On Wed, May 06, 2009 at 04:02:54PM +0200, Bjørn Dyre Dyresen wrote: > 2009/5/6 Chad Huneycutt <chad.huneyc...@gmail.com> > > > > > I have a couple of concerns about this (at least in my environment). > > First, the root password would be clearly visible (not even crypted!) > > In the process listing during execution of the usermod. Second, > > similarly, the root password is stored in plaintext on the > > puppetmaster. Actually, would that variable be stored in each hosts > > yaml cache? > > > > Puppet has a user type that I think would be much better. I haven't > > done this yet, but assuming you have installed ruby-shadow package, > > you just need to specify the crypted string. > > > > > It's easy enough to just use sed in a exec to updatet the hash in shadow.
Sounds like a recipe for a race condition :-/ -- Marcin Owsiany <mar...@owsiany.pl> http://marcin.owsiany.pl/ GnuPG: 1024D/60F41216 FE67 DA2D 0ACA FC5E 3F75 D6F6 3A0D 8AA0 60F4 1216 "Every program in development at MIT expands until it can read mail." -- Unknown --~--~---------~--~----~------------~-------~--~----~ You received this message because you are subscribed to the Google Groups "Puppet Users" group. To post to this group, send email to puppet-users@googlegroups.com To unsubscribe from this group, send email to puppet-users+unsubscr...@googlegroups.com For more options, visit this group at http://groups.google.com/group/puppet-users?hl=en -~----------~----~----~----~------~----~------~--~---