Displaying 20 results from an estimated 1100 matches similar to: "Collector not realizing own exported resources when filtering on tags"
2012 Mar 29
4
stdlib module not working
I´m trying to utilize the new stdlib module, but got stuck after
installation on my puppet server.
I´ve tried to use the included test file file_line.pp on the server, but
it´s only creating the file - but not managing the content.
the same problem on my clients (the new provider file_line has been
synced), it´s just not working:
file_line { ''puppet master host
2010 Nov 15
2
bug with using exported resources?
Hello...
Is this a bug or by design?
I''m using exported resources to generate /etc/ssh/ssh_known_hosts. I
changed the example from the docs to this:
@@sshkey {
"$fqdn,$hostname,$ipaddress": type => rsa,
key => $sshrsakey,
}
so that I would get one line per host in the ssh_know_hosts file. What
happened was that on each run several (all?)
2012 Jul 11
3
where is ssh_known_hosts file generated by sshkey ?
Hi ,
I was testing puppet exported resources as in
http://docs.puppetlabs.com/guides/exported_resources.html and I had this
test class (code is from another post).
class ssh_known_hosts{
case $sshrsakey {
'''': { alert("No sshrsakey found for $fqdn") }
default: {
@@sshkey { $fqdn:
2010 Jun 06
19
Collecting _all_ ssh keys
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512
Hello,
I read and find a way (well, there seems to be several equal
implementations) to collect the ssh keys of machines. However they all
give only the choice to choose between the key formats.
But is there a way to collect both keys of a machine, the rsa _and_ the
dss key (and maybe the rsa1 too)? I didn''t find a way to solve this as
2012 Jul 31
0
Managing /etc/ssh/shosts.equiv
Hi, does anyone have any elegant solutions for managing shosts.equiv? In
my puppet ssh module, host keys for /etc/ssh/ssh_known_hosts are
automatically managed with:
@@sshkey { $hostname:
ensure => present,
type => "rsa",
key => $sshrsakey,
}
Sshkey <<| |>>
Is there a similar construct for
2012 Sep 27
0
File_line
Hello,
Currently develop a module for the packet smartd. But I''m using the resource
file_line, but displays the following message when using the puppet parser:
"err: Could not parse for environment production: Syntax error at ''{'',
expected ''}'' at / etc / puppet / modules / smartd / Manifests / init.pp: 66
''
I really can not see my
2012 May 04
16
forcing user resource provider to be local files only?
I see that there are an assorted bunch of "provider" types for resource
type user. Are there not any "local file" providers for it?
I have need of ensuring that certain local user accounts get created on all
machines, reguardless of what the system "/bin/password" and "useradd"
type mechanisms are set to.
It would be really nice to find a pre-written
2012 Jun 04
3
Update .k5login with Puppet
Hi,
can you anyone suggest me how can i update .k5login to append new entry or
remove existing line
when i tried using
k5login { ''/root/.k5login'':
ensure => present,
path => ''/root/.k5login'',
principals => ''dhaval@MYREALM.COM'',
}
it completelty removes all lines form k5login and put
2007 Aug 08
6
Exporting collections/sshkeys
Hullo,
I am attempting to use collections in order to distribute ssh keys
across (soon) many hosts but I am hitting some trouble (the recipe I am
using is at the end of this email). Namely it looks like sshkeys
resources are not marked as exported in the sqlite db. I.e. if I do:
sqlite3 clientconfigs.sqlite3
SQLite version 3.3.5
Enter ".help" for instructions
sqlite> select *
2010 Jun 01
2
Is sshkey host_aliases new in 0.25?
Is the host_aliases parameter to sshkey new in 0.25?
Jun 1 15:28:48 s_sys@ext3.fr.xxx.com puppetd[20358]: Could not
retrieve catalog: Invalid parameter ''host_aliases'' for type ''Sshkey''
at /etc/puppet/manifests/nodes/fr.twofish.com/ext3.pp:19 on node
ext3.fr.xxx.com
Jun 1 15:28:48 s_sys@ext3.fr.xxx.com puppetd[20358]: Not using cache
on failed catalog
The
2012 Aug 29
4
troubleshooting resource collection
Hi,
I''m new to Puppet. And I''m trying out an ssh module:
https://github.com/saz/puppet-ssh.
It collects ssh keys like this:
class ssh::knownhosts {
Sshkey <<| |>> {
ensure => present,
}
notify{"knownhosts class: $fqdn $hostname $ipaddress ":}
}
I can see it echoes the host key of the host the puppet agent runs on. But
the
2007 Apr 04
5
sshkey
Hello all,
How are you using the sshkey type? Are you using it to list hosts and keys in a class that nodes include in order to manage /etc/ssh/ssh_known_hosts or something else? How does any of this relate to the sshrsakey and sshdsakey facts on the host? I read some stuff about this on the Virtual Resources page but it''s too vague for my simple mind and I''d be reluctant to use
2013 Jan 04
5
How to manage one line in a file by puppet
Hi,
I want to write a puppet module for xen on Debian. This module will need
to manage one line in the file /etc/default/grub, namely the line
starting with "GRUB_CMDLINE_XEN=". Currently I want to leave the rest of
the file untouched.
Which would be the best way to do this?
I see two options:
a) Do some `sed` magic on the file in a `exec` call. Downside: puppet
won''t notice
2014 Oct 07
0
fstab dilemma - pounding on file_line and augeas
RHEL 6.5
Puppet 3.7.1
puppetlabs-stdlib-4.3.2
Local hardening guidelines say that /usr/local and /var/log/audit have to be separate partitions.
OK, so I make "mount" resources.
Now the problem: The order of the mount points in /etc/fstab makes a difference.
I had /usr/local before /usr, and at boot, the mount of /usr/local failed because the mount point did not (yet) exist.
So I need
2016 Aug 02
6
OpenSSH 7.3p1 can't be build on Solaris 10
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256
With this change built ok.
But patch must be quite different on my platform (see attached) for
portable version.
And, of course, after autoreconf run.
02.08.2016 10:55, Darren Tucker ?????:
> --- a/configure.ac
> +++ b/configure.ac
> @@ -754,6 +754,9 @@ main() { if (NSVersionOfRunTimeLibrary("System")
>= (60 << 16))
2012 Aug 09
4
Error 400 on Server: Another local or imported resource exists with the type and title Sshkey
I am attempting to remove an old ssh host key from
/etc/ssh/ssh_known_hosts. In my manifest, I have the following:
# add keys
@@sshkey { $hostname:
ensure => present,
type => "rsa",
key => $sshrsakey,
}
# remove key
@@sshkey { "foohost":
ensure => absent,
type => "rsa",
}
Sshkey <<| |>>
But I get this error on
2009 Mar 11
2
trouble diagnosing exported resources
Hello,
I want to use exported resources (namely sshkey) and with the following
code, each node gets his own ssh key written into /etc/ssh/ssh_known_hosts,
but not the others ones. This is with puppet 0.24.7 on redhat.
node ''node1'' {
@@sshkey { "node1":
type => rsa,
key => $sshrsakey
}
Sshkey <<| |>>
}
node ''node2'' {
2002 Mar 29
2
Non-interactive root access via hostbased using shosts.equiv
Hello all!
I'm looking for a solution to the following problem -
I need to be able to use OpenSSH from root on one
system to perform work on several dozen other systems
using some automation. The restrictions that have to
be met to keep the business happy are that no
cleartext passwords or unencrypted private keys can be
stored on disk. Since this is within an automated
environment, there
2003 Dec 18
2
known_hosts, IP, and port revisited
I dug through the list archives to see if this had come up before, and I
see that a bug <http://bugzilla.mindrot.org/show_bug.cgi?id=393> was
submitted and subsequently closed (basically rejected) in 2002.
The basic issue, for those of you who don't feel like following the bug
URL, is that when one has ssh servers behind a NAT, each of which responds
to a different port on the NAT IP,
2001 Mar 20
3
Rhosts-RSA authentication broken
Hello !
I think a problem was introduced in openssh-2.3.0p1 which is
still there in the latest openssh-2.5.2p1. I just noticed it
before my vacation and could not send this mail earlier than
today.
The problem is:
You can't use the Rhosts-RSA authentication based on the hosts.equiv
file and the host keys.
The only possible way to do rhosts-RSA authentication is to allow
the usage of the