[Puppet Users] Re: Snippet: Apache vHost to proxy to central CA and local puppet server

seems the URL schema of the certificate service is not the same as with puppet 3. ^/([^/]+/certificate.*)$ needs to be ^/(puppet-ca/.*)$ - Thomas Am Dienstag, 9. Juni 2015 08:34:52 UTC+2 schrieb Thomas Müller: > > hi > > If you have a centralized ca you can proxy the certificate traffic to t

[Puppet Users] Re: puppet 4: webserver configuration

I would configure a apache in front of puppetserver (sample vhost: https://groups.google.com/forum/#!topic/puppet-users/ECZ4-9XD7e0) to serve other content. I suppose that the puppet server is not thought as a general purpose webserver. - Thomas Am Montag, 15. Juni 2015 18:42:12 UTC+2 schri

Re: [Puppet Users] puppet 4: webserver configuration

Thomas, > I would configure a apache in front of puppetserver (sample vhost: > https://groups.google.com/forum/#!topic/puppet-users/ECZ4-9XD7e0) to serve > other content. > > I suppose that the puppet server is not thought as a general purpose > webserver. > I understand that puppet server

Re: [Puppet Users] Command Exceeded Timeout on Basic Shell Commands

hi, Could you test the same with puppet apply on the client itself On 16 June 2015 at 07:42, Franck wrote: > We've been experiencing a lot of "Command exceeded timeouts" on basic > shell commands using the "exec" type for tasks that should execute fairly > fast: > > Jun 15 15:45:44 host1 puppet

[Puppet Users] Please take the 2015 Monitoring Survey!

TL;DR - Please take the 2015 Monitoring Survey at https://www.surveymonkey.com/s/monitoringsurvey2015. Last year I ran a monitoring survey, whose data I also reviewed as a series of posts on this blog (http://kartar.net/2014/11/monitoring-survey---background/). I was interested in running the surv

[Puppet Users] Wanna see something scary ?

It scared the beans out of me when I found this code in a manifest I am tasked to update / refactor. Does this look as outrageously wrong to you all as it looks to me ? Variable names have been edited to protect the guilty class role::one {   hiera_include('profile::aa')   hiera_include('profil

Re: [Puppet Users] Wanna see something scary ?

Whilst I don't like it, I'm intrigued as to what is scaring you? Looks like someone has modelled profiles in hiera/yaml rather than saying include profile::aa and having class profile::aa () { include syslog include ttys Perhaps they just felt like it? If you trust people puppet you

Re: [Puppet Users] A case for git (SVN vs Git)

Hello With git I can commit branch etc and test on VMs all on my laptop with no internet access. So features come one at a time when I get back online and push. When I had svn a lot of features would just appear in a single commit. Horrid. Not 100% joking If your organisation is big enough y

Re: [Puppet Users] why puppet cert clean generates so much output and takes a lot of time

I´m running puppet cert clean some_host To clean the certificate of just one host. And the puppet version I´m running is: 3.7.4 Thank you. --av.- On Tuesday, June 9, 2015 at 2:03:42 PM UTC-7, Gabriel Filion wrote: > > On 09/06/15 12:14 PM, Andrés Abelardo Villarroel Acosta wrote: > > I´m no

Re: [Puppet Users] why puppet cert clean generates so much output and takes a lot of time

Sorry I was not clear, I´m trying to cleanup the cert of just one host with. puppet cert clean cert_name Still don´t understand why it takes so much time to cleanup a single host. Same clean command for different cert_names output different serials. Thanks. --av.- On Wednesday, June 10, 2015

Re: [Puppet Users] why puppet cert clean generates so much output and takes a lot of time

On Wednesday, June 10, 2015 at 6:55:53 AM UTC-7, Christopher Wood wrote: > > On Wed, Jun 10, 2015 at 05:56:57AM -0700, jcbollinger wrote: > >On Tuesday, June 9, 2015 at 4:03:42 PM UTC-5, Gabriel Filion wrote: > > > > On 09/06/15 12:14 PM, Andrés Abelardo Villarroel Acosta wrote: > >

Re: [Puppet Users] Wanna see something scary ?

From https://docs.puppetlabs.com/references/latest/function.html#hierainclude To use hiera_include,  the following configuration is required:  • A key name to use for classes, e.g. classes. • A line in the puppet sites.pp file (e.g. /etc/puppetlabs/puppet/manifests/sites.pp) reading hiera_incl

Re: [Puppet Users] A case for git (SVN vs Git)

On Monday, June 15, 2015 at 7:31:08 AM UTC-7, Paul Seward wrote: > > On 12 June 2015 at 19:14, Ramin K > > wrote: > >> >> Being somewhat in the middle of a similar conversation at $dayjob >> I believe it's a mistake to focus on the technology rather than the >> outcome. I would focus o

[Puppet Users] Announce: Puppet Agent 1.1.1 available

Puppet Agent 1.1.1 is a security release in the puppet agent 1.1 series. This release updates the included rubygems from 2.2.3 to 2.2.5 to address CVE-2015-3900. More information on this CVE is available at http://blog.rubygems.org/2015/05/14/CVE-2015-3900.html. This release also updates the incl

Re: [Puppet Users] Wanna see something scary ?

Their use of hiera_include is spaghetti codish and horrid. But a lot of puppet code is. For a framework to be flexible enough without supporting such horrors is seemingly impossible. You are right to be concerned. If it were me I'd redo them as puppet classes and see if that looks better. I'm not s

Re: [Puppet Users] Re: Slow Mirror

On 12/06/15 12:05, Daniel Parks wrote: > On Thu, Jun 11, 2015 at 3:25 AM, Denny B > wrote: > > We can't download faster than 1mb/s. When I use another Server > from other network everything works fine. > Can you check if there is a speedlimit active for

Re: [Puppet Users] Re: Slow Mirror

On Tue, Jun 16, 2015 at 3:53 PM, Xav Paice wrote: > When we go to http://apt.puppetlabs.com/pool/trusty/main/p/puppet/ > there's no files at all - although the server responds pretty quickly - is > this a known thing? > I guess serving no files might help with load issues. :) It shows files for

Re: [Puppet Users] Re: Slow Mirror

On Tuesday, June 16, 2015, Xav Paice wrote: > > When we go to http://apt.puppetlabs.com/pool/trusty/main/p/puppet/ > there's no files at all - although the server responds pretty quickly - is > this a known thing? > Turns out we messed up an exclude when rsyncing the other day, and lost those whi

Re: [Puppet Users] Re: Slow Mirror

Hello Daniel, just for your interest: Seems the slow download is produced by our own network (bug in router/switch). So we'll investigate this issue on our own and will respond to you if we found the "bug" and puppetlab is still slow for us. Please pardon the inconvenience. Best regards, Denny 2

[Puppet Users] permission denied on files

Hi all, I've setup a puppet module to install and keep the bacula backup system running on a number of systems. Part of the formula I've come up with is to transfer an SSL cert/key pair to each host that uses the module. So that bacula can work over TLS. I have this defined in my bacula confi