Nigel Jones wrote:
On Wed, 2008-08-27 at 21:52 -0700, Jesse Keating wrote:
On Wed, 2008-08-27 at 21:44 -0700, Jesse Keating wrote:
Comments?
One comment just made on IRC by G:
f13: can't be allow masher to sudo to ftpsync and run a sync
command?
G = $me :)
We would have to allow masher to
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Amitakhya Phukan wrote:
> Mike McGrath wrote:
>> On Wed, 2 Jul 2008, Amitakhya Phukan wrote:
>>
>>
>>> hi people!
>>>
>>> i was away for a long time and now i am back. i am looking
>>> forward to contributing to fedora infrastructure now and am
>>> loo
On Wed, 27 Aug 2008, Mike Watters wrote:
> Hello,
> I have applied to the sysadmin group and would like to give you an overview my
> experience.
>
> I have been a systems admin or security analyst for 12 years at 3 major
> worldwide (US based) companies. the majority of the time I was a systems
>
On Wed, 27 Aug 2008, Jesse Keating wrote:
> So I realized something last night. We created a user "masher" to have
> the ability to write to /mnt/koji/mash/ but not any of the other koji
> space. This is useful to prevent too much damage from a horribly wrong
> rawhide compose. To make things e
On Thu, 2008-08-28 at 08:42 -0500, Mike McGrath wrote:
> On Wed, 27 Aug 2008, Jesse Keating wrote:
>
> > So I realized something last night. We created a user "masher" to have
> > the ability to write to /mnt/koji/mash/ but not any of the other koji
> > space. This is useful to prevent too much
On Thu, 28 Aug 2008, Seth Vidal wrote:
> On Thu, 2008-08-28 at 08:42 -0500, Mike McGrath wrote:
> > On Wed, 27 Aug 2008, Jesse Keating wrote:
> >
> > > So I realized something last night. We created a user "masher" to have
> > > the ability to write to /mnt/koji/mash/ but not any of the other koj
On Thu, 2008-08-28 at 11:57 +0200, Jeroen van Meeuwen wrote:
>
> You could configure sudoers to allow the masher user to only be able to
> execute whatever it sudo's as the ftpsync user:
>
> masher hostname.domain.tld=(ftpsync) NOPASSWD: rsync $rsync_opts
> foo. bar
>
> Does that narrow it dow
On Thu, 2008-08-28 at 08:52 +0200, Xavier Lamien wrote:
> yeah, you can easily do that by invoking : /bin/mail -r From_adress
> hope that mailx is up to date ;)
Looks like that's not working in EL5. Pitty.
--
Jesse Keating
Fedora -- FreedomĀ² is a feature!
identi.ca: http://identi.ca/jkeating
On Thu, 2008-08-28 at 09:22 -0700, Jesse Keating wrote:
> On Thu, 2008-08-28 at 08:52 +0200, Xavier Lamien wrote:
> > yeah, you can easily do that by invoking : /bin/mail -r From_adress
> > hope that mailx is up to date ;)
>
> Looks like that's not working in EL5. Pitty.
>
a simple python scrip
On Thu, Aug 28, 2008 at 11:27 AM, Seth Vidal <[EMAIL PROTECTED]> wrote:
> On Thu, 2008-08-28 at 09:22 -0700, Jesse Keating wrote:
>> On Thu, 2008-08-28 at 08:52 +0200, Xavier Lamien wrote:
>> > yeah, you can easily do that by invoking : /bin/mail -r From_adress
>> > hope that mailx is up to date ;)
On Thu August 28 2008, Jesse Keating wrote:
> On Thu, 2008-08-28 at 08:52 +0200, Xavier Lamien wrote:
> > yeah, you can easily do that by invoking : /bin/mail -r From_adress
> > hope that mailx is up to date ;)
>
> Looks like that's not working in EL5. Pitty.
This works for me on CentOS 5, after
2008/8/28 Jesse Keating <[EMAIL PROTECTED]>
> On Thu, 2008-08-28 at 08:52 +0200, Xavier Lamien wrote:
> > yeah, you can easily do that by invoking : /bin/mail -r From_adress
> > hope that mailx is up to date ;)
>
> Looks like that's not working in EL5. Pitty.
>
hm... is installed rhel-5.2 workin
Mike Watters wrote:
Hello,
I have applied to the sysadmin group and would like to give you an
overview my experience.
I have been a systems admin or security analyst for 12 years at 3 major
worldwide (US based) companies. the majority of the time I was a
systems admin for Solaris, AIX
I did
Orion Poplawski wrote:
Orion Poplawski wrote:
Filed bug #459442 as I have a simple test case. Once everything is
back up we can test again.
It appears that the pipe2 syscall on the x86_64 xen kernels is broken
and that rawhide glibc has moved to using pipe2 from pipe in rawhide.
This see
Toshio,
I am most definitely interested, I will jump on IRC as soon as I can find a
hole in the firewall at work, Otherwise I will be on when I get back home.
I am in US Central Time. if I can find a hole before the meeting I will
attend.
if possible can you shoot me an email with a cli project
Jesse Keating ([EMAIL PROTECTED]) said:
> So I realized something last night. We created a user "masher" to have
> the ability to write to /mnt/koji/mash/ but not any of the other koji
> space. This is useful to prevent too much damage from a horribly wrong
> rawhide compose. To make things eas
On Thu, 28 Aug 2008, Bill Nottingham wrote:
> Jesse Keating ([EMAIL PROTECTED]) said:
> > So I realized something last night. We created a user "masher" to have
> > the ability to write to /mnt/koji/mash/ but not any of the other koji
> > space. This is useful to prevent too much damage from a h
2008/8/28 Mike <[EMAIL PROTECTED]>:
> Toshio,
>
> I am most definitely interested, I will jump on IRC as soon as I can find a
> hole in the firewall at work, Otherwise I will be on when I get back home.
> I am in US Central Time. if I can find a hole before the meeting I will
> attend.
>
> if pos
On Thu, 2008-08-28 at 14:58 -0500, Mike McGrath wrote:
> > Is changing the user that owns the files going to cause unnecessary rsync
> > churn for mirrors?
> >
>
> Only if we change the uid of ftpsync. If we change the uid of masher
> we're good on the mirrors.
I went the sudo route. I was able
This is the latest draft of New Key repo locations. Jesse Keating
points out that the deep levels are necessary because mirrors exclude
releases by directory name like "9/". Please let me know if you see any
errors in the below.
Release Before (no yum repo file)
http://download.fedora.redhat
> On Thu, 2008-08-28 at 16:31 -0400, Warren Togami wrote:
> This is the latest draft of New Key repo locations. Jesse Keating
> points out that the deep levels are necessary because mirrors exclude
> releases by directory name like "9/". Please let me know if you see any
> errors in the below.
Publictest15 is up and ready. If you were using publictest10, start
getting your stuff set back up on publictest15. If you need things
restored create a ticket and let us know what and why. Remember, the pt
servers don't get backed up, you should never be storing info there where
it is the only p
On Thu, 2008-08-28 at 18:38 +0200, Till Maas wrote:
> /bin/mail -s SUBJECT [EMAIL PROTECTED] -- -f [EMAIL PROTECTED] -F
> "freeform from
> part"
Ah, that was the missing part. Thanks. I've tossed in git, will tag it
once the current run is done.
--
Jesse Keating
Fedora -- FreedomĀ² is a featu
Warren Togami wrote:
This is the latest draft of New Key repo locations. Jesse Keating
points out that the deep levels are necessary because mirrors exclude
releases by directory name like "9/". Please let me know if you see any
errors in the below.
If 9/ is excluded, wouldn't that mean 9
On Fri, 2008-08-29 at 01:51 +0200, Jeroen van Meeuwen wrote:
> If 9/ is excluded, wouldn't that mean 9/$releasever/*/os.newkey is also
> excluded? If it's not, then I guess there's no point in the new
> directory being created either.
Yes, if 9 is excluded (or included) that means the admin eith
Sorry for the top post, I'm on my crackberry. We need to male sure to
CLEARLY communicate this to mirror admins. I'm sure that more than 1
excludes releases/9/ since it is considered to be static content after
release in order to reduce the number of files for rsync to consider.
On 8/28/08, Jess
On Thu, 2008-08-28 at 20:12 -0400, Jon Stanley wrote:
> Sorry for the top post, I'm on my crackberry. We need to male sure to
> CLEARLY communicate this to mirror admins. I'm sure that more than 1
> excludes releases/9/ since it is considered to be static content after
> release in order to reduce
Jesse Keating wrote:
On Fri, 2008-08-29 at 01:51 +0200, Jeroen van Meeuwen wrote:
If 9/ is excluded, wouldn't that mean 9/$releasever/*/os.newkey is also
excluded? If it's not, then I guess there's no point in the new
directory being created either.
Yes, if 9 is excluded (or included) that me
On Fri, 2008-08-29 at 02:32 +0200, Jeroen van Meeuwen wrote:
> I'm not sure how that solves the net install use case, especially if
> mirrormanager is going to redirect to os.newkey/, as signatures used on
> os.newkey/ packages will not meet what the installer expects the
> signature to be on th
Jeroen van Meeuwen wrote:
Will the ISOs be respun to reflect the changes as well so that what is
in os/ or in os.newkey/ meets what each of the ISO expects? I guess this
is primarily relevant to respins, netinstalls and so forth, as the old
RPM-GPG-KEYs will be in the root of those ISOs and I c
On Wed, 2008-08-27 at 21:44 -0700, Jesse Keating wrote:
> We have another user, 'ftpsync' that has write access
> to /pub/fedora/. Previously the rawhide script was ran as root, and
> thus it was no problem to su ftpsync for the rsync calls. The masher
> user does not possess the capability of d
On Fri, 2008-08-29 at 02:25 -0400, Jon Masters wrote:
> Now I'm no Fedora sysadmin (and the infrastructure doesn't appear to be
> publicly documented anywhere - beyond the basics) so it's likely that
> the mounts in question simply don't do ACLs right or you'd have already
> discussed it...but for
32 matches
Mail list logo
