munity version, but
was actually honored in Nova?
However, having actually it enforced is useful in that you force arbitrary
ordering for promises that otherwise require jumping through lots of
class hoops. I'd hope that class requirements are still required
though.
--
Jesse Becker
NHG
mmon thing in the a) multihomed environments b)
>> containerized environments (linux-vserver, FreeBSD jails).
>> ___
>> Help-cfengine mailing list
>> Help-cfengine@cfengine.org
>> https://cfengine.org/mailman/listinfo/help-
;ismount' function I would whip up someting involving
>execresults and the mount command.
...and hope that you don't get stuck when a stat() call on a dead mount
blocks.
On linux, the safest way I've found to check a mount is to query
/proc/mounts (via 'grep' if ne
On Wed, Jun 27, 2012 at 03:32:38PM -0400, Ron Parker wrote:
>On Wed, Jun 27, 2012 at 2:30 PM, Jesse Becker wrote:
>> Could you use a module to generate an slist of ".svn directories with
>> lock files", and then iterate over that?
>
>My original implementation used
ings you find on the Internet into your computer!
>:(){ :|:&};:
>___
>Help-cfengine mailing list
>Help-cfengine@cfengine.org
>https://cfengine.org/mailman/listinfo/help-cfengine
--
Jesse Becker
NHGRI Linux support (Digicon Contractor)
___
Help-cfengine mailing list
Help-cfengine@cfengine.org
https://cfengine.org/mailman/listinfo/help-cfengine
hat many CPAN installs can be interactive
>this would be challenging.
We tried to make a wrapper around cpan2rpm at one point. It kinda sorta
worked once in a while when the moon was full and we sacrificed a goat
first.
--
Jesse Becker
NHGRI Linu
fengine-3.3.2.tar.gz
>
>Checksums:
>
>MD5 13235bfa13f8cbfb53517ac2244803ce
>SHA1 e669f51bbc31f65cfd45bc895d0b101287606563
>
>--
>Mikhail Gusarov
>___
>Help-cfengine mailing list
>Help-cfengine@cfengine.org
>https://cfengine.org/mailman/l
gt; # arg5 : Minutes, in the range 0,1000
> # arg6 : Seconds, in the range 0,4
> # Kill any cf-agent process thats been lingering around, but stop from
> -2 hours ago so we dont kill our current execution.
> stime_rang
ucts like
"X days, Y hours, Z minutes ago".
On the other hand, if it uses relative times, we'd want to use "inf"
instead, since we want all processes that are infinately old, up to 1
hour ago.
--
Jesse Becker
NHGRI Linux support (Digicon Contractor)
:(){ :&:};:
gt; Help-cfengine mailing list
>> Help-cfengine@cfengine.org
>> https://cfengine.org/mailman/listinfo/help-cfengine
>
> ___
> Help-cfengine mailing list
> Help-cfengine@cfengine.org
> https://cfengine.org/mailman/listinfo/help-cfengine
--
Jesse Becker
___
Help-cfengine mailing list
Help-cfengine@cfengine.org
https://cfengine.org/mailman/listinfo/help-cfengine
s "pid" appear to work correctly.
Am I doing something really wrong here with regards to what stime_range
wants for input, or could this be a bug? The reference guide is pretty
thin on what exactly the input numbers for stime_range (and ttime_rante)
are for. The range appears to be absolute epoch time, but that's not
completely clear.
--
Jesse Becker
NHGRI Linux support (Digicon Contractor)
:(){ :&:};:
___
Help-cfengine mailing list
Help-cfengine@cfengine.org
https://cfengine.org/mailman/listinfo/help-cfengine
tions it,
but for CF2)
http://www.inf.ethz.ch/personal/mharvan/talks/cfengine.pdf (maybe)
http://cfengine.com/science (various stuff there, perhaps)
--
Jesse Becker
NHGRI Linux support (Digicon Contractor)
:(){ :&:};:
___
Help-cfengine mailing list
Help-c
On Tue, Apr 10, 2012 at 01:05:11PM -0400, no-re...@cfengine.com wrote:
>Forum: CFEngine Help
>Subject: Re: tidy/prettyprint for cfengine3 ?
>Author: sauer
>Link to topic: https://cfengine.com/forum/read.php?3,25480,25509#msg-25509
>
>
body's made something like this for CFEngine 3 already.
>
> Thanks,
> Aleksey
> ___
> Help-cfengine mailing list
> Help-cfengine@cfengine.org
> https://cfengine.org/mailman/listinfo/help-cfengine
--
Jesse Becker
___
__
>Help-cfengine mailing list
>Help-cfengine@cfengine.org
>https://cfengine.org/mailman/listinfo/help-cfengine
--
Jesse Becker
NHGRI Linux support (Digicon Contractor)
:(){ :&:};:
___
Help-cfengine mailing list
Help-cfengine@cfengine.org
https://cfengine.org/mailman/listinfo/help-cfengine
anks!
> Mike
>
> _______
> Help-cfengine mailing list
> Help-cfengine@cfengine.org
> https://cfengine.org/mailman/listinfo/help-cfengine
--
Jesse Becker
___
Help-cfengine mailing list
Help-cfengine@cfengine.org
https://cfengine.org/mailman/listinfo/help-cfengine
ke
>
>P.S. For reference, the if_ok body is from the standard library, and is
>specifically defined as:-
>
>body classes if_ok(x)
>{
>promise_repaired => { "$(x)" };
>promise_kept => { "$(x)" };
>}
>___
>Help-cfengine mailing list
>Help-cfengine@cfengine.org
>https://cfengine.org/mailman/listinfo/help-cfengine
--
Jesse Becker
NHGRI Linux support (Digicon Contractor)
:(){ :&:};:
___
Help-cfengine mailing list
Help-cfengine@cfengine.org
https://cfengine.org/mailman/listinfo/help-cfengine
es are linux boxes.Did u meant to create a script?
Yes, that's one way to do it on existing systems.
For new systems, include cfengine as part of the install/kickstart/FAI
process.
--
Jesse Becker
NHGRI Linux support (Digicon Contractor)
:(){ :&:};:
w nice levels. In
fact, if you use the nice value as the key (instead of the PID), you
could probably condense things into a a few calls to 'renice', instead
of having to iterate over every PID.
--
Jesse Becker
NHGRI Linux support (Digicon Contractor)
uss herrold
>> ___
>> Help-cfengine mailing list
>> Help-cfengine@cfengine.org
>> https://cfengine.org/mailman/listinfo/help-cfengine
>___
>Help-cfengine mailing list
>Help-cfengin
ks,
>>>>> Kaiwang
>>>>
>>>> Thanks,
>>>> Kaiwang
>>>> ___
>>>> Help-cfengine mailing list
>>>> Help-cfengine@cfengine.org
>>>&g
If you want to run
>cf-serverd in verbose mode you have to kill the other instance.
A thought...(feature request):
When the daemon gets SIGUSR1, toggle verbose mode on or off as
appropriate.
That way you need not bounce the daemon, just to get verbose logs.
--
Jesse Becker
NHGRI Linux s
ears, and I
think that's being very conservative. None of the newer "alternative"
crond implementations need it either.
--
Jesse Becker
NHGRI Linux support (Digicon Contractor)
___
Help-cfengine mailing list
Help-cfengine@cfengine.org
https://cfengine.org/mailman/listinfo/help-cfengine
example.)
>
>If this is possible, could you also let me know where it is documented, as I
>must have missed it.
>
>___
>Help-cfengine mailing list
>Help-cfengine@cfengine.org
>https://cfengine.org/mailman/listinfo/help-cfengine
sight so far, unless I'm
>missing something.
A lot of it comes from running /usr/bin/lsb_release, specifically:
/usr/bin/lsb_release --codename
/usr/bin/lsb_release --id
/usr/bin/lsb_release --release
On non-linux systems, I'm not sure.
--
Jesse Becke
ck that you have a non-blank commit message
* make sure you aren't root
* Parse the check-in for syntax errors with cf-promises
--
Jesse Becker
NHGRI Linux support (Digicon Contractor)
___
Help-cfengine mailing list
Help-cfengine@cfengine.org
https://cfengine.org/mailman/listinfo/help-cfengine
often used to explain anything by pulling the wool over
>people's eyes :)
>
>
>
>___
>Help-cfengine mailing list
>Help-cfengine@cfengine.org
>https://cfengine.org/mailman/listinfo/help-cfengine
--
Jesse Becker
NHGRI Linux support (Digicon Contractor)
___
Help-cfengine mailing list
Help-cfengine@cfengine.org
https://cfengine.org/mailman/listinfo/help-cfengine
not happen. I'd like to see
>a major effort on the part of Cfengine developers towards large scale
>performance tests to fix these issues.
Better timestamps in the logs would allow for better profiling. Of
course, profiling the code would do much the same. ;-)
--
Jesse Becker
NHGRI Linux support (Digicon Contractor)
___
Help-cfengine mailing list
Help-cfengine@cfengine.org
https://cfengine.org/mailman/listinfo/help-cfengine
g
>> - body action copbl_if_elapsed
>> - body action copbl_ifwin_bg
>> ...
>>
>> - Erlend
>>
>>
>> [1]: http://cfengine.com/manuals/cf3-tutorial.html#Remote-file-distribution
>> ___
>> Help-cfengine mailing list
>> Help-cfengine@cfengine.org
>> https://cfengine.org/mailman/listinfo/help-cfengine
>
>___
>Help-cfengine mailing list
>Help-cfengine@cfengine.org
>https://cfengine.org/mailman/listinfo/help-cfengine
--
Jesse Becker
NHGRI Linux support (Digicon Contractor)
___
Help-cfengine mailing list
Help-cfengine@cfengine.org
https://cfengine.org/mailman/listinfo/help-cfengine
I very much agree with the speaker's viewpoint.
>He does not provide any answers, but he poses important questions: the
>best kind of talk.
>
>M
>
>PS - Category theory (re: monads) is a form of mathematics, akin to set
>theory which is often used to explain anything by pulling the wool over
>people's eyes :)
>
>
>
>
>___ Help-cfengine mailing list
>Help-cfengine@cfengine.org<mailto:Help-cfengine@cfengine.org>
>https://cfengine.org/mailman/listinfo/help-cfengine
>
>___
>Help-cfengine mailing list
>Help-cfengine@cfengine.org
>https://cfengine.org/mailman/listinfo/help-cfengine
--
Jesse Becker
NHGRI Linux support (Digicon Contractor)
___
Help-cfengine mailing list
Help-cfengine@cfengine.org
https://cfengine.org/mailman/listinfo/help-cfengine
>separate lines
In CF2, there was a concept of BeginGroup*, which I thought could be
nested. It was, admittedly, an impartive way of dealing with files, and
I understand that it doesn't fit well with a purely declaritive model.
>
>
> Item 1
> Item 2
>
>
>
>
>
>You could use
>
>body select_region MySection(x)
>
>{
>select_start => "<$(x)>";
>select_end => "";
>}
>
>To edit only within the section. I should add some examples of sections
>to the STG...
>
>
>M
>
>
>
>
--
Jesse Becker
NHGRI Linux support (Digicon Contractor)
___
Help-cfengine mailing list
Help-cfengine@cfengine.org
https://cfengine.org/mailman/listinfo/help-cfengine
promise_kept(canonify("smbd.conf okay")),
repair_failed('smbd_conf_error'),
cancel_notkept(canonify("smbd.conf okay")),
};
--
Jesse Becker
NHGRI Linux support (Digicon Contractor)
___
Help-cfengine mailing list
Help-cfengine@cfengine.org
https://cfengine.org/mailman/listinfo/help-cfengine
tions that are possible in this bundle.
Between the bodies defined in cfengine_stdlib.cf and my own library.cf,
I have 13 different bodies to express slightly different things. Why
are these two different bodies needed?
body classes if_ok(x) {
promise_repaired => { "$(x)"
On Thu, Dec 08, 2011 at 10:27:45AM -0500, Marco Marongiu wrote:
>Il 08/12/2011 14:36, no-re...@cfengine.com ha scritto:
>> The code is AUTHD
>
>No luck with this one, too: "You did not meet the criteria for this
>discount.".
Same with the USENIX discount as well...
k
>cf3> -> Handling file existence constraints on /tmp/x
>cf3> -> File hash for /tmp/x is correct
>cf3> ?> defining promise result class _tmp_x_ok
>cf3> -> File permissions on /tmp/x as promised
>cf3> ?> defining promise result class _tmp_x_ok
>
>
>See how it raises the repaired cla
ole::
> "this should not match (whole string version)";
>}
>
>
>
>output is:
>
>
>R: this should match - start is not followed by end
>R: this should not match (best version)
>R: should match, but start contains the whole string
>
On Fri, Dec 02, 2011 at 04:12:12PM -0500, no-re...@cfengine.com wrote:
>Forum: CFEngine Help
>Subject: Re: CFEngine Help: Re: controlling redhat-style startup services via
>chkconfig
>Author: matt_garman
>Link to topic: https://cfengine.com/forum/read.php?3,24170,24171#msg-24171
;ve already processed the vars: definitions.
You have at least two possible workarounds:
1) use hard classes in vars:. This works because hard classes are
defined before the processing of the promises.
2) do some trickery with isvariable() when defining classes to create
what I call a "gu
room? I created a cfengine chat
>over at SILC.
There's been an active IRC chat room (#cfengine) on freenode.net for quite a
while.
--
Jesse Becker
NHGRI Linux support (Digicon Contractor)
___
Help-cfengine mailing list
Help-cfengine@cfengine.org
ht
>
>___
>Help-cfengine mailing list
>Help-cfengine@cfengine.org
>https://cfengine.org/mailman/listinfo/help-cfengine
--
Jesse Becker
NHGRI Linux support (Digicon Contractor)
___
Help-cfengine mailing list
Help-cfengine@cfengine.org
https://cfengine.org/mailman/listinfo/help-cfengine
packages, which I don't want at all (I try to run as clean a
64-bit environment as possible). Thus, I must instead run "yum install
tpm-tools.x86_64" to get only the 64bit package.
A reasonable solution, perhaps, would be to specify a list of acceptable
architectures somewhere and
_
>Help-cfengine mailing list
>Help-cfengine@cfengine.org
>https://cfengine.org/mailman/listinfo/help-cfengine
--
Jesse Becker
NHGRI Linux support (Digicon Contractor)
___
Help-cfengine mailing list
Help-cfengine@cfengine.org
https://cfengine.org/mailman/listinfo/help-cfengine
:)
>
>Some examples would be appreciated. Or at least some documentation surpassing
>"the databases can be viewed with cf-report". :D
Here's one example, using the lastseen database:
http://cfengineers.org/wiki/index.php/Cf-re
es.
>>
>> Great list, and well-needed IMO. Thank you!
>>
>>
>___
>Help-cfengine mailing list
>Help-cfengine@cfengine.org
>https://cfengine.org/mailman/listinfo/help-cfengine
--
Jesse Becker
NHGRI Linux support (Digicon Contractor)
___
Help-cfengine mailing list
Help-cfengine@cfengine.org
https://cfengine.org/mailman/listinfo/help-cfengine
16 seconds for v3.2.0 sec compared to .521 seconds for v3.0.5.
Most of the change seems to be in time spent in the clone() syscall.
Under 3.0.5, it's some 31% of the time (.164s), with 79 calls. Under 3.2.0,
it's almost 70% of the time, with 194 calls (.218s).
But as I noted, even with
From those few
>experiences, it seems that iteration within one bundle is ok, but iteration
>over multiple bundles (which seems to include file editing) will kill you.
>
>___
>Help-cfengine mailing list
>Help-cfengine@cfengine.o
nd have a look
around. If you like what you see, please create an account and post
anything you think would be useful. Accounts have to be manually
approved in order to keep spammers out (which what killed the old
cfwiki.org site).
I've been slowly posting stuff I've found useful and want
.
I have a common bundle named "g" that I use to define global classes and
variables. For example, we store generally useful admin scripts in a
specific location, and this is set to a variable 'admbin', which is
referenced in lots of other promises as "${g.admbin}".
fengine.org
> https://cfengine.org/mailman/listinfo/help-cfengine
>
--
Jesse Becker
___
Help-cfengine mailing list
Help-cfengine@cfengine.org
https://cfengine.org/mailman/listinfo/help-cfengine
ct though.
>Can anyone share any experiences on SCAP or OVAL consideration while
>implementing CFengine.
>
>Thanks in advance for help.
>
>-Jan
>
>___
>Help-cfengine mailing list
>Help-cfengine@cfengine.org
>https://cfengin
Help-cfengine mailing list
>Help-cfengine@cfengine.org
>https://cfengine.org/mailman/listinfo/help-cfengine
--
Jesse Becker
NHGRI Linux support (Digicon Contractor)
___
Help-cfengine mailing list
Help-cfengine@cfengine.org
https://cfengine.org/mailman/listinfo/help-cfengine
undle common g {
vars:
'policy_server' string => 'cfengine.domain.com';
}
# Define the new copy_from update() body
body copy_from update(path) {
any::
servers => { "$(g.policy_server)" };
source => "$(path)";
encrypt
AppendIfNoSuchLine "blah, blah, blah"
DefineInGroup "reload_sysctl_conf"
}
shellcommands:
reload_sysctl_conf::
"/sbin/sysctl -p"
--
Jesse Becker
NHGRI Linux support (Dig
help.
>
>___
>Help-cfengine mailing list
>Help-cfengine@cfengine.org
>https://cfengine.org/mailman/listinfo/help-cfengine
--
Jesse Becker
NHGRI Linux support (Digicon Contractor)
___
Help-cfengine mailing list
Help-cfengine@cfengine.org
https://cfengine.org/mailman/listinfo/help-cfengine
#x27; expression => classify("gb-r7n1.irc.sara.nl");
'PBS_reg' expression => regcmp(".*r[0-9]+n[0-9].*");
'PBS_MOM' expression => "!PBS_dom.PBS_reg.${sys.host}"
Of course, the ability to nest the various and{}, or{}, not{}
er reading:
>http://www.cfengine.org/manuals/cf3-reference.html#List-variable-substitution-and-expansion
>http://www.cfengine.org/manuals/cf3-tutorial.html#Scalar-variable-expansion
>http://watson-wilson.ca/2011/05/managing-crontables-with-cfengine.html
>
>___
>Help-cfengine mail
;
}
This, while untested, should print two reports each for hosts 'a' and
'b', but only one report for host 'c'.
See these for reference:
http://www.cfengine.org/manuals/cf3-reference.html#Class-combination-operators-and-precedence
http://www.cfengine.org/manuals/cf3-reference.html#classes-in-common-promises
--
Jesse Becker
NHGRI Linux support (Digicon Contractor)
___
Help-cfengine mailing list
Help-cfengine@cfengine.org
https://cfengine.org/mailman/listinfo/help-cfengine
"/tmp/snarf.txt"
classes => if_repaired("snarf_copied"),
perms =
>
>
>
>On Fri, May 13, 2011 at 3:15 PM, Jesse Becker wrote:
>> Posting this to save someone else the trouble of typing it out
>> themselves.
>>
>> Happy Friday,
>>
>>
>> bundle agent mon_var {
>>
>> reports:
>>
>> p
Cfengine could react to environmental data.
>>
>>
>> Any suggestions, please?
>>
>> Aleksey
>> ___
>> Help-cfengine mailing list
>> Help-cfengine@cfengine.org
>> https://cfengine.org/mailman/listin
wstate...
"Showstate (users)"
showstate => { 'users' };
"Showstate (rootprocs)"
showstate => { 'rootprocs' };
"Showstate (otherprocs)"
showstate => { 'otherprocs' };
"Showstate (loadavg)"
showstate => { 'loadavg' };
"Showstate (udp_in)"
"Showstate (udp_out)"
showstate => { 'udp_out' };
"Showstate (syslog)"
showstate => { 'syslog' };
"Showstate (cpu)"
showstate => { 'cpu' };
}
--
Jesse Becker
NHGRI Linux support (Digicon Contractor)
___
Help-cfengine mailing list
Help-cfengine@cfengine.org
https://cfengine.org/mailman/listinfo/help-cfengine
uot;Cfengine", "cFengine", "CFengine", etc),
but that's pretty inefficient.
I could also write '^.*[cC][fF][eE][nN][gG][iI][nN][eE].*', but that's
just ugly. :)
What I'd like is a simple way to add a "i" modifier to the regex so tha
variable that will only be used once?
Because it's a good practice, and makes extending the code simpler in
the future.
While I don't agree with this 100%, there's a saying that production
code should should only ever have the numbers "0" and "1" inline.
Everything
ge, and column 3 is the stdev. (again, not really sure).
The .distr file is actually a histogram, with column 1 as the "bucket"
value (x-axis), and column 2 as the frequency count for that bucket.
Not everything that has a file appears to actually be populated (based
on cf-monitord running
's system (and site) neutral because the anomaly classes are
based on a baseline for that specific system. So in theory, it should
be possible to come up with a fairly generic set of classes for finding
problems.
In practice...I'm not sure, I haven't tried yet. :)
>On 05/10
that Mark Burgess and Aeleen
Frisch wrote a few years back. It uses CF2 syntax, but I believe that
the general concepts are still valid. Unfortunately, it doesn't cover
the LDT stuff I mentioned before.
http://www.sage.org/pubs/16_cfengine/
Unfortunately, I've been unabl
=> if_repaired('do_postmap_sasl');
do_postmap_sasl::
"/usr/sbin/postmap ${prefix}/sasl-passwd";
}
>
>
>Thank you,
>Ari Constancio
>___
>Help-cfengine mailing list
>Help-cfengine@cfengine.o
On Fri, Apr 29, 2011 at 02:36:41PM -0400, no-re...@cfengine.com wrote:
>Forum: Cfengine Help
>Subject: Re: Cfengine Help: regex help
>Author: neilhwatson
>Link to topic: https://cfengine.com/forum/read.php?3,21710,21712#msg-21712
>
>
to fix it.
>
>___
>Help-cfengine mailing list
>Help-cfengine@cfengine.org
>https://cfengine.org/mailman/listinfo/help-cfengine
--
Jesse Becker
NHGRI Linux support (Digicon Contractor)
___
Help-cfengine mailing list
Help-cfengine@cfengine.org
https://cfengine.org/mailman/listinfo/help-cfengine
regline('^.*IDE.*',
"${g.lspcifile}");
'hardware_SATA' expression => regline('^.*SATA.*',
"${g.lspcifile}");
'hardware_VMware' expression => regline('^.*VMware.*',
"${g.lspcifile}");
'hardware_KVM'expressio
ld be replaced with something like:
/bin/echo ${hostname_hash} |
/bin/cut -c -16 |
perl -e 'print <>%61;'"
Note that I've clipped only 16 characters, instead of the full 32 that
come from md5sum, in order to avoid integer overflows in Perl.
--
Jesse Becker
NHGRI Linux support (Digicon Contractor)
___
Help-cfengine mailing list
Help-cfengine@cfengine.org
https://cfengine.org/mailman/listinfo/help-cfengine
gt; $ /var/cfengine/bin/cf-agent -I -K -b lay_etc_tripwire_detection
>>>> Using command line specified bundlesequence
>> R: cf3: The tripwire on esv4-be24.stg:/etc has been tripped.
>>
>>
>> The persistent class takes effect.
>>
>>
>> __
et, but it may be time to start.
Thanks for all the replies.
--
Jesse Becker
NHGRI Linux support (Digicon Contractor)
___
Help-cfengine mailing list
Help-cfengine@cfengine.org
https://cfengine.org/mailman/listinfo/help-cfengine
or inclusion? If not I
>TZ> can just do it with a module in our environment.
>
>Does no one else need the true list of interfaces in cfengine? I find
>that surprising.
I *could*, but don't yet. If it existed, I'd use it.
--
Jesse Becker
NHGRI Linux support (Digicon Contractor)
___
Help-cfengine mailing list
Help-cfengine@cfengine.org
https://cfengine.org/mailman/listinfo/help-cfengine
undle. In the event
of a failure, the report file most recently written is issued as a
cfengine report action.
Hope these are useful, and comments/improvements/corrections are always
welcome.
--
Jesse Becker
NHGRI Linux support (Digicon Contr
l (although the "shorter" versions of
the ip-based classes could be useful there),
I wonder if the idea of a "negative persistant class" makes any sense?
Or having some way of quantifying just how long a persistant class has
been aroun
ld do this, but
that won't help in the case of manual intervention.
--
Jesse Becker
NHGRI Linux support (Digicon Contractor)
___
Help-cfengine mailing list
Help-cfengine@cfengine.org
https://cfengine.org/mailman/listinfo/help-cfengine
epending on the target host. Use of this Packages/ directory is kept
to a minimum.
For convenience, cfengine module scripts are typically stored in, and
distributed from /etc/cfengine/modules.
The policy server is also the file distribution server, although it
could easily be a different syst
atever.
Perhaps coding it up in Perl (which can do both the recursion and edits
without the overhead of thousands of forks() calls), then having
cfengine commands: promise for it makes sense?
--
Jesse Becker
NHGRI Linux support (Digicon Contractor)
___
Help-cfengine mailing list
Help-cfengine@cfengine.org
https://cfengine.org/mailman/listinfo/help-cfengine
"/usr/sbin/httpd"
restart_class => "StartHTTPD",
comment => "Start apache if it isn't running";
}
body process_count httpd_stragglers {
match_range => "1,2";
in_range_define => { 'h
ites getting started, but would also serve as "good practice" examples
>for our subsequent local development of other things.
One of the things that a lot of new cfengine users could benefit from
are very focused examples for non-trivial tasks. Yes, there are lots of
examples in the refe
__
>> Help-cfengine mailing list
>> Help-cfengine@cfengine.org
>> https://cfengine.org/mailman/listinfo/help-cfengine
>>
>___
>Help-cfengine mailing list
>Help-cfengine@cfengine.org
>https://cfengine.org/mailman/listinfo/help-cfengine
--
Jesse Becker
NHGRI Linux support (Digicon Contractor)
___
Help-cfengine mailing list
Help-cfengine@cfengine.org
https://cfengine.org/mailman/listinfo/help-cfengine
"^#-CFENGINE_MANAGED_ENTRIES-#$";
> select_end => "^#---#$";
>}
>
>##
>
>Sudoers file after:-
>
>#--#
>#-CFENGINE_MANAGED_ENTRIES-#
>User_Alias TEST_SYSADMIN= testuser1,testuser2,testuser3
>TEST_SYSADMIN ALL= NOPASSWD: ALL
>#---#
>
>___
>Help-cfengine mailing list
>Help-cfengine@cfengine.org
>https://cfengine.org/mailman/listinfo/help-cfengine
--
Jesse Becker
NHGRI Linux support (Digicon Contractor)
___
Help-cfengine mailing list
Help-cfengine@cfengine.org
https://cfengine.org/mailman/listinfo/help-cfengine
Still I think that the
>first introduction of theory and syntax could use some polish.
In the finest tradition of Unix manpages: it's a wonderful reference,
and a lousy user's manual. :-)
--
Jesse Becker
NHGRI Linux support (Digicon Contractor)
__
;,"${rsync_data}");
processes:
# Doesn't work, since there may not be an rsyncd process!
files:
# configuration for xinetd and rsync is pretty
# standard--copy files into place as needed
commands:
runs_rsync.!rsync_is_running::
>
>##
>
>
>
>% cf-promises -f ./vers.cf
> !! The version string may not contain the ":" character
>
>
>___
>Help-cfengine mailing list
>Hel
ing standards (if anyone ever bother to 1) make solaris packages
and 2) follow the standards).
>There, I said it! :-)
:)
>
>On 02/04/2011 08:53 PM, Aleksey Tsalolikhin wrote:
>> On Fri, Feb 4, 2011 at 11:33 AM, Jesse Becker wrote:
>>>
>>> Theoretically, Linux sys
ocally installed software that is managed outside of
whatever "official" package management software is provided by the
vendor (this concept breaks down a bit with the BSDs, since everything
not in the core is put in /usr/local).
--
Jesse Becker
NHGRI Linux support (Digicon Contracto
ion. I wanted
>to avoid hanging cf-agent if my external process hung.
That's been my experience as well. The parent cf-agent process will
wait for all child processes to complete before it will terminate.
You could, I suppose, have a wrapper program to help with this, but
th
ble. You don't
want to have to vote on every individual commit at a time, and some
patches will "depend" on other patches. That could get ugly...
>
>It would be very interesting to hear if any of you have smart solutions
>to this peer review problem.
>
>Thanks.
ct to generate and send emails. We use v1.14,
although that shouldn't matter much. (For those that don't know, it
basically makes a pretty email that includes a 'diff' for the commit
in question.)
I'm sure there's room for improvement, but it works for us at the
On Fri, Jan 28, 2011 at 11:36:11AM -0500, Mark Burgess wrote:
>
>On 01/28/2011 04:51 PM, Jesse Becker wrote:
>> On Fri, Jan 28, 2011 at 10:48:50AM -0500, no-re...@cfengine.com wrote:
>>> Forum: Cfengine Help
>>> Subject: Re: Processes in Solaris 10 and latest trunk r
, you could even do it in the standard library,
no?
--
Jesse Becker
NHGRI Linux support (Digicon Contractor)
___
Help-cfengine mailing list
Help-cfengine@cfengine.org
https://cfengine.org/mailman/listinfo/help-cfengine
t-meets-the-swarm-how-the-berkeley-overmind-won-the-2010-starcraft-ai-competition.ars
>2. http://www.cfengine.org/cftimes/articles/19.html
>
>_______
>Help-cfengine mailing list
>Help-cfengine@cfengine.org
>https://cfengine.org/mailman/listinfo/help-cfengine
-
On Tue, Jan 18, 2011 at 09:42:57AM -0500, Bas van der Vlies wrote:
>On 18-01-11 13:49, Jesse Becker wrote:
>> On Tue, Jan 18, 2011 at 04:48, Bas van der Vlies wrote:
>>>> ## Report if we lost contact with our policy server for an hour
>>>> #
>>>> bun
3_check_server_connectivity {
vars:
!has_myhosts::
"myhosts" slist => { hostsseen("1","notseen","address") };
classes:
'has_myhosts' => isvariable('myhosts');
"cfengine_no_connectivity" expression =>
reglist("@(myhosts)",escape("$(g.policyserver)"));
reports:
cfengine_no_connectivity::
"Not seen cfengine3 policy server: $(g.policyserver) for at least a hour";
}
--
Jesse Becker
___
Help-cfengine mailing list
Help-cfengine@cfengine.org
https://cfengine.org/mailman/listinfo/help-cfengine
7;;
reports:
cfengine_3::
"I know about host [${allhosts_name}].";
"I have not seen [${deadhosts_name}] in ${deadtime} hours.";
}
>
>___
>Help-cfengine mailing list
>Help-cfengine@cfengine.org
>https://cfengine.org/mailman/listinfo/help-cfengine
--
Jesse Becker
NHGRI Linux support (Digicon Contractor)
___
Help-cfengine mailing list
Help-cfengine@cfengine.org
https://cfengine.org/mailman/listinfo/help-cfengine
cally handles the server/path locations on the policy server.
"/etc/yum.repos.d/local_packages.repo"
copy_from =>
update("/etc/yum.repos.d/local_packages.repo-${yum_server}");
}
--
Jesse Becker
NHGRI Linux support (Digicon Contractor)
___
Help-cfengine mailing list
Help-cfengine@cfengine.org
https://cfengine.org/mailman/listinfo/help-cfengine
t; { "-A INPUT -s ${servers} -p tcp -m tcp -= j
NEWCHAIN" };
'One_Rule'string => join("${const.n}", 'Server_Rules');
insert_lines:
"${One_Rule}"
location => findline('^-A NEWCHAIN.*5544.*');
}
&
I just noticed that there are two SVN web interfaces linked from
cfengine.org:
http://source.cfengine.com/browse/
http://source.cfengine.com/websvn/
Thanks!
--
Jesse Becker
NHGRI Linux support (Digicon Contractor)
___
Help-cfengine
1 - 100 of 181 matches
Mail list logo
