Tuesday, 2009-12-22

[2009/12/22 00:15:14] @ Log started by gepetto_
[2009/12/22 00:15:14] @ pjsz joined channel #puppet
[2009/12/22 00:32:38] <Cyis> If I have a bunch of users that I add to to a specific group via User["jdoe"] { groups +> "lusers" } is there an easy way to realize all the users in group using Group <\| ??? == "lusers" \|>
[2009/12/22 00:33:53] <Cyis> I see on the wiki it mentions 'group == dba' but will that only look at primary group or secondary groups as well?
[2009/12/22 00:42:07] @ Quit: JM: Read error: 110 (Connection timed out)
[2009/12/22 00:57:11] @ jmarki joined channel #puppet
[2009/12/22 01:11:58] @ ghg joined channel #puppet
[2009/12/22 01:14:01] @ Quit: pjsz:
[2009/12/22 01:20:18] @ Quit: lak:
[2009/12/22 01:21:36] @ rickbradley is now known as rickbradley\|away
[2009/12/22 01:21:45] @ rickbradley\|away is now known as rickbradley
[2009/12/22 01:26:45] @ Arvind joined channel #puppet
[2009/12/22 01:27:41] <Arvind> Hi does anyone know if there is puppet packages supported for RHEL 3 platform ?
[2009/12/22 01:28:25] <Djelibeybi> Arvind: I think ohadlevy runs some RHEL3 boxes.
[2009/12/22 01:37:41] @ Quit: rmiller4pi8: Read error: 60 (Operation timed out)
[2009/12/22 01:39:07] @ lak joined channel #puppet
[2009/12/22 01:43:45] <Arvind> oh .. i do not find him .. here
[2009/12/22 01:44:05] <Arvind> ok .. seems to be
[2009/12/22 01:45:20] @ Quit: Djelibeybi: "Leaving"
[2009/12/22 01:46:07] @ rickbradley is now known as rickbradley\|away
[2009/12/22 01:47:02] @ giskard joined channel #puppet
[2009/12/22 01:59:41] @ suchu joined channel #puppet
[2009/12/22 02:00:18] @ Quit: jfreeman: Remote closed the connection
[2009/12/22 02:01:07] @ yarihm joined channel #puppet
[2009/12/22 02:03:14] @ Quit: suchu: Read error: 104 (Connection reset by peer)
[2009/12/22 02:04:24] @ suchu joined channel #puppet
[2009/12/22 02:04:36] @ Quit: suchu: Remote closed the connection
[2009/12/22 02:05:46] @ suchu joined channel #puppet
[2009/12/22 02:09:41] @ Quit: suchu: Remote closed the connection
[2009/12/22 02:10:07] @ suchu joined channel #puppet
[2009/12/22 02:10:30] @ Quit: yarihm: "This computer has gone to sleep"
[2009/12/22 02:14:46] @ Quit: suchu: Read error: 54 (Connection reset by peer)
[2009/12/22 02:15:27] @ suchu joined channel #puppet
[2009/12/22 02:24:51] @ Quit: markl_: Read error: 110 (Connection timed out)
[2009/12/22 02:29:46] @ rmiller4pi8 joined channel #puppet
[2009/12/22 02:40:07] @ Quit: jmarki: Read error: 60 (Operation timed out)
[2009/12/22 02:40:18] @ Quit: lak:
[2009/12/22 02:41:37] @ Quit: nevyn: Read error: 101 (Network is unreachable)
[2009/12/22 02:43:26] @ Robbie_ joined channel #puppet
[2009/12/22 02:44:27] @ Quit: M-: "Leaving"
[2009/12/22 02:46:53] @ Quit: ghg:
[2009/12/22 02:51:10] @ jmarki joined channel #puppet
[2009/12/22 02:52:28] @ Quit: Ramonster: Client Quit
[2009/12/22 02:56:24] <gepetto_> ::trac:: Recipes/ModuleSSHAuth edited @ http://reductivelabs.com/trac/puppet/wiki/Recipes/ModuleSSHAuth?version=5
[2009/12/22 02:56:24] <gepetto_> ::trac:: auth.pp attached to Recipes/ModuleSSHAuth @ http://reductivelabs.com/trac/puppet/attachment/wiki/Recipes/ModuleSSHAuth/auth.pp
[2009/12/22 02:57:18] @ Quit: Robbie_: Remote closed the connection
[2009/12/22 02:59:53] @ francois1 joined channel #puppet
[2009/12/22 03:05:09] <gepetto_> ::trac:: Recipes/ModuleSSHAuth edited @ http://reductivelabs.com/trac/puppet/wiki/Recipes/ModuleSSHAuth?version=6
[2009/12/22 03:07:15] @ Quit: chandrakanth: Ping timeout: 180 seconds
[2009/12/22 03:08:20] @ nevyn joined channel #puppet
[2009/12/22 03:10:45] @ Quit: ohadlevy: "ZNC - http://znc.sourceforge.net"
[2009/12/22 03:12:53] @ Filbert_ joined channel #puppet
[2009/12/22 03:19:12] @ Quit: Filbert: Read error: 104 (Connection reset by peer)
[2009/12/22 03:19:41] @ Quit: jmarki: Read error: 110 (Connection timed out)
[2009/12/22 03:20:05] @ jmarki joined channel #puppet
[2009/12/22 03:28:48] @ jfreeman joined channel #puppet
[2009/12/22 03:30:37] @ Ramonster joined channel #puppet
[2009/12/22 03:30:54] @ friendly12345 joined channel #puppet
[2009/12/22 03:41:27] @ Quit: pugnacity: Remote closed the connection
[2009/12/22 03:42:33] @ Quit: jmarki: Read error: 110 (Connection timed out)
[2009/12/22 03:43:05] @ jmarki joined channel #puppet
[2009/12/22 03:53:13] @ Quit: jmarki: Read error: 60 (Operation timed out)
[2009/12/22 03:53:14] @ danielbln joined channel #puppet
[2009/12/22 03:54:11] @ cedric_b joined channel #puppet
[2009/12/22 03:56:21] @ Welsh_Dwarf joined channel #puppet
[2009/12/22 04:01:31] @ hy is now known as _silver
[2009/12/22 04:02:07] @ Quit: jfreeman: Read error: 60 (Operation timed out)
[2009/12/22 04:03:24] @ _silver is now known as hy
[2009/12/22 04:04:14] <danielbln> greetings, do Puppet conditionals support substrings yet?
[2009/12/22 04:04:41] @ jmarki joined channel #puppet
[2009/12/22 04:05:04] <danielbln> nm, regex should suffice
[2009/12/22 04:05:37] <FiXion> danielbln: regex is in 0.25
[2009/12/22 04:05:50] * FiXion is looking forward to upgrading to 0.25 :)
[2009/12/22 04:06:09] <danielbln> yeah, I upgraded a couple of weeks ago, thank god
[2009/12/22 04:06:14] <danielbln> regex nodes really are a timesaver
[2009/12/22 04:09:23] @ Quit: scylla: "Connection timed out"
[2009/12/22 04:11:47] @ Robbie_ joined channel #puppet
[2009/12/22 04:19:03] @ lak joined channel #puppet
[2009/12/22 04:19:03] @ Quit: nexx: Read error: 104 (Connection reset by peer)
[2009/12/22 04:22:29] @ nexx joined channel #puppet
[2009/12/22 04:27:37] @ Quit: jmarki: Read error: 110 (Connection timed out)
[2009/12/22 04:27:45] @ jmarki joined channel #puppet
[2009/12/22 04:28:28] @ docelic__ joined channel #puppet
[2009/12/22 04:33:42] @ Quit: docelic_: Read error: 60 (Operation timed out)
[2009/12/22 04:34:06] @ pugnacity joined channel #puppet
[2009/12/22 04:36:43] <elementai> Good day folks, i need an advice. I use iptables native type, but infrastructure should be made too, you know, ssh-access defines, common ports, addresses and networks. Yet I'm in doubt where to put common ports/services and where to put addresses/networks, in iptables module or node templates ?
[2009/12/22 04:43:32] @ Quit: Robbie_: Remote closed the connection
[2009/12/22 04:43:43] @ Robbie_ joined channel #puppet
[2009/12/22 04:45:19] @ poison joined channel #puppet
[2009/12/22 04:46:24] @ docelic_ joined channel #puppet
[2009/12/22 04:50:26] @ Quit: docelic_: Client Quit
[2009/12/22 04:51:10] @ Quit: docelic__: Read error: 60 (Operation timed out)
[2009/12/22 04:56:55] @ Quit: lak:
[2009/12/22 05:22:06] @ rickbradley\|away is now known as rickbradley
[2009/12/22 05:23:08] @ rickbradley is now known as rickbradley\|away
[2009/12/22 05:23:21] @ MattyM joined channel #puppet
[2009/12/22 05:43:34] <nasrat_> anyone from .DE, .FI, .DK around to do me a favour
[2009/12/22 05:43:40] @ Quit: f3ew: "You can /quit any time you like, but you can never leave"
[2009/12/22 05:44:02] <monrad> nasrat_: .dk here
[2009/12/22 05:44:16] @ f3ew joined channel #puppet
[2009/12/22 05:44:22] <nasrat_> monrad: completely non puppet related but can you try wget this url
[2009/12/22 05:44:34] <nasrat_> http://download.guardian.co.uk/audio/kip/football/series/footballweekly/1261395557030/4170/gdn.foo.091221.bg.football-weekly-mancity.mp3
[2009/12/22 05:45:23] <monrad> nasrat_: works
[2009/12/22 05:45:26] <nasrat_> thanks
[2009/12/22 05:50:12] <Volcane> works from de
[2009/12/22 05:55:58] <nexx> something killed my foreman tonight
[2009/12/22 05:56:04] <nexx> damnit
[2009/12/22 06:00:51] @ cynicismic joined channel #puppet
[2009/12/22 06:01:01] @ Quit: alexine_dsouza: Read error: 54 (Connection reset by peer)
[2009/12/22 06:02:07] <fluxdude> nexx: why use foreman instead of say, cobbler, or satellite?
[2009/12/22 06:02:21] <fluxdude> Volcane: you can answer that one too if you like
[2009/12/22 06:02:33] <fluxdude> cobbler isn't rhel/fedora specific, I believe it supports Debian as well
[2009/12/22 06:05:22] <Volcane> fluxdude: cobbler is an installer that happens to have some cobbled (haha) together puppet support, foreman is a full blown first rate puppet classifier thats designed from the outset to handle both requirements so you get a much more capable node classifer etc
[2009/12/22 06:05:51] <fluxdude> is that it? Node classification?
[2009/12/22 06:06:19] <fluxdude> you could easily do this from cobbler in any number of way I think...
[2009/12/22 06:06:21] <Volcane> probably cobbler will be a better fully customizable ks driver but i think ohad is under the impression that kickstarts can be kept simple and he'll support fai/preseed and jumpstart too
[2009/12/22 06:06:23] <fluxdude> or using custom facts
[2009/12/22 06:06:30] <fluxdude> or regex node matches
[2009/12/22 06:06:45] <Volcane> fluxdude: 'node classifer' = external node tool
[2009/12/22 06:06:55] <fluxdude> yes I know
[2009/12/22 06:07:19] <Volcane> fluxdude: foreman also receives reports, displays them, lets you do all kinds of queries on those
[2009/12/22 06:07:23] <fluxdude> I think a good naming convention and regex would be quite a good way to go... or even using custom facts if more logic is required?
[2009/12/22 06:07:33] <fluxdude> what kind of reports?
[2009/12/22 06:07:36] <Volcane> puppet reports
[2009/12/22 06:07:37] <fluxdude> doesn't puppet do reports too?
[2009/12/22 06:07:39] <Volcane> yes
[2009/12/22 06:07:44] <Volcane> every run produce a report
[2009/12/22 06:07:58] <Volcane> foreman receives those, sores them, makes pretty graphs
[2009/12/22 06:08:05] <fluxdude> ok then
[2009/12/22 06:08:08] <Volcane> alerts on machines with failures, sends daily mail reports out
[2009/12/22 06:08:10] @ alban2 joined channel #puppet
[2009/12/22 06:08:15] <fluxdude> might look at foreman later if I get time...
[2009/12/22 06:08:21] <Volcane> foreman also have a query engine
[2009/12/22 06:08:32] <Volcane> so lets say you use exported resources today to build nagios
[2009/12/22 06:08:44] <Volcane> like you install apache, and apache module exports @@nagios_service resouces
[2009/12/22 06:08:58] <Volcane> its ok, but not appropriate for many but small simple cases
[2009/12/22 06:09:18] <Volcane> with foreman you can in a template query and loop over all machines with the apache class on them and just template out the nagios_service blocks
[2009/12/22 06:09:37] <fluxdude> Volcane: sounds like a good idea...
[2009/12/22 06:09:43] @ Quit: cedric_b: Read error: 110 (Connection timed out)
[2009/12/22 06:09:44] <Volcane> which works much better in a distributed puppet master setup - as in it works where exported resources just doesnt work at all
[2009/12/22 06:10:15] <Volcane> and - at least in the backend - foreman now stores extlookup data, a UI will come soon and a plugin for extlookup
[2009/12/22 06:10:16] <fluxdude> I was actually meaning to ask about distributed or multi puppetmaster setups....
[2009/12/22 06:10:34] @ cedric_b joined channel #puppet
[2009/12/22 06:10:42] <fluxdude> not sure how the SSL bit would work for example if you load balanced 2 puppetmasters, there would be SSL errors unless you copied the same SSL cert to the other box
[2009/12/22 06:11:03] <Volcane> 2 scenarios
[2009/12/22 06:11:08] <fluxdude> also, if you sign the client cert on one puppetmaster, what happens on a run when the lb sends it to the other puppetmaster?
[2009/12/22 06:11:13] <Volcane> 1 - copy the CA to every box, thats all thats needed
[2009/12/22 06:11:29] <fluxdude> what about client certs though?
[2009/12/22 06:11:31] <Volcane> 2 - create a chain of ca's and sub ca's with authorization between them
[2009/12/22 06:11:36] <fluxdude> they may be signed on 1 box and not the other?
[2009/12/22 06:11:45] <fluxdude> 2 sounds complicated...
[2009/12/22 06:11:51] <monachus> we run load balanced puppetmasters with SSL handled by apache - all puppet data is NFS mounted
[2009/12/22 06:11:55] <Volcane> in 1 cert revocation doesnt work unless you assign a unique range of cert id's to each master
[2009/12/22 06:11:59] <monachus> so when one signs, it's all good
[2009/12/22 06:12:01] <Volcane> in 2 its just too fucking complex
[2009/12/22 06:12:13] <Volcane> the thing about the client certs is this
[2009/12/22 06:12:17] <Volcane> the master doesnt give a damn
[2009/12/22 06:12:31] <Volcane> all it cares for is that the cert thats presented was signed by the trusted ca
[2009/12/22 06:12:39] <Volcane> it doesnt care that it was signed by the ca *on that master8
[2009/12/22 06:12:47] <fluxdude> oh
[2009/12/22 06:12:51] <fluxdude> that explains it
[2009/12/22 06:12:52] <fluxdude> thanks!
[2009/12/22 06:12:52] <Volcane> so u dont need the client certs on every master
[2009/12/22 06:12:57] <monachus> oh interesting
[2009/12/22 06:13:04] <fluxdude> now I understand
[2009/12/22 06:13:09] <Volcane> u can say one master out of the lot is a ca
[2009/12/22 06:13:16] <Volcane> and the client will go there for ca related stuff
[2009/12/22 06:13:33] <Volcane> al client certs wold be there, revocation would be more feasable etc
[2009/12/22 06:13:43] <Volcane> the way i have it, i have a master per country
[2009/12/22 06:13:53] <Volcane> all with the same ca, each one is a ca for clients in its country
[2009/12/22 06:14:15] @ Quit: cedric_b: Client Quit
[2009/12/22 06:14:23] <Volcane> 1 of them is a reports server so at the end of each run - against an in-country master - reports will be sent to the 1 master that handles all reports
[2009/12/22 06:14:40] <Volcane> if i need to work on a master, i can just point traffic to the master in another country etc, SSL all just works
[2009/12/22 06:15:15] <fluxdude> cool
[2009/12/22 06:15:35] <fluxdude> if the master in the country breaks though, you have no failover, you have to repoint traffic manually?
[2009/12/22 06:15:41] <fluxdude> using what, dns cnames or something?
[2009/12/22 06:16:19] <Volcane> yeah i dont really need HA on the masters, my nameserver though has an api
[2009/12/22 06:16:32] <Volcane> i can just tell it to point traffic for the us to uk for example
[2009/12/22 06:18:19] <Volcane> HA is a bit harder - and best u look on the wiki for that, but u need to share some state between masters
[2009/12/22 06:18:34] <Volcane> if u had 2 on the same lan, NFS some files between them or something
[2009/12/22 06:20:21] @ yarihm joined channel #puppet
[2009/12/22 06:24:23] @ Quit: yarihm: Read error: 104 (Connection reset by peer)
[2009/12/22 06:24:43] @ Quit: giskard: Remote closed the connection
[2009/12/22 06:32:37] @ Quit: friendly12345: "Leaving."
[2009/12/22 06:36:45] @ jfreeman joined channel #puppet
[2009/12/22 06:45:55] @ Quit: Cyis: "Leaving"
[2009/12/22 06:50:28] @ ffrank joined channel #puppet
[2009/12/22 06:51:34] <ffrank> hi. in a manifest, can i retrieve parameters of a defined resource? as in "group { 'foo': gid => 2000 } ... file { 'bar': group => Group['foo'].gid }"?
[2009/12/22 06:51:49] <Volcane> nope
[2009/12/22 06:52:26] <ffrank> forsooth
[2009/12/22 06:53:07] <ffrank> have to use global variables then, i guess...
[2009/12/22 06:53:29] <Volcane> whats wrong with file{"bar": group => "foo"} ?
[2009/12/22 06:54:20] <ffrank> i'm trying to stay independent of both group name and gid, and define them in one place only
[2009/12/22 06:55:15] <ffrank> which is to say, the manifest currently uses variables for both already, but they cannot be local to one class anymore
[2009/12/22 06:55:51] <Volcane> ah
[2009/12/22 06:56:10] <Volcane> $gid = $otherclass::gid
[2009/12/22 06:56:16] <ffrank> ah
[2009/12/22 06:56:31] <ffrank> right - thanks!
[2009/12/22 06:56:41] <Volcane> also google for 'extlookup' might be handy
[2009/12/22 06:57:58] @ giskard joined channel #puppet
[2009/12/22 06:58:04] <ffrank> i see - i think that's a little much here, but i'll keep it in mind
[2009/12/22 06:58:30] <Volcane> k
[2009/12/22 06:59:21] @ goraxe joined channel #puppet
[2009/12/22 07:00:12] <goraxe> hi, i'm not seeing custom facts, when I run facter is there any way I can enable them in output?
[2009/12/22 07:00:57] <goraxe> I think I had similar issues last time I looked at facter (about 8mths ago), at the time I came up with a template to just dump them all out
[2009/12/22 07:01:04] <ffrank> is there a syntax for $classname::var where classname contains "-" ?
[2009/12/22 07:01:24] <goraxe> ffrank: ${class-name}::var ?
[2009/12/22 07:02:07] <Volcane> ffrank: "-" isnt a valid character in classnames.
[2009/12/22 07:02:23] <Volcane> ffrank: works, docuentation says its not valid so you really should not use it
[2009/12/22 07:02:48] <ffrank> i see. gotta do some serious refactoring ;/
[2009/12/22 07:03:27] <Volcane> I'm going to file a bug and see, since it works maybe the docs just need adjustment, but i am not keen on using undocumented stuff in my code like that, what if puppet start behaving like docs says? :)
[2009/12/22 07:04:04] <ffrank> yes, "deprecated" warnings would be a nice touch :)
[2009/12/22 07:04:33] <Volcane> http://reductivelabs.com/trac/puppet/wiki/LanguageTutorial#reserved-words-acceptable-characters
[2009/12/22 07:05:20] <goraxe> so facter, can I affect its facts search path? (I have a strace over it, and it does not seem to load the puppet.conf, or search the factpath
[2009/12/22 07:07:08] <Volcane> goraxe: facter -p
[2009/12/22 07:07:12] <ffrank> hrm. class users_projectx { $gid = 2000 ... } class group_projectx { fail $users_projectx::gid }
[2009/12/22 07:07:23] <ffrank> fails with empty string
[2009/12/22 07:07:36] <Volcane> ffrank: i suspect you'd need to include users_projectx first
[2009/12/22 07:07:50] <Volcane> by first i mean its order dependant
[2009/12/22 07:08:12] <z00dax> Volcane: [OT] as best as I can make out, looks like a semi-social / week password crack ( re: twitter )
[2009/12/22 07:08:18] <ffrank> ah. the point is not to to that. but that just means that the variables must live in the group_ class, as that is included
[2009/12/22 07:08:52] <Volcane> z00dax: heh, its a joke, what real company outsources their DNS to some moneky driven web service? DNS is one of if not the most important part of your infrastructure
[2009/12/22 07:08:58] @ Quit: jfreeman: Connection reset by peer
[2009/12/22 07:09:03] <z00dax> Volcane: I agree
[2009/12/22 07:09:17] <Volcane> z00dax: I could joke about not owning domains etc, but I'll try not too :P
[2009/12/22 07:09:20] @ jfreeman joined channel #puppet
[2009/12/22 07:09:48] <z00dax> technically, we did own it :D just the person holding onto it was a tad unreliable
[2009/12/22 07:09:53] <Volcane> heh
[2009/12/22 07:09:53] <z00dax> but point taken
[2009/12/22 07:10:28] <Volcane> it happens, but for companies, its insane, ppl think because a domain costs a tenner it cant be important
[2009/12/22 07:10:45] <Volcane> and they run shoddy nameservers, 1 machine iwth 2 ips etc
[2009/12/22 07:11:23] <goraxe> Volcane: thanks, still not quite doing what i expect it may be a config issue, will try some more prodding and poking
[2009/12/22 07:15:26] <z00dax> dyndns... I know lots of people who use their service!
[2009/12/22 07:15:38] <z00dax> Volcane: not much unlike people who dont run MX backups
[2009/12/22 07:16:39] <Volcane> goraxe: http://pastie.org/752999
[2009/12/22 07:17:21] <Volcane> z00dax: mx backups a bit different though, at least stuff should spool at the sneder assuming the sender behaves, but no dns = mail bounce as undeliverable
[2009/12/22 07:19:06] @ mutage joined channel #puppet
[2009/12/22 07:19:14] <z00dax> given that retry policy ranges from odd to madness, I quite like to get email in through the door first shot :)
[2009/12/22 07:20:03] <z00dax> humm... wahts a notice.. never used / seen that before
[2009/12/22 07:20:40] <Volcane> z00dax: prints to master syslog
[2009/12/22 07:20:51] <Volcane> z00dax: or in the case of 'puppet' to stdout
[2009/12/22 07:20:52] <z00dax> ah, ok.
[2009/12/22 07:21:04] * z00dax notes people dont use --use-nodes anymore
[2009/12/22 07:21:16] <Volcane> whats that? :)
[2009/12/22 07:21:19] <Volcane> never seen it
[2009/12/22 07:22:01] <z00dax> something that one had to use < 0.24 in order to parse manifests locally
[2009/12/22 07:22:07] <z00dax> puppetd --use-nodes site.pp
[2009/12/22 07:22:15] <Volcane> oh
[2009/12/22 07:22:18] <Volcane> maybe for puppetd
[2009/12/22 07:22:21] <Volcane> but this is puppet
[2009/12/22 07:22:40] <z00dax> was needed for puppet as well, iirc
[2009/12/22 07:23:37] <fluxdude> z00dax: mx backups aren't needed any more, smtp retries take care of the problem even if you don't have mx backup
[2009/12/22 07:23:54] @ jab_doa joined channel #puppet
[2009/12/22 07:24:14] <z00dax> fluxdude: I'd disagree
[2009/12/22 07:24:25] <fluxdude> and if the sender doesn't have mx retries, oh well you missed some spam...
[2009/12/22 07:24:33] <fluxdude> z00dax: please qualify...
[2009/12/22 07:24:42] <dsch04> quick ruby templating question:
[2009/12/22 07:24:46] <z00dax> or email from many exchange smtpd'
[2009/12/22 07:24:57] <dsch04> Is this OK:
[2009/12/22 07:24:57] <dsch04> <% if @type = 'account' %>query_cache_size = 128M<% end %>
[2009/12/22 07:25:09] <fluxdude> z00dax: exchange spools does it not?
[2009/12/22 07:25:13] <z00dax> even some seemingly-large setups like accenture, dont really implement a reasonable retry mechanism
[2009/12/22 07:25:27] <z00dax> fluxdude: depends on how its setup and the $sanity level of the admin
[2009/12/22 07:25:27] <fluxdude> heh
[2009/12/22 07:25:30] <dsch04> In particular, I'm not sure about the @type = 'account' construct
[2009/12/22 07:25:32] @ happymcplaksin left channel #puppet ("ERC Version 5.3 (IRC client for Emacs)")
[2009/12/22 07:25:49] <fluxdude> I was going to say in my original point, "...after all, what decent company has a mail server that doesn't retry..."
[2009/12/22 07:25:53] <fluxdude> now I see
[2009/12/22 07:25:55] <fluxdude> point taken
[2009/12/22 07:25:58] * dsch04 checks if this is #puppet or #mail-infrastructure ;)
[2009/12/22 07:26:02] <fluxdude> still, they suck
[2009/12/22 07:26:08] <z00dax> totally
[2009/12/22 07:26:09] <ffrank> dsch04: not sure if the @ is needed
[2009/12/22 07:26:18] <ffrank> dsch04: i thought in ruby, just write var name
[2009/12/22 07:26:23] <Volcane> z00dax: i agree u should have them, but not having them isnt at all on par with broken dns
[2009/12/22 07:26:43] <fluxdude> indeed
[2009/12/22 07:26:49] <z00dax> btw, accenture's NYC setup's retry mechanism - 5,3,20
[2009/12/22 07:26:58] <fluxdude> ppl do use outsourced dns quite a bit though
[2009/12/22 07:27:02] <dsch04> ffrank: thx - testing
[2009/12/22 07:27:12] <z00dax> so retry after 5 min, thene very 3 for 20min, then fail
[2009/12/22 07:27:31] <ffrank> he has a point though - "get a room" ;P
[2009/12/22 07:27:38] <fluxdude> problem with web interfaces for anything is that it encourages idiots who can't read the manual and invariably have lower knowledge of everything they are doing
[2009/12/22 07:28:11] <fluxdude> and when you pick up an infrastructure from ppl like that, you cry (I've recently dried my tears) ;-)
[2009/12/22 07:28:24] <z00dax> I wonder if there is a room in freenode for sysadmin foo, generic stuff
[2009/12/22 07:28:29] <z00dax> if not, we should create one
[2009/12/22 07:28:32] <dsch04> +1
[2009/12/22 07:28:39] <dsch04> There's #lopsa
[2009/12/22 07:28:49] <dsch04> But that's not really all that good
[2009/12/22 07:28:57] <dsch04> #puppet is where I go
[2009/12/22 07:28:59] @ Quit: jab_doa: "Verlassend"
[2009/12/22 07:28:59] <danielbln> does anyone know if the file resource allows for directory omission when transferring directories recursively?
[2009/12/22 07:29:34] <monachus> ignore => ["thisdir", "thatfile"]
[2009/12/22 07:29:37] <Volcane> z00dax: often wanted to create a sysadmin resource off the puppet community
[2009/12/22 07:29:46] <danielbln> ty monachus
[2009/12/22 07:29:57] * z00dax parks in #infra-talk
[2009/12/22 07:29:59] <danielbln> ignore => ".svn" it is then ;)
[2009/12/22 07:30:05] <monachus> yarp
[2009/12/22 07:30:14] <fluxdude> hey Volcane, how come devops doesn't have a channel then?
[2009/12/22 07:30:35] <z00dax> isnt devops more of a process rather than a role
[2009/12/22 07:31:11] <fluxdude> dunno, I thought it was about not being put in a box...
[2009/12/22 07:31:24] <Volcane> fluxdude: there used to be one but it fizzled
[2009/12/22 07:31:28] <fluxdude> hence allows one to cover infrastructure
[2009/12/22 07:31:36] <fluxdude> Volcane: not enough ppl?
[2009/12/22 07:31:47] <Volcane> fluxdude: hard to bootstrap a community
[2009/12/22 07:31:52] <fluxdude> indeed
[2009/12/22 07:32:06] <fluxdude> you need some software behind it to gather people... like puppet
[2009/12/22 07:32:09] <Volcane> fluxdude: however if we just tell everyone here who ask non puppet stuff to go to #puppet-sysadmins (or whatever) bingo
[2009/12/22 07:32:14] <fluxdude> hence I vote for pupet to be the channel ;-)
[2009/12/22 07:32:31] <fluxdude> puppet-chat?
[2009/12/22 07:32:34] <Volcane> ofcourse we'd not make it #puppet-sysadmins but something along those lines
[2009/12/22 07:32:41] <dsch04> It shouldn't be related to puppet
[2009/12/22 07:32:42] <Volcane> something non #puppet
[2009/12/22 07:33:17] <Volcane> we might even convince some of the kewl dudes in #chef to join a tool agnostic great sysadmins hanging
[2009/12/22 07:33:20] <Volcane> hangout
[2009/12/22 07:33:29] <fluxdude> chef?
[2009/12/22 07:33:35] * fluxdude sighs
[2009/12/22 07:33:39] <fluxdude> even more niche
[2009/12/22 07:33:59] <Volcane> still, there's very clever people there and an active community
[2009/12/22 07:34:14] @ nakano is now known as nakano_
[2009/12/22 07:34:24] <danielbln> #sysadmin-ng
[2009/12/22 07:34:32] <danielbln> worked for aircrack
[2009/12/22 07:34:40] <Volcane> heh
[2009/12/22 07:34:42] <fluxdude> heh
[2009/12/22 07:35:06] <fluxdude> that's actually quite a good channel name
[2009/12/22 07:35:10] <fluxdude> and it's not taken either..
[2009/12/22 07:35:22] <fluxdude> problem is getting enough ppl in there to make it worth joining...
[2009/12/22 07:35:31] <fluxdude> until then #linx or something may be better?
[2009/12/22 07:35:37] <fluxdude> #/linux I mena
[2009/12/22 07:35:42] <fluxdude> mean
[2009/12/22 07:35:52] <dsch04> too much noise, and we'#re not linux-specific
[2009/12/22 07:36:04] <fluxdude> if not why not! ;-)
[2009/12/22 07:36:08] <Volcane> wonder whats the deal with ##sysadmin being key'd
[2009/12/22 07:38:49] <danielbln> is rowlf syntax/api stable when coming from 0.25.1?
[2009/12/22 07:38:59] <z00dax> Volcane: looks like closed due to misuse
[2009/12/22 07:39:12] <z00dax> but #infra-talk is generic enough ?
[2009/12/22 07:39:42] <fluxdude> same problem, not enough ppl...
[2009/12/22 07:39:57] <fluxdude> i prefer active and populated channels...
[2009/12/22 07:40:04] <z00dax> yes, well I just created it - it might take a few days before people start parking in there
[2009/12/22 07:40:24] <z00dax> I remember #puppet when it had 18 people here, 4 of which were lak and his aliases
[2009/12/22 07:40:32] <fluxdude> already built up channels are better, even if occasional topic hijacking required?
[2009/12/22 07:40:49] <fluxdude> ;-)
[2009/12/22 07:42:43] @ Quit: jfreeman: Read error: 60 (Operation timed out)
[2009/12/22 07:44:06] @ Quit: cynicismic: "leaving"
[2009/12/22 07:45:41] <goraxe> is it possible to require a 'defined' thing ie would require => Define["defined-name"] work ?
[2009/12/22 07:46:38] <Volcane> goraxe: it just like file etc, if th define is called vhost and you are doing vhost{"foo.com": } then require => Vhost["foo.com"]
[2009/12/22 07:46:58] <goraxe> Volcane: thanks again
[2009/12/22 07:47:46] <goraxe> would that work for say Subversion::Workingcopy?
[2009/12/22 07:48:07] <Volcane> yes
[2009/12/22 07:48:21] <goraxe> ta
[2009/12/22 07:49:18] <monachus> @volcane - does only the first part have to be capitalized, like Subversion::workingcopy, or both, or does it matter?
[2009/12/22 07:49:41] <Volcane> both
[2009/12/22 07:50:05] <monachus> tx. very cool.
[2009/12/22 07:55:23] * Volcane shoud find a non ruby coder to test if writing clients/agents is easier now in mcollective for non coders
[2009/12/22 08:10:57] @ Quit: bug:
[2009/12/22 08:10:58] @ Quit: alban2: Remote closed the connection
[2009/12/22 08:14:57] @ alban2 joined channel #puppet
[2009/12/22 08:24:38] @ rickbradley\|away is now known as rickbradley
[2009/12/22 08:25:57] @ rickbradley is now known as rickbradley\|away
[2009/12/22 08:26:11] @ rickbradley\|away is now known as rickbradley
[2009/12/22 08:30:07] @ rickbradley is now known as rickbradley\|away
[2009/12/22 08:34:57] @ chandrakanth joined channel #puppet
[2009/12/22 08:35:27] <chandrakanth> Hi have one question on Puppet module dependencies
[2009/12/22 08:38:13] <chandrakanth> I have one module M1 with init script1, anothe module M2 with Script2, now i have included the module 2 in script 1
[2009/12/22 08:39:05] @ nakano_ is now known as nakano
[2009/12/22 08:39:18] <chandrakanth> and both the modules are in the same path, now i am able to see only the scpript1 executed
[2009/12/22 08:39:52] <chandrakanth> since i have passed "include M2" this is not getting executed
[2009/12/22 08:40:08] <chandrakanth> is this the expected behaviour or modules
[2009/12/22 08:40:52] <agaffney> if you 'include M2' directly from whereever you're currently including M1 (nodes.pp, one would assume), does the M2 script run?
[2009/12/22 08:42:31] @ gebi joined channel #puppet
[2009/12/22 08:46:20] @ Bass10 joined channel #puppet
[2009/12/22 08:51:12] <chandrakanth> http://pastie.org/private/5ym6e4ywuoko1ffdlpazvq is the script i am trying
[2009/12/22 08:51:35] <chandrakanth> i am really not sure is this the right way to call another module
[2009/12/22 08:53:00] <chandrakanth> please tell me how wxactly to call one module from anotheit is possibler module if
[2009/12/22 08:53:50] @ rickbradley\|away is now known as rickbradley
[2009/12/22 08:55:20] <tim\|imac> chandrakanth: switch line 3 and 4 and you're done
[2009/12/22 08:55:50] @ rickbradley is now known as rickbradley\|away
[2009/12/22 08:57:05] <Volcane> chandrakanth: you shouldnt put anything outside of class { } or node { } moundries unless you're in site.pp
[2009/12/22 08:59:26] @ rsquared joined channel #puppet
[2009/12/22 09:01:47] @ lero joined channel #puppet
[2009/12/22 09:03:28] <chandrakanth> I have interchanged the line3 and 4 but still only M1 is executed, i dont see M2 executed
[2009/12/22 09:04:31] <lero> puppetmaster deletes itself?
[2009/12/22 09:04:33] <lero> http://dpaste.com/136582/
[2009/12/22 09:06:31] <Volcane> lero: known bug, search the tickets
[2009/12/22 09:06:38] <Volcane> lero: you just need to add 1 line to the rc script
[2009/12/22 09:07:29] <Volcane> pidfile=/var/run/puppet/puppetmasterd.pid afaik
[2009/12/22 09:11:21] <lero> nice, a stable version that deletes itself :D
[2009/12/22 09:11:36] <lero> do you have the link of the bug report?
[2009/12/22 09:11:52] <lero> i'm trying to search, no success :/
[2009/12/22 09:11:55] <Volcane> the OS rc scripts is user contributed
[2009/12/22 09:12:47] <lero> yeah i know, but they could release 0.25.2 to just fix it :D
[2009/12/22 09:12:50] <Volcane> #2934
[2009/12/22 09:12:50] <gepetto_> Volcane: #2934 is http://projects.reductivelabs.com/issues/show/2934 "Puppet - Bug #2934: Missing pidfile var in redhat/server.init causes killproc to remove puppetmasterd file - ReductiveLabs.com"
[2009/12/22 09:15:54] <lero> thnka Volcane
[2009/12/22 09:16:38] @ themurph joined channel #puppet
[2009/12/22 09:18:50] @ bug joined channel #puppet
[2009/12/22 09:27:39] @ rickbradley\|away is now known as rickbradley
[2009/12/22 09:28:25] @ pheezy joined channel #puppet
[2009/12/22 09:30:43] @ Quit: chandrakanth: "Page closed"
[2009/12/22 09:33:50] @ Quit: MattyM: "ta ta"
[2009/12/22 09:36:03] <silfreed> I ctrl-c'd a puppet run on one node and now I'm getting this error that I can't get around:
[2009/12/22 09:36:09] <silfreed> err: Could not call fileserver.list: #<#<Class:0x2b2d13b92cb8>: execution expired>
[2009/12/22 09:36:09] <silfreed> err: /File[/var/lib/puppet/facts]: Failed to generate additional resources during transaction: execution expired
[2009/12/22 09:36:46] @ MattyM joined channel #puppet
[2009/12/22 09:38:48] @ Quit: suchu: "ChatZilla 0.9.86 [Firefox 3.5.6/20091201220228]"
[2009/12/22 09:39:49] @ Quit: ffrank: "leaving"
[2009/12/22 09:40:53] <silfreed> hrm. restarting the puppet master seemed to help
[2009/12/22 09:42:13] @ Quit: rmiller4pi8: "Leaving."
[2009/12/22 09:45:44] @ skiold joined channel #puppet
[2009/12/22 09:52:24] @ kaptk2 joined channel #puppet
[2009/12/22 09:55:24] @ Filbert_ is now known as Filbert
[2009/12/22 10:22:00] @ Quit: barn: "Lost terminal"
[2009/12/22 10:23:22] @ pjsz joined channel #puppet
[2009/12/22 10:24:13] @ barn joined channel #puppet
[2009/12/22 10:25:43] @ markl_ joined channel #puppet
[2009/12/22 10:29:45] <ashp> I shoudl quit my job and work from home doing puppet stuff. :/
[2009/12/22 10:29:55] <ashp> I'm trying to find a new place to rent and it's really hard to find anywhere in commute range.
[2009/12/22 10:30:25] @ Quit: nico: Read error: 104 (Connection reset by peer)
[2009/12/22 10:30:28] @ nico joined channel #puppet
[2009/12/22 10:36:26] @ rmiller4pi8 joined channel #puppet
[2009/12/22 10:39:03] <aitkp_> if i have resources type ensureing unmanaged packages are purged, is there a was to make a package type optionally installed?
[2009/12/22 10:41:37] <aitkp_> ensure => optional doesnt exist
[2009/12/22 10:43:14] @ Quit: rmiller4pi8: "Leaving."
[2009/12/22 10:44:07] @ rmiller4pi8 joined channel #puppet
[2009/12/22 10:44:56] @ Quit: pjsz:
[2009/12/22 10:49:16] @ grantk joined channel #puppet
[2009/12/22 10:49:28] <grantk> good morning
[2009/12/22 10:50:45] @ alfism joined channel #puppet
[2009/12/22 10:52:34] <aitkp_> hola
[2009/12/22 10:52:53] @ brothers joined channel #puppet
[2009/12/22 10:55:53] <grantk> I was having troubles getting some files to copy with puppet, I found Issue #86 and saw a workaround that Volcane had come up with. I tried to use this and can not get directories to be created by puppet and can not figure out where I am going wrong here. I am checking the module I made against the Type Reference and took a look at James Turnbulls book but am lost.
[2009/12/22 10:55:57] <gepetto_> grantk: #86 is http://projects.reductivelabs.com/issues/show/86 "Puppet - Feature #86: Directory creation fails if parent directory does not exist - ReductiveLabs.com"
[2009/12/22 10:56:09] <grantk> http://pastebin.com/d4e905718
[2009/12/22 10:57:15] <grantk> I am interested in this directory creation because I know it is causing a couple of other modules I have to act up as well.
[2009/12/22 10:57:21] @ Quit: Demosthenes: Read error: 110 (Connection timed out)
[2009/12/22 10:57:46] <danielbln> anyone from the foreman team present?
[2009/12/22 10:58:02] <danielbln> I'd like to know if 0.1.3 already supports google-less pie charts :)
[2009/12/22 10:59:06] <Volcane> ohad's on leave, doubt much is happening till next year :)
[2009/12/22 10:59:51] <aitkp_> re: my question at 10:39: best solution i can think of is to set noop => true on optional packages
[2009/12/22 11:00:28] @ Quit: p3rror: Read error: 54 (Connection reset by peer)
[2009/12/22 11:01:21] @ p3rror joined channel #puppet
[2009/12/22 11:09:02] @ ghg joined channel #puppet
[2009/12/22 11:10:15] <danielbln> aitkp_: timestamp reference is useless in a multi-timezone channel :p
[2009/12/22 11:10:21] @ ghg left channel #puppet ()
[2009/12/22 11:10:35] @ ghg joined channel #puppet
[2009/12/22 11:11:47] <barn> danielbln: but surely everyone uses $TIMEZONE for their logging! (;
[2009/12/22 11:12:08] <danielbln> well, duh :)
[2009/12/22 11:12:29] @ Quit: DracoWork: Read error: 110 (Connection timed out)
[2009/12/22 11:13:12] <danielbln> have there been known exploits to puppet by the way?
[2009/12/22 11:14:03] <aitkp_> danielbln: fine GMT-5 :)
[2009/12/22 11:15:57] @ Demosthenes joined channel #puppet
[2009/12/22 11:17:04] @ int joined channel #puppet
[2009/12/22 11:21:25] <duritong> danielbln: not really that somebody has been aware of
[2009/12/22 11:22:08] <Volcane> you wouldnt want the master socket open to the world though.
[2009/12/22 11:22:40] <danielbln> I'm more worried about --listen :)
[2009/12/22 11:22:42] @ DracoWork joined channel #puppet
[2009/12/22 11:22:46] <danielbln> on the client side of things
[2009/12/22 11:22:56] <duritong> I would firewall it as well
[2009/12/22 11:23:23] <duritong> as well I would use the lightweight version contributed in contrib/ or ext/
[2009/12/22 11:23:33] <duritong> and the code there is rather easy
[2009/12/22 11:23:39] <Volcane> danielbln: you'd most certainly firewall listen too
[2009/12/22 11:24:27] @ Quit: pheezy: Read error: 54 (Connection reset by peer)
[2009/12/22 11:24:29] @ pheezy_ joined channel #puppet
[2009/12/22 11:24:58] @ Quit: himanshu: Read error: 110 (Connection timed out)
[2009/12/22 11:25:04] @ Diranged joined channel #puppet
[2009/12/22 11:25:13] <Diranged> ok.. inheritence vs include question...
[2009/12/22 11:25:51] <Diranged> if i have a ton of system-variables i want to set up-front.. a bunch for all nodes, then a handful of kernel-specific ones. is it better to go into a class, or a node thats inherited?
[2009/12/22 11:26:17] <Volcane> perfect use case for extlookup
[2009/12/22 11:26:18] <Diranged> up until now, i had the variables actually listed in a 'basenode class' that was included by all the node types.
[2009/12/22 11:27:05] <Diranged> but if you say 'include mac' … the variables set in 'class mac' are not brought in, right? it just runs whatever other includes you have in there?
[2009/12/22 11:29:49] <ashp> oh wow, my mysql is so broken
[2009/12/22 11:30:00] <ashp> we did an import and ibdata1 went from 175M to 1.4G but somehow mysql reflects none of the changes
[2009/12/22 11:30:03] <Volcane> ashp: everything u have is broken, starting to think its you :P
[2009/12/22 11:30:04] <ashp> so all the data appears to be missing :(
[2009/12/22 11:30:18] <ashp> Volcane: It's so weird, they got some weird mysql errors while running their import about the log size not being big enough
[2009/12/22 11:30:25] <ashp> but they refused to discuss that and tried to blame me instead
[2009/12/22 11:30:53] <ashp> 091222 0:06:46 InnoDB: ERROR: the age of the last checkpoint is 9437880,
[2009/12/22 11:30:53] <ashp> InnoDB: which exceeds the log group capacity 9433498.
[2009/12/22 11:30:53] <ashp> InnoDB: If you are using big BLOB or TEXT rows, you must set the
[2009/12/22 11:30:53] <ashp> InnoDB: combined size of log files at least 10 times bigger than the
[2009/12/22 11:30:53] <ashp> InnoDB: largest such row.
[2009/12/22 11:31:07] <Volcane> that happens when there's already an existing innodb log file and you changed the config options without also changing the log file
[2009/12/22 11:31:17] <Volcane> so probably when puppet rolled out a new config it didnt also fix that
[2009/12/22 11:31:24] <Volcane> and so I'd say you're to blame :P
[2009/12/22 11:31:39] <Volcane> ah thats something else
[2009/12/22 11:31:54] <ashp> haha
[2009/12/22 11:32:05] <ashp> they tried to blame puppet for CHANGING THE MYSQL CONFIGURATION at first
[2009/12/22 11:32:09] <ashp> which hasn't changed in weeks
[2009/12/22 11:32:51] <Volcane> i think it could still be
[2009/12/22 11:33:02] <Volcane> but probably the logfile is just too small for the transactions
[2009/12/22 11:33:05] <Volcane> and u need to grow it
[2009/12/22 11:33:47] <bda> Gotta love DBAs?
[2009/12/22 11:34:02] @ Quit: re_:
[2009/12/22 11:34:02] <ashp> yeah, exactly
[2009/12/22 11:34:04] <ashp> but they just kept saying
[2009/12/22 11:34:06] <ashp> WELL NOTHINGS CHANGED
[2009/12/22 11:34:11] <ashp> SO IT CAN'T BE THOSE ERRORS
[2009/12/22 11:34:21] <Volcane> have you restarted mysql since changing the config file?
[2009/12/22 11:34:24] <ashp> i'm pretty sure the errors that occured during the time period you updated the database have something to do with it
[2009/12/22 11:34:28] <ashp> Volcane: i didn't change the config file :(
[2009/12/22 11:34:39] <ashp> I cloned an existing box, changed its ip and turned it over to the developers
[2009/12/22 11:34:43] <Volcane> ah
[2009/12/22 11:34:52] <ashp> they then updated their software to a new release with some added database schema changes
[2009/12/22 11:34:54] <bda> Volcane: Yeah, stop playing operations! :)
[2009/12/22 11:34:57] <ashp> but this is somehow my doing :D
[2009/12/22 11:35:08] <bda> s/playing/blaming # That was weird.
[2009/12/22 11:35:18] <Volcane> bda: hehe
[2009/12/22 11:35:31] <Volcane> wel then your log file is probably just too small for what you're doing
[2009/12/22 11:35:40] <Volcane> and goo luck with that, cos it really sux to fix :)
[2009/12/22 11:36:14] <ashp> yeah, i have no idea how to extend the logfiles
[2009/12/22 11:36:20] <ashp> but we're going to do another import so it breaks again
[2009/12/22 11:36:26] <ashp> then maybe after wasting five hours they'll believe me
[2009/12/22 11:39:17] @ Quit: Welsh_Dwarf: Read error: 54 (Connection reset by peer)
[2009/12/22 11:40:51] <duritong> hmm google groups seems to send out some mails duplicated ;/
[2009/12/22 11:43:11] <Volcane> ggroups is pretty bad
[2009/12/22 11:43:17] <Volcane> but so much better than most of the other options :(
[2009/12/22 11:49:13] <duritong> definately
[2009/12/22 11:49:21] <duritong> and unfortunately
[2009/12/22 11:49:24] @ Quit: Robbie_: Remote closed the connection
[2009/12/22 11:51:10] @ Quit: Ramonster: Client Quit
[2009/12/22 11:56:34] @ Quit: MattyM: "ta ta"
[2009/12/22 12:01:26] @ Quit: p3rror: Read error: 60 (Operation timed out)
[2009/12/22 12:02:13] @ p3rror joined channel #puppet
[2009/12/22 12:02:22] @ Quit: p3rror: Read error: 54 (Connection reset by peer)
[2009/12/22 12:03:29] @ p3rror joined channel #puppet
[2009/12/22 12:04:07] @ fzzzt joined channel #puppet
[2009/12/22 12:04:17] @ Quit: alban2: "A bientot"
[2009/12/22 12:07:54] @ Ramonster joined channel #puppet
[2009/12/22 12:09:08] @ Quit: p3rror: Read error: 104 (Connection reset by peer)
[2009/12/22 12:09:42] @ p3rror joined channel #puppet
[2009/12/22 12:13:04] @ vizzord joined channel #puppet
[2009/12/22 12:13:48] @ Quit: p3rror: Read error: 104 (Connection reset by peer)
[2009/12/22 12:16:35] @ p3rror joined channel #puppet
[2009/12/22 12:21:45] @ lak joined channel #puppet
[2009/12/22 12:22:53] @ Quit: giskard: Remote closed the connection
[2009/12/22 12:25:32] @ toi joined channel #puppet
[2009/12/22 12:25:44] @ Quit: mqr:
[2009/12/22 12:28:24] @ Quit: jaredrhine: Read error: 60 (Operation timed out)
[2009/12/22 12:34:14] @ suchu joined channel #puppet
[2009/12/22 12:35:48] @ Quit: suchu: Client Quit
[2009/12/22 12:36:43] @ BarnacleBob joined channel #puppet
[2009/12/22 12:38:39] @ Quit: danielbln: "Leaving."
[2009/12/22 12:39:44] @ lilmatt joined channel #puppet
[2009/12/22 12:48:33] @ ezmobius joined channel #puppet
[2009/12/22 12:50:07] @ gpled joined channel #puppet
[2009/12/22 12:50:21] @ cynicismic joined channel #puppet
[2009/12/22 12:50:33] @ Quit: bug:
[2009/12/22 12:50:39] <gpled> is their a command to test an init.pp from the server?
[2009/12/22 12:50:56] <gpled> their/there
[2009/12/22 12:51:23] <joe-mac> well, you can do syntax checking
[2009/12/22 12:51:27] <joe-mac> puppet --parseonly filename
[2009/12/22 12:51:42] <gpled> cool, thats what i want to check. thanks
[2009/12/22 12:58:12] @ Quit: poison: Remote closed the connection
[2009/12/22 12:59:08] @ rickbradley is now known as rickbradley\|away
[2009/12/22 13:01:24] @ Quit: Ramonster: Client Quit
[2009/12/22 13:02:16] @ Quit: lak:
[2009/12/22 13:03:23] @ Quit: nexx: "leaving"
[2009/12/22 13:03:38] @ Quit: toi: Read error: 113 (No route to host)
[2009/12/22 13:04:14] <Diranged> i want to have puppet only try to install $wantedpackages if its a linux host.. on macs, its already there guaranteed. can i do a 'require if"?
[2009/12/22 13:05:22] <BarnacleBob> you can do if $operatinsystem != "darwin" { package{} }
[2009/12/22 13:05:23] <BarnacleBob> etc
[2009/12/22 13:05:30] @ Quit: barn: kubrick.freenode.net irc.freenode.net
[2009/12/22 13:05:30] @ Quit: ssm: kubrick.freenode.net irc.freenode.net
[2009/12/22 13:05:31] @ Quit: \|Mike\|: kubrick.freenode.net irc.freenode.net
[2009/12/22 13:05:31] @ Quit: cynicismic: kubrick.freenode.net irc.freenode.net
[2009/12/22 13:05:32] @ Quit: hggh: kubrick.freenode.net irc.freenode.net
[2009/12/22 13:05:32] @ Quit: halenger: kubrick.freenode.net irc.freenode.net
[2009/12/22 13:05:33] @ Quit: Sakarias_: kubrick.freenode.net irc.freenode.net
[2009/12/22 13:05:54] @ kingitchy joined channel #puppet
[2009/12/22 13:06:22] <Diranged> can that be inside of a require?
[2009/12/22 13:06:45] <Diranged> ie… require => (if $operatingsystem != "darwin" { package{$wantedpackages} })
[2009/12/22 13:07:18] <BarnacleBob> a selector might work
[2009/12/22 13:07:20] @ Cyis joined channel #puppet
[2009/12/22 13:07:36] <BarnacleBob> Diranged, http://reductivelabs.com/trac/puppet/wiki/LanguageTutorial#selectors
[2009/12/22 13:08:19] @ ambroff joined channel #puppet
[2009/12/22 13:09:00] @ barn joined channel #puppet
[2009/12/22 13:09:02] @ Sakarias joined channel #puppet
[2009/12/22 13:09:50] <gpled> can you see the error? should be near line 28: http://linux-coders.pastebin.com/d49dca4a9
[2009/12/22 13:10:12] @ \|Mike\| joined channel #puppet
[2009/12/22 13:11:14] @ Quit: barn: Killed by reynolds.freenode.net (Nick collision)
[2009/12/22 13:11:14] @ cynicismic joined channel #puppet
[2009/12/22 13:11:14] @ barn joined channel #puppet
[2009/12/22 13:11:14] @ hggh joined channel #puppet
[2009/12/22 13:11:14] @ halenger joined channel #puppet
[2009/12/22 13:11:15] @ ssm joined channel #puppet
[2009/12/22 13:11:17] @ barn_ joined channel #puppet
[2009/12/22 13:12:32] @ Quit: barn: Read error: 104 (Connection reset by peer)
[2009/12/22 13:17:45] @ fox2mike joined channel #puppet
[2009/12/22 13:17:54] @ giskard joined channel #puppet
[2009/12/22 13:18:25] <fzzzt> So there's a discussion going on here about how to structure the Puppet repository
[2009/12/22 13:19:42] @ Quit: ghg:
[2009/12/22 13:19:49] <fzzzt> Currently I have it set up as trunk/{testing\|production}/modules/... and use environments to pick which tree to use. We've been thinking about changing to a more traditional svn model, having trunk be testing, and branches/production be production. We could have a testing puppetmaster and production puppetmaster and just svn update from the appropriate branch...effectively not needing environment anymore (though I'd keep it set in case we want to).
[2009/12/22 13:20:08] <fzzzt> I wonder what smarter people think, so I of course came here first :P
[2009/12/22 13:20:23] <BarnacleBob> gpled, there is no default path env for an exec. do a Exec{path=>"/usr/bin:/bin:/sbin:/usr/sbin"} somewhere
[2009/12/22 13:20:42] <BarnacleBob> gpled, the specific error is saying that it can't find the tar program
[2009/12/22 13:21:04] <gpled> BarnacleBob: thanks
[2009/12/22 13:21:12] <joe-mac> fzzzt: i hate the idea that you have to have trunks branches tags
[2009/12/22 13:21:23] <Volcane> fzzzt: svn branches with lots of devs working on code can become a nightmare
[2009/12/22 13:22:08] <gpled> fzzzt: wondering if using symbolic links might help you
[2009/12/22 13:22:28] <fzzzt> Volcane: Interesting, we do that daily, and thought it would be easier that way to branch off, work, merge back...
[2009/12/22 13:22:41] <Volcane> fzzzt: if you're used to it and it works, then go for it :)
[2009/12/22 13:22:45] <BarnacleBob> how do you test if a resource is defined?
[2009/12/22 13:22:49] <BarnacleBob> actually nm
[2009/12/22 13:22:59] @ pjsz joined channel #puppet
[2009/12/22 13:23:18] @ Quit: n0ts: kubrick.freenode.net irc.freenode.net
[2009/12/22 13:23:19] @ Quit: ewdafa: kubrick.freenode.net irc.freenode.net
[2009/12/22 13:23:19] @ Quit: jason^: kubrick.freenode.net irc.freenode.net
[2009/12/22 13:23:20] @ Quit: kjetilho: kubrick.freenode.net irc.freenode.net
[2009/12/22 13:23:21] @ Quit: bda: kubrick.freenode.net irc.freenode.net
[2009/12/22 13:23:21] @ Quit: windo_: kubrick.freenode.net irc.freenode.net
[2009/12/22 13:23:22] @ Quit: taihen_: kubrick.freenode.net irc.freenode.net
[2009/12/22 13:23:22] @ Quit: asbruvik_: kubrick.freenode.net irc.freenode.net
[2009/12/22 13:23:23] @ Quit: bitfield: kubrick.freenode.net irc.freenode.net
[2009/12/22 13:23:23] @ Quit: stahnma: kubrick.freenode.net irc.freenode.net
[2009/12/22 13:23:24] @ Quit: chrisg: kubrick.freenode.net irc.freenode.net
[2009/12/22 13:23:24] @ Quit: Jiko: kubrick.freenode.net irc.freenode.net
[2009/12/22 13:23:25] @ Quit: xmslack: kubrick.freenode.net irc.freenode.net
[2009/12/22 13:23:25] @ Quit: charlieS: kubrick.freenode.net irc.freenode.net
[2009/12/22 13:23:26] @ Quit: Bass10: kubrick.freenode.net irc.freenode.net
[2009/12/22 13:23:26] @ Quit: f3ew: kubrick.freenode.net irc.freenode.net
[2009/12/22 13:23:27] @ Quit: eric0: kubrick.freenode.net irc.freenode.net
[2009/12/22 13:23:27] @ Quit: justdave: kubrick.freenode.net irc.freenode.net
[2009/12/22 13:23:27] @ Quit: Sakarias1: kubrick.freenode.net irc.freenode.net
[2009/12/22 13:23:28] @ Quit: explody: kubrick.freenode.net irc.freenode.net
[2009/12/22 13:23:28] <Volcane> fzzzt: i think thats the key thing, use something that works for your team even if others think its rubbish
[2009/12/22 13:23:38] @ jaredrhine joined channel #puppet
[2009/12/22 13:23:54] <Volcane> fzzzt: like personally i hate having a module in every environment, cos i end up with weird differences in them, if u had a solid proces that only always take code from dev to staging to prod then that would be fine though
[2009/12/22 13:24:43] <Diranged> hmm ok i'd like to have the ability to override a users password with a new string… i know you can do it in linux… but does the same ability exist in osx?
[2009/12/22 13:25:01] <BarnacleBob> i set it up so that every dev has an environment thats loaded out of there home folder. so anything in development/testing is just not in svn yet
[2009/12/22 13:25:08] @ jason^ joined channel #puppet
[2009/12/22 13:25:25] <Volcane> Diranged: look at the docs for user tpe, it shows u where it can manage passwords
[2009/12/22 13:27:06] <Diranged> oh i see it
[2009/12/22 13:27:06] <Diranged> thanks
[2009/12/22 13:27:10] <Diranged> i gotta start looking there first
[2009/12/22 13:27:37] @ lilmatt left channel #puppet ()
[2009/12/22 13:27:59] @ lilmatt joined channel #puppet
[2009/12/22 13:28:00] @ justdave joined channel #puppet
[2009/12/22 13:28:01] @ Bass10 joined channel #puppet
[2009/12/22 13:28:01] @ f3ew joined channel #puppet
[2009/12/22 13:28:01] @ eric0 joined channel #puppet
[2009/12/22 13:28:01] @ chrisg joined channel #puppet
[2009/12/22 13:28:01] @ n0ts joined channel #puppet
[2009/12/22 13:28:01] @ ewdafa joined channel #puppet
[2009/12/22 13:28:01] @ kjetilho joined channel #puppet
[2009/12/22 13:28:01] @ windo_ joined channel #puppet
[2009/12/22 13:28:01] @ bda joined channel #puppet
[2009/12/22 13:28:01] @ taihen_ joined channel #puppet
[2009/12/22 13:28:02] @ asbruvik_ joined channel #puppet
[2009/12/22 13:28:02] @ bitfield joined channel #puppet
[2009/12/22 13:28:02] @ Jiko joined channel #puppet
[2009/12/22 13:28:02] @ stahnma joined channel #puppet
[2009/12/22 13:28:02] @ xmslack joined channel #puppet
[2009/12/22 13:28:02] @ Sakarias1 joined channel #puppet
[2009/12/22 13:28:02] @ explody joined channel #puppet
[2009/12/22 13:28:02] @ charlieS joined channel #puppet
[2009/12/22 13:28:25] @ mikerowehl joined channel #puppet
[2009/12/22 13:34:44] @ Ramonster joined channel #puppet
[2009/12/22 13:45:51] <gpled> any recommendations for this? http://linux-coders.pastebin.com/d4c91cbd4
[2009/12/22 13:45:57] <gpled> seems to work
[2009/12/22 13:45:58] @ Quit: jmarki: Remote closed the connection
[2009/12/22 13:51:12] @ Quit: xmslack: kubrick.freenode.net irc.freenode.net
[2009/12/22 13:51:12] @ Quit: Jiko: kubrick.freenode.net irc.freenode.net
[2009/12/22 13:51:13] @ Quit: chrisg: kubrick.freenode.net irc.freenode.net
[2009/12/22 13:51:13] @ Quit: asbruvik_: kubrick.freenode.net irc.freenode.net
[2009/12/22 13:51:14] @ Quit: taihen_: kubrick.freenode.net irc.freenode.net
[2009/12/22 13:51:14] @ Quit: kjetilho: kubrick.freenode.net irc.freenode.net
[2009/12/22 13:51:15] @ Quit: ewdafa: kubrick.freenode.net irc.freenode.net
[2009/12/22 13:51:16] @ Quit: charlieS: kubrick.freenode.net irc.freenode.net
[2009/12/22 13:51:16] @ Quit: n0ts: kubrick.freenode.net irc.freenode.net
[2009/12/22 13:51:17] @ Quit: bda: kubrick.freenode.net irc.freenode.net
[2009/12/22 13:51:18] @ Quit: stahnma: kubrick.freenode.net irc.freenode.net
[2009/12/22 13:51:18] @ Quit: windo_: kubrick.freenode.net irc.freenode.net
[2009/12/22 13:51:18] @ Quit: bitfield: kubrick.freenode.net irc.freenode.net
[2009/12/22 13:51:19] @ Quit: eric0: kubrick.freenode.net irc.freenode.net
[2009/12/22 13:51:19] @ Quit: Sakarias1: kubrick.freenode.net irc.freenode.net
[2009/12/22 13:51:20] @ Quit: explody: kubrick.freenode.net irc.freenode.net
[2009/12/22 13:51:21] @ Quit: Bass10: kubrick.freenode.net irc.freenode.net
[2009/12/22 13:51:21] @ Quit: f3ew: kubrick.freenode.net irc.freenode.net
[2009/12/22 13:51:22] @ Quit: justdave: kubrick.freenode.net irc.freenode.net
[2009/12/22 13:51:22] <lero> http://dpaste.com/136699/
[2009/12/22 13:51:22] <lero> it's possible to do this?
[2009/12/22 13:51:29] @ nakano is now known as nakano_
[2009/12/22 13:52:18] <Volcane> lero: look in the language tutorial for 'selectors'
[2009/12/22 13:57:52] <lero> Volcane, something like this?
[2009/12/22 13:57:53] <lero> http://dpaste.com/136701/
[2009/12/22 13:58:43] <Volcane> lero: why ask humans to parse it and say if its ok when u have the tool on your desktop that does a better job of it
[2009/12/22 13:58:57] <Volcane> lero: puppet --parseonly your.pp
[2009/12/22 13:59:02] <Volcane> tells if the syntax is fine
[2009/12/22 13:59:07] @ jes5 joined channel #puppet
[2009/12/22 13:59:11] <Volcane> and if its fine, put it in the master and run it and see
[2009/12/22 13:59:15] <Volcane> best way to lear
[2009/12/22 13:59:17] <Volcane> n
[2009/12/22 13:59:34] <lero> yeah, i just asked to see if it's this way
[2009/12/22 13:59:41] <lero> the example there is different
[2009/12/22 14:00:02] <lero> but it passed the syntax, gonna try
[2009/12/22 14:01:11] <Volcane> lero: also easy to test these things without the master
[2009/12/22 14:01:26] <Volcane> lero: like just put into a file:
[2009/12/22 14:01:37] <Volcane> $foo = $operatingsystem ? {.......}
[2009/12/22 14:01:39] <Volcane> notice $foo
[2009/12/22 14:01:44] <Volcane> then run puppet test.pp
[2009/12/22 14:01:46] @ WALoeIII joined channel #puppet
[2009/12/22 14:01:52] <Volcane> and you'll see what happens
[2009/12/22 14:03:36] <lero> =]
[2009/12/22 14:07:55] @ ghg joined channel #puppet
[2009/12/22 14:09:29] @ shine_ is now known as shine
[2009/12/22 14:09:40] <lero> thanks for the tips
[2009/12/22 14:10:03] <lero> Volcane, just another thing, it's ok to run puppet with ruby-enterprise? it's seems to be working here
[2009/12/22 14:10:16] <Volcane> yup, faster, stablr, better apparently
[2009/12/22 14:11:51] <fluxdude> is $servername an inbuilt or something you have to define in site.pp or somewhere?
[2009/12/22 14:12:01] <Volcane> i think its inbuilt
[2009/12/22 14:12:11] <Volcane> but not sure
[2009/12/22 14:12:16] <Volcane> never needed it
[2009/12/22 14:12:28] <fluxdude> I used to define by with a var in site.pp
[2009/12/22 14:12:44] <fluxdude> but am about to starting re-writing several thousand lines of puppet code for my new environment
[2009/12/22 14:12:57] <fluxdude> it's been a while since I had to start over...
[2009/12/22 14:13:16] <Volcane> puppet:///path/to/file is nice
[2009/12/22 14:13:22] <Volcane> defaults to whatever the server is
[2009/12/22 14:13:22] <fluxdude> I previously just defined the whole prefix as $deploy and the only filled in the end bit of the path...
[2009/12/22 14:13:38] <Volcane> with the bonus that it works in local mode with puppet as well
[2009/12/22 14:14:14] <fluxdude> since what version of puppet does that work
[2009/12/22 14:14:17] <fluxdude> never used that...
[2009/12/22 14:14:28] <fluxdude> used puppet://server/path/to/file
[2009/12/22 14:14:29] <Volcane> not sure
[2009/12/22 14:14:34] <Volcane> as long as i can recall
[2009/12/22 14:14:51] <fluxdude> but that's a local path on the puppetmaster... how does it get served?
[2009/12/22 14:15:15] <Volcane> i mean path/to/file is still mapping to fileserver paths and modules obviously
[2009/12/22 14:15:30] <Volcane> just demonstrating that puppet:///... defaults to whatever server is being spoken too
[2009/12/22 14:15:44] <fluxdude> ah, forgot about that one, thanks!
[2009/12/22 14:17:19] @ stahnma joined channel #puppet
[2009/12/22 14:17:52] @ lak joined channel #puppet
[2009/12/22 14:19:19] @ danilo2 joined channel #puppet
[2009/12/22 14:19:22] <danilo2> xoovem
[2009/12/22 14:20:50] @ justdave joined channel #puppet
[2009/12/22 14:20:50] @ Bass10 joined channel #puppet
[2009/12/22 14:20:50] @ f3ew joined channel #puppet
[2009/12/22 14:20:50] @ eric0 joined channel #puppet
[2009/12/22 14:20:51] @ chrisg joined channel #puppet
[2009/12/22 14:20:51] @ n0ts joined channel #puppet
[2009/12/22 14:20:51] @ ewdafa joined channel #puppet
[2009/12/22 14:20:51] @ kjetilho joined channel #puppet
[2009/12/22 14:20:51] @ windo_ joined channel #puppet
[2009/12/22 14:20:51] @ bda joined channel #puppet
[2009/12/22 14:20:51] @ taihen_ joined channel #puppet
[2009/12/22 14:20:51] @ asbruvik_ joined channel #puppet
[2009/12/22 14:20:51] @ bitfield joined channel #puppet
[2009/12/22 14:20:51] @ Jiko joined channel #puppet
[2009/12/22 14:20:52] @ xmslack joined channel #puppet
[2009/12/22 14:20:52] @ Sakarias1 joined channel #puppet
[2009/12/22 14:20:52] @ explody joined channel #puppet
[2009/12/22 14:20:52] @ charlieS joined channel #puppet
[2009/12/22 14:21:34] @ Quit: ssm: kubrick.freenode.net irc.freenode.net
[2009/12/22 14:21:35] @ Quit: WALoeIII: kubrick.freenode.net irc.freenode.net
[2009/12/22 14:21:35] @ Quit: jaredrhine: kubrick.freenode.net irc.freenode.net
[2009/12/22 14:21:36] @ Quit: halenger: kubrick.freenode.net irc.freenode.net
[2009/12/22 14:21:36] @ Quit: cynicismic: kubrick.freenode.net irc.freenode.net
[2009/12/22 14:21:38] @ Quit: hggh: kubrick.freenode.net irc.freenode.net
[2009/12/22 14:22:38] @ fzzzt left channel #puppet ()
[2009/12/22 14:24:37] @ Quit: lak:
[2009/12/22 14:26:24] <BarnacleBob> anyone have an idea why puppet isn't loading a plugin on this one single machine. puppet version is right, and if i rm the plugin it downloads it again and loads it on that single run
[2009/12/22 14:27:05] @ Quit: ambroff: Read error: 60 (Operation timed out)
[2009/12/22 14:28:40] <fluxdude> when my puppet module replaces a file, it leaves a puppet-bak instead of sending the old file to the filebucket which I have defined like so filebucket{ main: server => "puppet" }
[2009/12/22 14:29:42] @ WALoeIII joined channel #puppet
[2009/12/22 14:29:42] @ jaredrhine joined channel #puppet
[2009/12/22 14:29:42] @ cynicismic joined channel #puppet
[2009/12/22 14:29:42] @ hggh joined channel #puppet
[2009/12/22 14:29:42] @ halenger joined channel #puppet
[2009/12/22 14:29:42] @ ssm joined channel #puppet
[2009/12/22 14:30:35] <fluxdude> and I have File { bacup => main } as well...
[2009/12/22 14:32:53] @ pting joined channel #puppet
[2009/12/22 14:34:20] <fluxdude> ok it's cos I used a utility resource
[2009/12/22 14:37:46] @ Quit: Ramonster: Client Quit
[2009/12/22 14:39:03] @ jfreeman joined channel #puppet
[2009/12/22 14:44:20] @ ghg_ joined channel #puppet
[2009/12/22 14:44:40] @ poison joined channel #puppet
[2009/12/22 14:48:16] <WALoeIII> when puppet uses the gem provider, does it eval the environment
[2009/12/22 14:48:31] <WALoeIII> i.e. if I put a gem in /usr/local will it get used over /usr/bin
[2009/12/22 14:48:49] @ Quit: danilo2: Remote closed the connection
[2009/12/22 14:49:08] @ alban2 joined channel #puppet
[2009/12/22 14:50:56] @ Quit: RageLink: Remote closed the connection
[2009/12/22 14:57:21] @ Quit: ghg: Read error: 110 (Connection timed out)
[2009/12/22 14:57:21] @ ghg_ is now known as ghg
[2009/12/22 15:02:42] @ jusfreeman joined channel #puppet
[2009/12/22 15:03:21] @ Quit: jfreeman: Read error: 60 (Operation timed out)
[2009/12/22 15:03:53] @ whaley joined channel #puppet
[2009/12/22 15:06:15] <Cyis> WALoeIII, usually that would depend on your path setting
[2009/12/22 15:06:35] <Cyis> I would imagine that wouldn't change
[2009/12/22 15:06:40] <WALoeIII> Cyis: perfect I just don't want it hard coding to /usr/bin/gem or whatever
[2009/12/22 15:06:50] <WALoeIII> in my $PATH the local stuff comes first
[2009/12/22 15:07:06] <Cyis> are you setting the path for puppet?
[2009/12/22 15:07:10] <WALoeIII> no
[2009/12/22 15:07:21] <WALoeIII> the system's default path is set that way
[2009/12/22 15:07:22] @ ambroff joined channel #puppet
[2009/12/22 15:07:47] <Cyis> okay... I have an Exec { path => "..." } in my manifests/site.pp
[2009/12/22 15:08:31] <Volcane> Exec { path=>...} sets the path for execs
[2009/12/22 15:09:19] <Cyis> Volcane, okay... but otherwise I'm assuming I'm correct in my assumption for WALoeIII then
[2009/12/22 15:10:17] @ Quit: jaredrhine: Read error: 113 (No route to host)
[2009/12/22 15:10:27] <WALoeIII> Volcane: thanks, stuck it on the front Exec { path => "/usr/local/bin:/usr/bin:/usr/sbin/:/bin:/sbin" }
[2009/12/22 15:10:45] <Volcane> i think it'll use your PATH set when the rc script ran
[2009/12/22 15:12:19] @ jaredrhine joined channel #puppet
[2009/12/22 15:12:49] <Cyis> Volcane, you know if there's a way to realize say "Ssh_authorized_key <\| ??? \|>" and have it be able to do so for all users in a specific group or if it's even possible to do so?
[2009/12/22 15:12:57] <Volcane> yeah it just uses Kernel.exec in a thread
[2009/12/22 15:13:05] <Volcane> well forked off copy actually
[2009/12/22 15:13:11] <Volcane> so it'll use the path from the rc script
[2009/12/22 15:13:40] <Volcane> Cyis: see http://reductivelabs.com/trac/puppet/wiki/VirtualResources
[2009/12/22 15:15:23] <Cyis> Volcane, yeah I read that but seems that the examples only show using parameters/properties of the type it's realizing
[2009/12/22 15:15:51] <Volcane> ah i see
[2009/12/22 15:15:59] <Volcane> u want keys for users in a group
[2009/12/22 15:16:02] <Volcane> i doubt it
[2009/12/22 15:16:14] <Volcane> you might need to fiddle with tags
[2009/12/22 15:16:22] <Cyis> I have it realizing the users by the group... but was wondering if I could do the same for the ssh authorized_key's rather than having to do each via Ssh_authorized_key <\| user == "user1" \|>
[2009/12/22 15:16:38] <WALoeIII> Volcane: wait this is only for execs
[2009/12/22 15:16:42] <WALoeIII> I want to change the gem binary puppet uses
[2009/12/22 15:16:44] <Cyis> that's what I thought...
[2009/12/22 15:16:46] <Volcane> WALoeIII: thats what i said :P
[2009/12/22 15:16:54] <WALoeIII> oh I wasn't paying attention then
[2009/12/22 15:17:12] <WALoeIII> so it inherits from root I guess since thats what monit starts puppet as
[2009/12/22 15:17:39] <Volcane> Cyis: all i can suggest is if u created users with a define - that also does their keys - you can make the defined type virtual and realize those which would also pull in associated keys
[2009/12/22 15:17:43] <WALoeIII> PATH=/usr/bin:/sbin:/bin:/usr/sbin \ export PATH
[2009/12/22 15:17:45] <Volcane> Cyis: not sure if thats at all what u want
[2009/12/22 15:17:51] <WALoeIII> yeah, its set in the init script, okey I will modify that
[2009/12/22 15:17:56] <Cyis> yeah I'll probably end up doing that
[2009/12/22 15:19:16] <Cyis> cause we put each user in it's own group as primary and then add to secondary groups so I need to realize the Group as well as the Ssh_authorized_key
[2009/12/22 15:25:21] @ mutage1 joined channel #puppet
[2009/12/22 15:28:44] @ himanshu joined channel #puppet
[2009/12/22 15:29:19] @ justinfreeman joined channel #puppet
[2009/12/22 15:29:58] @ Quit: bitfield: "Leaving."
[2009/12/22 15:31:01] <WALoeIII> Volcane: looks like its a 'path' config in puppet.conf
[2009/12/22 15:31:20] <Volcane> oh right yeah forgot about that setting
[2009/12/22 15:33:23] @ kazek joined channel #puppet
[2009/12/22 15:33:40] @ Quit: rsquared: Read error: 104 (Connection reset by peer)
[2009/12/22 15:34:23] @ Quit: jusfreeman: Read error: 60 (Operation timed out)
[2009/12/22 15:35:29] @ kazek left channel #puppet ()
[2009/12/22 15:35:37] @ Quit: poison: Read error: 60 (Operation timed out)
[2009/12/22 15:36:50] <WALoeIII> Volcane: hmm changing it seems to be a bad idea,now it cant find anything
[2009/12/22 15:36:52] <WALoeIII> all my modules fail
[2009/12/22 15:37:01] @ bug joined channel #puppet
[2009/12/22 15:37:02] <WALoeIII> I need to get pargs going
[2009/12/22 15:37:16] @ Quit: justinfreeman: Read error: 60 (Operation timed out)
[2009/12/22 15:39:25] <WALoeIII> ah this is a bootstrap problem
[2009/12/22 15:39:31] <WALoeIII> it updated the ruby binary on the ops machine too
[2009/12/22 15:39:41] <WALoeIII> but the gems don't get installed
[2009/12/22 15:40:03] <WALoeIII> so the external nodes script fails out
[2009/12/22 15:40:04] <BarnacleBob> rubygems is such a gaint pain
[2009/12/22 15:40:22] <Volcane> gem2<your package of choice> ftw
[2009/12/22 15:41:51] <WALoeIII> Volcane: works pretty good with pure ruby its the c extension gems that always get way messedup for me
[2009/12/22 15:41:59] <WALoeIII> especially running a non-standard ruby
[2009/12/22 15:43:35] <WALoeIII> ahh!
[2009/12/22 15:43:39] <WALoeIII> its a bug in facter 1.5.2
[2009/12/22 15:43:41] <WALoeIII> http://projects.reductivelabs.com/issues/1893
[2009/12/22 15:43:43] <WALoeIII> boo
[2009/12/22 15:44:14] <Volcane> sheesh
[2009/12/22 15:44:28] @ Quit: mutage: Read error: 110 (Connection timed out)
[2009/12/22 15:50:59] @ lak joined channel #puppet
[2009/12/22 15:53:27] <WALoeIII> anyone have 0.25 and facter packaged for fc8 :o
[2009/12/22 15:53:49] <KarlHungus> WALoeIII: rebuild the epel package
[2009/12/22 15:53:51] <BarnacleBob> i have an rpm
[2009/12/22 15:54:09] <BarnacleBob> yeah thats the best way
[2009/12/22 15:54:13] <WALoeIII> KarlHungus: the srcrpm
[2009/12/22 15:54:17] <WALoeIII> good idea
[2009/12/22 15:54:26] <Volcane> specs in the tarballs
[2009/12/22 15:55:13] <WALoeIII> in the puppet distrib or the epel distrib
[2009/12/22 15:55:16] <WALoeIII> epel I"m assuming
[2009/12/22 15:55:25] <WALoeIII> 4 -> fc6 5 -> fc8 right?
[2009/12/22 15:55:27] <WALoeIII> epel
[2009/12/22 15:57:36] <WALoeIII> the epel5s for puppet are 24.8 is there somewhere else to look? http://download.fedora.redhat.com/pub/epel/5/SRPMS/repoview/puppet.html
[2009/12/22 15:58:56] <Volcane> the spec file is in the puppet distribution, just build it?
[2009/12/22 15:59:12] <Volcane> epel testing also have newer ones though afaik
[2009/12/22 15:59:33] <WALoeIII> ah great. thanks
[2009/12/22 16:01:43] @ lancepants joined channel #puppet
[2009/12/22 16:03:19] <lancepants> hey guys, i'm migrating one puppetmaster to another. Is there a way to do this without having to re-sign all of the certs? I currently am able to copy over the /var/lib/puppet/ssl directory to the new puppetmaster and have existing nodes pull their configs from the new server fine
[2009/12/22 16:03:38] <lancepants> but the certs are named with the old puppetmasters hostname. i am also using the 'certname=' parameter in puppetmaster's puppet.conf
[2009/12/22 16:04:53] <lancepants> i'd like to have my puppetmasters cert file and keyfile named 'puppet.domain.net' so that it doesn't cause confusion, but i suppose still use the same CA files so existing nodes don't need their ssl directories deleted and re-signed
[2009/12/22 16:05:14] <Volcane> to rename it you'd need to re-generate it afaik
[2009/12/22 16:05:37] <lancepants> that's what i figured
[2009/12/22 16:05:45] <lancepants> oh well!
[2009/12/22 16:06:38] <BarnacleBob> lancepants, i recently had to do that. i made sure to add every alias i could think of before doing it so i don't ahve to again in the future
[2009/12/22 16:06:59] <BarnacleBob> you add aliases with certdnsnames
[2009/12/22 16:07:05] <BarnacleBob> in the conf
[2009/12/22 16:09:12] @ poison joined channel #puppet
[2009/12/22 16:10:05] <lancepants> ahh interesting BarnacleBob. thanks for the heads up
[2009/12/22 16:10:45] * Volcane 's got aliases: puppet, puppet-reports, puppet-ca and puppet-files
[2009/12/22 16:11:00] <Volcane> dont use them all just yet, but one day i might want to spread them out
[2009/12/22 16:11:09] <Volcane> already puppet and puppet-reports are being used
[2009/12/22 16:11:11] <BarnacleBob> yeah i was spreading mine out
[2009/12/22 16:11:23] <BarnacleBob> i ended up with like 30 aliases :)
[2009/12/22 16:11:26] <Volcane> lol
[2009/12/22 16:11:32] <Volcane> i just make those work via geo dns etc
[2009/12/22 16:11:40] @ rsquared joined channel #puppet
[2009/12/22 16:12:01] <BarnacleBob> i like overkill :)
[2009/12/22 16:12:15] <Volcane> you know it suppots a wildcard right? :)
[2009/12/22 16:12:32] <BarnacleBob> actually i didn't
[2009/12/22 16:12:45] <Diranged> ok.. just spent the last 2 hours recovering from puppet destroying my password field on a remote mac server...
[2009/12/22 16:12:46] <Diranged> yay
[2009/12/22 16:13:00] <Volcane> i dont recall the exact syntax now but I've seen it mentioned here
[2009/12/22 16:13:20] <Volcane> efectively disables the hostame checks
[2009/12/22 16:13:25] <BarnacleBob> well if i ever have to regen again for a change, i'll be sure to investigate that first :)
[2009/12/22 16:19:16] @ Quit: DracoWork:
[2009/12/22 16:20:10] @ Djelibeybi joined channel #puppet
[2009/12/22 16:20:24] @ Quit: themurph: Read error: 110 (Connection timed out)
[2009/12/22 16:20:53] <WALoeIII> did facter switch its binary to /usr/local/ from /usr?
[2009/12/22 16:22:00] <BarnacleBob> no
[2009/12/22 16:23:08] @ Quit: Djelibeybi: Client Quit
[2009/12/22 16:23:12] <ashp> I really wish I could do global resource 'require's :(
[2009/12/22 16:23:21] <ashp> so I could do a global require on host{} :)
[2009/12/22 16:23:41] <Volcane> or, u can move on from 1970 and use dns?
[2009/12/22 16:23:51] @ nakano_ is now known as nakano
[2009/12/22 16:24:31] <ashp> volcane, you've heard my complaints about this place, do you imagine our dns works any better? :)
[2009/12/22 16:24:49] <ashp> We require different results depending on subnet AND we have a mixture of real DNS and AD dns
[2009/12/22 16:25:13] <ashp> if you're on our 209 subnet you need to connect over a 10. and from other locations over a vip
[2009/12/22 16:25:19] <ashp> which may, or may not, end in the same ip
[2009/12/22 16:29:58] @ Quit: ashp: Read error: 60 (Operation timed out)
[2009/12/22 16:31:42] <BarnacleBob> lol
[2009/12/22 16:32:16] <Volcane> its like he enjoys it all sucking
[2009/12/22 16:32:42] <Volcane> technology cant solve unworkable design
[2009/12/22 16:34:04] <BarnacleBob> yeah at some point you just have to throw it away and start over
[2009/12/22 16:34:19] <joe-mac> or pick up a gun and use this piece of technology to solve problems
[2009/12/22 16:35:17] @ Quit: francois1: "Leaving."
[2009/12/22 16:35:31] <BarnacleBob> lol
[2009/12/22 16:40:51] @ kingitchy_ joined channel #puppet
[2009/12/22 16:40:52] <lancepants> woohoo! after some testing, that certdnsnames was just what i was looking for to pacify my ocd. thanks guys
[2009/12/22 16:43:01] @ ashp joined channel #puppet
[2009/12/22 16:43:18] <ashp> my esxi box at kimsufi died and rebooted
[2009/12/22 16:43:21] <ashp> that makes me super nervous
[2009/12/22 16:45:37] @ Quit: lero: "Leaving"
[2009/12/22 16:53:46] @ DracoWork joined channel #puppet
[2009/12/22 16:55:43] @ Quit: skiold:
[2009/12/22 16:57:55] @ Quit: kingitchy: Read error: 110 (Connection timed out)
[2009/12/22 16:57:55] @ kingitchy_ is now known as kingitchy
[2009/12/22 16:59:00] @ Quit: jes5: "Leaving."
[2009/12/22 17:00:26] @ Quit: jaredrhine: Read error: 60 (Operation timed out)
[2009/12/22 17:05:05] @ alban3 joined channel #puppet
[2009/12/22 17:05:10] @ Quit: alban2: Read error: 113 (No route to host)
[2009/12/22 17:08:54] @ Quit: lak:
[2009/12/22 17:10:22] @ Quit: ghg:
[2009/12/22 17:11:51] @ Quit: giskard: Remote closed the connection
[2009/12/22 17:12:20] @ giskard joined channel #puppet
[2009/12/22 17:12:55] @ jaredrhine joined channel #puppet
[2009/12/22 17:13:57] @ mattdelves joined channel #puppet
[2009/12/22 17:14:12] <mattdelves> hey all, anyone around?
[2009/12/22 17:15:01] @ jfreeman joined channel #puppet
[2009/12/22 17:15:06] <Volcane> nope :P
[2009/12/22 17:15:14] <mattdelves> bugger.
[2009/12/22 17:15:52] @ kingitchy left channel #puppet ()
[2009/12/22 17:15:56] <mattdelves> Anyone know of why nginx would be giving the following error to a node that is trying to connect to puppet: Could not retrieve catalog from remote server: wrong status line: "<html>"
[2009/12/22 17:16:02] @ Quit: Cyis: "Ex-Chat"
[2009/12/22 17:16:18] <Volcane> mattdelves: sonds like nginx is returning an html error or somthing instead of passing the reqeust to puppet
[2009/12/22 17:16:30] <Volcane> check your logs what the request was
[2009/12/22 17:16:31] <mattdelves> sounds like it.
[2009/12/22 17:16:46] <Volcane> then do:
[2009/12/22 17:16:50] <Volcane> from your vardir ssl
[2009/12/22 17:17:13] <Volcane> cat certs/fqdn.pem private_keys/fqdn.pem > /tmp/foo.pem
[2009/12/22 17:17:40] <Volcane> curl --cert /tmp/foo.pem --cacert certs/ca.pem https://puppet:8140/.....
[2009/12/22 17:17:44] @ Quit: poison: Remote closed the connection
[2009/12/22 17:18:03] <Volcane> that'll do all the ssl foo needed to pass the checks. and show you what the output of the request in question is
[2009/12/22 17:18:32] @ int_ joined channel #puppet
[2009/12/22 17:18:52] @ poison joined channel #puppet
[2009/12/22 17:19:53] @ Quit: int: Read error: 113 (No route to host)
[2009/12/22 17:20:00] @ Quit: ezmobius: Remote closed the connection
[2009/12/22 17:20:03] <mattdelves> Curl gives the error unable to set private key file: '/tmp/foo.pem' type PEM
[2009/12/22 17:20:55] <Volcane> oh
[2009/12/22 17:20:58] <Volcane> rm the file
[2009/12/22 17:21:04] <Volcane> cat certs/fqdn.pem private_keys/fqdn.pem >> /tmp/foo.pem
[2009/12/22 17:21:10] <Volcane> change the > to >>
[2009/12/22 17:21:51] <joe-mac> is anyone automating like quarterly ssh key rotation, or aty the very least shiny notifications out to all users defined by puppet that their ssh key is going to be revoked on a certain day?
[2009/12/22 17:23:56] <WALoeIII> crosses fingers
[2009/12/22 17:23:58] <WALoeIII> upgrading to 0.25.1
[2009/12/22 17:24:11] @ Quit: int_: Read error: 104 (Connection reset by peer)
[2009/12/22 17:24:11] <WALoeIII> 0.24.6 => 0.25.1
[2009/12/22 17:24:21] <Volcane> heh i hope you've tested this somewhere safe first :P
[2009/12/22 17:24:25] @ int joined channel #puppet
[2009/12/22 17:24:32] <KarlHungus> damn i love vmware+puppet. 3 new web cluster nodes in 15 minutes
[2009/12/22 17:24:36] <WALoeIII> this is in the test environment :)
[2009/12/22 17:24:45] <WALoeIII> hmm
[2009/12/22 17:24:46] <WALoeIII> sudo tail -f /var/log/messages
[2009/12/22 17:24:47] <WALoeIII> err
[2009/12/22 17:24:51] <Volcane> WALoeIII: fair amount of code reworking needed
[2009/12/22 17:25:06] <WALoeIII> will I get warnings and such?
[2009/12/22 17:25:12] <WALoeIII> I use 100% modules anyways
[2009/12/22 17:26:08] @ Quit: barn_: "Lost terminal"
[2009/12/22 17:26:17] <WALoeIII> ah dependency hell
[2009/12/22 17:26:20] <Volcane> you'll get shedloads of deprecation warnings
[2009/12/22 17:26:22] <WALoeIII> libselinux-ruby
[2009/12/22 17:26:36] <WALoeIII> warnings are different then not working, I can work through those over time
[2009/12/22 17:26:38] <mattdelves> Volcane: it seems to give the error
[2009/12/22 17:26:40] <mattdelves> No matching value for selector param '' at /etc/puppet/modules/samba/manifests/init.pp:43 on node
[2009/12/22 17:26:42] <Volcane> some stuff might fail if u had some mistakes before where 0.24 was more forgiving
[2009/12/22 17:26:52] <WALoeIII> I started on 0.24.6
[2009/12/22 17:26:57] @ jab_doa joined channel #puppet
[2009/12/22 17:27:04] <Volcane> mattdelves: show the code :)
[2009/12/22 17:27:54] <mattdelves> With facter, is sles different from SLES? The node is sles 11 where as all others are sles 10.
[2009/12/22 17:28:02] <mattdelves> that's for $operatingsystem
[2009/12/22 17:28:32] <Volcane> type facter on the node and see?
[2009/12/22 17:29:04] @ Quit: giskard: Read error: 113 (No route to host)
[2009/12/22 17:29:06] <Volcane> or change your code slightly, add a default that just does fail("Don't know how to handle ${operatingsystem}")
[2009/12/22 17:29:27] <Volcane> that'l make it compile and show you useful tings on the master log
[2009/12/22 17:29:31] <mattdelves> they both seem to be SLES, though this is the first time Its showing an error
[2009/12/22 17:29:38] <gpled> so i need a cron job. should i make a module called cron, and call it from other modules, when i need a cron job?
[2009/12/22 17:29:38] <Volcane> thogh really this error you found should have been on the master logs too
[2009/12/22 17:30:16] <Volcane> gpled: depends, where are you likely to find it again later
[2009/12/22 17:30:34] <Volcane> gpled: where would your first instinct be to look for it, in the module iwth the app or in some big repository of cronjobs
[2009/12/22 17:31:46] <gpled> Volcane: well, my application module will have reference to it. so i would find it in both places
[2009/12/22 17:32:30] <Volcane> it makes little actual difference, its just about what will work for u really
[2009/12/22 17:32:47] <gpled> k, thanks for the input
[2009/12/22 17:32:53] <Volcane> one site i am at i have 100s of cronjobs
[2009/12/22 17:32:58] <Volcane> so i have a module with them all in
[2009/12/22 17:33:07] <Volcane> so i can easily figure out where to fiddle a cronjob
[2009/12/22 17:33:21] <Volcane> others with fewer cronjobs i tend to just put them with the application module
[2009/12/22 17:33:37] <Volcane> apache::install, apache::config, apache::monitor, apache::cron etc
[2009/12/22 17:33:58] @ barn joined channel #puppet
[2009/12/22 17:34:14] @ Quit: brothers:
[2009/12/22 17:34:28] <gpled> Volcane: you have one of your modules posted somewhere? like seeing how other people do things
[2009/12/22 17:34:58] <Volcane> google for 'simple puppet module structure'
[2009/12/22 17:35:20] <Volcane> its not a full actual module, but it gives u ideas
[2009/12/22 17:35:32] @ Quit: gebi: "leaving"
[2009/12/22 17:37:18] <mattdelves> Volcane: now there is a rather obscure message being: No specified acceptable formats (/) are functional on this machine
[2009/12/22 17:37:44] @ brothers joined channel #puppet
[2009/12/22 17:37:49] <Volcane> mattdelves: nice, that'd be some obscure nginx config option that i have no idea about :)
[2009/12/22 17:39:07] @ Quit: jaredrhine: Read error: 113 (No route to host)
[2009/12/22 17:39:31] <mattdelves> Volcane: That's an error from puppet unfortunately.
[2009/12/22 17:40:02] <Volcane> logs on the client or server?
[2009/12/22 17:40:07] <mattdelves> server
[2009/12/22 17:40:17] <mattdelves> puppetmasterd[17205]: No specified acceptable formats (/) are functional on this machine
[2009/12/22 17:40:17] <mattdelves> puppetmasterd[17205]: No specified acceptable formats (/) are functional on this machine
[2009/12/22 17:40:21] <Volcane> when talking to it from a normal puppet client
[2009/12/22 17:40:22] <Volcane> ?
[2009/12/22 17:40:57] @ lero joined channel #puppet
[2009/12/22 17:41:07] <mattdelves> When using puppetd from the node, it doesn't show the error.
[2009/12/22 17:41:42] @ grantk left channel #puppet ()
[2009/12/22 17:42:01] <Volcane> k, k
[2009/12/22 17:42:47] <Volcane> so thats with curl? if so pop in there -H "Accept: yaml"
[2009/12/22 17:43:13] <Volcane> mine doesnt do it, not sure whats up with that
[2009/12/22 17:43:22] <mattdelves> That returns the yaml.
[2009/12/22 17:43:40] <Volcane> ok, so thats wicked
[2009/12/22 17:43:52] @ jaredrhine joined channel #puppet
[2009/12/22 17:43:55] <Volcane> works a charm, so what does puppetd do now then?
[2009/12/22 17:44:14] <mattdelves> err: Could not retrieve catalog from remote server: wrong status line: "<html>"
[2009/12/22 17:45:16] <Volcane> no idea then, if those requests work with curl then it should be fine, could be that puppetd is trying other formants that might be failing but donno
[2009/12/22 17:45:23] <Volcane> pst the level of debugging I've done before
[2009/12/22 17:45:38] <mattdelves> Just tried cleaning and recreating the certificates on the node though no success.
[2009/12/22 17:45:54] <mattdelves> Is there a way to increase the debug level on the output. the standard --debug doesn't show anything helpful.
[2009/12/22 17:46:21] <Volcane> not to the level that it would show you returned html i think
[2009/12/22 17:46:37] <Volcane> --verbose --debug --eval-trace i think is about all u got
[2009/12/22 17:47:17] <mattdelves> The only interesting line from debug is: Puppet::Network::Format[json]: false value when expecting true
[2009/12/22 17:47:31] <Volcane> json? hmm, what version u on?
[2009/12/22 17:47:47] <mattdelves> ruby 1.8.7 puppet 0.25.1
[2009/12/22 17:48:00] <Volcane> client and server?
[2009/12/22 17:48:09] <mattdelves> client and server on 0.25.1
[2009/12/22 17:48:11] @ danielbln joined channel #puppet
[2009/12/22 17:48:19] <mattdelves> server has ruby version 1.8.6
[2009/12/22 17:48:19] <danielbln> Volcane?
[2009/12/22 17:48:41] <danielbln> I can't seem to find v0.2.0 of the dashboard
[2009/12/22 17:48:58] <danielbln> or is it just available in the repo yet?
[2009/12/22 17:49:07] @ ghg joined channel #puppet
[2009/12/22 17:49:10] <Volcane> danielbln: the urls for downloading is on the mailing lists
[2009/12/22 17:49:27] <Volcane> mattdelves: bizarre i was under the impression there's no more json at all in the actual final release version of 0.25.1
[2009/12/22 17:49:40] @ Quit: ghg: Remote closed the connection
[2009/12/22 17:49:42] <danielbln> Volcane: in the list, you point to http://github.com/reductivelabs/puppet-dashboard/downloads
[2009/12/22 17:49:46] @ Quit: lilmatt: Client Quit
[2009/12/22 17:49:47] <danielbln> but there is no 0.2.0 there
[2009/12/22 17:49:53] @ ghg joined channel #puppet
[2009/12/22 17:49:56] * Volcane 's not the one who wrote it :P
[2009/12/22 17:50:08] <danielbln> oh, sorry
[2009/12/22 17:50:13] <danielbln> got confused :D
[2009/12/22 17:50:35] <danielbln> what would be the nick of the author who posted the link?
[2009/12/22 17:50:39] <Volcane> reinh
[2009/12/22 17:50:45] <danielbln> ReinH: ping
[2009/12/22 17:50:49] <Volcane> but follow the instructions here to just check it out http://github.com/reductivelabs/puppet-dashboard
[2009/12/22 17:51:15] @ Quit: cynicismic: "leaving"
[2009/12/22 17:51:23] <danielbln> I checked out a current working copy, but I have a bug which should not be present in this version
[2009/12/22 17:51:33] <danielbln> so I figured reinh might have missed the final commit or sth. :)
[2009/12/22 17:51:36] * Volcane 's also unable to get it going
[2009/12/22 17:51:46] <danielbln> missing success column?
[2009/12/22 17:51:58] <Volcane> nah importing reports make it fail when it runs
[2009/12/22 17:52:24] <danielbln> well, at least that's more than I can get my copy going
[2009/12/22 17:53:05] <danielbln> too bad, it looks like a pretty, less cluttered version of foreman judging by the screenshots
[2009/12/22 17:53:24] <Volcane> mattdelves: heh i can get my master to log those messages u get - it just seems to be buffering messages so i get them in batches
[2009/12/22 17:53:58] <mattdelves> Anyone successfully use SLES 11 with puppet?
[2009/12/22 17:54:24] @ Quit: vizzord: "see you"
[2009/12/22 17:55:49] @ Quit: rsquared: Read error: 60 (Operation timed out)
[2009/12/22 17:56:39] <BarnacleBob> danielbln, where did you find screenshots for it?
[2009/12/22 17:57:33] <gpled> when using cron, where does the cron job end up on the client?
[2009/12/22 17:57:50] <danielbln> in the crontab, usually ;)
[2009/12/22 17:57:52] @ joe-mac left channel #puppet ()
[2009/12/22 17:58:01] <BarnacleBob> gpled, the crontab of the user. so roots
[2009/12/22 17:58:08] @ QMan joined channel #puppet
[2009/12/22 17:58:09] <BarnacleBob> unless you specified a different user
[2009/12/22 17:58:58] <Volcane> danielbln: fwiw when i just run rake install on the git checkout the thing works fine out the box
[2009/12/22 17:59:12] <Volcane> danielbln: its only when i import old report - and probablyc os i have a bad one - that it goes weird
[2009/12/22 17:59:39] <danielbln> mysql or sqlite?
[2009/12/22 17:59:42] <Volcane> mysql
[2009/12/22 18:00:05] <gpled> hmmm, ended up in /var/spool/cron
[2009/12/22 18:00:17] <Volcane> gpled: so in the users crontab then
[2009/12/22 18:04:42] <danielbln> damn, a fresh git checkout actually works
[2009/12/22 18:04:48] <danielbln> alright, one step closer
[2009/12/22 18:05:10] <gpled> i need to learn more about git
[2009/12/22 18:13:17] @ gpled left channel #puppet ("Ex-Chat")
[2009/12/22 18:13:48] @ pjsz left channel #puppet ()
[2009/12/22 18:14:17] @ Djelibeybi joined channel #puppet
[2009/12/22 18:28:10] <ReinH> danielbln: what's going on?
[2009/12/22 18:28:43] <danielbln> sorry, already resolved :)
[2009/12/22 18:29:53] <bevans5446> Is there any way to get the module name of a module you are in within a define{} ?
[2009/12/22 18:31:06] <bevans5446> The idea is to use the module name in the source => [] array ( source => [ "puppet:///$MODULE_NAME/blah/foo/blam.conf", ...]
[2009/12/22 18:31:26] <ReinH> danielbln: I meant with the dashboard ;) looks like I left a bug in o_O
[2009/12/22 18:32:20] <danielbln> the github archive download I used was apparently bogus, a fresh git checkout worked
[2009/12/22 18:32:40] <danielbln> you didn't provide a 0.2.0 archive though on your download page your linking to in the mailing list post
[2009/12/22 18:32:42] <ReinH> no, there's a bug with resolving hosts with dots in the name
[2009/12/22 18:32:55] <ReinH> oh, I forgot to push the tags
[2009/12/22 18:32:58] <ReinH> silly me
[2009/12/22 18:33:03] <ReinH> fortunately, it's not actually ready yet
[2009/12/22 18:33:04] <ReinH> o_O
[2009/12/22 18:33:18] <danielbln> ActionController::RoutingError in Nodes#index
[2009/12/22 18:33:37] <danielbln> this bug, after importing reports from fqdn hosts?
[2009/12/22 18:33:46] <ReinH> yeah
[2009/12/22 18:33:57] <ReinH> the problem is that we have to use the fqdn for host names, which has a dot in it
[2009/12/22 18:34:02] <ReinH> which breaks with Rails default routing
[2009/12/22 18:34:06] <ReinH> which I just now remembered
[2009/12/22 18:34:07] <ReinH> :(
[2009/12/22 18:34:27] <danielbln> do you have to triage it or can you already pinpoint the problem?
[2009/12/22 18:34:37] @ Robbie_ joined channel #puppet
[2009/12/22 18:34:38] <danielbln> as in "fix line x"
[2009/12/22 18:35:20] <ReinH> the odd thing is that curling for the yaml version works
[2009/12/22 18:35:26] <ReinH> well, the problem might end up being "fix rails routing"
[2009/12/22 18:35:44] <ReinH> I can GET localhost:3000/nodes/my.foobar.node.yaml and it works
[2009/12/22 18:35:46] <ReinH> which it shouldn't
[2009/12/22 18:35:51] <ReinH> actually wait
[2009/12/22 18:35:53] <ReinH> did I try that?
[2009/12/22 18:35:54] <ReinH> :(
[2009/12/22 18:36:06] <danielbln> did the bug never occur before?
[2009/12/22 18:36:17] <ReinH> no, before we we using a urlified version of the name
[2009/12/22 18:36:22] <danielbln> ah, I see
[2009/12/22 18:36:33] <ReinH> but that doesn't work for external node lookup
[2009/12/22 18:36:50] <ReinH> the problem is that Rails uses the . as a separator
[2009/12/22 18:37:11] <ReinH> and there's no way to distinguish between foo.bar.yaml being the YAML format of foo.bar or the foo.bar.yaml hostname
[2009/12/22 18:37:34] <ReinH> at least not without patching Rails afai can tell
[2009/12/22 18:39:36] <danielbln> too bad I have no rails experience, I'd love to help out, it looks promising judging from what I got to work & screenshots
[2009/12/22 18:40:07] <danielbln> plus its nice to show management pretty colors and interfaces when explaining puppets benefits ;)
[2009/12/22 18:40:29] <ReinH> Yeah, I can either get it to work with dots and break .yaml format or I can get .yaml format to work
[2009/12/22 18:40:41] <ReinH> danielbln: agreed on the management likes shiny things
[2009/12/22 18:40:58] <ReinH> although I should be able to specify an 'Accept' header instead of using a .format
[2009/12/22 18:41:10] <ReinH> which is, of course, the proper RESTful way to do things anyway
[2009/12/22 18:41:43] <ReinH> now how do I set an arbitrary header with curl...
[2009/12/22 18:41:44] <danielbln> if you'd ask me, I could pass on the external node functionality, since I'd use the dashboard for monitoring only anyways
[2009/12/22 18:43:23] <ReinH> nod
[2009/12/22 18:43:55] <ReinH> Ok, I can set the external nodes script to use an Accept: text/yaml header
[2009/12/22 18:43:57] <ReinH> phew
[2009/12/22 18:44:01] <ReinH> temporary fix coming up
[2009/12/22 18:44:11] <danielbln> awsome :)
[2009/12/22 18:44:13] <danielbln> +e
[2009/12/22 18:48:51] @ Quit: whaley: Read error: 113 (No route to host)
[2009/12/22 18:54:37] @ Quit: Robbie_: Remote closed the connection
[2009/12/22 18:57:47] @ Quit: pheezy_: Remote closed the connection
[2009/12/22 19:01:27] @ Bevo joined channel #puppet
[2009/12/22 19:01:32] <Bevo> morning all
[2009/12/22 19:02:50] <Bevo> does anyone know the best way to debug the new queuing daemon with stored configs. It seems to be working (as in i see the stomp server doing requests) but last_compile last_* etc is not being updated
[2009/12/22 19:06:36] @ lak joined channel #puppet
[2009/12/22 19:06:36] <ReinH> danielbln: 0.2.1 released (and pushed to the downloads page)
[2009/12/22 19:06:49] <ReinH> Volcane: ^^ for nodes with dots in the fqdn fix
[2009/12/22 19:09:24] @ Quit: Djelibeybi: "Leaving"
[2009/12/22 19:27:07] <danielbln> ReinH: seems to be working :)
[2009/12/22 19:27:14] <danielbln> thumbs,up
[2009/12/22 19:29:51] @ Quit: lak:
[2009/12/22 19:30:07] <Diranged> ok im basically stuck… im not sure how to find out exactly what form i need to provide a password in for setting the password on a mac host...
[2009/12/22 19:30:11] <danielbln> just a quick one, is there a possiblity yet to import existing classes from modules into the dashboard?
[2009/12/22 19:30:29] <Diranged> i know it needs to be encrypted in the way the system does… but unlike linux, i cant just cat /etc/passwd and see the actual hashed passwords
[2009/12/22 19:36:25] @ Quit: rwp: Read error: 110 (Connection timed out)
[2009/12/22 19:37:35] @ Cyis joined channel #puppet
[2009/12/22 19:39:03] @ webx joined channel #puppet
[2009/12/22 19:39:15] <webx> if I want to notify a service that is in an included class, how can I do that ?
[2009/12/22 19:39:39] <whack> notify => Service["servicename"] ?
[2009/12/22 19:39:45] <webx> negative
[2009/12/22 19:39:57] <whack> k, mabye I don't know what you're asking for.
[2009/12/22 19:40:04] <webx> k, sec I'll type it out
[2009/12/22 19:40:08] <whack> because I use that all over, and it works
[2009/12/22 19:40:42] <whack> class foo { include bar; file { "blah": notify => Service["somethingdefinedinbar"]; } }
[2009/12/22 19:40:56] <webx> in "coolstuff" I have a service definition for httpd. simple enough. in class "freenode" I modify some configurations that I want to notify httpd about
[2009/12/22 19:41:04] <webx> hmm
[2009/12/22 19:41:27] <webx> I'll pastie what I see and maybe you can find an obvious error
[2009/12/22 19:41:31] <whack> ok
[2009/12/22 19:41:44] <webx> I'm doing that but it's complaining about not finding the service
[2009/12/22 19:43:47] <webx> or, in the process of getting the docs together, I can see that the required class include was commented out.
[2009/12/22 19:44:03] <webx> I guess that works :(
[2009/12/22 19:44:51] <ReinH> danielbln: phew :)
[2009/12/22 19:46:39] <danielbln> I'd remove db/seeds.rb though
[2009/12/22 19:47:02] <danielbln> the sample report is pretty old, it breaks the report charts
[2009/12/22 19:47:33] <danielbln> since the chart scales to match the old report from november and new reports from now
[2009/12/22 19:47:43] <danielbln> I'll post a feature tomorrow though
[2009/12/22 19:47:50] <danielbln> thanks for late-night fixage
[2009/12/22 19:48:58] @ _3rdman joined channel #puppet
[2009/12/22 19:49:21] <Diranged> hmm honestly i suspect the method that is being used to rewrite the var/db/shadow/hash files is actually breaking the files..
[2009/12/22 19:49:46] <Diranged> in 10.6 the files are 1240bytes no matter what password i put in.. but when i set a new SHA-encrypted password, the file is about 40 bytes
[2009/12/22 19:49:58] @ ezmobius joined channel #puppet
[2009/12/22 19:51:48] <danielbln> ReinH: _very_ lovely run time charts by the way
[2009/12/22 19:53:45] @ Risar` is now known as Risar
[2009/12/22 19:58:37] @ Quit: danielbln: "Leaving."
[2009/12/22 20:07:13] @ Quit: rmiller4pi8: Read error: 110 (Connection timed out)
[2009/12/22 20:07:33] @ Quit: jab_doa: "Verlassend"
[2009/12/22 20:09:09] @ Quit: bug:
[2009/12/22 20:18:59] @ Quit: _3rdman:
[2009/12/22 20:21:20] @ Quit: mikerowehl: Read error: 104 (Connection reset by peer)
[2009/12/22 20:21:40] @ mikerowehl joined channel #puppet
[2009/12/22 20:29:02] @ Quit: jaredrhine: Read error: 113 (No route to host)
[2009/12/22 20:30:10] @ rmiller4pi8 joined channel #puppet
[2009/12/22 20:40:44] @ markl__ joined channel #puppet
[2009/12/22 20:40:47] @ Quit: markl__: Client Quit
[2009/12/22 20:41:50] @ Quit: Diranged: "Leaving."
[2009/12/22 20:41:54] @ Quit: WALoeIII: "Bai."
[2009/12/22 20:48:09] @ Quit: lero: "Leaving..."
[2009/12/22 20:56:07] @ sebas891 joined channel #puppet
[2009/12/22 20:59:00] <sebas891> hi folks, can puppet generate ssh keys in the home directory of a user ?
[2009/12/22 21:00:33] @ Quit: brothers:
[2009/12/22 21:01:13] <sebas891> i found what I'm looking for here! http://reductivelabs.com/trac/puppet/wiki/Recipes/ModuleSSHAuth
[2009/12/22 21:07:02] @ Quit: sebas891: Read error: 113 (No route to host)
[2009/12/22 21:10:44] @ rickbradley\|away is now known as rickbradley
[2009/12/22 21:16:37] @ maxagaz joined channel #puppet
[2009/12/22 21:17:28] @ Quit: toky: Remote closed the connection
[2009/12/22 21:26:38] @ nmi joined channel #puppet
[2009/12/22 21:27:57] @ alexine_dsouza joined channel #puppet
[2009/12/22 21:35:20] @ rickbradley is now known as rickbradley\|away
[2009/12/22 21:35:27] @ Quit: BarnacleBob: "This computer has gone to sleep"
[2009/12/22 21:45:27] @ Quit: elijahwright: Read error: 110 (Connection timed out)
[2009/12/22 21:45:48] @ joe-mac joined channel #puppet
[2009/12/22 21:47:42] @ scylla joined channel #puppet
[2009/12/22 21:52:40] @ Quit: alfism: "http://opensolaris.com/"
[2009/12/22 21:59:50] @ whaley joined channel #puppet
[2009/12/22 22:01:39] @ Quit: pting: "Ex-Chat"
[2009/12/22 22:12:30] @ phantez_ joined channel #puppet
[2009/12/22 22:14:11] @ Quit: phantez: Read error: 104 (Connection reset by peer)
[2009/12/22 22:22:02] @ Ramonster joined channel #puppet
[2009/12/22 22:25:37] @ Quit: ezmobius: Remote closed the connection
[2009/12/22 22:40:40] @ pinoyskull joined channel #puppet
[2009/12/22 22:41:50] @ Quit: Ramonster: Read error: 110 (Connection timed out)
[2009/12/22 22:51:47] @ Quit: ambroff: "Ex-Chat"
[2009/12/22 22:57:06] @ Quit: webx: "My damn controlling terminal disappeared!"
[2009/12/22 22:57:15] @ Quit: scylla: Remote closed the connection
[2009/12/22 23:08:57] @ lero joined channel #puppet
[2009/12/22 23:12:37] @ Quit: pinoyskull: Read error: 60 (Operation timed out)
[2009/12/22 23:14:44] @ rickbradley\|away is now known as rickbradley
[2009/12/22 23:22:02] @ Quit: mikerowehl:
[2009/12/22 23:26:51] @ bug joined channel #puppet
[2009/12/22 23:28:43] @ Quit: xous: Client Quit
[2009/12/22 23:33:07] @ pinoyskull joined channel #puppet
[2009/12/22 23:33:41] @ Quit: joe-mac: "Leaving."
[2009/12/22 23:34:06] @ mqr joined channel #puppet
[2009/12/22 23:39:00] @ Djelibeybi joined channel #puppet
[2009/12/22 23:40:27] @ Quit: bug:
[2009/12/22 23:46:04] @ bug joined channel #puppet
[2009/12/22 23:56:33] @ Quit: mqr:

Generated by irclog2html.py 2.9.2 by Marius Gedminas - find it at mg.pov.lt!