab 18.4.4, scheduled 4 days ago

We will update GitLab to version 18.4.4.

Start maintenance window: 13/11/2025 23:00
Stop maintenance window: 14/11/2025 02:00

Wednesday 12th November 2025

No incidents reported