recommendations, suggestions, comments welcome.
The main comment is a general sysadmin one: make sure you only generate noise
when something goes wrong, not when it goes right. Otherwise puppet will
rapidly overwhelm you with reports and you will never notice the problems. :)
a huge +1!
~pet
bwood wrote:
> I've installed the puppet 2.6.1 and facter 1.5.8 gems on my Ubuntu
> 10.4 server.
>
> I've got activerecord-3.0.0 installed:
>
Hi Brian
This is bug with 2.6.1 and ActiveRecord. It's fixed in 2.6.2 (RC1 out
now and release shortly):
http://projects.puppetlabs.com/issues/4763
Re
I've installed the puppet 2.6.1 and facter 1.5.8 gems on my Ubuntu
10.4 server.
I've got activerecord-3.0.0 installed:
r...@voutcity:~# gem list
*** LOCAL GEMS ***
activemodel (3.0.0)
activerecord (3.0.0)
activesupport (3.0.0)
arel (1.0.1)
builder (2.1.2)
facter (1.5.8)
i18n (0.4.1)
puppet (2.6
Tim Lank writes:
> I've developed a simple mini-script system that can be setup on a
> puppetmaster to send the stdout of the last reports for each client to a set
> of email addresses. I find it convenient to get these results in my inbox
> so that I can view them at a glance, review at leisure
puppet-users:
in case this will help someone else besides me
I've developed a simple mini-script system that can be setup on a
puppetmaster to send the stdout of the last reports for each client to
a set of email addresses. I find it convenient to get these results
in my inbox so that I can
Aaron,
unless is probably the param you need for exec.
require and before are for defining dependencies between items defined
in puppet.
See below in your example.
Cheers
On 5/10/10 11:11 AM, Aaron wrote:
Hi puppet experts,
I'm pretty new to puppet and am having some trouble finding the ri
Sorry for wasting anyones time, just found the "onlyif" parameter.
On Oct 4, 5:11 pm, Aaron wrote:
> Hi puppet experts,
>
> I'm pretty new to puppet and am having some trouble finding the right
> way to specify the functionality I need.
>
> Specifically, lets say I have a command to create some k
Hi puppet experts,
I'm pretty new to puppet and am having some trouble finding the right
way to specify the functionality I need.
Specifically, lets say I have a command to create some key/value pair:
myCommand -create "key" "value"
And I have a second command to list key/value pairs:
myComman
On Mon, Oct 4, 2010 at 8:58 AM, Mohamed Lrhazi wrote:
> On Mon, Oct 4, 2010 at 10:57 AM, Felix Frank
> wrote:
>
>> Your clients cache the master's certificate.
Correction. The puppet agent fetches the CA cert and it verifies the
puppet master cert is signed by the CA cert. If not, the agent will
On 4 October 2010 15:21, Christopher Johnston wrote:
> I am using 1.58, I see the issue though. I have interfaces called wan and
> lan without a \d+ at the end. Looks they are getting skipped. I will play
> with the regex to see whats up.
The whole way this works is going to be revisited for 2
I am using 1.58, I see the issue though. I have interfaces called wan and
lan without a \d+ at the end. Looks they are getting skipped. I will play
with the regex to see whats up.
On Mon, Oct 4, 2010 at 5:50 PM, Gary Law wrote:
> On 4 October 2010 22:35, Christopher Johnston wrote:
> > Does
On 4 October 2010 22:35, Christopher Johnston wrote:
> Does facter support NICs that are not named ethX? I happen to use custom
> names on my systems. Just a quick look at the code I don't see why it
> wouldn't but the behavior I am seeing is very different.
works for me:
g...@sv01:~ $ facter |
Does facter support NICs that are not named ethX? I happen to use custom
names on my systems. Just a quick look at the code I don't see why it
wouldn't but the behavior I am seeing is very different.
--
You received this message because you are subscribed to the Google Groups
"Puppet Users" gro
On Oct 4, 2010, at 12:00 PM, luke.bigum wrote:
>changes => [
> "set *[module = 'pam_mkhomedir.so']/type session",
> "set *[module = 'pam_mkhomedir.so']/control required",
> "set *[module = 'pam_mkhomedir.so']/module pam_mkhomedir.so",
> "set *[module = 'pam_mkhomedir.so']/a
On Mon, Oct 4, 2010 at 6:54 PM, Eduardo S. Scarpellini <
scarpell...@gmail.com> wrote:
> Douglas,
> just an update: Now Im testing The Foreman (theforeman.org) and I think it
> covers my main needs (including a ''kind of'' [not so rich] URL API).
>
Just FYI, the new upcoming release have JSON base
On Tue, Sep 28, 2010 at 10:13 AM, Nigel Kersten wrote:
> On Tue, Sep 28, 2010 at 10:08 AM, Douglas Garstang
> wrote:
> >
> > On Tue, Sep 28, 2010 at 9:50 AM, Eduardo S. Scarpellini
> > wrote:
> >>
> >> Douglas,
> >> I've started my tests with Python + Puppet Yaml yesterday, based on
> >>
> http:
On Mon, Oct 4, 2010 at 9:36 AM, Tom Duckering wrote:
> Hi,
>
> I just wanted to check a few things. I have a build server which is used to
> run the CI server. It also doubles up as my puppetmaster.
>
> Would it be possible to have a puppet client talk to a puppetmaster on the
> same machine?
A
Douglas,
just an update: Now Im testing The Foreman (theforeman.org) and I think it
covers my main needs (including a ''kind of'' [not so rich] URL API).
Alternatively to YAML, you can use storedconfigs and some database, like
MySQL or sqlite and, then, use any language you want :)
2010/9/28 Dougl
Tom,
I have some self-configured puppetmasters on my infrastructure using the
client-server (TCP/8140) approach. The same configuration directory tree and
manifests style is used either for clients and master (the node
classification is based on DNS).
The first puppetmaster of the new datacenters
Hi,
I just wanted to check a few things. I have a build server which is used to run
the CI server. It also doubles up as my puppetmaster.
Would it be possible to have a puppet client talk to a puppetmaster on the same
machine?
Cheers,
Tom
--
You received this message because you are subscrib
On Oct 4, 2010, at 9:00 AM, luke.bigum wrote:
> Hi all,
>
> I'm trying to do something that should be pretty simple but can't
> figure it out.
>
> I want to append a line to /etc/pam.d/sshd if a line with a certain
> module doesn't exist.
>
> What I would like to work is this:
>
> augeas { s
Hi all,
I'm trying to do something that should be pretty simple but can't
figure it out.
I want to append a line to /etc/pam.d/sshd if a line with a certain
module doesn't exist.
What I would like to work is this:
augeas { sshd_pam_mkhomedir:
context => "/files/etc/pam.d/sshd",
change
On Mon, Oct 4, 2010 at 10:57 AM, Felix Frank
wrote:
>
>
> Your clients cache the master's certificate.
>
I think thats the piece I was missing in my understanding... Thanks a lot.
So if the master's cert changes, does the client refuse the new master?
Mohamed.
--
You received this message bec
Thank you guys. Am still wondering, what happens if an old client
finds itself connecting to a new master? I know the master verifies
the client cert, but the client does not verify the server's, or am I
missing something?
Why would SSL fail if the master changes?
Thanks a lot.
Mohamed.
On Monday
- "Benjamin Kite" wrote:
> On Mon, Oct 4, 2010 at 4:47 PM, Mohamed Lrhazi
> wrote:
> > I was wondering how easy/hard is it for a hacker to control my
> hosts
> > by impersonating puppetmaster, say by poisoning DNS to point
> > puppet.dom.ain to their own server?
> > Are there reasosns why t
>> I was wondering how easy/hard is it for a hacker to control my hosts
>> by impersonating puppetmaster, say by poisoning DNS to point
>> puppet.dom.ain to their own server?
>> Are there reasosns why that would not work?
>
> The SSL layer and its key exchange mechanism should handle that.
New age
On 10/04/2010 04:52 PM, Benjamin Kite wrote:
> On Mon, Oct 4, 2010 at 4:47 PM, Mohamed Lrhazi wrote:
>> I was wondering how easy/hard is it for a hacker to control my hosts
>> by impersonating puppetmaster, say by poisoning DNS to point
>> puppet.dom.ain to their own server?
>> Are there reasosns
On Mon, Oct 4, 2010 at 4:47 PM, Mohamed Lrhazi wrote:
> I was wondering how easy/hard is it for a hacker to control my hosts
> by impersonating puppetmaster, say by poisoning DNS to point
> puppet.dom.ain to their own server?
> Are there reasosns why that would not work?
The SSL layer and its key
I was wondering how easy/hard is it for a hacker to control my hosts
by impersonating puppetmaster, say by poisoning DNS to point
puppet.dom.ain to their own server?
Are there reasosns why that would not work?
Thanks a lot.
Mohamed.
--
You received this message because you are subscribed to the
On 4/10/10 15:28, "Peter Meier" wrote:
>> err: Could not parse for environment production: No file(s) found for import
>> of 'classes/*' at /etc/puppet/manifests/site.pp:5 on node
>
> the error message is pretty clear. do you have anything in classes?
> 2.6.1 got more strict on that issue.
>
>
On 4/10/10 14:35, "John Hawkes-Reed" wrote:
> Hello.
>
> While trying to get to the bottom of a puppetmaster+unicorn+nginx rig that's
> serving empty files, it seemed to be a relatively sensible idea to upgrade
> the puppetmaster to 2.6.1
>
> This broke in a manner that seems to be the multiple
err: Could not parse for environment production: No file(s) found for import
of 'classes/*' at /etc/puppet/manifests/site.pp:5 on node
the error message is pretty clear. do you have anything in classes?
2.6.1 got more strict on that issue.
~pete
--
You received this message because you are
Hello.
While trying to get to the bottom of a puppetmaster+unicorn+nginx rig that's
serving empty files, it seemed to be a relatively sensible idea to upgrade
the puppetmaster to 2.6.1
This broke in a manner that seems to be the multiple-& bug.
Running the puppetmaster standalone gives the follo
Oliver,
we use CSM hook-scripts to validate any ''.pp'' or ''.erb'' files and it
works perfectly.
I recommend you look at INOTIFY kernel feature for wait for I/O events in
puppet modules directory. You can do that trought INCROND (
http://linux.die.net/man/8/incrond - crontab like) or homemade scri
Part of my rollout scripts contains a "puppet --parseonly" check of
all of our manifests and modules to do basic pre-runtime checks of
syntax (or so I thought). It basically finds all applicable modules
and echos an "import $MODULENAME" for each to the standard input of
puppet, to which I also pass
35 matches
Mail list logo
