Hi Lars,
I would be interested, could you send me further details please.
Best Regards
Martin Wheldon
On Mon, Feb 1, 2010 at 4:00 PM, Lars Tobias Børsting
wrote:
> We're hiring personnel with sysadmin experience in UNIX based systems.
> We want someone who has heard of puppet and likes automat
On Feb 1, 8:55 am, Doug Warner wrote:
> Since it's part of my base node that every box inherits, it's pretty painful
> to just ignore this one class. And as Dan said, this type of thing should be
> easily doable.
I'm not sure I follow that response. I think you're saying you don't
want to com
Hi,
is there a way to manage cron jobs by puppet with the builtin cron
ressource in extra files?
I use to manage my cron jobs below /etc/cron.d and a service own name, for
example /etc/cron.d/apache (which can contain many jobs).
If I remove my service apache from the system or migrate it to
Hi,
is there a way to manage cron jobs by puppet with the builtin cron
ressource in extra files?
I use to manage my cron jobs below /etc/cron.d and a service own name, for
example /etc/cron.d/apache (which can contain many jobs).
If I remove my service apache from the system or migrate it to
Hi,
we use puppetrun to manage our servers and one thing is missing that
would make my life much easier. Is there a way to start/stop/restart
services directly with puppetrun? I made some experiments but nothing
really worked out. I'm looking for something like this:
# puppetrun --host abcd --hos
I use the same layout and the only way it works for me was to create
file resources and distribute the files directly. After distribution i
call check_system_crontabs to rebuild the crontab based on cron
scripts in /etc/cron.d ...
afaik there's no way to use the cron type to accomplish this layout
Hi:
The pup...@sun case study recently posted to the RL blog [1] says they
use Puppet to make security patching easier. Anybody know how they do
that? Is there some magic in Puppet which makes patching Solaris easier?
Thanks!
Footnotes:
[1]
http://reductivelabs.com/2010/01/26/case-study-sun
Please ignore, sorry for the double posting
signature.asc
Description: This is a digitally signed message part.
# puppetrun --host abcd --host efgh --tag restart_my_service
It's easy to create a class to restart services but it then get
applied anytime i use puppetrun.
puppet's idea is to ensure that your system is in a certain state, and
if not do anything to achieve this state. However just executing
Am Tuesday 02 February 2010 schrieb mir Daniel Kerwin:
> I use the same layout and the only way it works for me was to create
> file resources and distribute the files directly. After distribution i
> call check_system_crontabs to rebuild the crontab based on cron
> scripts in /etc/cron.d ...
>
>
Zitat von Oliver Schad :
Am Tuesday 02 February 2010 schrieb mir Daniel Kerwin:
I use the same layout and the only way it works for me was to create
file resources and distribute the files directly. After distribution i
call check_system_crontabs to rebuild the crontab based on cron
scripts in
On Mon, Feb 1, 2010 at 8:53 PM, Scott Smith wrote:
> On 2/1/10 8:10 PM, nicholas wrote:
>>
>> Trying to manage my certs sanely, upgrading from 0.24.8 -> 0.25.3
>>
>> I setup one host as the CA and have all my clients point to that.
>> Then I have several puppetmaster's running on other hosts.
>>
Hi,
I know puppet allow me to describe the target state of my system and
changes the state automatically to that description.
In some situations you want to describe a process how things should go
maybe dependent on other systems where the order is important and maybe
you need some checks afte
I'm trying to figure out the best way to achieve the following...
Inside of each node definition, I have variables for ip address,
default router, dns server, etc. I have a jumpstart module that has
several different file resources that use templates. In each
template, I would like to be able to
On 02/02/2010 09:05 AM, jcbollinger wrote:
> I'm not sure I follow that response. I think you're saying you don't
> want to comment out the include, because you want it applied to other
> hosts. Fine, but what about the other alternative I suggested: using
> an "if" to selectively disable the cla
> So this is what you need:
>
> 1. Put your fact into a module - let's call it "custom".
>
> $ mkdir -p /etc/puppet/modules/custom/{manifests,lib}
> $ mkdir -p /etc/puppet/modules/custom/lib/facter
> $ touch /etc/puppet/modules/custom/manifests/init.pp
>
> 2. Copy your fact into /etc/puppet/module
> So this is what you need:
>
> 1. Put your fact into a module - let's call it "custom".
>
> $ mkdir -p /etc/puppet/modules/custom/{manifests,lib}
> $ mkdir -p /etc/puppet/modules/custom/lib/facter
> $ touch /etc/puppet/modules/custom/manifests/init.pp
>
> 2. Copy your fact into /etc/puppet/module
On 2/2/10 7:04 AM, Nigel Kersten wrote:
How are you running puppet? Are you using Passenger?
I found ca = false didn't work in the .conf file with Passenger, and I
instead had to add --no-ca to the args.
Weird, what version of Passenger are you using? I've got 2.2.5 and don't have
to do that
On Mon, Feb 01, 2010 at 05:30:47PM -0600, Anchi Zhang wrote:
> Greetings,
>
> CFEngine 2 (not sure about 3) allows groups definitions such as
>
> groups:
>ntp = { ntpserv1 ntpserv2 }
>
> and the ability to negate such as
>
> links:
> !ntp::
> /etc/inet/ntp.conf -> /e
Great explanation. Thank you very much.
On Tue, Feb 2, 2010 at 10:12 AM, Bruce Richardson wrote:
> On Mon, Feb 01, 2010 at 05:30:47PM -0600, Anchi Zhang wrote:
> > Greetings,
> >
> > CFEngine 2 (not sure about 3) allows groups definitions such as
> >
> > groups:
> >ntp = { ntpserv1
Mark,
On Feb 2, 3:39 pm, Mark Plaksin wrote:
> The pup...@sun case study recently posted to the RL blog [1] says they
> use Puppet to make security patching easier. Anybody know how they do
> that? Is there some magic in Puppet which makes patching Solaris easier?
>
since I'm the one who said
Hi List!
So I was talking with several folks on IRC this morning, and we came up
with an idea.
One of the strengths of Puppet is it has a very large community with
tons of systems administration experience.This is huge. I'd like to
unite that experience more closely, so that this power
Oliver Schad wrote:
Hi,
I know puppet allow me to describe the target state of my system and
changes the state automatically to that description.
In some situations you want to describe a process how things should go
maybe dependent on other systems where the order is important and maybe
yo
Peter Meier wrote:
# puppetrun --host abcd --host efgh --tag restart_my_service
It's easy to create a class to restart services but it then get
applied anytime i use puppetrun.
puppet's idea is to ensure that your system is in a certain state, and
if not do anything to achieve this state. How
Hey,
I've been trying to figure out how to run multiple puppetmasterd
instances on one machine - perhaps on separate ports. Can anyone
advise me if this is a bad idea, or if not, how to go about doing
this?
I'm trying to maintain puppet on an existing set of machines while
refactoring the same ma
Is there an option to purchase support for Puppet ?
-ALF
--
You received this message because you are subscribed to the Google Groups
"Puppet Users" group.
To post to this group, send email to puppet-us...@googlegroups.com.
To unsubscribe from this group, send email to
puppet-users+unsubscr...@
On Tue, Feb 2, 2010 at 8:03 AM, Scott Smith wrote:
> On 2/2/10 7:04 AM, Nigel Kersten wrote:
>>
>> How are you running puppet? Are you using Passenger?
>>
>> I found ca = false didn't work in the .conf file with Passenger, and I
>> instead had to add --no-ca to the args.
>>
>
> Weird, what version
Just one more email and I'll let you go for a few hours :)
One of the things I like to see in apps is that they are immediately
intuitive and easy to use for new users. I think Puppet is really good
here, but there's opportunity to make everything better. We want
everyone to love Puppet fro
I've been trying to figure out how to run multiple puppetmasterd
instances on one machine - perhaps on separate ports. Can anyone
advise me if this is a bad idea, or if not, how to go about doing
this?
I'm trying to maintain puppet on an existing set of machines while
refactoring the same manifes
Zitat von Angelo Fazzina <96ssimp...@gmail.com>:
Is there an option to purchase support for Puppet ?
yeah, ask reductivelabs.
cheers pete
--
You received this message because you are subscribed to the Google Groups "Puppet
Users" group.
To post to this group, send email to puppet-us...@goog
On 2/2/10 9:06 AM, Nigel Kersten wrote:
I thought ca = false was working until I actually verified that it
wasn't operating as a CA.
This is with puppet 0.24.8 btw.
Ahhh, I'm using 0.25.x
-scott
--
You received this message because you are subscribed to the Google Groups "Puppet
Users" gro
Angelo Fazzina wrote:
Is there an option to purchase support for Puppet ?
-ALF
Absolutely!We also provide training and consulting around Puppet.
Start here -- http://reductivelabs.com/services/ -- fill out the contact
form and we'll get back to you very quickly.
Thanks!
--Michael
Thomas wrote:
Hey,
I've been trying to figure out how to run multiple puppetmasterd
instances on one machine - perhaps on separate ports. Can anyone
advise me if this is a bad idea, or if not, how to go about doing
this?
I'm trying to maintain puppet on an existing set of machines while
refacto
On Feb 2, 2010, at 8:24 AM, Angelo Fazzina wrote:
Is there an option to purchase support for Puppet ?
There definitely is - Reductive Labs (the company I founded when I
started the Puppet project) provides support, training, and other
professional services around Puppet. One of our favor
Basically, you set up a web proxy with your web server of choice to
handle SSL connections, and then you can start as many puppetmasterd
instances as you need.
See one of the following:
http://reductivelabs.com/trac/puppet/wiki/UsingMongrel
http://reductivelabs.com/trac/puppet/wiki/UsingMongrelNgi
I am trying to log to a file instead of syslog, but when I set
"puppetdlog = /var/log/puppetd.log", it still logs to syslog. If also
set "syslogfacility =", it doesn't log anywhere.
Does this work for anyone else?
--
You received this message because you are subscribed to the Google Groups
"Pu
With Puppet, if you're just learning it, what were some of your
stumbling blocks? If you are an existing user, think back to that
time, or times when you were talking with new users?
* ssl
* ssl
* dns
* ssl certificates
* language details
* the whole puppet-doesn't-execute-things-philosophy
Thomas wrote:
Hey,
I've been trying to figure out how to run multiple puppetmasterd
instances on one machine - perhaps on separate ports. Can anyone
Why bother fussing with ports when you can just use another interface?
-scott
--
You received this message because you are subscribed to the Go
On Feb 2, 10:38 am, Michael DeHaan wrote:
> What do you think?
Please forgive me, but I am apprehensive about some of those ideas.
One of the reasons Puppet is great is that it is organized around a
compact goal and consistent operating and design principles. Its
goal is to achieve and mainta
So I have 0.25.3
I found this in the code
puppet/ssl/certificate_authority.rb
class Puppet::SSL::CertificateAuthority
def self.ca?
return false unless Puppet[:ca]
return false unless Puppet[:name] == "puppetmasterd"
return true
end
end
Basicall
+--
| On 2010-02-02 08:22:40, Martin Englund wrote:
|
| We have also used a custom facts to gather info from all systems, and
| report back if they are vulnerable to a specific issue or not.
I wouldn't mind seeing the fac
> I wouldn't mind seeing the facts.
Me neither if possible.
--
You received this message because you are subscribed to the Google Groups
"Puppet Users" group.
To post to this group, send email to puppet-us...@googlegroups.com.
To unsubscribe from this group, send email to
puppet-users+unsubscr
Hi,
We have several puppetmasters running with ca= false and passenger. They are
currently 0.25.3 but were at some point 0.24.8.
Basically, once you have setup your ca, in a node intended to be puppetmaster,
run the client FIRST with ca_server pointing to your ca. The client generates
the certi
Peter Meier wrote:
With Puppet, if you're just learning it, what were some of your
stumbling blocks? If you are an existing user, think back to that
time, or times when you were talking with new users?
* ssl
* ssl
* dns
* ssl certificates
Definitely understand this whole confusion point.
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On 3/02/10 3:27 AM, Michael DeHaan wrote:
> Hi List!
>
> So I was talking with several folks on IRC this morning, and we came up
> with an idea.
>
> One of the strengths of Puppet is it has a very large community with
> tons of systems administrati
> I'd love to see this get off the ground. There have been a couple
> of attempts at it - and you can see some background at:
+1. I'd love to see better platform support for the modules that we have.
J.
--
Julian Simpson
Software Build and Deployment
http://www.build-doctor.com
http://twitter
James Turnbull wrote:
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On 3/02/10 3:27 AM, Michael DeHaan wrote:
Hi List!
So I was talking with several folks on IRC this morning, and we came up
with an idea.
One of the strengths of Puppet is it has a very large community with
tons of syste
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
>> * did I mention ssl?
>>
> I think you did!
Well I think this point is/was anyway obvious, unfortunately. SSL Certs
can be get complicated and they are very strict. But this is how they
work and it is good that they work that way. And that's exactly
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On 3/02/10 9:55 AM, Michael DeHaan wrote:
> Can we start by grafting together everyone's modules and trying to
> namespace them?
Sounds good. Puppet module collection owners? Alessandro? David?
Others?
> Git subtree merge preserves attribution ni
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On 3/02/10 10:03 AM, Peter Meier wrote:
>>> * did I mention ssl?
>>>
>> I think you did!
+1 SSL although I wonder how this could be implemented?
Time/NTP.
Regards
James Turnbull
- --
Author of:
* Pro Linux System Administration (http://tinyurl.co
I think some really interesting things could be done around a much more
flexible require => infrastructure that would allow various things such as
global requires, requires that trigger tests in some fashion on other hosts.
I could conceive of some kind of functionality whereby test{} exists in
mo
I'm building modules for the various web services I manage and I'm
running into trouble in defining the dependencies. For example, two
of my services require the same Apache module. If I define the
package resource in both modules and then try to include them both on
a single node, I get a "Dupli
I solved the duplicate definition error with virtual resources and realize.
I have a base class base::packages which lists every package I could want as
a virtual resource i.e.
@package{"mod_ssl":
provider => yum,
ensure => present
}
This class is included for every host and when ever I need
Ashley Penney wrote:
I think some really interesting things could be done around a much
more flexible require => infrastructure that would allow various
things such as global requires, requires that trigger tests in some
fashion on other hosts. I could conceive of some kind of
functionality w
jcbollinger wrote:
On Feb 2, 10:38 am, Michael DeHaan wrote:
What do you think?
Please forgive me, but I am apprehensive about some of those ideas.
One of the reasons Puppet is great is that it is organized around a
compact goal and consistent operating and design principles. Its
go
On Tue, 02 Feb 2010 12:08:29 -0500, Michael DeHaan
wrote:
> With Puppet, if you're just learning it, what were some of your
> stumbling blocks? If you are an existing user, think back to that
> time, or times when you were talking with new users?
First and foremost on my list is the ability
On Wed, Feb 3, 2010 at 9:27 AM, James Cammarata wrote:
> I've found the puppetrun utility to be very lacking, in many ways, and have
> resorted to my own scripts to trigger runs. This script runs using ssh to
> hit servers, which is unfortunately not ideal right now since it operates
> in a seri
On Tue, Feb 2, 2010 at 9:02 PM, Ohad Levy wrote:
>
>
> On Wed, Feb 3, 2010 at 9:27 AM, James Cammarata wrote:
>
>> I've found the puppetrun utility to be very lacking, in many ways, and
>> have
>> resorted to my own scripts to trigger runs. This script runs using ssh to
>> hit servers, which is
On 3 February 2010 14:05, Michael DeHaan wrote:
> As an aside -- I see puppetd and /usr/sbin/puppet share many common options,
> but not quite all of them. Possibly these could be unified.
>
The plan is to unify all the binaries (in fact I think the code is
written and is planned for Rowlf) in
On 2/2/10 7:57 PM, James Turnbull wrote:
The plan is to unify all the binaries (in fact I think the code is
written and is planned for Rowlf) in the style of git so,
$ puppet ca
$ puppet master
$ puppet client
$ puppet doc
etc, etc
(So puppt check fits).
Obviously existing binaries will contin
On Tue, 02 Feb 2010 20:14:50 -0800, Scott Smith wrote:
> On 2/2/10 7:57 PM, James Turnbull wrote:
>> The plan is to unify all the binaries (in fact I think the code is
>> written and is planned for Rowlf) in the style of git so,
>>
>> $ puppet ca
>> $ puppet master
>> $ puppet client
>> $ puppet
On 2/2/10 8:18 PM, James Cammarata wrote:
Symlinks wouldn't work, I'd just make them shell scripts.
Wait, what? Checking $0 and loading client, server or doc code would work just
fine. :)
-scott
--
You received this message because you are subscribed to the Google Groups "Puppet
Users" gr
On 3 February 2010 15:14, Scott Smith wrote:
> On 2/2/10 7:57 PM, James Turnbull wrote:
>>
>> The plan is to unify all the binaries (in fact I think the code is
>> written and is planned for Rowlf) in the style of git so,
>>
>> $ puppet ca
>> $ puppet master
>> $ puppet client
>> $ puppet doc
>> e
63 matches
Mail list logo
