Re: [Puppet Users] Kindly share Modules of CLAMV for Centos ,Ubuntu,Suse
cough https://forge.puppetlabs.com/modules?utf-8=✓sort=rankq=clamav /cough On Jun 24, 2014, at 5:03 PM, shyam sundar Keshari shyam...@gmail.com wrote: Hi Team , If anyone has puppet modules to install and configure Clamav on Different linux flavor like Suse ,Centos and Ubuntu with feature like scan report Kindly share . Thanks in Advance -- You received this message because you are subscribed to the Google Groups Puppet Users group. To unsubscribe from this group and stop receiving emails from it, send an email to puppet-users+unsubscr...@googlegroups.com. To view this discussion on the web visit https://groups.google.com/d/msgid/puppet-users/CAL4qkLbauPtqskxOHBNPOr9hmWxmVXYG0RCxz3f5f5Z2FQmzWQ%40mail.gmail.com. For more options, visit https://groups.google.com/d/optout. signature.asc Description: Message signed with OpenPGP using GPGMail
Re: [Puppet Users] Scaling of Puppet masters
On May 19, 2014, at 3:40 PM, Peter Berghold salty.cowd...@gmail.com wrote: Second: is there a way to use a load balancer in front of a bank of Puppet masters and keep the reports in sync? PuppetDB eliminates this need for you, and you can scale at the PostGres layer instead. Have a peek at PuppetDB. It’s a default install with PE, and easy to install with OSS Puppet. I am considering proposing Puppet Dashboard as an ENC. According to my communications with various folks doing this for a living, Foreman seems to be the favored ENC to recommend given that Dashboard is being deprecated. Not totally, as it’s been released to the community, but it’s not the “go-to” any more, necessarily. —jms signature.asc Description: Message signed with OpenPGP using GPGMail
Re: [Puppet Users] proftpd module service error
Permission on the files? On Feb 11, 2014, at 10:46 AM, Tim Dunphy bluethu...@gmail.com wrote: Hey puppet, I thought I had all my ducks in a row with this puppet module I had written for proftpd. I'm attempting to get the proftpd config to notify the proftpd service, but without much luck. [root@ops:~] #puppet agent --test Info: Loading facts in /var/lib/puppet/lib/facter/os_maj_version.rb Info: Caching catalog for ops.mydomain.com Error: Failed to apply catalog: Could not find dependent Sevice[proftpd] for File[/etc/proftpd.conf] at /etc/puppet/modules/proftpd/manifests/config.pp:9 Here's my class definitions: class proftpd { include proftpd::service, proftpd::install, proftpd::config } class proftpd::config { file { /etc/proftpd.conf: owner = root, group = root, mode = 0640, content = template(proftpd/proftpd.conf.erb), notify = Sevice[proftpd], } } class proftpd::service { service { proftpd: ensure = running, } } And just for completeness: class proftpd::install { package { [ proftpd, proftpd-mysql ]: ensure = present, } } Again, it seems pretty straightforward to me! Can someone please let me know what I may be missing? Thanks -- GPG me!! gpg --keyserver pool.sks-keyservers.net --recv-keys F186197B -- You received this message because you are subscribed to the Google Groups Puppet Users group. To unsubscribe from this group and stop receiving emails from it, send an email to puppet-users+unsubscr...@googlegroups.com. To view this discussion on the web visit https://groups.google.com/d/msgid/puppet-users/CAOZy0ekfLnU8pyGE5kSUXDQhZ_HPwFCaGqvt0YQyaSjioaEGbQ%40mail.gmail.com. For more options, visit https://groups.google.com/groups/opt_out. signature.asc Description: Message signed with OpenPGP using GPGMail
Re: [Puppet Users] Is anyone using Puppet for RHEL Patch management ?
Same here... local Yum repo, no external repo, keeping up to date by executing a yum update via exec --- Jerald M. Sheets jr. On Wed, Dec 11, 2013 at 11:52 AM, Pack, Scott pa...@ohio.edu wrote: I’ve found the best way is that instead of using Puppet to perform the updates you develop your own update system and use Puppet to manage it. At the risk of shameless self-promotion, and to save time typing here, I’ve already written this up at: http://serverfault.com/a/411060/3356 Scott On Dec 11, 2013, at 11:15 AM, Unix SA d.josh...@gmail.com wrote: Hello Guys, want to know if anyone is using puppet to apply patches to RedHat systems ? i would like to understand architecture of it .. how do you guys use it to get patches from RedHat, how do you test and deploy it on prod servers ? Regards, DJ -- You received this message because you are subscribed to the Google Groups Puppet Users group. To unsubscribe from this group and stop receiving emails from it, send an email to puppet-users+unsubscr...@googlegroups.com. To view this discussion on the web visit https://groups.google.com/d/msgid/puppet-users/CACDG_KdikGuHmOiUffJdzStbCRXf8k7uFm83o2tBhBpR8LLzqA%40mail.gmail.com . For more options, visit https://groups.google.com/groups/opt_out. -- You received this message because you are subscribed to the Google Groups Puppet Users group. To unsubscribe from this group and stop receiving emails from it, send an email to puppet-users+unsubscr...@googlegroups.com. To view this discussion on the web visit https://groups.google.com/d/msgid/puppet-users/CAAE6QHzjY5vvZzbCGWFxsOk4hrzbccYx-5bo3a7kpcgmnuxn3w%40mail.gmail.com. For more options, visit https://groups.google.com/groups/opt_out.
Re: [Puppet Users] Unpleasant puppetlabs experience
Possibly consider all the work you've put into implementing puppet on your own systems, and consequently how obtaining puppet gratis doesn't mean that it's free of cost. Please note that the exact same documentation is expected to be used for either and people spending crap-tons of money are expected to put up with the same issues. This is not a licensed/open source argument. This is a do a better job of documentation argument. I shouldn't have to go hunt down other admins in my town to learn things with/from because none of us can make sense of the documentation...or its wrong... or it ignores systems or development best practices, or whatever your particular gripe may be. Puppet is the best there is, but it (and its docs) can be better. -- You received this message because you are subscribed to the Google Groups Puppet Users group. To unsubscribe from this group and stop receiving emails from it, send an email to puppet-users+unsubscr...@googlegroups.com. To view this discussion on the web visit https://groups.google.com/d/msgid/puppet-users/CAAE6QHx57XDit4nnrWD6m7nFN6F1GBhfmJpAH5%2B9m5mei2s0Bw%40mail.gmail.com. For more options, visit https://groups.google.com/groups/opt_out.
[Puppet Users] Question about Hiera...
If I'm finding Hiera unnecessarily obtuse and the PuppetLabs documentation (after dredging through the docs literally all morning) similarly confusing, where could I look to find more clarity and quality tutorial or instruction in the Hiera product? --- Jerald M. Sheets jr. -- You received this message because you are subscribed to the Google Groups Puppet Users group. To unsubscribe from this group and stop receiving emails from it, send an email to puppet-users+unsubscr...@googlegroups.com. To view this discussion on the web visit https://groups.google.com/d/msgid/puppet-users/CAAE6QHz2JDmB%2B%2BRM9uU7%2BKmB6CwphH4AKz_yo3J3D1tw%3D%3D1MuA%40mail.gmail.com. For more options, visit https://groups.google.com/groups/opt_out.
Re: [Puppet Users] Dynamically assign Static IP Addresses
Wouldn't you want to do this on the provisioning side? --- Jerald M. Sheets jr. On Tue, Jun 25, 2013 at 3:04 PM, Worker Bee beeworke...@gmail.com wrote: Yes, but we will not be able to use DHCP in this case. This is why I was aksing if anyone had any suggesting for leveraging Puppet to do this On Tue, Jun 25, 2013 at 2:30 PM, Dan White y...@comcast.net wrote: You are describing DHCP reservations. That would be something to do with a DHCP server, not necessarily with Puppet “Sometimes I think the surest sign that intelligent life exists elsewhere in the universe is that none of it has tried to contact us.” Bill Waterson (Calvin Hobbes) -- *From: *Worker Bee beeworke...@gmail.com *To: *puppet-users@googlegroups.com *Sent: *Tuesday, June 25, 2013 2:06:05 PM *Subject: *[Puppet Users] Dynamically assign Static IP Addresses Hi Everyone; I was wondering if anyone has created ot knows of a module that can be used to assign static IP addresses to hosts post build. The addresses will be static but, need to be assigned based on MAC address. Essentially, we have a file with a list of hostnames/mac addresses. I need to use puppet to assign the correct IP addrsses to the correct host. Stored Configs is not an option. I will be grateful for any advice/feedback! Thanks! Bee -- You received this message because you are subscribed to the Google Groups Puppet Users group. To unsubscribe from this group and stop receiving emails from it, send an email to puppet-users+unsubscr...@googlegroups.com. To post to this group, send email to puppet-users@googlegroups.com. Visit this group at http://groups.google.com/group/puppet-users. For more options, visit https://groups.google.com/groups/opt_out. -- You received this message because you are subscribed to the Google Groups Puppet Users group. To unsubscribe from this group and stop receiving emails from it, send an email to puppet-users+unsubscr...@googlegroups.com. To post to this group, send email to puppet-users@googlegroups.com. Visit this group at http://groups.google.com/group/puppet-users. For more options, visit https://groups.google.com/groups/opt_out. -- You received this message because you are subscribed to the Google Groups Puppet Users group. To unsubscribe from this group and stop receiving emails from it, send an email to puppet-users+unsubscr...@googlegroups.com. To post to this group, send email to puppet-users@googlegroups.com. Visit this group at http://groups.google.com/group/puppet-users. For more options, visit https://groups.google.com/groups/opt_out. -- You received this message because you are subscribed to the Google Groups Puppet Users group. To unsubscribe from this group and stop receiving emails from it, send an email to puppet-users+unsubscr...@googlegroups.com. To post to this group, send email to puppet-users@googlegroups.com. Visit this group at http://groups.google.com/group/puppet-users. For more options, visit https://groups.google.com/groups/opt_out.
Re: [Puppet Users] Puppet install decency issues
Yeah... god forbid you actually need to stay up to date with Ruby... On May 7, 2013, at 1:01 PM, Ramin K ramin-l...@badapple.net wrote: On 5/6/2013 5:34 PM, WojonsTech wrote: I have run into the same error installing puppet 2.7 and 3.1.0 on centos box. In the end it tries to install 1.8.7 for the 3.1.0 even though I have 1.9.3 already installed I have dumped all sorts of things like rebuiding the yum repo but nothing seems to help I am using the puppetlabs yum repo The Puppet rpms require Ruby 1.8.7. Ruby 1.9.3 is a completely different ABI which is reflected in the errors you're getting. Ramin -- You received this message because you are subscribed to the Google Groups Puppet Users group. To unsubscribe from this group and stop receiving emails from it, send an email to puppet-users+unsubscr...@googlegroups.com. To post to this group, send email to puppet-users@googlegroups.com. Visit this group at http://groups.google.com/group/puppet-users?hl=en. For more options, visit https://groups.google.com/groups/opt_out. -- You received this message because you are subscribed to the Google Groups Puppet Users group. To unsubscribe from this group and stop receiving emails from it, send an email to puppet-users+unsubscr...@googlegroups.com. To post to this group, send email to puppet-users@googlegroups.com. Visit this group at http://groups.google.com/group/puppet-users?hl=en. For more options, visit https://groups.google.com/groups/opt_out.
Re: [Puppet Users] passwordless ssh
Stay careful that if you're in a PCI/SOX/ITIL environment, it may be against policy to provide this between hosts under certain circumstances. YMMV. On Apr 26, 2013, at 1:46 PM, Dan White y...@comcast.net wrote: Two different questions. Best: http://www.thegeekstuff.com/2008/11/3-steps-to-perform-ssh-login-without-password-using-ssh-keygen-ssh-copy-id/ Easiest ? Fastest ? Cheapest ? Pick one, maybe two. You ain't gonna get all three “Sometimes I think the surest sign that intelligent life exists elsewhere in the universe is that none of it has tried to contact us.” Bill Waterson (Calvin Hobbes) From: Bert Cauwelier bertbert...@gmail.com To: puppet-users@googlegroups.com Sent: Friday, April 26, 2013 1:34:15 PM Subject: [Puppet Users] passwordless ssh What is the best and easy't way to let all nodes ssh passwordless to each other ? -- You received this message because you are subscribed to the Google Groups Puppet Users group. To unsubscribe from this group and stop receiving emails from it, send an email to puppet-users+unsubscr...@googlegroups.com. To post to this group, send email to puppet-users@googlegroups.com. Visit this group at http://groups.google.com/group/puppet-users?hl=en. For more options, visit https://groups.google.com/groups/opt_out. -- You received this message because you are subscribed to the Google Groups Puppet Users group. To unsubscribe from this group and stop receiving emails from it, send an email to puppet-users+unsubscr...@googlegroups.com. To post to this group, send email to puppet-users@googlegroups.com. Visit this group at http://groups.google.com/group/puppet-users?hl=en. For more options, visit https://groups.google.com/groups/opt_out.
Re: [Puppet Users] passwordless ssh
Not here. I'm in one of those environments. :) On Apr 26, 2013, at 2:04 PM, Bert Cauwelier bertber...@hotmail.com wrote: thx, any possible instant working puppet module for distributing the key's and allow passwordless ssh 2013/4/26 Jerald Sheets que...@gmail.com Stay careful that if you're in a PCI/SOX/ITIL environment, it may be against policy to provide this between hosts under certain circumstances. YMMV. On Apr 26, 2013, at 1:46 PM, Dan White y...@comcast.net wrote: Two different questions. Best: http://www.thegeekstuff.com/2008/11/3-steps-to-perform-ssh-login-without-password-using-ssh-keygen-ssh-copy-id/ Easiest ? Fastest ? Cheapest ? Pick one, maybe two. You ain't gonna get all three “Sometimes I think the surest sign that intelligent life exists elsewhere in the universe is that none of it has tried to contact us.” Bill Waterson (Calvin Hobbes) From: Bert Cauwelier bertbert...@gmail.com To: puppet-users@googlegroups.com Sent: Friday, April 26, 2013 1:34:15 PM Subject: [Puppet Users] passwordless ssh What is the best and easy't way to let all nodes ssh passwordless to each other ? -- You received this message because you are subscribed to the Google Groups Puppet Users group. To unsubscribe from this group and stop receiving emails from it, send an email to puppet-users+unsubscr...@googlegroups.com. To post to this group, send email to puppet-users@googlegroups.com. Visit this group at http://groups.google.com/group/puppet-users?hl=en. For more options, visit https://groups.google.com/groups/opt_out. -- You received this message because you are subscribed to a topic in the Google Groups Puppet Users group. To unsubscribe from this topic, visit https://groups.google.com/d/topic/puppet-users/IwUQLI54IHQ/unsubscribe?hl=en. To unsubscribe from this group and all its topics, send an email to puppet-users+unsubscr...@googlegroups.com. To post to this group, send email to puppet-users@googlegroups.com. Visit this group at http://groups.google.com/group/puppet-users?hl=en. For more options, visit https://groups.google.com/groups/opt_out. -- You received this message because you are subscribed to the Google Groups Puppet Users group. To unsubscribe from this group and stop receiving emails from it, send an email to puppet-users+unsubscr...@googlegroups.com. To post to this group, send email to puppet-users@googlegroups.com. Visit this group at http://groups.google.com/group/puppet-users?hl=en. For more options, visit https://groups.google.com/groups/opt_out. -- You received this message because you are subscribed to the Google Groups Puppet Users group. To unsubscribe from this group and stop receiving emails from it, send an email to puppet-users+unsubscr...@googlegroups.com. To post to this group, send email to puppet-users@googlegroups.com. Visit this group at http://groups.google.com/group/puppet-users?hl=en. For more options, visit https://groups.google.com/groups/opt_out.
Re: [Puppet Users] Moving to Chef..
Translation: My Solaris skills are such that I can't integrate a simple scripting overlay plus configuration management framework on it, so I'm going to go find whatever spells it out for me so I don't have to be bothered to grow and actually learn something. Geez. (sorry, guys... grumpy morning this morning) On Mar 12, 2013, at 8:59 AM, Phips m...@probably.co.uk wrote: Looks like a trolling to me Bill, I'm with you. Can't see what the problem is, it works just fine. On Tuesday, 12 March 2013 12:01:08 UTC, Bill Proud wrote: Really? I use it all the time with Solaris - it works just fine. Op dinsdag 12 maart 2013 11:52:37 UTC+1 schreef Rajeev Iyer het volgende: Too many issues when it comes to Solaris installation. So moving to Chef.. Thanks all.. -- You received this message because you are subscribed to the Google Groups Puppet Users group. To unsubscribe from this group and stop receiving emails from it, send an email to puppet-users+unsubscr...@googlegroups.com. To post to this group, send email to puppet-users@googlegroups.com. Visit this group at http://groups.google.com/group/puppet-users?hl=en. For more options, visit https://groups.google.com/groups/opt_out. -- You received this message because you are subscribed to the Google Groups Puppet Users group. To unsubscribe from this group and stop receiving emails from it, send an email to puppet-users+unsubscr...@googlegroups.com. To post to this group, send email to puppet-users@googlegroups.com. Visit this group at http://groups.google.com/group/puppet-users?hl=en. For more options, visit https://groups.google.com/groups/opt_out.
Re: [Puppet Users] How to manage one line in a file by puppet
I'm doing this with the augeas piece like so: augeas { 'make_grub_verbose': context = '/files/etc/grub.conf', changes = [ 'rm hiddenmenu', 'rm splashimage', ], } You should be able to use those features as you like. --Jerald On Jan 4, 2013, at 12:46 PM, Andreas Hilboll li...@hilboll.de wrote: Hi, I want to write a puppet module for xen on Debian. This module will need to manage one line in the file /etc/default/grub, namely the line starting with GRUB_CMDLINE_XEN=. Currently I want to leave the rest of the file untouched. Which would be the best way to do this? I see two options: a) Do some `sed` magic on the file in a `exec` call. Downside: puppet won't notice when the line gets manually changed. b) Have some support for sections inside files, like this: [... part of file untouched by puppet ...] ### # BEGIN MANAGED BY PUPPET: IDENTIFIEROFPUPPETRESOURCE ### GRUB_CMDLINE_XEN='my options' ### # END MANAGED BY PUPPET: IDENTIFIEROFPUPPETRESOURCE ### [... rest of file untouched by puppet ...] Is there support for something like this? Cheers, Andreas. -- You received this message because you are subscribed to the Google Groups Puppet Users group. To post to this group, send email to puppet-users@googlegroups.com. To unsubscribe from this group, send email to puppet-users+unsubscr...@googlegroups.com. For more options, visit this group at http://groups.google.com/group/puppet-users?hl=en. -- You received this message because you are subscribed to the Google Groups Puppet Users group. To post to this group, send email to puppet-users@googlegroups.com. To unsubscribe from this group, send email to puppet-users+unsubscr...@googlegroups.com. For more options, visit this group at http://groups.google.com/group/puppet-users?hl=en.
Re: [Puppet Users] New to Puppet -- why the puppet user
Because standard systems administration practice is to rarely if ever run anything at all as root. This practice, generally speaking, will not pass ITIL, SOX, HIPAA, or PCI compliance auditing, and if something like Puppet (which has complete run of your system) ran as root, you could easily demolish not only one but thousands of machines with a single keystroke... well, Root is just a bad idea, then http://askubuntu.com/questions/16178/why-is-it-bad-to-run-as-root http://cboard.cprogramming.com/tech-board/123049-why-running-programs-root-so-bad.html http://unix.stackexchange.com/questions/52268/why-is-it-a-bad-idea-to-run-as-root A good best practices document on system security and elevated permissions: http://www.sans.org/reading_room/whitepapers/bestprac/system-administrator-security-practices_657 An access control article: http://www.softpanorama.org/Access_control/Accounts/root_account.shtml Another article on best practices (#1 addresses the root user) http://brajeshwar.com/2008/5-best-practices-for-linux-users/ I could go on. I just know that if the Root user could login remotely (or directly) to anything but the console on any of my corporate hosts, I'd fail audit on just about any government-compliance required site. --jms On Nov 26, 2012, at 5:17 PM, george glwray1...@gmail.com wrote: I'm looking at Puppet as a configuration manager solution, and I was wondering Why is there a puppet user and group? I realize the obvious answer is that Puppet won't run w/o it, but I don't understand why it just wasn't set up with root access. thanks in advance, george -- You received this message because you are subscribed to the Google Groups Puppet Users group. To view this discussion on the web visit https://groups.google.com/d/msg/puppet-users/-/WtXL0ugYO0YJ. To post to this group, send email to puppet-users@googlegroups.com. To unsubscribe from this group, send email to puppet-users+unsubscr...@googlegroups.com. For more options, visit this group at http://groups.google.com/group/puppet-users?hl=en. -- You received this message because you are subscribed to the Google Groups Puppet Users group. To post to this group, send email to puppet-users@googlegroups.com. To unsubscribe from this group, send email to puppet-users+unsubscr...@googlegroups.com. For more options, visit this group at http://groups.google.com/group/puppet-users?hl=en.