On 15/09/11 07:59, slune wrote:
> Hi,
>
> I have defined mount resource like this:
>
> mount { "/mnt/test/":
> device => "//test/test",
> fstype => cifs,
> ensure => mounted,
> options=> "defaults,acl,soft,uid=test,gid=test=x","
> remounts => true,
> }
>
> Fo
Hi,
we use kerberos with keytabs on our clients. We do *not* trust root on
the clients! One client should never have access to any other client's
keytab. This is my proposed solution to get the keytabs to the clients,
any comments welcome!
1. Use file to get /root/.ssh/authorized_keys
2. Use expo
On 15/09/11 04:24, Jon Forrest wrote:
In fact, this is only a special case of the more
general problem of getting access to any file generated
by a puppet run without actually putting the files
in the ultimate destination. In other words, it would
be like a --test run except files will be generat
On Wed, 14 Sep 2011 15:16:45 +0200
Arnau Bria wrote:
> Hi all,
Hi !
I reply myself... maybe it's useful for someone in the future.
> I'm planning to upgrade our server/client to 2.7 and would like to
> completely understand the big change in the dynamic scope deprecation.
>
>
> It says that 2
Hello Jon,
Here is a process that I follow to avoid the type of misconfiguration
problem you encountered. This process is used to *avoid* the mis-
configured system problem. It is not a direct test that Puppet will
generate a valid configuration file from a template.
1) A "local" environment is
Everyone's right, you don't want puppet to do application
deployments. You want it to setup your application server, but stop
there.
Case in point, use Puppet to setup Rails/LAMP/Tomcat, but don't use it
to deploy your actual application. Instead use Capistrano, Fabric,
Func, etc.
If you're alr
Are you guys doing anything to protect our email addresses? Ever since I
made my first post on here, I have been getting some VERY malicious stuff
coming to my account?
--
You received this message because you are subscribed to the Google Groups
"Puppet Users" group.
To post to this group, send
I blame Luke himself.
...wait what?! It's google groups, bro
On Sep 15, 2011 7:08 AM, "Matthew Hand" wrote:
> Are you guys doing anything to protect our email addresses? Ever since I
> made my first post on here, I have been getting some VERY malicious stuff
> coming to my account?
>
> --
> You r
Hi everybody
We would like to have the possibility to use definitions in an
external node classifier.
There is already a ticket about this with a possible solution:
https://projects.puppetlabs.com/issues/2408 .
We are open for other solutions and your opinions about "naked
resources on site.pp le
Hi,
probably a bit noobish question, but browsing docs and googling didn't
provide an answer for my problem, so maybe someone here can help.
I have a modules for managing users layout something like this (named
'users')
account.pp
init.pp
usergroup-a.pp
usergroup-b.pp
account.pp is where is def
Hi
Passenger is a rack application - will run out of httpd .
Have you got anything like the following in your passenger (httpd)
configuration file:
DocumentRoot /etc/puppet/rack/public/
RackBaseURI /
Options None
AllowOverride None
Background: the vixie-cron documentation states (and crontab -e
agrees) that leading whitespace in crontab files is acceptable, and it
is simply ignored. It is therefore possible to have valid crontabs
with indentation.
However, the puppet provider - crontab.rb - only allows for leading
whitespace
On 9/15/2011 7:08 AM, Matthew Hand wrote:
Are you guys doing anything to protect our email addresses? Ever since I
made my first post on here, I have been getting some VERY malicious
stuff coming to my account?
If you get malicious email as a result of posting to any email list
then I suggest y
Here's a script that should deploy a stack with apache+passenger for
you (tested on CentOS 6);
https://raw.github.com/mstanislav/Veewee-Definitions/master/CentOS-6_x86_64-PuppetStack/postinstall.sh
Maybe you can take a look at the steps and see if there's something
you're missing.
Hope it helps!
On Thu, Sep 15, 2011 at 7:29 AM, Jon Forrest wrote:
> On 9/15/2011 7:08 AM, Matthew Hand wrote:
>
>> Are you guys doing anything to protect our email addresses? Ever since I
>> made my first post on here, I have been getting some VERY malicious
>> stuff coming to my account?
>>
>
> If you get mal
On Thu, Sep 15, 2011 at 1:44 AM, Raffael Schmid wrote:
> Hi everybody
>
> We would like to have the possibility to use definitions in an
> external node classifier.
> There is already a ticket about this with a possible solution:
> https://projects.puppetlabs.com/issues/2408 .
>
> We are open for
On Sep 14, 2011, at 8:24 PM, Jon Forrest wrote:
> On 9/14/2011 1:58 PM, Dominik Zyla wrote:
>
>> named-checkzone(8) should be suitable tool for your needs.
>
> I already knew that. To repeat, what I'm trying to find out
> is a way to get an expanded template without doing a full
> run of puppet
On Thu, Sep 15, 2011 at 7:46 AM, Nigel Kersten wrote:
>
> Seriously, it is Google Groups, so you get the protection it offers,
> requiring logins and CAPTCHA to view full email addresses on the web
> archives, etc etc, but it's difficult to stop people subscribing to lists
> and collecting addres
On 15/09/11 10:34, Bjorge Solli wrote:
> Hi,
>
> we use kerberos with keytabs on our clients. We do *not* trust root on
> the clients! One client should never have access to any other client's
> keytab. This is my proposed solution to get the keytabs to the clients,
> any comments welcome!
>
> 1.
On Wed, Sep 14, 2011 at 12:33 PM, Gary Larizza wrote:
>
>
> On Wed, Sep 14, 2011 at 11:12 AM, Kenton Brede wrote:
>>
>> I'm attempting to move from a working puppetmaster setup to
>> Apache/Passenger. I'm following the instructions in the Pro Puppet
>> book. I'm using the epel repo and running
On Wed, Sep 14, 2011 at 11:30 PM, Ashwin N wrote:
> Hi
>
> Passenger is a rack application - will run out of httpd .
>
> Have you got anything like the following in your passenger (httpd)
> configuration file:
>
> DocumentRoot /etc/puppet/rack/public/
> RackBaseURI /
>
>
I inherited a puppet install from a former sys admin at my
organization and this is my first time working with it. I'm on 0.25.5
and would like to upgrade eventually but I'm afraid to do that at the
moment so I'm looking for suggestions other than "Upgrade".
I need to add a new server to the confi
On Thu, Sep 15, 2011 at 1:46 PM, Kenton Brede wrote:
> On Wed, Sep 14, 2011 at 11:30 PM, Ashwin N wrote:
>> Hi
>>
>> Passenger is a rack application - will run out of httpd .
>>
>> Have you got anything like the following in your passenger (httpd)
>> configuration file:
>>
>> DocumentRoot
hi! Does anyone have any advice on debugging a new custom type?
Any thoughts would be greatly appreciated . . .
BTW, I'm getting the error:
err: Could not retrieve catalog from remote server: Error 400 on SERVER:
Could not render to pson: undefined method `merge' for []:Array
with some very rou
I finally got this to work with passenger-3.0.7 and rack-1.2.2 by
removing a file I'd created in:
/etc/puppet/rack/puppetmaster/public/production/catalog/. Now that I
know how this works, I'll try using a more current passenger and rack
and see if it works.
Kent
On Thu, Sep 15, 2011 at 1:37 PM,
Hi all,
Today I upgraded both my puppet server (2.7.1) a puppet client(s)
(2.6.9) to 2.7.3 and suddenly my modules didn't work anymore. I don't
know if 2.7.3 is more strict than 2.7.1, or if it's a bug, so I hope
someone can help me.
I have several modules where the file and/or directory are sepa
On Thu, Sep 15, 2011 at 10:12 AM, Bjorge Solli wrote:
> On 15/09/11 10:34, Bjorge Solli wrote:
> > Hi,
> >
> > we use kerberos with keytabs on our clients. We do *not* trust root on
> > the clients! One client should never have access to any other client's
> > keytab. This is my proposed solution
I asked this question a few weeks ago. Didn't get a reply, so I
thought I'd try again.
Where are people more likely to source external node data from?
a) By using extlookup, hiera etc within each puppet module to load
data specific to that module, OR
b) Having the external node script source ever
On Thu, Sep 15, 2011 at 7:04 AM, Justin Ellison wrote:
> Everyone's right, you don't want puppet to do application
> deployments. You want it to setup your application server, but stop
> there.
>
> Case in point, use Puppet to setup Rails/LAMP/Tomcat, but don't use it
> to deploy your actual appl
Could you provide the output of puppet agent --trace in a pastebin to
accompany this?
On Thu, Sep 15, 2011 at 1:22 PM, Guy Matz wrote:
> hi! Does anyone have any advice on debugging a new custom type?
>
> Any thoughts would be greatly appreciated . . .
>
> BTW, I'm getting the error:
> err: Cou
There is no need to copy _anything_ from /var/lib/puppet from another
machine, actually i think it breaks stuff.
As youre running 0.25.5 you need to run puppetd once so that it can create
its private key and cert, sign the cert on the master with puppetca --sign
machine-name.
Then puppet shoul
Hi,
Instead of using 'import account' in your init.pp - use 'include' instead.
Cheers,
Den
On 15/09/2011, at 23:46, isido wrote:
> Hi,
>
> probably a bit noobish question, but browsing docs and googling didn't
> provide an answer for my problem, so maybe someone here can help.
>
> I have a m
I'm pulling Hiera data inside the modules. It's less conceptually elegant
than passing the data but much easier to actually make work.
On Sep 15, 2011 2:33 PM, "Douglas Garstang" wrote:
> I asked this question a few weeks ago. Didn't get a reply, so I
> thought I'd try again.
>
> Where are peopl
Hm, doesn't address your issue but you could probably do thus with just a
definition instead of writing a new type.
On Sep 15, 2011 1:22 PM, "Guy Matz" wrote:
> hi! Does anyone have any advice on debugging a new custom type?
>
> Any thoughts would be greatly appreciated . . .
>
> BTW, I'm getting
I wrote my own with a Redis storage backend. So I use the external node exec
terminus.
On Sep 15, 2011 5:43 PM, "Aaron Grewell" wrote:
> I'm pulling Hiera data inside the modules. It's less conceptually elegant
> than passing the data but much easier to actually make work.
> On Sep 15, 2011 2:33 P
On 16 September 2011 07:32, Douglas Garstang wrote:
> Where are people more likely to source external node data from?
>
> a) By using extlookup, hiera etc within each puppet module to load
> data specific to that module, OR
> b) Having the external node script source everything at once from, say
>
Thats because puppet isn't a tool meant to build applications from source. You
could do it but its one of those things where it doesn't make sense.
If you need to build from SVN, you might as well look at something like Jenkins
that can monitor an SCM and pull out changes and do a bunch of thin
It depends on the job you want to do.
My project we use an oracle db backend to store our whole environment
information for application deployments. So we have a ruby DSL class that is an
entry point where it looks up the node in the database and processes it
depending on its function.
The sol
On Thu, Sep 15, 2011 at 8:18 PM, Matthew Black wrote:
> It depends on the job you want to do.
>
> My project we use an oracle db backend to store our whole environment
> information for application deployments. So we have a ruby DSL class that is
> an entry point where it looks up the node in th
39 matches
Mail list logo
