I've begun to shift to anticlass-by-default. This is driven by the need to
provide documentation to auditors and the like. I foo::remove by default,
then foo::install as needed (wrapped in appropriate logic to avoid resource
conflicts).
On Monday, October 27, 2014 1:21:55 PM UTC-7, JonY
Do you have selinux in enforcing mode? If so, try setting it to permissive
mode and see if it starts working.
On Mar 14, 2013 8:09 AM, Mike Canty cantyma...@yahoo.com wrote:
I am running Centos 6 and was able to install Puppet 3.1.1. However, when
trying to run puppet, as root, for the first
I don't know of a way to have multiple hierarchies, but if you need central
control of parameters like profile you can use an ENC. At one point I even
experimented with a yaml- based ENC that used my hiera data files to keep
all the information in one place.
On Mar 8, 2013 10:54 AM, Chad
, February 20, 2013 8:11:20 PM UTC-6, Aaron Grewell wrote:
It's not that simple. Puppet thinks osfamily is 'Linux' whereas facter
returns 'RedHat' at the command prompt.
I can only assume, then, that the facter you are running from the command
line is not the same (or same-configured) facter
Argh, never mind. It's a garden variety client-server version mismatch. I
must've grabbed the wrong version when building the image.
--
You received this message because you are subscribed to the Google Groups
Puppet Users group.
To unsubscribe from this group and stop receiving emails from
I've run into an odd one on one of my new RHEL 6 boxes. Puppet and Facter
seem to disagree about the value of a fact.
Puppet version: 2.7.9
Facter version: 1.6.4
Module: puppetlabs-apache
apache::params falls through its if structure:
if $::osfamily == 'redhat' or $::operatingsystem ==
It's not that simple. Puppet thinks osfamily is 'Linux' whereas facter
returns 'RedHat' at the command prompt.
On Feb 20, 2013 5:33 PM, Len Rugen lenru...@gmail.com wrote:
I wasn't sure, too many different languages I guess for a test you
could code it == RedHat, but we have a lot of RHEL
Take a look at the yum versionlock plugin. It allows you to lock a
particular package at a given version for situations like this. We use the
following define to manage our locked packages. If I were writing it today
I'd probably use file_line, but it's worked well for us so I've had more
If you move the keys into Puppet variables (ideally retrieved via Hiera)
you can then use them to create both the key files and the
ssh_authorized_key entries. .
--
You received this message because you are subscribed to the Google Groups
Puppet Users group.
To post to this group, send email
On Jan 18, 2013 11:31 AM, jcbollinger john.bollin...@stjude.org wrote:
On Friday, January 18, 2013 12:11:42 PM UTC-6, iamauser wrote:
What's the best practice to define two mount resources with same name,
but different fstypes or ensure parameter ? In my particular case, I have
the following
Even an nfs share will not fix this. We tried it. We had to make dashboard
active - passive to fix it. Otherwise lots of dashboard errors result which
must be cleared via rake task or the dashboard slows to a crawl.
On Jan 2, 2013 1:56 PM, jemmorey jor...@obsecurities.com wrote:
Looks like there
I would highly recommend you just package your custom python and install
it using a package management system, rather than doing what you're
doing.
In this case you really ought to consider packaging, but there's
always *something* that doesn't work that way for whatever reason
(badly-wrapped
I'm currently experimenting with an option added in vSphere 5 that has
promise: assuming your VM Template has VMware Tools preinstalled you
can use the Perl API to run programs directly in the resulting VM.
Assuming you have API access (vSphere or commercially licensed ESXi
have this, the free
On Wed, Oct 10, 2012 at 9:01 AM, Shawn Knight shawnkni...@gmail.com wrote:
Hi,
Can any users of Puppet tell me about experiences in upgrading a Puppet Open
Source environment to Enterprise?
Hi Shawn,
We went through this with Puppet 2.6 and PE 2.0. It wasn't
particularly painful, though we
If you really want control over this you should build your own local repo
mirror. That way you can be absolutely certain of what your systems will
have access to. RHEL and friends come with all the tools to do this so it's
not a major undertaking.
On Oct 3, 2012 7:37 AM, Mister Guru
We use hiera-gpg for ours. Files containing sensitive information are
converted into templates so that only the necessary strings are included in
gpg. If we really needed to distribute full files I would probably build a
separate directory tree backed by its own repository for this. It's just
I'm using the current behavior in inherited classes to unset parameters set
by the parent class. If that no longer works it will definitely impact my
code.
On Sep 14, 2012 11:31 AM, Eric Sorenson eric.soren...@puppetlabs.com
wrote:
Hi, there's an issue that came up recently in the 3.0RCs -- Big
The hiera function works as you described and supports strings, arrays and
hashes. The hiera_array and hiera_hash functions build additive arrays and
hashes that include the values of all matching variables across the entire
hierarchy. For your use case you should use hiera() instead of
On Thu, Aug 23, 2012 at 4:32 PM, Nick Fagerlund
nick.fagerl...@puppetlabs.com wrote:
On Thursday, August 23, 2012 12:47:16 PM UTC-7, Aaron Grewell wrote:
In
http://docs.puppetlabs.com/puppet/2.7/reference/lang_datatypes.html#hashes
it would be helpful to have a hash example that contains
Hi Nick, I have a suggestion. In
http://docs.puppetlabs.com/puppet/2.7/reference/lang_datatypes.html#hashes
it would be helpful to have a hash example that contains multiple keys
each with multiple subkeys. The way the commas are distributed in
that scenario is different from how commas are
On Tue, Jul 24, 2012 at 8:08 AM, tomash tom.ash...@gmail.com wrote:
Hi,
I'm trying to get to grips with hiera and yaml as the backend.
given a yaml file like this:
---
user:
dave:
home: /home/dave
shell: /bin/bash
steve:
home: /home/steve
shell: /bin/zsh
How
On Wed, Jul 18, 2012 at 2:09 PM, Trevor Vaughan tvaug...@onyxpoint.com wrote:
So, I was following the thread how to conditionally add users to a
virtualized group? and had a bit of a realization that I'm not quite
sure why Hiera is a better backend than LDAP.
In our environment at least,
Depending on your sudo version you could also put snippets in
/etc/sudoers.d. This has the advantage of allowing each class to manage its
own sudoers file without any Puppet conflicts.
On Jun 10, 2012 3:56 AM, Ryan Bowlby rbowlb...@gmail.com wrote:
Hi All,
I am using the file_line type
On Fri, May 18, 2012 at 11:07 AM, Christopher Wood
christopher_w...@pobox.com wrote:
When we started using cfengine long time ago cookbooks _with_examples_
were available, it was very convenient.
There's an integrated set of example modules here that are worth a look:
On Wed, May 16, 2012 at 5:07 AM, Mister IT Guru misteritg...@gmx.com wrote:
Ordinarily, I'd say lets upgrade your working practices while we're at it,
and properly manage your whole workflow, manage access and manage who can
make changes. Lets start by rebuilding your boxes to specification,
I suppose you could create a separate class for the entries that will
be fact-driven versus Hiera-driven. You wouldn't be able to use a
single template, but either augeas or concat should work. I wouldn't
call it elegant, but the code might be less ugly.
On Fri, May 11, 2012 at 9:47 AM, Luke
Our SVN repo box is shared with some other projects so I haven't
implemented a post-commit hook at this point. We used to have Puppet
perform the checkouts, but since a commit may break Puppet's ability to
run it didn't seem like the best way. For now we're doing it via
MCollective.
On
Note that using multiple masters is one way to solve this.
On Apr 27, 2012 10:46 AM, Philip Brown p...@bolthole.com wrote:
I've heard that after (some # of machines) x (some size of manifests)
puppet does not scale well, due to bottlenecking on the puppetmaster.
Anyone doing large scale use
Hi all,
I'm interested pushing my user list out of my users manifest and into
Hiera. Unfortunately I haven't been able to get it to work the way I
thought it would. The error suggests that perhaps create_resources
cannot create virtual resources, but the docs I've read so far don't
address it.
, March 30, 2012, Aaron Grewell wrote:
Hi all,
I'm interested pushing my user list out of my users manifest and into
Hiera. Unfortunately I haven't been able to get it to work the way I
thought it would. The error suggests that perhaps create_resources
cannot create virtual
.
If it does, please file a bug.
On Thu, Mar 22, 2012 at 5:27 PM, Aaron Grewell aaron.grew...@gmail.com
wrote:
I would install yum-utils and use reposync on a system with internet
access
to create a local repo. Yum.puppetlabs.com has most of what you need,
but
you may also need a copy of the epel
I would install yum-utils and use reposync on a system with internet access
to create a local repo. Yum.puppetlabs.com has most of what you need, but
you may also need a copy of the epel repo.
On Mar 22, 2012 4:42 PM, Peter Bukowinski pmb...@gmail.com wrote:
I'd copy down from the
I'm not sure how much membership-specific code you have, but if it's
more than just this you may want a custom fact rather than using
unless/onlyif every time. We use QAS instead of Samba for domain
membership but the idea is the same:
--vas_status.rb--
require 'facter'
vastool =
On 02/28/2012 06:45 AM, Tony G. wrote:
You might want to use a parametrized class instead of the define, there
is a discussion in removing or not from future puppet releases[1]
No, you've misunderstood. The 'defined()' function is/was under
consideration for removal. That's not the same as
Are you running RHEL 5? Did you recently patch your kernel? If so,
you've probably been bitten by a kernel bug. I've successfully used
kernel-2.6.18-274.17.1.el5 and backrev versions from the
kernel-2.6.18-238.x.x series.
On 02/22/2012 12:26 PM, Robert Stinnett wrote:
Hi there,
I am
Resource defaults may help you. If you create a default file resource :
File{
owner = root,
group = root,
mode = 644,
}
The file resources in the class will assume these defaults unless their own
definition specifies otherwise. For large numbers of resources of the same
type there is also
On 02/09/2012 06:16 AM, jcbollinger wrote:
On Feb 8, 5:34 pm, Aaron Grewell aaron.grew...@gmail.com wrote:
I've got a bit of a head-scratcher here, though I'm sure it must be
something small. I'm trying to enable a service for next boot without
starting it. That usually just works
On 02/09/2012 11:39 AM, Daniel Pittman wrote:
I would try adding ensure = undef to the service's parameters. If
that doesn't work then I can't imagine what would.
Thanks John, that did the trick. I'm not sure if I've got a service
default set somewhere I didn't realize or what but at least
On 02/08/2012 04:11 PM, Daniel Pittman wrote:
You can't: if you tell Puppet to ensure the service is running, it
will try to start it every time it finds it out of compliance.
Look at the code. I didn't ensure = running. I set enable = true.
AFAIK that doesn't mean 'start the service'.
--
On 02/08/2012 04:29 PM, Daniel Pittman wrote:
On Wed, Feb 8, 2012 at 16:13, Aaron Grewell aaron.grew...@gmail.com wrote:
On 02/08/2012 04:11 PM, Daniel Pittman wrote:
You can't: if you tell Puppet to ensure the service is running, it
will try to start it every time it finds it out
There's a couple of ways to do this, but I usually take the easy
route: assign a local variable that has the global's value in the
related manifest. In this case, in centrifydc's init.pp just set
$domain=$::domain. This will appear as a local variable in the
template and you don't have to change
However, if I run the above command manually, it works fine and
returns 0:
root@webhost:~# /etc/init.d/dropbox start ; echo $?
Starting dropbox...
0
Any ideas why puppet can't start the dropbox daemon?
I had the same problem when running ssh-keygen via an exec. It ran fine
from the CLI
Since it's the shell redirection that Puppet seems not to like, why not
wrap the commands in a shell script and use generate on that?
On Jan 29, 2012 6:18 PM, Olivier ofran...@gmail.com wrote:
and then lookup the hash in the /etc/shadow file
or use the mkpasswd utility (with which I am not
I was thinking more in terms of an exception handler:
package { foo: ensure = installed, exceptDefined = skip}
Or something of that nature. This could also be used in other
situations where you want to bypass default behaviors. We've seen
situations where users want to apply a file if it
If you didn't specifically configure Puppet to use Passenger then
you're using Mongrel by default. Scalability = false.
On Tue, Jan 24, 2012 at 8:24 AM, Peter Berghold salty.cowd...@gmail.com wrote:
On Sun, Jan 22, 2012 at 7:54 PM, Stefan Schulte
stefan.schu...@taunusstein.net wrote:
What
will be more, so then scalability
may play into this) and the configs aren't that complicated.
On Tue, Jan 24, 2012 at 2:21 PM, Aaron Grewell aaron.grew...@gmail.com
wrote:
If you didn't specifically configure Puppet to use Passenger then
you're using Mongrel by default. Scalability = false
On Fri, Jan 20, 2012 at 2:34 PM, Cody c.a.herri...@gmail.com wrote:
Defining all somewhat common packages in a central location becomes
unrealistic when you no longer control the code that is in every
module you use. If you obtain five modules from the forge and they
all require a specific
On Fri, Jan 20, 2012 at 2:49 PM, Aaron Grewell aaron.grew...@gmail.com wrote:
Are we sure it can't be fixed? What makes defined() so different from
the code that implements require? Shouldn't if not defined be the
same as if a require would fail? That seems to be what people are
expecting
As long as we're lacking a builtin method for pretty-printing data
structures during a debug session inline templates are going to
continue to be popular in scenarios like this.
On Tue, Jan 17, 2012 at 10:06 AM, Krzysztof Wilczynski
krzysztof.wilczyn...@linux.com wrote:
Hi Felix,
Seeing as
This (or something like it) should be a candidate for stdlib.
On Tue, Jan 17, 2012 at 10:47 AM, Krzysztof Wilczynski
krzysztof.wilczyn...@linux.com wrote:
Hi Aaron,
As long as we're lacking a builtin method for pretty-printing data
structures during a debug session inline templates are going
The rpm-based installs of the other components probably expect different
paths than the gem is providing. IMHO you shouldn't mix rpm and gem-based
installs. Weirdness is virtually guaranteed. Pick one style or the other
and stick with it.
On Jan 12, 2012 8:03 PM, LawrieC lawrie.ca...@gmail.com
require accepts an array, so you should be able to do this:
require = [File['foo'],Exec['bar']]
On Mon, Jan 9, 2012 at 5:23 PM, Patrick Viet
patrick.v...@learnosity.com wrote:
Hi dear puppet users.
I have an perl file that depends on a lib, that I want to execute.
I have stripped the parts of
That's interesting - PE isn't affected?
On Thu, Jan 5, 2012 at 12:26 AM, Ger Apeldoorn i...@gerapeldoorn.nl wrote:
Hi Radek,
It's a bug that acts up on a specific kernel; see:
http://projects.puppetlabs.com/issues/10819
I've upgraded to Puppet Enterprise and do not have this issue anymore.
You must be getting the real hostname from somewhere programmatically. I
would either override $hostname and $fqdn or create a $realname custom fact
using that info. The override might be cleaner, otherwise you may want to
use either run stages or a deployment-specific environment to make sure the
Did you remove the ssldir on the server or the client? Usually to
completely reset the cert you run clean on the server, remove the
contents of the ssldir on the client, then re-run puppet and it should
rebuild the cert. I wouldn't recommend removing the ssldir on the
server except as a last
that
'certificate verify failed I dont know what to do now?
On Fri, Dec 30, 2011 at 11:42 AM, Aaron Grewell aaron.grew...@gmail.com
wrote:
Did you remove the ssldir on the server or the client? Usually to
completely reset the cert you run clean on the server, remove the
contents of the ssldir
You get only the host name from the agent. When I did this using a
YAML-based ENC I checked each environment directory in turn for a file
matching the hostname and just made sure to only create it in the
proper place.
On Fri, Dec 30, 2011 at 12:29 PM, Douglas Garstang
doug.garst...@gmail.com
Well isn't that handy!
On Fri, Dec 30, 2011 at 12:57 PM, R.I.Pienaar r...@devco.net wrote:
- Original Message -
Thanks.
On Fri, Dec 30, 2011 at 12:51 PM, Aaron Grewell
aaron.grew...@gmail.com wrote:
You get only the host name from the agent. When I did this using a
YAML-based
Run puppet --genconfig for an example.
On Thu, Dec 29, 2011 at 11:12 AM, Mohammad Khan makhan...@gmail.com wrote:
same results after changes , what should i add into master section?
On Thu, Dec 29, 2011 at 2:08 PM, Aaron Grewell aaron.grew...@gmail.com
wrote:
You'll want to change
, Dec 29, 2011 at 1:43 PM, Aaron Grewell aaron.grew...@gmail.com
wrote:
Can you post your config? It sounds like there may be an error in it.
On Thu, Dec 29, 2011 at 10:35 AM, Mohammad Khan makhan...@gmail.com
wrote:
Thanks for your response.
I have cahnge the permission to 655
Can you post your config? It sounds like there may be an error in it.
On Thu, Dec 29, 2011 at 10:35 AM, Mohammad Khan makhan...@gmail.com wrote:
Thanks for your response.
I have cahnge the permission to 655 on manifests and still the same thing.
My puppetmaster was not even starting then and
to
/catalog/server.domain.co [find] at line 93
And also the same error: but on 17 line now. Which represent my ldap if i
disable ldap line then the error moves to next line and so on.
On Thu, Dec 29, 2011 at 2:22 PM, Aaron Grewell aaron.grew...@gmail.com
wrote:
Run puppet --genconfig for an example
More information will be needed I suspect. Can you post:
rpm -qi puppet
rpm -qa | grep ruby
gem list --local
On Wed, Dec 28, 2011 at 3:39 AM, eRefre row...@gmail.com wrote:
Bump.
No one that has a clue?
On Dec 14, 4:00 am, Richard Olofsson row...@gmail.com wrote:
Hi.
We have started to
We decided to distribute the pkg files the same way we do Linux
packages - via http. This define has been very useful to us:
define pkg_http($version,$source, $adminfile, $responsefile=undef){
exec {/usr/sfw/bin/wget $source -O /var/tmp/$name-$version.pkg:
unless =
It's an interesting question, but I wouldn't want to structure my
modules that way. There are two methods of getting data into a define
that are guaranteed to work: passing variables and file retrieval
(extlookup/hiera). Especially given the changes being made to scoping
anything else is fraught
27, 2011 at 11:40 AM, Aaron Grewell aaron.grew...@gmail.com
wrote:
It's an interesting question, but I wouldn't want to structure my
modules that way. There are two methods of getting data into a define
that are guaranteed to work: passing variables and file retrieval
(extlookup/hiera
instead of working (and
yes, it works).
Trevor
On Tue, Dec 27, 2011 at 4:01 PM, Aaron Grewell aaron.grew...@gmail.com
wrote:
If you were actually passing the variable, yes. But you're not, you're
expecting to reach into a non-class (essentially a grab-bag of resources)
and extract data
Hmm, I just thought of this. Normally when referencing an instance of
a define you would use this syntax (note the caps):
Foo::Do_stuff['name']
Did you try:
Foo::Do_stuff['name']::var1
On Tue, Dec 27, 2011 at 1:37 PM, Aaron Grewell aaron.grew...@gmail.com wrote:
Yeah, I'd file a bug against
The $::operatingsystem fact may be what you're looking for.
Alternatively take a look at $::kernel. One of these combined with an
if or case statement should allow you to do whatever you need to by
OS.
On Tue, Dec 20, 2011 at 10:47 AM, Stuart Cracraft smcracr...@me.com wrote:
anyone know how,
In our case the ssldir is on a shared filesystem.
On Mon, Dec 19, 2011 at 5:15 PM, Ryan Bowlby rbowlb...@gmail.com wrote:
Hi All,
We are going to setup two puppet masters, each will include the full
stack of services. Apache as the frontend on both load balancing to
the backend services on
If you really don't want ongoing configuration management then Puppet
may not be your tool of choice. Cobbler perhaps?
On Tue, Dec 20, 2011 at 10:41 AM, Craig White craig.wh...@ttiltd.com wrote:
On Dec 20, 2011, at 9:49 AM, Swampcritter wrote:
We are developing in-house RHEL VM provisioning
Ours are completely independent. It creates management overhead to do it
that way but ensures that changes to dev can't break prod.
On Dec 18, 2011 10:27 AM, Douglas Garstang doug.garst...@gmail.com
wrote:
Question... for those that have multiple environments, dev, prod
etc... do you share your
SL is an RHEL derivative, so it's still using the traditional init
system. No need to worry about upstart or systemd until 7.x hits.
On Fri, Dec 9, 2011 at 7:54 AM, Jeffrey Watts jeffrey.w.wa...@gmail.com wrote:
Not sure if you're aware, but 'init' is no longer init. Upstart is the
default
Hi Berry,
create_resources doesn't have an init.pp so you can't 'include' it
AFAIK. As long as you've enabled pluginsync you shouldn't have to
include it, it should just work.
On Tue, Dec 6, 2011 at 12:13 PM, Berry Sizemore
berry.sizem...@gmail.com wrote:
I have these three modules with the
Make sure you've set 'provider = yum'. Last I checked OEL defaulted
to up2date.
On Fri, Dec 2, 2011 at 10:39 AM, Rayson Ho raysonlo...@gmail.com wrote:
AFAIK, the yum rpm backends for package are versionable, and you
should not see the Provider must have features 'versionable' to set
case.
On Mon, Nov 28, 2011 at 12:47 PM, Nigel Kersten ni...@puppetlabs.com wrote:
On Mon, Nov 28, 2011 at 9:59 AM, Aaron Grewell aaron.grew...@gmail.com
wrote:
I'm not aware of any file editing method in Puppet that will modify
multiple files as part of the same resource. The usual
I'm not aware of any file editing method in Puppet that will modify
multiple files as part of the same resource. The usual approach would
be to create multiple resources, one for each file, and then cause
each resource to notify the postfix service to restart. Puppet's
smart enough to only
Curly braces perhaps?
content = file(/home/${realuser}/puppet/files/smb.conf),
On Tue, Nov 22, 2011 at 10:15 AM, Alexander Fortin
alexander.for...@gmail.com wrote:
On 11/21/11 9:28 PM, jcbollinger wrote:
What if you spell it like so:
mysersource { /etc/$::myvariable: ensure = present }
?
Another way to handle this is to have class-level logic:
class something {
if ( $operatingsystem == windows ) { include something::windows }
if ( $operatingsystem == redhat ) { include something::redhat }
}
Then put your resources in something::windows, something::redhat, etc.
You may
separate :)
Thanks.
Mohamed.
On Mon, Nov 21, 2011 at 1:26 PM, Aaron Grewell aaron.grew...@gmail.com
wrote:
Another way to handle this is to have class-level logic:
class something {
if ( $operatingsystem == windows ) { include something::windows }
if ( $operatingsystem == redhat
I'm not sure about the Ruby packages specifically, but Fedora has
diverged so much from RHEL5 that building recent packages is a major
undertaking. You'd probably be better off with tarballs and FPM.
On Thu, Nov 17, 2011 at 2:42 PM, Michael Stahnke stah...@puppetlabs.com wrote:
On Thu, Nov 17,
Any parameters you don't always want to provide have to have sensible
defaults in the define.
define dostuff (ImOptional=true, ImRequired){}
On Mon, Nov 14, 2011 at 12:12 PM, tmpup justin.francesc...@gmail.com wrote:
An update - I went with a define as you suggested, and just made had
my
Try removing the hyphen from the class name. If that fixes it then you've
hit this:
http://projects.puppetlabs.com/issues/5268
On Nov 12, 2011 3:14 PM, Peter Berghold salty.cowd...@gmail.com wrote:
In one of my modules I have the following :
postfix/
manifests/
As far as concat goes, I wouldn't call my concat resource and my
concat::fragment resource by the same name. In theory it shouldn't
break anything, but...
On Thu, Nov 3, 2011 at 12:20 PM, Douglas Garstang
doug.garst...@gmail.com wrote:
Actually I can. That's sweet! Thanks!
On Thu, Nov 3,
When I did this in my test environment I removed the entire contents
of the ssldir from the client to make sure that both the client
server cert were pulled down anew.
On Wed, Nov 2, 2011 at 10:25 AM, TFML mailingl...@theflux.net wrote:
I'm running in circles with this issue... I accidentally
FQDN is puppetmaster.lagged.com but I have the
server as puppet.lagged.com, can that be the cause of the problem? If so how
would I create the certificate to be valid for puppet.lagged.com and not be
puppetmaster.lagged.com
On Nov 2, 2011, at 2:01 PM, Aaron Grewell wrote:
When I did
['tomcat::enable'] #Service['tomcat']
}
but puppet complains Could not find dependent Class[Tomcat::Enable].
Any ideas?
Doug.
On Thu, Oct 20, 2011 at 2:46 PM, Aaron Grewell aaron.grew...@gmail.com
wrote:
I suspect you may want a separate class, something like tomcat::enable
to handle
the net result of including something the same as it's really
there already? If so, the final result is the same... the service
resource ends up in the tomcat::server class no?
Doug.
On Fri, Oct 21, 2011 at 10:25 AM, Aaron Grewell aaron.grew...@gmail.com
wrote:
If tomcat::enable
I suspect you may want a separate class, something like tomcat::enable
to handle the service independently.
On Thu, Oct 20, 2011 at 1:55 PM, Douglas Garstang
doug.garst...@gmail.com wrote:
All,
I have a tomcat module, and another module, containing a tomcat
application called OpenAM. In the
Make sure you have all the lsb packages installed. That's usually
what causes LSB facts not to resolve.
On Tue, Oct 18, 2011 at 6:22 AM, Yann H y...@plista.com wrote:
Hello Puppet list,
I am taking over the puppet configuration of a sysadmin who left, and
am having troubles deploying puppet
It also depends on how many machines you're managing. If you've got
very many I'm with John: don't cross the streams. It's so easy to
make RPMs from gems that there's really no reason not to if you need a
newer version than what's provided.
On Tue, Oct 18, 2011 at 10:14 AM, Craig White
No, as I understand it environments are designed to be completely
independent of one another. The idea is that you wouldn't want changes in
testing or qa to be able to affect production for any reason. So it's
expected that there would be duplication across environments due to SLA
differences
IIRC the mysql user gets created by the mysql rpm, so your file will have to
require Package['mysql-server'] and possibly mysql-client as well.
On Wed, Oct 12, 2011 at 3:09 PM, olympus stance olympus.sta...@gmail.comwrote:
Hello Nathan,
I tried that:
here is mysql-server.pp
AFAIK there's no native way. I would do this with a set of defines wrapped
around the yum-security package (which allows you to list and operate on
security updates only).
On Mon, Oct 10, 2011 at 12:22 PM, Jo Rhett jrh...@netconsonance.com wrote:
Am I overlooking a native way to update
How annoying. You could hack it up after installing yum-changelog with 'yum
changelog 1 package | grep CVE' I guess. Not pretty.
On Mon, Oct 10, 2011 at 2:36 PM, Jo Rhett jrh...@netconsonance.com wrote:
yum-security doesn't work with CentOS.
On Oct 10, 2011, at 1:18 PM, Aaron Grewell wrote
Sure, but that doesn't really address the issue (at least not out-of-box).
Hiera puts your data outside your manifests, but at least in our case it's
still in revision control. Are you putting your Hiera data elsewhere? If
so, how do you control access to it?
This came up recently for us as
Now that sounds cool.
On Mon, Oct 3, 2011 at 3:42 PM, R.I.Pienaar r...@devco.net wrote:
it would be pretty trivial to create an encrypted hiera backend that
can only be decrypted by machines that have a key stored on their disks.
You'd check into SCM the encrypted file and on your masters
I'd prefer that the existing behavior remain the same and that a new fact be
added for those that require it. I'd rather not have to interrogate a
hypothetical Facter config file to determine what it means by 'hostname' on
each given system.
On Fri, Sep 30, 2011 at 10:49 AM, Ken Barber
We use different manifests per OS. It makes the underlying logic much
simpler, and is easily called by using either the 'kernel' fact or the
'operatingsystem' fact depending.
For things that are the same across supported Linuxes but different on
Solaris:
include module::$kernel
Where
wrote:
On Sep 27, 11:13 am, Aaron Grewell aaron.grew...@gmail.com wrote:
We're not using CPAN. Modules are installed as RPMs in our environment.
As it should be on an RPM-based distro.
Yes, I wish it could be so... Unfortunately the one system that I
need this for is running cPanel
1 - 100 of 188 matches
Mail list logo
