Hi
That was kind of pseudo code. In your example something like this:
setcode do
%x{hostname}.scan(regex goes here)
end
Den
On 25/08/2011, at 15:52, newguy wrote:
>>> setcode do
>>>%x{hostname -s|cut -c 1-2}.chomp
--
You received this message because you are subscribed to
Hi Nan,
Thanks for the reply. I think I should re-frame the question as I
don't think I was at all clear.
What we are looking for is a way to prevent the puppet agent from ever
sending a request to the master if it cannot verify the certificate
chain. We will handle the secure transfer of certifi
Hey Denmat
Thanks for all your help but it seems that my little/no knowledge of
ruby is creating a problem, I did what you suggested to get the
following:
sh: Syntax error: word unexpected (expecting ")")
Here is the code:
require 'facter'
Facter.add("envt") do
setcode do
%x{host
Hello,
I am trying to use augeas via puppet,
augeas { "mailops":
context => "/files/etc/sudoers",
changes => [
"set spec[user = '%mail-ops']/user %mail-ops",
"set spec[user = '%mail-ops']/host_group/host ALL",
"set spec[user = '%mail-ops']/host_group/command[1] \"/bin/su imail
\"",
On Aug 25, 2011, at 9:05 AM, Vincent wrote:
> the augeas tool doesn't return anything when I am trying to get the
> actual spec
> augtool> print /files/etc/sudoers
> augtool>
>
> How can I test augtool ?
>From http://projects.puppetlabs.com/projects/puppet/wiki/Puppet_Augeas
“You can see which
yes it was as root, why the ls /etc doesn't return the sudoers ?
# augtool
augtool> ls /files/etc/sudoers
augtool> ls /files/etc/
modprobe.d/ = (none)
puppet/ = (none)
sysconfig/ = (none)
default/ = (none)
environment = (none)
ntp.conf/ = (none)
inittab/ = (none)
services/ = (none)
grub.conf/ = (
On Aug 24, 8:43 pm, newguy wrote:
> Hi guys
> I have a custom fact envt, it was working fine but now I have to make
> some changes in it;
> puppet client's hostname is of the type 1234qa-abc-de.local where 1234
> can be any thing of any length.My custom fact should contain qa, ie I
> want to che
Every time a client checks in with the puppetmaster, I receive the
following error in the client logs:
Wed Aug 24 19:55:27 + 2011 Puppet (notice): Starting Puppet client
version 0.25.5
Wed Aug 24 19:56:05 + 2011 Puppet (err): Could not prefetch
package provider 'yum': Execution of '/usr/bi
Disclaimer - I know nothing of actually doing what this article is
referring to and it's impact on puppet, and I'm a relative puppet
newb. I just happened to understand your question :)
This is likely of interest to you:
http://www.rubyinside.com/how-to-cure-nethttps-risky-default-https-behavior-
I am getting this error:
puppet puppet-master[16756]: PGError: ERROR: relation
"inventory_nodes" does not exist LINE 4: WHERE a.attrelid
=
'"inventory_nodes"'::regclas...
^ : SELECT a.attname, format_type(a.atttypid,
a.atttypmod), d.adsrc, a.attnotnull FROM
- Original Message -
> plugins: fastestmirror
> Could not retrieve mirrorlist
> http://mirrorlist.centos.org/?release=6&arch=x86_64&repo=os
> error was
> 12: Timeout on
> http://mirrorlist.centos.org/?release=6&arch=x86_64&repo=os:
> (28, '')
Your machine cant talk to the mirror list.
As a 'work-around' (and no, I don't really like this either) you could use file
attributes (chattr +i [filename]) or mandatory access controls to prevent the
server certificate from being modified on your clients after it's been received
securely.
Not a Puppet/Webrick/Apache fix but it is a se
On Aug 22, 2:58 pm, Brad Krane wrote:
> John,
>
> Thanks for the reply. I've tried all of your suggestions above,
> qualifying it as drupal6::drupal6::theme_repo and just theme_repo as
> well as putting the definition in its own file modules/drupal6/
> manifests/theme_repo.pp (and also using the
On Thu, Aug 25, 2011 at 8:42 PM, It Dept wrote:
> Hi Nan,
>
> Thanks for the reply. I think I should re-frame the question as I
> don't think I was at all clear.
>
> What we are looking for is a way to prevent the puppet agent from ever
> sending a request to the master if it cannot verify the cer
On Wednesday, August 24, 2011 6:38:21 PM UTC-4, Nan Liu wrote:
>
> On Wed, Aug 24, 2011 at 2:23 PM, jblaine wrote:
> > 2.7.3
> > The heck? ${path} is expanding to the shell environment PATH when I
> > reference it as a variable
> > in my file resource. Isn't this supposed to be the "namevar" for
On 25/08/11 16:05, Horacio Sanson wrote:
> snip
> For me this was a problem rather than a feature and the problem was
> mainly because nginx (version < 1.0.0) did not support optional ssl
> client verification as Apache does. With nginx 1.0.5 I can set
> ssl_verify_client to optional and now my ne
Thanks for the suggestions, these have given us some possibilities to
look at.
Just to be clear: Is there no built in way to force the puppet client
to NEVER retrieve certificates/CA without verifying the certificate
chain first? (without hacking through code)
Thanks again
--
You received this
On Thu, Aug 25, 2011 at 8:02 AM, It Dept wrote:
> Thanks for the suggestions, these have given us some possibilities to
> look at.
>
> Just to be clear: Is there no built in way to force the puppet client
> to NEVER retrieve certificates/CA without verifying the certificate
> chain first? (withou
On Aug 25, 2011, at 9:35 AM, Vincent wrote:
> yes it was as root, why the ls /etc doesn't return the sudoers ?
On Aug 25, 2011, at 9:23 AM, Rob McBroom wrote:
> If a file hasn’t been properly parsed by Augeas, it simply won’t show up.
> This could mean that the file has a syntax error, the file
On Thu, Aug 25, 2011 at 07:44:46AM -0700, jblaine wrote:
> On Wednesday, August 24, 2011 6:38:21 PM UTC-4, Nan Liu wrote:
> >
> > On Wed, Aug 24, 2011 at 2:23 PM, jblaine wrote:
> > > 2.7.3
> > > The heck? ${path} is expanding to the shell environment PATH when I
> > > reference it as a variable
Ahhh. I see: (thinking out loud for my own clarity) I'm trying to reference
it as a variable available to me, but it exists as a variable a layer below
my view. I can only specify the value it should be set to, but not make
reference to it explicitly as ${path} (or ${command} or...). To do wh
On Tue, 23 Aug 2011 12:05:30 +0200, Jakov Sosic wrote:
>
> On 08/22/2011 06:29 PM, Mike Lococo wrote:
>
> > This is a long-standing bug, and one that I consider fairly major but
> > has been hard to get puppetlabs focused on.
> >
> > - The circular deps bug was reported 2 years ago.
> > http:/
On Thu, Aug 25, 2011 at 8:02 AM, It Dept wrote:
> Thanks for the suggestions, these have given us some possibilities to
> look at.
>
> Just to be clear: Is there no built in way to force the puppet client
> to NEVER retrieve certificates/CA without verifying the certificate
> chain first? (without
Is it possible to create a user from a hash variable? For example,
depending on location, and other factors I need to either set a UID on a
user, and possibly set a password, and shell. If the server is in a
different location though, I don't want to set the UID, or a password.
Is it possible
Hello guys,
I use stages for defining a kind of order about how the things are done in
my automations. I’ve defined four different stages: boot, os, service and
online. We also have Main stage. The issue I found today may be derived from
a incorrect usage of class inheritance, or run stages. Let
On 08/25/2011 01:35 PM, Jacob Helwig wrote:
I would expect Puppet to end up installing and uninstalling packages
every run, since it has no knowledge of the package dependencies.
This kind of thing won't happen unless one manually specifies an
impossible state, and even then I'm not sure that
Passenger 2.2.x or 3.0.x will work with Puppet 2.7.x. If you're using
Rails, stick with 2.3, but you need 2.3.5 or later.
In my case I built a new Puppet server, rsync'ed /etc/puppet/ and /var/
lib/puppet over from the current master, and everything just worked.
I've got some complaints about dyna
Hello,
We need to migrate ~3000 machines to a new puppet server.
What is the recommended method of doing this, considering the cert issues?
Thanks,
-Roy Nielsen
--
You received this message because you are subscribed to the Google Groups "Puppet
Users" group.
To post to this group, send email
All, I am not sure if I am approaching this in the right manner, but if I
have the following yaml file, and I am using extlookup() to grab the data:
---
erased_config:
instances:
- { id: 0, metrics_port: 2, host_name: hsync00, mount_point: /,
assign_new_users: false }
- { id: 1, metr
Perhaps the create_resources (
http://docs.puppetlabs.com/references/2.7.3/function.html#createresources)
function is what you're looking for?
On Thu, Aug 25, 2011 at 11:32 AM, Kevin Wolf wrote:
> Is it possible to create a user from a hash variable? For example,
> depending on location, and ot
On Aug 25, 2:52 pm, Ricardo Bartolome Mendez
wrote:
> Hello guys,
>
> I use stages for defining a kind of order about how the things are done in
> my automations. I’ve defined four different stages: boot, os, service and
> online. We also have Main stage. The issue I found today may be derived f
On Thu, 25 Aug 2011, Mike Lococo wrote:
2) You must understand how the yum and rpm os commands work, and
specifically how they each handle dependencies and circular deps
(yum works to satisfy deps, rpm fails unless all deps are specified
on a single command-line).
The use of verb forms p
Perhaps I'm being dense, but I don't follow how your response relates to
managing packages that have circular deps in puppet.
The original question was how to delete two packages with circular deps
using puppet. The correct answer is to ensure "purged". The problem
with that answer is that it
Did this recently, basically:
Create a new module to do the work, that:
Upgrades the client
Drops in a new config
Removes old cert from client
Bounces the service
Did about 98% of our ~1600 systems with this, worked well, moved things as
they checked in instead of one big push.
On Aug 25, 2011 4
You can confirm that by trying to run yum outside of puppet.
On Thu, Aug 25, 2011 at 8:42 AM, R.I.Pienaar wrote:
>
>
> - Original Message -
>
> > plugins: fastestmirror
> > Could not retrieve mirrorlist
> > http://mirrorlist.centos.org/?release=6&arch=x86_64&repo=os
> > error was
> > 12:
On Thu, Aug 25, 2011 at 1:31 PM, Roy Nielsen wrote:
> Hello,
>
> We need to migrate ~3000 machines to a new puppet server.
>
> What is the recommended method of doing this, considering the cert issues?
Not much, just make sure you generate a cert for the new puppet master
using the existing CA ce
36 matches
Mail list logo
