[Puppet Users] getting a list of rules out of iptables

uot;iptables-save > /etc/iptables.rules", refreshonly => true, } But I don't see that exec being called. Nor do I see any attempts at calling it. (I've even been testing with the command set to "false") Anyone know what's up with this, or have another sug

[Puppet Users] Re: getting a list of rules out of iptables

e may vary. I found a couple problems on my ubuntu machines. I forked it to http://github.com/directionless/puppet-iptables I think you probably want to pull some of my patches up, I sent you a thing through github. seph -- You received this message because you are subscribed to the Google Groups

[Puppet Users] Re: getting a list of rules out of iptables

t isn't supported you can always do nothing by default. Of > course some users may not want persistence and would want to turn it > off ... I feel ambivalent. Given the lack of standards here I suspect there may be some site specific customizations. Which I'd rather expose in pupp

[Puppet Users] Re: puppet for switches

t recent thing I've seen in this space. I'm not sure how far along they are. seph -- You received this message because you are subscribed to the Google Groups "Puppet Users" group. To post to this group, send email to puppet-us...@googlegroups.com. To unsubsc

[Puppet Users] Re: temporarily editing sudoers

an/sudoers.html#including_other_files_from_within_sudoers FWIW I love this feature. My puppet sudo module uses it to allow other modules to insert sudo stanzas. Much simpler to let them each manage their own sudo snippet, than to get concat file working. seph -- You received this message because you are subscribed to th

[Puppet Users] Re: puppet and ubuntu 9.04

lly pretty easy. Puppet, for example is 3 commands: git clone git://git.debian.org/pkg-puppet/Puppet.git cd puppet git-buildpackage --git-upstream-branch=origin/upstream -us -uc Have fun. seph hai wu writes: > Dependency would not work, I chose to install another ubuntu 10.04 and wil

[Puppet Users] Re: Toplevel domain and facter (Offtopic)

laces, or just enter them. Then spammers discovered the internet, and everything got harder. Now there are lots of hoops I need to jump through to ask questions, submit bugs, whatever. The higher barrier tends to push me to not bothering for most things. seph -- You received this message becaus

[Puppet Users] purging a managed directory and exported resources

d/ping-$fqdn.cfg", } } I see a couple of threads from last year about this, but no really satisfying conclusions. It sounds like most people end up adding a dependency which causes everything to purge and then be recreated anew. Which feels like a lot of churn. Do folks have a nice solution f

[Puppet Users] Re: Nagios allowed hosts, how would you do it?

FWIW When I hit this awhile ago I opened a bug (http://projects.puppetlabs.com/issues/3720). Annoying, it was rejected. seph Tore writes: > I just realized that this wont work, since the variable allready is > defined. The variable must also be defined before the include, since > it i

[Puppet Users] Re: purging a managed directory and exported resources

Oh, this is 0.25.4 seph seph writes: > I'm trying to use puppet to manage a directory full of files. Files are > each a collected resource. In my case, they're part of nagios. But I > can't really get it to work. The purge on the directory doesn't take > into

[Puppet Users] debian/ubuntu ruby path problem with facter 1.5.6-2

t, earlier versions installed to /usr/lib/ruby/1.8/facter I'll probably just downgrade my facter, but this seems like an issue. seph --~--~-~--~~~---~--~~ You received this message because you are subscribed to the Google Groups "Puppet Users" group. To

[Puppet Users] Re: debian/ubuntu ruby path problem with facter 1.5.6-2

Sure. #536137 Nigel Kersten writes: > seph, please bug report this on debian and we'll sort it out. > > On Tue, Jul 7, 2009 at 11:00 AM, seph wrote: >> >> I'm running ubuntu LTS, and just installed puppet and facter by pulling >> the latest unstable

[Puppet Users] Re: ssh_authorized_key completely ignoring "require"

e released versions. seph Chris Blumentritt writes: > I have run into this problem today trying to stand up some new servers. > > On Tue, Apr 21, 2009 at 11:44 PM, Andrew Shafer > wrote: > >> >> Scott, >> >> Can you pastie the simplest code to reproduce an

[Puppet Users] cron, package and provider

user=> "root", require => Package["anacron"], } r...@puppet-test:~# puppet /var/tmp/puppet-cron.pp sh: Syntax error: Bad fd number sh: Syntax error: Bad fd number err: Could not create puppet cron test: Could not find a defaul

[Puppet Users] Re: cron, package and provider

the package doesn't exist, or isn't defined. seph Teyo Tyree writes: > Delivered from mobile device. > > On Jul 22, 2009, at 8:40 AM, Nigel Kersten wrote: > >> >> On Wed, Jul 22, 2009 at 8:35 AM, seph wrote: >>> >>> I'd like to use puppet

[Puppet Users] Re: cron, package and provider

not create puppet cron test: Could not find a default provider for cron Could not find a default provider for cron seph Joe McDonagh writes: > You need to require both the package and service in all your cron > resources. So, best thing

[Puppet Users] Re: cron, package and provider

I'm running on ubuntu. Anyhow, I'm running puppet with only that file. Nothing more. So if it needs an explicit service definition, it should complain about it. Anyhow I tried it, same error. The cron thing fails out before it gets anywhere. seph Joe McDonagh writes: > seph wr

[Puppet Users] Re: cron, package and provider

; something? Beats me. This version has always done that. Someone told me it was a known bug, I've been ignoring it. seph --~--~-~--~~~---~--~~ You received this message because you are subscribed to the Google Groups "Puppet Users" group. To pos

[Puppet Users] Re: cron, package and provider

These are the ubuntu packages. r...@puppet-test:~# dpkg -s puppet | grep Version Version: 0.24.8-1 r...@puppet-test:~# dpkg -s facter | grep Version Version: 1.5.1-0.1 seph Joe McDonagh writes: > IDK if you saw my previous e-mail, but did you get this from > ftp.ubuntu.

[Puppet Users] Re: cron, package and provider

I got the same error when it was run from a puppetmaster, I switched to a simpler local example to debug it. If you don't have cron installed, does puppet error out, or install it like it ought? seph Joe McDonagh writes: > I'm running out of ideas, I do this same thing, on th

[Puppet Users] arrays, loops, etc

ty, and I don't think it solves all problems. I think I'll probably just rethink my setup, so I only have 1 keystore per machine, but I'm not very pleased with that. Anyone have any better suggestion? Any chance at getting better puppet support for this sort of array handling? seph

[Puppet Users] Re: arrays, loops, etc

Key[x, y], } seph Paul Lathrop writes: > seph, > > You are making a couple of classic mistakes here. For one, thinking of > definitions as "functions" can only end in tears. Definitions are just > ways of abstracting a collection of resources into a single res

[Puppet Users] Re: arrays, loops, etc

e > to have more than one keystore declaration with the same keys parameter. > One would have to preprocess the $keys parameter to prepend the keystore > name to each element, and there's no way to do that in stock 0.24.8. > (I think you will be able to do it in 0.25, by

[Puppet Users] Re: ssh_authorized_key completely ignoring "require"

It's supposed to be fixed in 0.25, which is now rc1. I haven't tried 0.25 yet seph Mike Harding writes: > I am just starting with puppet, and the intended use was to manage ssh > keys. Is there an intended release to fix this, or some other way to > get it working? >

[Puppet Users] 0.25.0-rc1 on ubuntu hardy (activerecord versions?)

figuration file: StoreConfigs not supported without ActiveRecord 2.3 Is this an intentional dependancy? Any thoughts about what this means for people running older/stable OSes? seph --~--~-~--~~~---~--~~ You received this message because you are subscribed to th

[Puppet Users] more 0.25.0 rc1 problems -- PGconn:Class

; for PGconn:Class Any ideas? seph --~--~-~--~~~---~--~~ You received this message because you are subscribed to the Google Groups "Puppet Users" group. To post to this group, send email to puppet-users@googlegroups.com To unsubscribe from this group

[Puppet Users] Re: 0.25.0-rc1 on ubuntu hardy (activerecord versions?)

pet/feature/rails.rb requires ActiveRecord 2.1, while lib/puppet/defaults.rb requires 2.3. seph writes: > This looks similar to this problem: > http://projects.reductivelabs.com/issues/2102 > Although the error message is different. Skipping the error message the > error pops up because rub

[Puppet Users] Re: more 0.25.0 rc1 problems -- PGconn:Class

After some digging, it turns out there's some weird incompatibility between ActiveRecord 2.3.3 and one of the postgres drivers. I downgraded to ActiveRecord 2.3.2 and passed this hurdle. seph seph writes: > I manually installed a newer ActiveRecord and ActiveSupport on my > puppet

[Puppet Users] Re: 0.25.0-rc1 on ubuntu hardy (activerecord versions?)

/rails.rb is using to detect activerecord fails for activerecord 2.0, which is what's in ubuntu hardy. Of course, if the requirement is for 2.1, than it's still newer than what's in hardy, and manual gem installation is still needed. seph writes: > This looks similar to th

[Puppet Users] 0.25.0rc1, modules, and custom types

lains that it "Could not find resource type iptables" I'm not really sure how to debug this. My clients do have the custom type in their /var/lib/puppet directories, and AFAIK it's configured correctly. But, it's just not working. Does anyone module custo

[Puppet Users] Re: 0.25.0rc1, modules, and custom types

what how this should work. I get this error regardless of the filesystem permission on libdir. Here are the plugin related settings on puppetmaster, I don't think they're wrong: pluginsource = puppet://puppet/plugins pluginsync = true plugindest = /var/lib/puppet/lib Does th

[Puppet Users] Re: 0.25.0rc1, modules, and custom types

t sure what how this should work. I get this error > regardless of the filesystem permission on libdir. I pulled the debug/trace logs off the puppetmaster, I don't see anything obviously wrong, but I've attached them. I'm not finding much docume

[Puppet Users] Re: User's and managing expired passwords

shes that line to the clients. > > If anyone is interested in my configs, let me know and I can clean > them up a bit and post them somewhere. I have the same problem, and was thinking about implementing the same style solution. I

[Puppet Users] Re: Question on proper use of virtual resources

is defined, and if it's not then define it. seph Jon Stanley writes: > I'm attempting to use virtual resources to get around multiple > definition errors, but it doesn't seem to be working. I need to > create a directory structure like "/apps/siteA/instance_1/res

[Puppet Users] Re: Question on proper use of virtual resources

r I'm confused. Either way, this is awesome. seph --~--~-~--~~~---~--~~ You received this message because you are subscribed to the Google Groups "Puppet Users" group. To post to this group, send email to puppet-users@googlegroups.com To unsubscribe f

[Puppet Users] Re: Definitions and uniqueness

I continue to wish for multidimensional objects. This is another example. seph David Schmitt writes: > Scott wrote: >> So I'm running puppet 0.24.8 and I'm trying to use a definition where >> sometimes the "name" parameter will be the same but other paramet

[Puppet Users] Re: Require Class?

I've been assuming it's a typo, and means that the apache *service* depends on the squid class. I'd love to know how to make a class depend on another class. seph Douglas Garstang writes: > Can someone tell me what a require => Class actually does? The > documentat

[Puppet Users] Re: Conditional based on existence of a file

rst example that comes to mind "This machine should have a database named Foo" "...Oh, but only create it if it doesn't already exist, otherwise you'll just get spurious errors" Managing a bunch of modern software seems to boil down to process like that. seph --~--~-

[Puppet Users] Re: Problem with augeas on Ubuntu 8.04

get source augeas cd augeas_0.5.1 debuild -i -us -uc -b seph Adam Ryczkowski writes: > Did anyone managed to get augeas running on Ubuntu 8.04? I tried for > hours to get it working, but to no avail: No augeas on ubuntu > repository, making from source fails (and the installation p

[Puppet Users] Re: Problem with augeas on Ubuntu 8.04

Adam Ryczkowski writes: >> It was basically as simple as: >> >>   apt-get build-dep augeas >>   apt-get source augeas >>   cd augeas_0.5.1 >>   debuild -i -us -uc -b >> >> seph > > I have finally found time to try it out, but to no avail.

[Puppet Users] Re: Problem with storedconfigs on Ubuntu Jaunty (9.04)

ot open database: unable to open database file Well, it looks like the puppetmaster can't open the database file. Did you configure it? seph -- You received this message because you are subscribed to the Google Groups "Puppet Users" group. To post to this group, send email to p

[Puppet Users] Re: Problem with storedconfigs on Ubuntu Jaunty (9.04)

s#9f1334d1d3a6ea56), so being in a dead end I tried an > opposite approach: to migrate my servers to more recent distribution. >From my mail earlier in that thread: Of course, now that I've actually tried using puppet and augeas, I've discovered I also need the libaugeas-ruby pac

[Puppet Users] Re: {SPAM 05.5} SSH Keys

You could do something with a define. But I'm not really sure what your use case is. Can you give an example? seph sysboy writes: > Hi all, > >I want to use puppet to distribute keys to multiple users. I wanted > to do something like we have already: > > - defin

[Puppet Users] Re: {SPAM 05.5} SSH Keys

ed, but what I can help you. I define a bunch of users in user::virtual, along side said users I define their keys. Some users have more than 1 key. (seph-2008-laptop, seph-2009-desktop, for example) Then I have things like this: class user::unixadmins inherits user::virtual { User <| titl

[Puppet Users] Re: Debian preseed values for puppet deb package

suggested emailing the community to get a > list of settings that people would like to be able to preseed. I think the only one I care about is "server". For me, everything after that is set by puppet itself. But you could also add environment, wait-time, boot-or-cron. seph -- You re

[Puppet Users] Re: Purging unmanaged augeas entries?

Frank Sweetser writes: > I'm in the process of setting up sudoers entries to get managed by > augeas. If you can insure a suitable recent sudo, you can use sudo's #includedir option and just manage a directory. seph -- You received this message because you are subscribed to t

[Puppet Users] Install gem packages behind a proxy

honors the http_proxy environmental variable. But I don't see how to use either of those without patching the gem provider. Has anyone solved this? I'm running on ubuntu hardy, with puppet 0.25.1. seph -- You received this message because you are subscribed to the Google Groups "Pup

[Puppet Users] Re: Install gem packages behind a proxy

James Turnbull writes: > seph wrote: >> Hi all. My particular environment doesn't allow most of the machines to >> make direct external connections, so I send a lot of things through >> proxies. And now, I'm trying to figure out how to use puppet to install >&g

[Puppet Users] Re: Augeas pam.d argument checking

ty normal dpkg build process for it. (apt-get source; apt-get build-dep; debuild) No glibc weirdness. seph -- You received this message because you are subscribed to the Google Groups "Puppet Users" group. To post to this group, send email to puppet-us...@googlegroups.com. To unsubscri

[Puppet Users] puppet very slow to launch after an upgrade?

0.24 bug. So I wonder if there's some droppings left from 0.24? Or if there's some way to approach debugging this? Anyone have a suggestion? seph -- You received this message because you are subscribed to the Google Groups "Puppet Users" group. To post to this group, send

[Puppet Users] Re: puppet very slow to launch after an upgrade?

ems related. Both machines are running facter 1.5.7ubuntu1, which I don't think is very old. seph -- You received this message because you are subscribed to the Google Groups "Puppet Users" group. To post to this group, send email to puppet-us...@googlegroups.com. To unsubsc

[Puppet Users] Re: puppet very slow to launch after an upgrade?

firewall issue. seph Peter Meier writes: >>> this looks more like a facter issue. did you upgrade facter as well? >>> how fast is it to run facter? >> >> Excellent suggestion. The new machine takes .8s for a facter run, where >> the old one takes just under 2

[Puppet Users] Re: puppet very slow to launch after an upgrade?

system stuff, I rebooted. Things seem to be running at normal speed. I'm kinda weirded out by this fix. seph -- You received this message because you are subscribed to the Google Groups "Puppet Users" group. To post to this group, send email to puppet-us...@googlegroups.com. T

[Puppet Users] Re: puppet very slow to launch after an upgrade?

David Schmitt writes: > On 3/24/2010 5:26 PM, seph wrote: >> And, on the theory that all of this pointed to some weird system >> stuff, I rebooted. Things seem to be running at normal speed. I'm kinda >> weirded out by this fix. > > Perhaps some rogue proc

[Puppet Users] CA different than hostname?

don't know which section of the config file to put it in. thanks seph --~--~-~--~~~---~--~~ You received this message because you are subscribed to the Google Groups "Puppet Users" group. To post to this group, send email to puppet-users@googleg

[Puppet Users] Re: CA different than hostname?

, though not the ca cert that way. Is there a way to change the CA name as well, or do I have to manually creating the CA for that? seph --~--~-~--~~~---~--~~ You received this message because you are subscribed to the Google Groups "Puppet User

[Puppet Users] realizing virtual ssh_authorized_key

I'm trying to use ssh_authorized_key to manage my user's ssh keys. I basically have this (across a couple of files): class user::virtual { @user { "seph": ensure => "present", uid => "2001", comment=> &quo

[Puppet Users] Re: realizing virtual ssh_authorized_key

Ah ha. After a long time debugging this on irc (thanks guys!) I found my typo. I had defined unixadmins twice, and one was wrong. Though if people have suggestions for a better way to implement this sort of thing, I'd love to hear them. seph On Apr 21, 4:00 pm, seph wrote: > I'm

[Puppet Users] Re: ssh_authorized_key completely ignoring "require"

mta-system:/tmp/ordering# cat ordering-virtual.pp @user { "seph": ensure => "present", uid=> "2001", comment=> "seph", home => "/home/seph", shell => "/bin/bash", allow

[Puppet Users] Re: ssh_authorized_key completely ignoring "require"

On Apr 22, 11:04 am, seph wrote: > I'm also seeing this. I'm not sure what --graph is an option to, not my > puppet. Ah, I found --graph. It's just not in the help files. If I don't have a user, then I get the aforementioned errors, and no graphs. If I create the

[Puppet Users] Re: iptables anyone?

do you ensure iptables is installed? Right now, I'm just sticking a package resource in, but the first run results in errors, when puppet tries to apply iptables rules before the binaries exist. seph --~--~-~--~~~---~--~~ You received this message because you ar

[Puppet Users] managing the network on debian/ubuntu?

e solution here? seph --~--~-~--~~~---~--~~ You received this message because you are subscribed to the Google Groups "Puppet Users" group. To post to this group, send email to puppet-users@googlegroups.com To unsubscribe from this group, send email to p

[Puppet Users] undefined method `+\' for false:FalseClass

etd[4388]: Could not create 50 email-outbound: undefined method `+\' for false:FalseClass puppetd 1b [daemon.err] puppetd[4388]: Could not create 50 email-outbound: undefined method `+\' for false:FalseClass Anyone seen this or have

[Puppet Users] Re: undefined method `+\' for false:FalseClass

ogrammer, so I'm hoping someone has seen it before. Or that someone has a pointer to an iptables module. seph --~--~-~--~~~---~--~~ You received this message because you are subscribed to the Google Groups "Puppet Users" group. To post to this group,

[Puppet Users] Re: undefined method `+\' for false:FalseClass

Wonderful, that patch seems to have solved this error. Thank you so much for fixing it. seph Marc Fournier writes: > Hello, > > >> The first couple lines look like: >> >> err: Could not create 01 localhost spoofing in: undefined method >> `+' for &

[Puppet Users] exec unless broken?

fd number sh: Syntax error: Bad fd number notice: //Exec[echo 1 > /tmp/ran]/returns: executed successfully r...@puppet-test:~# r...@puppet-test:~# ls /tmp/ran /tmp/ran r...@puppet-test:~# seph --~--~-~--~~~---~--~~ You received this message because y

[Puppet Users] Re: exec unless broken?

etd > with --debug and looking at what command it's running. In fact... Too much cargo culting led to a bad path parameter. Thanks for the sanity check. seph --~--~-~--~~~---~--~~ You received this message because you are subscribed to the Google Groups "

[Puppet Users] wiki problems

Does anyone else have problems with the wiki? I feel kinda ungrateful complaining, but I generally find it very slow and thus very hard to use. And right now, it appears unresponsive. seph --~--~-~--~~~---~--~~ You received this message because you are subscribed