the version number is 2.1.21 not 2.1.12. this was a typo. APologies for the
confusion.
Please let me know on the compatibility.
Thanks..
On Thu, Mar 10, 2011 at 10:50 PM, Rakesh Rajasekharan <
rakesh.rajasekha...@gmail.com> wrote:
>
> Hi,
>
> I am using Cfengine 2.1.12 RHEL 4 ,& 5. Can some one
Could you please take a look at special variable $(this.promiser) ?
Section 12.6.4 in the reference manual today.Combine that with
"transformer" and you can use an external command (like sed) to edit
your files.
If anyone has a better suggestion (totally done in Cfengine), I'd love
to hear it.
Dear Deb,
Understood; thank you for sharing that. Would you be willing to
share where does Xen
fall short for HA services? I am just starting to use Xen in our
stage/test environment,
and it's been running OK so I'm going to expand it to the main
development envirornment,
with an eye on eventu
Forum: Cfengine Help
Subject: Re: code sharing: Cfengine promises for provisioning server instances
on Amazon EC2
Author: debheller
Link to topic: https://cfengine.com/forum/read.php?3,21018,21081#msg-21081
Aleksey,
We've been testing Xen and VMsphere and its hypervisor. For now, we've opted
n
Forum: Cfengine Help
Subject: Re: Managing sudoers files with exisiting entries
Author: debheller
Link to topic: https://cfengine.com/forum/read.php?3,21077,21080#msg-21080
Stephen,
I'd agree with Jess about spending some effort towards consolidating your
sudoers files, if at all possible. If
Newer versions of sudo have #include and #includedir directives which might
really help out in this situation.
You may just be able to push out a file or collection of files which are then
included by the existing file. It could be as simple as having Cfengine add
the #includedir line to the e
While this will neatly dodge your question, I stongly suggest
consolidating all of your sudoers files into a single master file,
and pushing that to all of your hosts. The format of /etc/sudoers was
specifically designed for this sort of multi-host operation, and it
simplifies managment greatly.
All,
I'm trying to integrate cfengine3 into an environment that is already heavily
configured. I'm currently working on a solution for the sudoers file which
appears to be slightly different on about every host I've looked at!
The solution I've come up with is to create a location in the existi
Forum: Cfengine Help
Subject: Re: Cfengine Help: can not execute a user-only and non-root executable
Author: santa
Link to topic: https://cfengine.com/forum/read.php?3,21044,21076#msg-21076
ok sauer.
You are right , inetd -c may not do something else than sending a SIGHUP to
inetd.
I'll try to se
Forum: Cfengine Help
Subject: Re: Cfengine Help: can not execute a user-only and non-root executable
Author: sauer
Link to topic: https://cfengine.com/forum/read.php?3,21044,21075#msg-21075
This is because inetd -c essentially sends a SIGHUP to the current inetd
process, and the current inetd is
Forum: Cfengine Help
Subject: Re: Cfengine Help: can not execute a user-only and non-root executable
Author: santa
Link to topic: https://cfengine.com/forum/read.php?3,21044,21074#msg-21074
I'll try it tomorrow.
inetd being owned by bin, and can be executed only by root.
ksh is owner by bin, if sh
Forum: Cfengine Help
Subject: Re: cfengine3 processes
Author: sauer
Link to topic: https://cfengine.com/forum/read.php?3,21013,21073#msg-21073
neilhwatson Wrote:
---
> Still I think that the first introduction of
> theory and syntax could use som
Forum: Cfengine Help
Subject: Re: Cfengine Help: can not execute a user-only and non-root executable
Author: mark
Link to topic: https://cfengine.com/forum/read.php?3,21044,21072#msg-21072
Please don't embed su in shell commands, use the contain method
contain => setuid("uid")
to do this. As a
Forum: Cfengine Help
Subject: Re: Cfengine Help: can not execute a user-only and non-root executable
Author: santa
Link to topic: https://cfengine.com/forum/read.php?3,21044,21071#msg-21071
Thanks Mikhail. It works with su. That's a workaround, su being owned by root.
I did not think at using su.
Forum: Cfengine Help
Subject: Re: can not execute a user-only and non-root executable
Author: santa
Link to topic: https://cfengine.com/forum/read.php?3,21010,21070#msg-21070
In my case I find it strange.
As a root user in a shell, I need to disable a service in /etc/inetd.conf , I
edit it, comme
Hi, David. You might find it of use to go through my class, I've got a 2:41 hr
video online, and downloadable examples:
http://www.verticalsysadmin.com/cfengine/
That's in addition to the online materials, not instead of them.
I tried to learn Cfengine from the website and really struggled - onc
On Thu, Mar 10, 2011 at 02:24:27PM -0500, no-re...@cfengine.com wrote:
>Forum: Cfengine Help
>Subject: Re: cfengine3 processes
>Author: neilhwatson
>Link to topic: https://cfengine.com/forum/read.php?3,21013,21067#msg-21067
>
>The current level of documentation is quite good. Still I think that th
Forum: Cfengine Help
Subject: Re: cfengine3 processes
Author: neilhwatson
Link to topic: https://cfengine.com/forum/read.php?3,21013,21067#msg-21067
The recipes in the examples we have are relatively simple to understand once
one understands the basics of CF's syntax and structure. This latter p
David,
we make these packages at various intervals as time permits. Always
trying to do better, we also have a limited number of cycles, so we have
to fit the freebies into the harsh realities of making our supper!
Please keep letting us know how to improve and we'll hopefully get there
asymptot
It turns out to be surprisingly hard to write a cookbook that people
find easy to understand, but we keep trying. Soon we'll be making a
major overhaul of our website to try to make sense of all the
information we have.
Sometimes too much information is worse than not enough. We'll keep
slogging
Just to add to my previous mail.. I am using RHEL 6 64 bit.
On Thu, Mar 10, 2011 at 10:50 PM, Rakesh Rajasekharan <
rakesh.rajasekha...@gmail.com> wrote:
>
> Hi,
>
> I am using Cfengine 2.1.12 RHEL 4 ,& 5. Can some one please confirm if
> Cfengine 2.1.12 is compatible opon RHEL6.
> Since RHEL 6
Hi,
I am using Cfengine 2.1.12 RHEL 4 ,& 5. Can some one please confirm if
Cfengine 2.1.12 is compatible opon RHEL6.
Since RHEL 6 is recent one , I have my doubts. I have tried to comile it
but I got some library errors.
Also, I could not find any RPM's of Cfengine 2.1.12 for RHEL 6. RPMs were
a
Forum: Cfengine Help
Subject: Re: Limiting recursion into certain directories / filesystems
Author: sauer
Link to topic: https://cfengine.com/forum/read.php?3,21058,21060#msg-21060
Awesome - I was looking in the file_select section of the manual instead of the
depth_search section. :) Thanks muc
Forum: Cfengine Help
Subject: Re: Limiting recursion into certain directories / filesystems
Author: neilhwatson
Link to topic: https://cfengine.com/forum/read.php?3,21058,21059#msg-21059
‘exclude_dirs’
Type: slist
Allowed input range: .*
Synopsis: List of regexes of directory names N
Forum: Cfengine Help
Subject: Limiting recursion into certain directories / filesystems
Author: sauer
Link to topic: https://cfengine.com/forum/read.php?3,21058,21058#msg-21058
I have a need to search entire machines to identify if certain files are
present anywhere. For the sake of discussion,
Forum: Cfengine Help
Subject: Re: can not execute a user-only and non-root executable
Author: sauer
Link to topic: https://cfengine.com/forum/read.php?3,21010,21057#msg-21057
mark Wrote:
---
> If cfengine would execute a file that were
> writable
Forum: Cfengine Help
Subject: Re: can not execute a user-only and non-root executable
Author: berntjernberg
Link to topic: https://cfengine.com/forum/read.php?3,21010,21056#msg-21056
You have a very good point there Mark. I will use the contain body.
__
Forum: Cfengine Help
Subject: Re: can not execute a user-only and non-root executable
Author: mark
Link to topic: https://cfengine.com/forum/read.php?3,21010,21055#msg-21055
If cfengine would execute a file that were writable by a non-root user, then in
principle any user might be given the power
Forum: Cfengine Help
Subject: Re: cfengine3 processes
Author: neilhwatson
Link to topic: https://cfengine.com/forum/read.php?3,21013,21054#msg-21054
In answer to David's question I have some good news and some bad. The good
news is I intend to release a number of cookbook recipes in the near fut
Forum: Cfengine Help
Subject: Re: can not execute a user-only and non-root executable
Author: santa
Link to topic: https://cfengine.com/forum/read.php?3,21010,21053#msg-21053
>From my point of view, cf-agent launched as root should be able to execute any
>script/binary which has the executable fl
Forum: Cfengine Help
Subject: Re: can not execute a user-only and non-root executable
Author: berntjernberg
Link to topic: https://cfengine.com/forum/read.php?3,21010,21052#msg-21052
Hi,
I encountered the same thing
https://cfengine.com/forum/read.php?3,20576,20576#msg-20576
In my case the binar
Forum: Cfengine Help
Subject: Re: can not execute a user-only and non-root executable
Author: neilhwatson
Link to topic: https://cfengine.com/forum/read.php?3,21010,21051#msg-21051
The agent is exceptionally strict about what permissions it considers runnable.
I'm not certain whether to classify
Forum: Cfengine Help
Subject: Re: /var: File system full?
Author: neilhwatson
Link to topic: https://cfengine.com/forum/read.php?3,21041,21050#msg-21050
The agent will run. However, any actions that require writing to /var will
fail. This may include policy updates to /var/cfengine/inputs.
___
2011/3/10 David Lee :
> Sorry, Mark. Yes, there was an element of letting off steam, partly
> because I'm still struggling, despite significant cf-2 experience, to
> get my poor little head around cf-3. (I could really, really do with a
> "cookbook"; and with step-by-step definitions and example
Sorry, Mark. Yes, there was an element of letting off steam, partly
because I'm still struggling, despite significant cf-2 experience, to
get my poor little head around cf-3. (I could really, really do with a
"cookbook"; and with step-by-step definitions and examples. The
definitions and de
That was false advice, again.
Look at "body contain" in the reference for examples about setting
user, working directory etc:
http://www.cfengine.org/manuals/cf3-reference.html#contain-in-commands
2011/3/10 Mikhail Gusarov :
> On 09.03.2011 17:04, no-re...@cfengine.com wrote:
>
>> comma
Forum: Cfengine Help
Subject: Re: can not execute a user-only and non-root executable
Author: Seva Gluschenko
Link to topic: https://cfengine.com/forum/read.php?3,21010,21046#msg-21046
Well, from my point of view, it's pretty normal. And it is not so big deal to
change permissions once.
That sounds great. Many thanks, Mark.
My background in OSS, both as user and contributor (Samba, Linux-HA,
etc.) teaches me that I should offer to test and validate this for the
greater good of us all. Sadly, I'm not really in a position to be able
to do the full checkout, import, configure,
On 09.03.2011 17:04, no-re...@cfengine.com wrote:
> commands:
> "/usr/bin/inetd"
> args=> "-c",
> comment => "relaunch inetd";
> }
> Do you know if it's a normal behaviour of cfengine ? Is there a be
Forum: Cfengine Help
Subject: Re: can not execute a user-only and non-root executable
Author: santa
Link to topic: https://cfengine.com/forum/read.php?3,21010,21043#msg-21043
Yes that's right if I change rights to 554 , it does work.
And for test purpose, it also works if I change the owner to roo
Forum: Cfengine Help
Subject: Re: /var: File system full?
Author: mark
Link to topic: https://cfengine.com/forum/read.php?3,21041,21042#msg-21042
I expect logging of promise outcomes etc will fail, but that Cfengine will
otherwise run quite normally. If any new promises are introduced, there is a
Forum: Cfengine Help
Subject: /var: File system full?
Author: berntjernberg
Link to topic: https://cfengine.com/forum/read.php?3,21041,21041#msg-21041
Hi,
What happens if the /var file-system is filled before the next run of the agent?
I have policies that empty /var/tmp, /var/core /var/crash etc
Forum: Cfengine Help
Subject: Re: cfengine3 processes
Author: mark
Link to topic: https://cfengine.com/forum/read.php?3,21013,21039#msg-21039
We are staying well away from this feature of solaris, which I believe is an
extremely unstable mechanism.
___
Forum: Cfengine Help
Subject: Re: cfengine3 processes
Author: berntjernberg
Link to topic: https://cfengine.com/forum/read.php?3,21013,21038#msg-21038
Hi Mark,
What about processes in Solaris 10?
Have you looked into the Service Management Facility?
Interfering with svc.startd when services are i
The following works if servers/* files exist (e.g. servers/web1
servers/web2 servers/haproxy) but if they don't cfengine won't run!
cf-promises segfaults. (i'm using 3.1.4, by the way). I've promised
Eystein a gdb backtrace once I learn how to make one.
This bug has been corrected in svn.
On 03/10/2011 10:09 AM, David Lee wrote:
> David Lee wrote:
>
>> [...]
>> And now I find that the one major advance that, in the documentation,
>> had looked really promising, namely the concept of services, appears to
>> have been deliberately hobbled in th
David,
if by open source you mean "free beer" then, your worst fears are
confirmed. There is a paid version of cfengine, and it is better than
the free one! (The audacity!) However, it is still apparently free to
let off steam, which seems to be your main aim here.
In fact services were introduc
David Lee wrote:
> [...]
> And now I find that the one major advance that, in the documentation,
> had looked really promising, namely the concept of services, appears to
> have been deliberately hobbled in the community edition. (I hope
> someone can tell me it's not so.) Sigh.
And a bug, t
Perhaps you could elaborate a bit on which concepts in Cf3 you would
like to see documented?
I suggest you have a look at the links at
http://www.cfengine.org/pages/manual_guides (if you have not already)
There is a guide specifically for cf2 users, and also a tutorial and
concept guide..
The solu
no-re...@cfengine.com wrote:
> According to the docs:
>
> The process_stop is also arguably a command, but it should be an ephemeral
> command that does not lead to a persistent process. It is intended only for
> commands of the form ‘/etc/inetd service stop’, not for processes that
> persist.
50 matches
Mail list logo
