One option would be to create a define to use as a wrapper around "package". Something like this:
define package::special($ensure) { package { $name: ensure => $ensure, } exec { "rkhunter-$name": command => "rkhunter --propupd", refreshonly => true subscribe => Package[$name], } } Then you'd just use package::special, instead of package by itself: package::special { "openssh": ensure => latest, } On Sep 29, 12:22 pm, GeekBiker <wentworth.r...@gmail.com> wrote: > I need to exec a program if ANY packages have been modified (added, > removed, updated, etc). I tried subscribing to Package with a > wildcard, but that isn't supported. > > Is there any way to trigger an exec if there were any packages changes > were made or if yum was executed? > > Specifically, I need to execute "rkhunter --propupd" so we will stop > getting false alarms whenever we update a bunch of systems. -- You received this message because you are subscribed to the Google Groups "Puppet Users" group. To post to this group, send email to puppet-users@googlegroups.com. To unsubscribe from this group, send email to puppet-users+unsubscr...@googlegroups.com. For more options, visit this group at http://groups.google.com/group/puppet-users?hl=en.