similar to: Fake FQDN for puppetmaster (and ca) in faked environment?

Hello List, i''m running into an issue with puppet where I don''t know how to solve correctly. We''re managing applications and our monitoring (nagios) using puppet using the following schema: class nagios { // ensure nrpe ist installed // export a host definition nagios::check { ''ping'': } nagios::check { ''load'': } ...

Hi there. I''m trying to wrap my head around puppet and its parlance and need some guidance... 2 Questions: 1) I have done some puppet stuff on a new server and would like to hear whether I have done things "the right way" 2) I want to build on top of that and am not sure how... Question 1 ========== We don''t normally host static websites for people, but have been

hi, Whats the 'robust' way to make sure email to a specific destination is only accepted if it came over the localhost:25 or /usr/sbin/sendmail route ? anything else should get a 5xx error. Emails to other destinations should remain unaffected. Using postfix/c4. Had a look around, and header_checks might be one way to go. -- Karanbir Singh : http://www.karan.org/ : 2522219 at icq

Andreas- On Thu, Apr 3, 2008 at 8:31 AM, Andreas Rogge <a.rogge@solvention.de> wrote: > Do you have SELinux enabled? When starting puppet from init.d with SELinux enabled it runs in xinitrc_t while it should (at least imo) run in unconfined_t. Running in xinitrc_t lead to *really* strange things. Everything way fixed once I deployed a policy that made puppetd run in unconfined_t. >

Hi there, If I have a manifest with, say: node default { ..stuff.. } node mymachine { ..stuff.. } What would happen on mymachine: will the stuff in default be executed *as well as* the stuff in default, or only the stuff in mymachine? And, if the latter, should I move global stuff just to global scope outside of nodes? Thanks -Iwan

I am trying to hwclock to set the time. (hwclock -w) this is what I get on standard 5.2 x86_64. hwclock --debug hwclock from util-linux-2.13-pre7 hwclock: Open of /dev/rtc failed, errno=19: No such device. No usable clock interface found. Cannot access the Hardware Clock via any known method. [root at devcentos5x64 src]# ls -l /dev/rtc crw------- 1 root root 10, 135 Feb 6 13:32 /dev/rtc Any

Hello, Our mail server is running CentOS 5.3. I configured postfix with maildrop as the MDA. I had to deal with a strange issue : a user sent an email to an alias, which resolves into several internal addresses. One of these addresses had its mbox filled up (reached the mailbox_size_limit); so maildrop reported a 0x19 error code to postfix, who kept the mail in its queue, and repeatedly resent

Hi there, If I create a user, there seems to be no way to restrict it from being able to log in. Is there a simple way in which I can extend it to do that, or will I have to build my own define? It would also be useful to specify the user''s ssh keys and authorized keys, for example. I am also wondering how much effort it would be to add another provider for user (such as

Me again! I have a recipe that looks like: class postgresql { file { pg_hba_conf: name => "/var/lib/pgsql/data/pg_hba.conf", source => "puppet://puppetmaster/files/workstations/common/var/lib/pgsql/data/pg_hba.conf", owner => postgres, group => postgres, mode => 600, subscribe => [ Package[postgresql] ],

Hi puppet masters, while working on my site I came across a requirement that might be helpful for others as well.... With the aim of confining human errors as much as possible, I thought that it would be nice to have yum repositories disabled so that specific repositories could be enabled for certain packages. This is easily implementable via command-line, but I found that the

Hi there, What do you people do when distributing files that only root should have read access to? What we''ve done is to put them in /etc/puppet/files (which is configured to be a location served by puppet''s file server). Then we let puppet own everything underneath /etc/puppet/files, and make those sensitive files readable only by the puppet user. In Ubuntu (which we use),

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Hi all We''re currently looking at the next release of Facter and the future direction of the tool. I''d like to try and prompt some discussions on facter and what people want from it. As a starter here''s some (although not all) of the ideas we''ll be working through: 1. Namespaces - add a namespace or tiered

I have a recipe that I''m ensuring that I remove rpms that may be installed by CentOS/RHEL before I install the MySQL.com rpms. the recipe and logs are listed below. For testing I have mysql-* rpms already installed. Is there a method to force specific order to run the recipe? What am I doing wrong? # install mysql rpms (not CentOS/RHEL vesions) # PROCESS: # - removes any CentOS/RHEL

The file{} type can do all of the following: * manage single files * manage directories * manage symlinks * manage recursive file copies The intersection of all these bits of functionality makes it difficult to understand exactly what is going on when you''re new to Puppet, and even experienced users often don''t know how combining symlinks/content management is going to work.

Hello there, I was hoping that maybe one of you guys could help me out with a problem I'm experiencing with tinc1.0pre7. First, I'll start with my configuration, after that I'll explain my problem. Background ---------- This is a simple, client-server situation on a private network. Both machines run the same Debian Woody 3.0 testing installation and both have identical packages

Hi, Can kernel's freeBSD exploited by tools hacking ? If true, can I know how to fix this problem, and what tools can do that. Thanks alot

Hi I''m trying to use before_filter to allow access to a site. Only logged in users can view any object in the controller, but only users with a access_level higher than 2 can view specific objects. My code is: ----------------------------------------------------------- IN USER_CONTROLLER before_filter :login_required before_filter :access_granted, :only => [:destroy, :new , :edit]

Hi, Hi I'm using redhat 9 I've got samba working and I have users onj the system accessing the shares, Can anyone recomend a programme that can tell me whch users have got files open on my samba box Thanks ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Iwan Davies Server Support and Development Technician Cyngor Sir Ceredigion County Council IT Section Finance iwandav@ceredigion.gov.uk

Hi I would like to create custom VFS that would redirect all calls to my backend. Few questions: 1) is it possible to use Java with JNI wrapper to communicate with my backend or does it have to be pure C/C++ ? 2) are the notifications (file deletion/creation etc.) available in VFS, in other words notifying samba server and applications that directory has changed? 3) are there any

Hello all. I'm wondering when the release of version 6 documentation might be out, or if the shift is to the wiki pages for this information. When going to: *https://www.centos.org/docs/ *I don't see 6 listed. Regards, loadedmind -------------- next part -------------- An HTML attachment was scrubbed... URL: