Puppet users - Jul 2007 - Designing a Pilot Puppet Infrastructure - Have Questions.

Hi all,

I''ve been following the puppet project for a while now and I think
it''s starting to become mature enough to be used in a pilot project at
my corp.

I have a few questions:

1. What is the current largest known number of Puppet managed hosts?
2. What are the average network demands on a single puppet master?
3. Has Oracle ever been managed by Puppet? 
3a. Has Oracle ever been installed and/or initially been configured using
Puppet?
4. How secure is communications between the Puppet Master and Puppet Clients?
4a. Have any root exploits been found as of today and what is the potential for
root exploits?


Thanks!

Brent C.


       
____________________________________________________________________________________
Looking for a deal? Find great prices on flights and hotels with Yahoo!
FareChase.
http://farechase.yahoo.com/

_______________________________________________
Puppet-users mailing list
Puppet-users@madstop.com
https://mail.madstop.com/mailman/listinfo/puppet-users

3 and 3a:
 
We''re using Puppet to configure our Oracle servers but at this stage
are
still doing the Oracle installation itself manually.  I haven''t had
time
to research it in depth, but I believe most Oracle installation programs
have an "unattended" mode (i.e. you provide your configuration options
in a file that you pass to the installation program) which should work
with Puppet.
 
A lot of Oracle''s configuration is based on text files and
they''re easy
to manage using Puppet.
 
James


________________________________

	From: puppet-users-bounces@madstop.com
[mailto:puppet-users-bounces@madstop.com] On Behalf Of Brent Clements
	Sent: Tuesday, 3 July 2007 3:18 PM
	To: puppet-users@madstop.com
	Subject: [Puppet-users] Designing a Pilot Puppet Infrastructure
- HaveQuestions.
	
	
	Hi all,
	 
	I''ve been following the puppet project for a while now and I
think it''s starting to become mature enough to be used in a pilot
project at my corp. 
	 
	I have a few questions:
	 
	1. What is the current largest known number of Puppet managed
hosts?
	2. What are the average network demands on a single puppet
master?
	3. Has Oracle ever been managed by Puppet? 
	3a. Has Oracle ever been installed and/or initially been
configured using Puppet?
	4. How secure is communications between the Puppet Master and
Puppet Clients?
	4a. Have any root exploits been found as of today and what is
the potential for root exploits?
	 
	 
	Thanks!
	 
	Brent C.

________________________________

	Don''t pick lemons.
	See all the new 2007 cars
<http://autos.yahoo.com/new_cars.html;_ylc=X3oDMTE0OGRsc3F2BF9TAzk3MTA3M
Dc2BHNlYwNtYWlsdGFncwRzbGsDbmV3Y2Fycw-->  at Yahoo! Autos.
<http://autos.yahoo.com/new_cars.html;_ylc=X3oDMTE0OGRsc3F2BF9TAzk3MTA3M
Dc2BHNlYwNtYWlsdGFncwRzbGsDbmV3Y2Fycw-->  
	
_____________________________________________________________________ 
	This e-mail has been scanned for viruses by MCI''s Internet
Managed 
	Scanning Services - powered by MessageLabs. For further
information 
	visit http://www.mci.com
	


*********************************************************************************
Important Note
This email (including any attachments) contains information which is 
confidential and may be subject to legal privilege.  If you are not 
the intended recipient you must not use, distribute or copy this 
email.  If you have received this email in error please notify the 
sender immediately and delete this email. Any views expressed in this 
email are not necessarily the views of AXA-Tech Australia.   Thank you.
**********************************************************************************


_______________________________________________
Puppet-users mailing list
Puppet-users@madstop.com
https://mail.madstop.com/mailman/listinfo/puppet-users

On 03/07/07, Brent Clements <brent_puppet_ml@yahoo.com>
wrote:
>
> Hi all,
>
> I''ve been following the puppet project for a while now and I think
it''s
> starting to become mature enough to be used in a pilot project at my corp.
>
> I have a few questions:
>
> 1. What is the current largest known number of Puppet managed hosts?
> 2. What are the average network demands on a single puppet master?
> 3. Has Oracle ever been managed by Puppet?
Yes.
> 3a. Has Oracle ever been installed and/or initially been configured using
> Puppet?
Yes.

For unattended installs of Oracle you can either use an Oracle
installer response file, or create your own Oracle packages using the
most appropriate package format (e.g. rpms, Sun pkg). For either
method you''ll first need to install Oracle on a machine and either
record the response file while you do it or package up the resulting
installation directories. If you create your own packages you are not
technically supported, as Oracle insist you should use their
installer. In practice it won''t be too much of an issue unless you do
actually make a mistake with the packaging.

G

On Jul 3, 2007, at 12:18 AM, Brent Clements wrote:
> Hi all,
>
> I''ve been following the puppet project for a while now and I think
> it''s starting to become mature enough to be used in a pilot
project
> at my corp.
>
> I have a few questions:
>
> 1. What is the current largest known number of Puppet managed hosts?
People have been cagey about numbers, but the largest numbers I know  
about are in the range of 300 or so.
> 2. What are the average network demands on a single puppet master?
It depends too much on usage to say.  You can always reduce demands  
by doing less file copying, or using NFS, etc.
> 3. Has Oracle ever been managed by Puppet?
> 3a. Has Oracle ever been installed and/or initially been configured  
> using Puppet?
> 4. How secure is communications between the Puppet Master and  
> Puppet Clients?
The request for a signed certificate is encrypted but not  
authenticated.  All other connections are encrypted with SSL and  
authenticated on both sides via certificates.
> 4a. Have any root exploits been found as of today and what is the  
> potential for root exploits?
None have been found that I know of (I''m the primary developer).  The  
potential is there, clearly, but I think it''s pretty darn small -- I  
don''t do any direct execution of any code received by a client, for  
instance.

  --
  Good judgment comes from experience, and experience comes from bad
  judgment.     --Barry LePatner
  ---------------------------------------------------------------------
  Luke Kanies | http://reductivelabs.com | http://madstop.com