*array*, whose only member is "master" or
"slave". That array is never going to equal a string (but as it turns
out, it will stringify into the string value you expect).
Change that to:
$dns_role = $hostname ? {
/dns01/ => 'master',
default =>
s not
particularly performance-critical and doesn't suffer from the performance
issues of Webrick.
--
Russ Allbery (r...@stanford.edu) <http://www.eyrie.org/~eagle/>
--
You received this message because you are subscribed to the Google Groups
"Puppet Users" gr
ring multiple Puppet runs.
We too consider this to be a bug, but it's a low-priority bug that we fix
when we notice it, which can take a while.
--
Russ Allbery (r...@stanford.edu) <http://www.eyrie.org/~eagle/>
--
You received this message because you are subscribed to the Go
eing lots of instability in Puppet in
the Debian kfreebsd ports, which are Debian userspaces with the FreeBSD
kernel. Our suspicion so far has been Ruby bugginess with FreeBSD.
--
Russ Allbery (r...@stanford.edu) <http://www.eyrie.org/~eagle/>
--
You received this message because
;" } }
node "krosp" inherits "default" { Broken["message"] { value => "not " } }
define broken($value) { notice("This is ${value}broken") }
I'm pretty sure you'd get the behavior you expected.
--
Russ Allbery (r...@stanford.edu)
package::stable and overriding the ensure type (to latest
instead of present). If you do that, you don't need to disable
package::stable.
--
Russ Allbery (r...@stanford.edu) <http://www.eyrie.org/~eagle/>
--
You received this message because you are subscribed to the Googl
end against replacing
the cron job with just mailing out a clean report, and we don't use
cryptographically signed binaries, although we keep thinking about a
project to do both of those.)
--
Russ Allbery (r...@stanford.edu) <http://www.eyrie.org/~eagle/>
--
You received th
Douglas Garstang writes:
> On Sat, Apr 24, 2010 at 4:27 PM, Russ Allbery wrote:
>> I think that if you're installing Tripwire policy files on local disk,
>> I would take a step back and see if you have a better design available.
>> Tripwire is the poster child for som
eed a way of
doing the system verification run that the attacker can't just replace
with a cron job that mails you a copy of a clean report, although to some
extent you can rely on lazy attackers who don't find things like that.
--
Russ Allbery (r...@stanford.edu) <http://w
We used to use them in Subversion since it was nice to know when a file
changed, but we stripped them all out when we switched to Git and haven't
missed them.
--
Russ Allbery (r...@stanford.edu) <http://www.eyrie.org/~eagle/>
--
You received this message because yo
n dpkg-
> statoverride).
Under most circumstances, though, all you need to do is ensure that the
files have the correct ownership in the *.deb when you create it and then
dpkg will do the correct thing when installing the package.
--
Russ Allbery (r...@stanford.edu) <http://
I rarely do.
> Chrome and Safari on OS X.
Wow, with Firefox on Linux, the font is still too small, although it's
closer to being large enough than most web sites.
screen #0:
dimensions:1600x1200 pixels (411x311 millimeters)
resolution:99x98 dots per inch
--
Russ Allbery (r.
SyRenity writes:
> Is there any advantage of using Git vs SVN when using puppet?
We just finished switching from Subversion to Git because we wanted Git's
merging and cherry-pick support for maintaining separate production and
development branches of our manifests.
--
Russ Al
ing the policy of running Puppet in production.
--
Russ Allbery (r...@stanford.edu) <http://www.eyrie.org/~eagle/>
--
You received this message because you are subscribed to the Google Groups
"Puppet Users" group.
To post to this group, send email to puppet-us...@goo
m the old branch over to the new branch on a quarterly cycle according
to the requirements of that production environment. That way, all servers
benefit from general architectural changes, but those changes are
thoroughly tested first in the test/dev environments (which will all point
to the maste
r than relying on debian-installer and
all packages to support the preseeds that you want.
--
Russ Allbery (r...@stanford.edu) <http://www.eyrie.org/~eagle/>
--
You received this message because you are subscribed to the Google Groups
"Puppet Users" group.
To pos
server, etc.
> This e-mail is to basically gather thoughts and see if it's worth filing
> a debian bug to get this functionality into the .deb.
Out of curiosity, why not use FAI?
--
Russ Allbery (r...@stanford.edu) <http://www.eyrie.org/~eagle/>
--
You received
problem).
Although that doesn't explain why running facter with grep works
--
Russ Allbery (r...@stanford.edu) <http://www.eyrie.org/~eagle/>
--~--~-~--~~~---~--~~
You received this message because you are subscribed to the Google Groups
"
lly only affects the command-line invocation (although I don't know
what happens if you use facter in a different Ruby program).
--
Russ Allbery (r...@stanford.edu) <http://www.eyrie.org/~eagle/>
--~--~-~--~~~---~--~~
You received this messag
thout options. I
think there may have been some subsequent work to improve this, but I'm
not sure.
--
Russ Allbery (r...@stanford.edu) <http://www.eyrie.org/~eagle/>
--~--~-~--~~~---~--~~
You received this message because you are subscribed
> it should be less than 500 ( no equal ). I could use resources { user:
> purge => true , unless_system_user => "499" } , but IMHO , 'less than'
> in the puppet code would be better.
> yes? no? maybe?
Yup, that looks like a bug to me too.
--
Russ Allbery
s { user: purge => true }
Then you don't have to generate removal rules for users, just make sure
that you have all the users defined that you want.
--
Russ Allbery (r...@stanford.edu) <http://www.eyrie.org/~eagle/>
--~--~-~--~~~---~--~~
You
You
should always use update-alternatives rather than manipulating the file
system to change alternative selections.
--
Russ Allbery (r...@stanford.edu) <http://www.eyrie.org/~eagle/>
--~--~-~--~~~---~--~~
You received this message because you a
e few FIN_WAIT2 status on port 8140. Will `apache2-threaded-dev'
> fix those network status hang issues as well?
No. That package is purely the development environment and libraries for
building Apache modules and has nothing to do with the running server.
--
Russ Allbery (r...@stanf
from either direction, but the way that we've found makes
the most sense to us is to make the thing that should go second require
the thing that should go first. You do that with the require parameter
on the Puppet resource.
--
Russ Allbery (r...@stanford.edu) &
here.
Everyone seems to get confused about what the --pidfile option to
start-stop-daemon does. It doesn't create anything at all. It just
says where to find something that the daemon is creating.
--
Russ Allbery (r...@stanford.edu) <http://www.eyrie.org/~eagle/>
--~--~---
rous for a developer who wanted
to make private modifications.
I'm not sure it's a big enough problem to warrant not using it, but it's
something to be aware of. It makes people more nervous than the GPL does.
--
Russ Allber
- thank you very much for doing this!
--
Russ Allbery (r...@stanford.edu) <http://www.eyrie.org/~eagle/>
--~--~-~--~~~---~--~~
You received this message because you are subscribed to the Google Groups
"Puppet Users" group.
To post
Thanks.
As long as you can install the package from Debian unstable directly on
stable, which has always been the case, it's against the policy of
backports.org to accept an upload. There's more information on
backports.org.
--
Russ Allbery (r...@stanford.edu)
ckages rather
than doing this. Otherwise, you're just duplicating effort.
--
Russ Allbery (r...@stanford.edu) <http://www.eyrie.org/~eagle/>
--~--~-~--~~~---~--~~
You received this message because you are subscribed to the Google Groups
"Pup
k solid stability is a slower
> release cycle and thus older packages.
Er, given that you can just install the Debian Puppet packages from
unstable, this doesn't make any sense to me. There's no release delay in
getting new Puppet packages into Debian, just someone having the time to
the standard Puppet
packages. There isn't a 0.24.8 package yet, but I suspect there will be
fairly quickly. Once there is, although it will be uploaded for Debian
sid, you can download it from packages.debian.org and install it on an
older Debian system.
--
Russ Allbery (r...@stanford.edu)
have had considerably better luck
with it and swear by it.
--
Russ Allbery (r...@stanford.edu) <http://www.eyrie.org/~eagle/>
--~--~-~--~~~---~--~~
You received this message because you are subscribed to the Google Groups
"Puppet Users&q
ian_version, which is shipped in base-files.
--
Russ Allbery (r...@stanford.edu) <http://www.eyrie.org/~eagle/>
--~--~-~--~~~---~--~~
You received this message because you are subscribed to the Google Groups
"Puppet Users" group.
To post to
y personal systems, Debian
testing on my primary desktop, and Debian stable on my personal servers.)
--
Russ Allbery (r...@stanford.edu) <http://www.eyrie.org/~eagle/>
--~--~-~--~~~---~--~~
You received this message because you are subscribed
g
> out from ruby or rails mode.
I found the most useful mode to use as an example when I was working on it
earlier to be the Tcl mode, but I'm not sure it implements those features.
--
Russ Allbery (r...@stanford.edu) <http://www.eyrie.org/~eagle/>
--~--~-~--~
ings, but
I'd certainly be happy to help check any changes you come up with.
I do have a slightly more recent version than what's currently in Git and
hadn't figured out how to use Redmine to submit a patch. I'll add that to
my to-do list.
--
Russ Allbery
and lets each module for a
particular application open its own ports by installing an iptables
fragment.
The goal in the long run is to remove the script and the installed
fragments with native Puppet management of the iptables rules.
--
Russ Allbery ([EMAIL PROTECTED]) <http
are
being upgraded and to watch. Puppet can't prompt an administrator, so if
something goes wrong with the package installation, things can be left in
a half-installed state.
--
Russ Allbery ([EMAIL PROTECTED]) <http://www.eyrie.org/~eagle/>
--~--~-~--~~
39 matches
Mail list logo
