Monday, 2010-02-22

[2010/02/22 00:05:26] @ Log started by gepetto
[2010/02/22 00:05:26] @ Quit: OpenMedia: Quit: Leaving.
[2010/02/22 00:18:11] @ bgupta joined channel #puppet
[2010/02/22 00:20:45] @ Quit: maxagaz: Read error: Operation timed out
[2010/02/22 00:21:32] @ maxagaz joined channel #puppet
[2010/02/22 00:35:14] @ Quit: bobbyz: Ping timeout: 272 seconds
[2010/02/22 00:37:42] @ bobbyz joined channel #puppet
[2010/02/22 00:46:54] @ Quit: p3rror: Read error: Operation timed out
[2010/02/22 00:51:26] @ Quit: Bass10: Ping timeout: 245 seconds
[2010/02/22 00:52:08] @ Quit: jcape: Ping timeout: 268 seconds
[2010/02/22 01:01:12] @ p3rror joined channel #puppet
[2010/02/22 01:11:43] @ scooby2 joined channel #puppet
[2010/02/22 01:15:40] @ \ask joined channel #puppet
[2010/02/22 01:25:29] @ ckauhaus joined channel #puppet
[2010/02/22 01:32:13] @ Quit: mizzy: Ping timeout: 268 seconds
[2010/02/22 01:33:49] @ mizzy joined channel #puppet
[2010/02/22 01:43:39] @ Quit: ckauhaus: Ping timeout: 240 seconds
[2010/02/22 01:48:19] @ doubleukay joined channel #puppet
[2010/02/22 01:49:24] @ Quit: doubleukay_: Ping timeout: 252 seconds
[2010/02/22 02:08:36] @ Quit: blahdeblah: Quit: Leaving.
[2010/02/22 02:10:27] @ rcrowley joined channel #puppet
[2010/02/22 02:16:48] @ lucky__ joined channel #puppet
[2010/02/22 02:16:55] @ lucky__ left channel #puppet ()
[2010/02/22 02:17:55] @ ckauhaus joined channel #puppet
[2010/02/22 02:20:06] @ Quit: rcrowley: Quit: rcrowley
[2010/02/22 02:21:46] @ nareshov joined channel #puppet
[2010/02/22 02:21:47] @ Quit: nareshov: Changing host
[2010/02/22 02:21:47] @ nareshov joined channel #puppet
[2010/02/22 02:30:41] @ Speedy2 joined channel #puppet
[2010/02/22 02:32:14] <Speedy2> www.search2.net
[2010/02/22 02:33:00] @ Quit: Speedy2: Excess Flood
[2010/02/22 02:37:52] @ nico__ is now known as nico
[2010/02/22 02:39:01] @ Quit: ckauhaus: Quit: Leaving.
[2010/02/22 02:42:50] @ Groenleer joined channel #puppet
[2010/02/22 02:53:18] @ Quit: elijahwright: Ping timeout: 272 seconds
[2010/02/22 02:53:28] @ Robbie_ joined channel #puppet
[2010/02/22 02:53:48] @ Quit: giskard: Remote host closed the connection
[2010/02/22 02:54:12] @ gebi joined channel #puppet
[2010/02/22 02:57:51] @ Quit: jason^: Read error: Connection reset by peer
[2010/02/22 02:58:48] @ pacalm joined channel #puppet
[2010/02/22 03:05:59] @ Djelibeybi joined channel #puppet
[2010/02/22 03:06:13] @ TREllis joined channel #puppet
[2010/02/22 03:08:00] @ Quit: kolla: Remote host closed the connection
[2010/02/22 03:08:28] @ elijahwright joined channel #puppet
[2010/02/22 03:14:13] @ ckauhaus joined channel #puppet
[2010/02/22 03:14:58] @ Quit: alban2: Ping timeout: 256 seconds
[2010/02/22 03:15:36] @ Quit: \ask: Remote host closed the connection
[2010/02/22 03:20:00] @ \ask joined channel #puppet
[2010/02/22 03:21:16] @ giskard joined channel #puppet
[2010/02/22 03:25:42] @ francois joined channel #puppet
[2010/02/22 03:28:04] <masterzen> morning
[2010/02/22 03:29:53] @ Quit: maxagaz: Ping timeout: 265 seconds
[2010/02/22 03:30:37] @ maxagaz joined channel #puppet
[2010/02/22 03:32:10] @ Quit: maxagaz: Max SendQ exceeded
[2010/02/22 03:32:57] @ maxagaz joined channel #puppet
[2010/02/22 03:33:22] @ Quit: Robbie_: Remote host closed the connection
[2010/02/22 03:34:10] @ Quit: bug: Ping timeout: 248 seconds
[2010/02/22 03:36:48] @ Quit: Djelibeybi: Quit: Leaving
[2010/02/22 03:37:10] @ Spruit_elf joined channel #puppet
[2010/02/22 03:39:29] @ jason^ joined channel #puppet
[2010/02/22 03:40:08] @ mattwynne joined channel #puppet
[2010/02/22 03:41:48] @ Djelibeybi joined channel #puppet
[2010/02/22 03:44:39] @ Quit: mattwynne: Remote host closed the connection
[2010/02/22 03:45:11] @ mattwynne joined channel #puppet
[2010/02/22 03:56:46] <tim\|imac> hm... are there augeas masters in here? I'm looking for examples to do fairly simple stuff, but cannot easily find anything online...
[2010/02/22 03:57:41] <tim\|imac> in particular, I'm working with the aptpreferences lens and it keeps adding the new pinning at the end of preferences :S
[2010/02/22 04:00:31] <Djelibeybi> tim\|imac: ping lutter -- he wrote Augeas. :)
[2010/02/22 04:01:08] @ danielbln joined channel #puppet
[2010/02/22 04:04:02] <tim\|imac> think I found my solution :)
[2010/02/22 04:04:57] <Djelibeybi> tim\|imac: huzzah. That was quick
[2010/02/22 04:05:04] @ Welsh_Dwarf joined channel #puppet
[2010/02/22 04:05:19] <tim\|imac> meh, might not be it though... I'll try the mailinglist :)
[2010/02/22 04:12:42] @ Quit: cmoates: Ping timeout: 252 seconds
[2010/02/22 04:22:34] @ cmoates joined channel #puppet
[2010/02/22 04:22:47] @ Quit: Djelibeybi: Quit: Leaving
[2010/02/22 04:27:18] <geekatcmu> I was sad about augeas in puppet: no negative matches. e.g. only add this key if it doesn't exist.
[2010/02/22 04:27:48] <geekatcmu> Specifically, I was updating /etc/groups.
[2010/02/22 04:28:43] <tim\|imac> so it might not be my lack of knowledge but a problem with the way it's implemented?
[2010/02/22 04:28:43] @ Quit: afletcher: Read error: Connection reset by peer
[2010/02/22 04:29:09] @ afletcher joined channel #puppet
[2010/02/22 04:29:23] <geekatcmu> Depending on what you want to do, yes.
[2010/02/22 04:30:02] <geekatcmu> I could have used augtool, but I was just as happy to use sed in this case.
[2010/02/22 04:32:06] @ Quit: cmoates: Ping timeout: 272 seconds
[2010/02/22 04:32:39] <tim\|imac> geekatcmu: if you have the time, could you take a look at my message to the ml about it? http://bit.ly/blo1Wd
[2010/02/22 04:34:32] @ Quit: omry_\|work: Ping timeout: 246 seconds
[2010/02/22 04:34:44] <geekatcmu> Yeah, that's definitely something I'd do differently.
[2010/02/22 04:35:33] <geekatcmu> As in, I'd use an "exec" instead of an "augeas".
[2010/02/22 04:35:55] <tim\|imac> I actually thought the augeas was a good resource for these kind of things :/
[2010/02/22 04:36:23] <geekatcmu> My experiences with Augeas have all been of the "great if Augeas has a lens for a file with non-trivial structure, and pointless otherwise".
[2010/02/22 04:36:35] <geekatcmu> That was my original thought, too.
[2010/02/22 04:36:42] <geekatcmu> I have, sadly, learned otherwise.
[2010/02/22 04:36:52] <geekatcmu> That said, I hardly consider myself an expert.
[2010/02/22 04:37:07] <geekatcmu> I'm just a guy trying to get some work done.
[2010/02/22 04:37:17] * tim\|imac has actually been writing lenses as preperation of using augeas from puppet :/
[2010/02/22 04:37:28] @ Robbie_ joined channel #puppet
[2010/02/22 04:37:47] <geekatcmu> I thought about doing that myself (for updating nsswitch.conf).
[2010/02/22 04:38:12] <geekatcmu> In my case, it turns out not to be necessary as a properly configured nsswitch.conf will DTRT regardless of what modules are installed.
[2010/02/22 04:39:25] <tim\|imac> ah
[2010/02/22 04:41:04] @ cmoates joined channel #puppet
[2010/02/22 04:44:10] <kc7zzv> Can't you just add that as a whole managed file in apt/preferences.d/ ?
[2010/02/22 04:44:45] <kc7zzv> Or does that not in your distro?
[2010/02/22 04:45:34] <tim\|imac> I don't think lenny's apt has support for a preferences.d, afaik
[2010/02/22 04:45:40] <tim\|imac> haven't really looked into it, though
[2010/02/22 04:45:43] <tim\|imac> will check
[2010/02/22 04:45:58] <tim\|imac> but the augeas was expected to work too :/
[2010/02/22 04:46:35] * geekatcmu likes managed files.
[2010/02/22 04:47:07] <tim\|imac> no mention on apt_preferences' man page about preferences.d :(
[2010/02/22 04:47:25] <geekatcmu> Now, if only the ssh_authorized_key type didn't insist on date stamping the file, thus causing it to be rewritten every single time puppet runs.
[2010/02/22 04:47:33] <kc7zzv> I only like managed files if the file doesn't exist before I start.
[2010/02/22 04:47:40] @ mfournier joined channel #puppet
[2010/02/22 04:47:56] <kc7zzv> I agree with you on that. ssh_authorized_key is really annoying.
[2010/02/22 04:48:03] <tim\|imac> it's actually a year-old feature request, debian bug #514819
[2010/02/22 04:48:28] <tim\|imac> preferences.d, i mean
[2010/02/22 04:49:02] <tim\|imac> geekatcmu: we don't have that problem... which version of puppet are you using?
[2010/02/22 04:49:09] <Volcane> if your ssh_authorized_key is being redone every run you've done something wrong
[2010/02/22 04:49:11] <geekatcmu> 24.8
[2010/02/22 04:49:12] @ omry_\|work joined channel #puppet
[2010/02/22 04:49:17] <kc7zzv> 24.8
[2010/02/22 04:49:26] <tim\|imac> we didn't have that problem in 24.8 nor in 25.4
[2010/02/22 04:49:33] <kc7zzv> I can't use 0.25.4 right now.
[2010/02/22 04:49:48] <kc7zzv> I heard it's fixed in 25.x
[2010/02/22 04:49:48] <tim\|imac> so I think there's something else wrong there
[2010/02/22 04:50:14] <tim\|imac> we're still using 24.8 at several places, but haven't seen that problem... and we use ssh_authorized_key a lot
[2010/02/22 04:50:30] <kc7zzv> I'm stuck on http://projects.reductivelabs.com/issues/3083
[2010/02/22 04:50:32] <geekatcmu> Yeah, it's 0.24.8.
[2010/02/22 04:51:15] <geekatcmu> And the target authorized_keys file has 3 lines beginning with "# HEADER:", the first of which has a time stamp, thus leading to the problem of the file being updated every time.
[2010/02/22 04:51:45] <kc7zzv> Until that bug is fixed, I can't move to 0.25 and use packages.
[2010/02/22 04:51:48] <geekatcmu> It may make a difference that the file did not exist previous to puppet's stuff.
[2010/02/22 04:52:00] <kc7zzv> Same with me.
[2010/02/22 04:52:03] <geekatcmu> s/stuff/efforts/
[2010/02/22 04:53:14] <Dominic> geekatcmu: hm, we get the same issue with 24.8. I've been meaning to look into it, but it wasn't doing any harm, so haven't worried about it
[2010/02/22 04:53:27] <kc7zzv> I
[2010/02/22 04:53:38] @ Quit: cmoates: Ping timeout: 272 seconds
[2010/02/22 04:54:40] <kc7zzv> I'm planning to switch to managed files for ssh_authorized_key as soon as I get around to it.
[2010/02/22 04:54:45] <kjetilho> geekatcmu: ssh_authorized_keys works for us, too. but it's really picky, and if you add extra spaces to your values, it's happy to add the same key on every run, so you get megabyte large files...
[2010/02/22 04:55:31] <kjetilho> (this slows down the Puppet run, too, it spends quite a bit of time parsing it on startup :)
[2010/02/22 04:57:06] <tim\|imac> kc7zzv: ha! /etc/preferences.d support has been added in apt 0.7.22, lenny uses 0.7.20 :(
[2010/02/22 04:57:07] * Volcane just copies out files, have the bonus of knowing whats int he .ssh files unlike with the type where u just dont know who has done what to the file
[2010/02/22 04:58:34] @ cmoates joined channel #puppet
[2010/02/22 04:58:54] <kjetilho> Volcane: you can always use purge
[2010/02/22 04:59:06] <Volcane> last time i checked it didnt support purge
[2010/02/22 04:59:15] <Volcane> does it in 0.25?
[2010/02/22 04:59:48] <kc7zzv> Good news on one point. Debian testing has apt 0.7.25.3
[2010/02/22 05:00:32] @ Quit: gebi: Ping timeout: 256 seconds
[2010/02/22 05:00:46] <kc7zzv> kjetilho: You willing to take a look at my ssh manifest?
[2010/02/22 05:01:23] @ ccaum joined channel #puppet
[2010/02/22 05:01:36] @ ccaum left channel #puppet ()
[2010/02/22 05:01:38] <kjetilho> kc7zzv: sorry, no
[2010/02/22 05:03:00] <kc7zzv> Alright. I just thought this was a known bug before now.
[2010/02/22 05:06:23] @ francois left channel #puppet ()
[2010/02/22 05:07:24] * Volcane 's 0.24.8 doesnt rebuild the ssh key file everytime due to the timestamp
[2010/02/22 05:07:26] @ Quit: tjoe: Ping timeout: 268 seconds
[2010/02/22 05:07:33] <Volcane> it ignores those headers in determining if it should change
[2010/02/22 05:09:45] @ kolla joined channel #puppet
[2010/02/22 05:10:16] <tim\|imac> kc7zzv: do you have any other file resources pointing towards that file, by any chance?
[2010/02/22 05:10:44] @ Quit: cmoates: Ping timeout: 272 seconds
[2010/02/22 05:12:45] @ Quit: twisla: Quit: OMG, SOMEONE IS WRONG ON TEH INTERNETS !
[2010/02/22 05:15:07] <kc7zzv> Nope.
[2010/02/22 05:15:40] <Volcane> is there a pastie for this?
[2010/02/22 05:15:49] <kc7zzv> My config?
[2010/02/22 05:16:14] @ cmoates joined channel #puppet
[2010/02/22 05:17:01] <Volcane> yeah whatever problem you're having, logs etc?
[2010/02/22 05:17:23] <kc7zzv> Here's the bit from the config.
[2010/02/22 05:17:24] <kc7zzv> http://www.pastebin.com/m5c629290
[2010/02/22 05:18:01] @ londo__ is now known as londo
[2010/02/22 05:18:34] @ Quit: artista_frustrad: Ping timeout: 260 seconds
[2010/02/22 05:19:03] <kc7zzv> Each time I run puppet with verbose it gives me these messages. (As well as a few catalog info messages)
[2010/02/22 05:19:48] <kc7zzv> notice: //Node[servername.domain]/server-loadset/base-loadset/remote-access/Ssh_authorized_key[patrick-cascade-4096-root]/target: target changed '/root/.ssh/authorized_keys' to '/root/.ssh/authorized_keys'
[2010/02/22 05:20:07] <Volcane> add target => "/root/.ssh/authorized_keys"
[2010/02/22 05:20:11] <kc7zzv> It also gives a filebucket message too.
[2010/02/22 05:20:26] <Volcane> its a old bug but thats the work around
[2010/02/22 05:20:39] <kc7zzv> Thanks.
[2010/02/22 05:21:49] <kc7zzv> Any idea if this bug is in 0.25.4?
[2010/02/22 05:22:12] <Volcane> think its fixed
[2010/02/22 05:23:43] @ Quit: xerxas: Remote host closed the connection
[2010/02/22 05:24:04] <kc7zzv> That was really strange.
[2010/02/22 05:24:28] <kc7zzv> I didn't know it was possible to run two copies of puppetd at the same time as the same user.
[2010/02/22 05:25:01] <kc7zzv> Not that I meant to do it.
[2010/02/22 05:25:31] <tim\|imac> i actually do that a lot...
[2010/02/22 05:25:50] <kc7zzv> Accident?
[2010/02/22 05:25:58] <tim\|imac> we have puppetd running in the background and have an alias 'kickpuppet' that starts a once run of puppetd with output to the console
[2010/02/22 05:26:21] @ Quit: Spruit_elf: Quit: Spruit_elf
[2010/02/22 05:26:46] <Volcane> you can run 2, they just cant be running a catalog at the same time, and you cant run 2 in the background
[2010/02/22 05:26:58] <tim\|imac> indeed
[2010/02/22 05:27:34] <kc7zzv> Do you know of a reason someone would want to do that?
[2010/02/22 05:28:32] <Volcane> you can have a daemon running, and still run puppetd --test
[2010/02/22 05:28:45] <Volcane> if the daemon happens to be doing work at the time, the --test will fail
[2010/02/22 05:29:12] <fred> Just to double check - is it fine to use puppetmaster 0.25 with puppet 0.24 ?
[2010/02/22 05:29:33] <kc7zzv> I see.
[2010/02/22 05:31:38] @ Quit: cmoates: Ping timeout: 272 seconds
[2010/02/22 05:34:19] @ cmoates joined channel #puppet
[2010/02/22 05:34:47] @ cedric_b joined channel #puppet
[2010/02/22 05:40:17] <tim\|imac> fred: yes it is
[2010/02/22 05:40:21] <tim\|imac> we do that in a lot of setups
[2010/02/22 05:40:33] <tim\|imac> we start with upgrading the puppetmaster and then slowly upgrade the clients
[2010/02/22 05:50:58] @ Quit: vinci: Ping timeout: 256 seconds
[2010/02/22 05:56:20] @ Quit: cmoates: Ping timeout: 272 seconds
[2010/02/22 05:57:05] @ alban2 joined channel #puppet
[2010/02/22 05:57:12] <zipkid> do you need to config the puppetmaster ssl dir to be different from the client instance on the puppet server?
[2010/02/22 05:58:09] <tim\|imac> no
[2010/02/22 05:58:16] @ qwebirc95923 joined channel #puppet
[2010/02/22 05:58:19] @ cmoates joined channel #puppet
[2010/02/22 05:58:30] @ Quit: qwebirc95923: Client Quit
[2010/02/22 05:58:37] @ ccaum joined channel #puppet
[2010/02/22 06:02:29] @ Quit: alexine_dsouza: Read error: Connection reset by peer
[2010/02/22 06:03:52] <geekatcmu> Volcane: thanks, that fixed it. Too bad this work-around isn't documented anywhere.
[2010/02/22 06:04:26] <Volcane> its no doubt mentioned on the tickets about it :)
[2010/02/22 06:04:59] <geekatcmu> yyyeeeeeeah
[2010/02/22 06:07:06] @ Quit: cmoates: Ping timeout: 272 seconds
[2010/02/22 06:07:39] @ Quit: londo: Read error: Operation timed out
[2010/02/22 06:07:42] @ ohadlevy joined channel #puppet
[2010/02/22 06:07:45] @ vinci joined channel #puppet
[2010/02/22 06:12:58] @ londo joined channel #puppet
[2010/02/22 06:13:48] @ ccaum left channel #puppet ()
[2010/02/22 06:14:46] @ Quit: ohadlevy: Ping timeout: 256 seconds
[2010/02/22 06:15:54] @ cmoates joined channel #puppet
[2010/02/22 06:16:39] @ omry__\|work joined channel #puppet
[2010/02/22 06:17:31] @ Quit: omry_\|work: Read error: Operation timed out
[2010/02/22 06:20:42] @ omry_\|work joined channel #puppet
[2010/02/22 06:22:04] <astinus> am seeing unusual problems with Puppet where it gobbles through memory processing a moderately small manifest. We do manage a lot of file and directory permissions, plus install/maintain some 200+ packages (basically lots of Perl libraries)
[2010/02/22 06:22:29] <astinus> the graph it generates for dependency resolution is pretty huge at this point. memory usage is near 160MB when running through the manifest on a Puppet client
[2010/02/22 06:22:42] @ Quit: omry__\|work: Ping timeout: 248 seconds
[2010/02/22 06:22:50] <astinus> has anyone seen this one before? anyone out there with a decently large number of nodes, and a big manifest?
[2010/02/22 06:23:34] @ Quit: cmoates: Ping timeout: 272 seconds
[2010/02/22 06:24:50] @ Quit: TREllis: Ping timeout: 272 seconds
[2010/02/22 06:33:04] @ cmoates joined channel #puppet
[2010/02/22 06:47:46] @ gebi joined channel #puppet
[2010/02/22 06:54:06] <zipkid> http://geekandpoke.typepad.com/.a/6a00d8341d3df553ef012877834cb2970c-pi
[2010/02/22 06:54:08] <zipkid> ooops
[2010/02/22 06:54:15] <zipkid> wrong channel...
[2010/02/22 06:55:30] @ ninjazjb joined channel #puppet
[2010/02/22 06:55:47] @ Quit: ninjazjb: Client Quit
[2010/02/22 06:56:20] @ ninjazjb joined channel #puppet
[2010/02/22 06:57:15] <tim\|imac> astinus: do you see that on the server or on the client?
[2010/02/22 06:57:26] @ Quit: londo: Read error: Operation timed out
[2010/02/22 07:02:22] @ inveratulo left channel #puppet ()
[2010/02/22 07:03:46] @ Quit: mfournier: Ping timeout: 248 seconds
[2010/02/22 07:04:41] @ phips joined channel #puppet
[2010/02/22 07:05:22] @ Quit: cmoates: Ping timeout: 272 seconds
[2010/02/22 07:07:32] @ mvn071 joined channel #puppet
[2010/02/22 07:07:49] @ cmoates joined channel #puppet
[2010/02/22 07:10:21] @ TREllis joined channel #puppet
[2010/02/22 07:16:11] @ londo joined channel #puppet
[2010/02/22 07:30:10] @ Quit: ckauhaus: Read error: Operation timed out
[2010/02/22 07:32:59] @ Quit: vzctl_: Ping timeout: 268 seconds
[2010/02/22 07:34:04] @ vzctl_ joined channel #puppet
[2010/02/22 07:34:58] @ ckauhaus joined channel #puppet
[2010/02/22 07:37:40] @ sparagos_away is now known as sparagos
[2010/02/22 07:41:17] @ Quit: ckauhaus: Read error: Operation timed out
[2010/02/22 07:41:34] @ ccaum joined channel #puppet
[2010/02/22 07:41:49] @ ccaum left channel #puppet ()
[2010/02/22 07:46:56] @ ckauhaus joined channel #puppet
[2010/02/22 07:51:19] @ Quit: ckauhaus: Client Quit
[2010/02/22 07:51:34] @ ckauhaus joined channel #puppet
[2010/02/22 07:58:34] @ Quit: cmoates: Ping timeout: 272 seconds
[2010/02/22 08:03:56] @ Robbie__ joined channel #puppet
[2010/02/22 08:04:21] @ sdog joined channel #puppet
[2010/02/22 08:06:58] @ Quit: Robbie_: Ping timeout: 256 seconds
[2010/02/22 08:07:28] @ Quit: verwilst_: Quit: Ex-Chat
[2010/02/22 08:07:32] @ verwilst_ joined channel #puppet
[2010/02/22 08:07:49] @ cmoates joined channel #puppet
[2010/02/22 08:08:04] @ verwilst_ is now known as verwilst
[2010/02/22 08:11:03] @ bug joined channel #puppet
[2010/02/22 08:12:40] @ Quit: bug: Client Quit
[2010/02/22 08:18:12] <sts> hello folks. I'm trying to use the puppet-shorewall module (which uses modules-common from davidS). I see the files to be generated in /var/lib/puppet/modules/shorewall on the client, but it doesn't update /etc/shorewall. Any ideas why this could be?
[2010/02/22 08:20:08] @ Quit: Robbie__: Remote host closed the connection
[2010/02/22 08:20:30] @ Robbie_ joined channel #puppet
[2010/02/22 08:24:38] @ nico is now known as darthmiko
[2010/02/22 08:28:43] @ darthmiko is now known as nico
[2010/02/22 08:33:26] @ Quit: londo: Read error: Connection reset by peer
[2010/02/22 08:33:37] @ londo joined channel #puppet
[2010/02/22 08:34:20] @ Quit: afletcher: Quit: afletcher
[2010/02/22 08:34:49] @ ccaum joined channel #puppet
[2010/02/22 08:34:59] <duritong> sts: it doesn't update the files in /etc/shorewall
[2010/02/22 08:35:13] @ ccaum left channel #puppet ()
[2010/02/22 08:35:19] <duritong> it configures shroewall to use the files in /var/lib/puppet/modules/shorewall
[2010/02/22 08:35:24] <duritong> shorewall
[2010/02/22 08:36:00] @ jcape joined channel #puppet
[2010/02/22 08:36:30] @ ccaum_ joined channel #puppet
[2010/02/22 08:37:16] @ eventi joined channel #puppet
[2010/02/22 08:37:16] @ sdog left channel #puppet ()
[2010/02/22 08:37:21] @ ccaum_ left channel #puppet ()
[2010/02/22 08:41:08] @ Quit: mattwynne: Quit: Leaving...
[2010/02/22 08:45:18] @ Quit: swygue: Quit: Ex-Chat
[2010/02/22 08:46:39] @ cliff-hm joined channel #puppet
[2010/02/22 08:48:36] @ ShiNboi joined channel #puppet
[2010/02/22 08:49:22] @ Quit: zoeloelip: Read error: Operation timed out
[2010/02/22 08:53:57] @ ccaum joined channel #puppet
[2010/02/22 08:54:05] @ ccaum left channel #puppet ()
[2010/02/22 08:54:51] @ Quit: jcape: Ping timeout: 252 seconds
[2010/02/22 08:58:25] @ xerxas joined channel #puppet
[2010/02/22 09:00:18] @ Quit: ckauhaus: Quit: Leaving.
[2010/02/22 09:01:34] @ Ng joined channel #puppet
[2010/02/22 09:02:08] @ jcape joined channel #puppet
[2010/02/22 09:02:46] @ Quit: charlieS: Read error: Connection reset by peer
[2010/02/22 09:03:25] @ Quit: odyi: Ping timeout: 264 seconds
[2010/02/22 09:03:33] @ Quit: kennobaka: Read error: Connection reset by peer
[2010/02/22 09:05:22] @ Quit: anakha: Ping timeout: 260 seconds
[2010/02/22 09:05:49] @ Bass10 joined channel #puppet
[2010/02/22 09:05:57] @ anakha joined channel #puppet
[2010/02/22 09:07:53] @ Quit: rsquared: Quit: Leaving
[2010/02/22 09:08:30] @ charlieS_ joined channel #puppet
[2010/02/22 09:08:36] @ rsquared joined channel #puppet
[2010/02/22 09:09:16] @ kennobaka joined channel #puppet
[2010/02/22 09:11:17] @ shug joined channel #puppet
[2010/02/22 09:11:45] @ Osax joined channel #puppet
[2010/02/22 09:13:35] <Osax> How do I change an ip address using puppet?
[2010/02/22 09:14:34] <Osax> Anyone here?
[2010/02/22 09:15:57] @ shenson joined channel #puppet
[2010/02/22 09:16:10] <Volcane> it doesnt have native interface support, u need to edit/replace the needed files
[2010/02/22 09:16:11] @ Quit: mboyd: Read error: Connection reset by peer
[2010/02/22 09:16:19] @ mboyd joined channel #puppet
[2010/02/22 09:16:28] <Osax> How do I change an ip address using puppet?
[2010/02/22 09:17:11] <Volcane> osax: it doesnt have native interface support, u need to edit/replace the needed files
[2010/02/22 09:17:27] <Osax> ah thank you.
[2010/02/22 09:17:36] @ afletcher_ joined channel #puppet
[2010/02/22 09:17:50] <Osax> I guess I can only edit with a template?
[2010/02/22 09:18:14] <Osax> because there is no native text edit support
[2010/02/22 09:18:17] <Volcane> augeas might help
[2010/02/22 09:18:57] <Osax> it looks good, thanx
[2010/02/22 09:21:19] @ bug joined channel #puppet
[2010/02/22 09:26:14] <tim\|imac> does anyone by any chance have a puppet function that converts "true","false","0","1" to either "0" or "1"?
[2010/02/22 09:26:31] @ Quit: eventi: Read error: Connection reset by peer
[2010/02/22 09:26:41] <z00dax> I have a slightly odd situation, in that I want to be able to have rpm like conflicts: in manifests
[2010/02/22 09:26:58] @ eventi joined channel #puppet
[2010/02/22 09:27:13] <z00dax> eg. not being able to include => nginx; if already included => nginx-passenger;
[2010/02/22 09:27:46] <z00dax> one way of doing this seems to be to have a single common file, and have all the manifest's provide that ( well, all of them that need to conflict ) - and have it fail that way
[2010/02/22 09:27:54] <tim\|imac> z00dax: I'd do it like if defined(Class["nginx-passenger"]) { fail("Complaint.") }
[2010/02/22 09:28:10] @ eventi left channel #puppet ()
[2010/02/22 09:28:14] <z00dax> another seems to be to carry a variable throught he system, and have each manifest test if its already included. and fail that way
[2010/02/22 09:28:48] @ afletcher joined channel #puppet
[2010/02/22 09:28:53] <Volcane> z00dax: they're working on that afaik
[2010/02/22 09:28:54] <z00dax> tim\|imac: however, can you be somewhat sure that this will get evaluated after the nginx-passenger snippet ?
[2010/02/22 09:29:34] <tim\|imac> z00dax: I think so, but you might be correct
[2010/02/22 09:29:45] @ unxfrek joined channel #puppet
[2010/02/22 09:30:25] <z00dax> tim\|imac: because otherwise, you need to have the nginx-passenger snippet also check for nginx; and that means everything needs to cover every angle.
[2010/02/22 09:31:08] <z00dax> Volcane: humm ok :) I guess its a case of providing a common file for now then, and have it fail that way :/ not nice though; but atleast it breaks before any system change is done
[2010/02/22 09:31:40] * Volcane 's liking the idea of per-box masterless operation more and more
[2010/02/22 09:32:04] <Volcane> you can provide a map of versions/modules/etc per box and some script on the box can git checkout just what it needs and run
[2010/02/22 09:32:13] @ Quit: afletcher_: Ping timeout: 264 seconds
[2010/02/22 09:32:23] <Volcane> perhaps with some secure extlookup style facility to fetch config variables set centrally
[2010/02/22 09:35:12] @ Quit: Osax: Quit: Page closed
[2010/02/22 09:37:02] <z00dax> Volcane: on my own personal setup, I've used a masterless puppet for ~ 2 years now.
[2010/02/22 09:37:31] <z00dax> but as you pointed out, one needs to be on a faily trusted setup end to end; since the git pull will get everything
[2010/02/22 09:37:37] <Volcane> yeah
[2010/02/22 09:37:50] <Volcane> lots of ways around it though
[2010/02/22 09:38:04] <z00dax> also, the puppet:// url's for file source=> fail, need to file:/// url those, which then means going to a partial master and partial masterless needs tweaking
[2010/02/22 09:38:05] <Volcane> file sources being the biggest problem right
[2010/02/22 09:38:19] <Volcane> z00dax: puppet:/// works
[2010/02/22 09:38:20] <z00dax> I ended up using a function that did the mapping based on hostname
[2010/02/22 09:38:43] @ swygue joined channel #puppet
[2010/02/22 09:38:54] <z00dax> really ? is that something new though ? it used to fail with a hostname issue for me.
[2010/02/22 09:39:06] <z00dax> or that might be since i still had a puppet server setup in puppet.conf
[2010/02/22 09:39:23] <Volcane> puppet://puppet/ fails puppet:/// turns into file ones when run locally
[2010/02/22 09:40:24] <z00dax> cool, i should revisit that
[2010/02/22 09:41:21] <Volcane> anyway. so i imagine each box/role of box have a seperate git repo for its special case files
[2010/02/22 09:41:31] <Volcane> with default files living in the module
[2010/02/22 09:41:55] <Volcane> so when you check out the repos to construct the local puppet repo you just get all the common modules, the fqdn file and the role files if any is specified in a local fact
[2010/02/22 09:42:14] <z00dax> yeah
[2010/02/22 09:42:21] <Volcane> need some form of auth on the git repo though
[2010/02/22 09:43:01] <z00dax> Ramerith is doing something similar for his setup - specially since they have a bunch of diff projects hosting there with them
[2010/02/22 09:43:26] <z00dax> he is either doing it already or thinking of doing it
[2010/02/22 09:44:06] <Volcane> Ramerith?
[2010/02/22 09:44:39] <z00dax> Ramereth -> Lance Alberton @osuosl :)
[2010/02/22 09:45:00] <tim\|imac> if I create a custom function, does the puppetmaster need to include the class that contains it? I see my function getting copied to the client, but the server gives back it doesn't know it...
[2010/02/22 09:45:20] @ eventi_ joined channel #puppet
[2010/02/22 09:45:24] <z00dax> he's looking to get a puppet setup in place that they can use as a shared resource at osuosl - but each project they host for gets their own branch/ git-external-module with a puppet/modules/* being shared
[2010/02/22 09:45:34] <z00dax> Volcane: ^
[2010/02/22 09:46:01] <Volcane> yeah thinking about something similar atm, its hard
[2010/02/22 09:46:21] <Volcane> well its not impossible, dealing with data is hard
[2010/02/22 09:46:32] <astinus> if you're just distributing files then it isn't too tricky, but if you want modules 'n stuff to be run .... harder :)
[2010/02/22 09:47:08] @ Quit: p3rror: Read error: Operation timed out
[2010/02/22 09:47:28] @ ckauhaus joined channel #puppet
[2010/02/22 09:47:50] <Volcane> yeah, u need very configurable modules using data like extdata for the module behaviour
[2010/02/22 09:48:01] <Volcane> and files should support fetching from a per box/client/role space
[2010/02/22 09:49:39] @ eventi_ left channel #puppet ()
[2010/02/22 09:51:27] <z00dax> Volcane: i feel it might boil down to setting a process in place and discipline; to maintain a setup of that nature. with only modules in the core repo and all manifests from external modules
[2010/02/22 09:51:51] @ fluxdude joined channel #puppet
[2010/02/22 09:51:55] @ Quit: fluxdude: Remote host closed the connection
[2010/02/22 09:52:01] @ fluxdude joined channel #puppet
[2010/02/22 09:52:17] <Volcane> lots of dicipline and process for sure. but also extremely high quality modules that have a ton of knobs to tweak
[2010/02/22 09:52:21] <Volcane> thats where the problem lies :)
[2010/02/22 09:53:46] <tim\|imac> z00dax: another way is probably to make one nginx module that does package { "nginx":; } and inherit it everywhere else
[2010/02/22 09:54:07] <tim\|imac> you'll at least get an error :)
[2010/02/22 09:54:26] <tim\|imac> you can then make the error nicer by wrapping the package{} in an if defined
[2010/02/22 09:54:52] <Volcane> the order dependence in if defined() etc will go away soon apparently
[2010/02/22 09:55:29] <tim\|imac> yeah, but it doesn't matter much if you make sure you inherit that nginx class in all classes that should conflict with each other
[2010/02/22 09:56:03] <Volcane> inheritance is too hard to read and follow, if defined should just work as advertised :)
[2010/02/22 09:58:44] <z00dax> and the order of the manifest application to a machine should not change the result of an ifdefined FOO
[2010/02/22 10:00:15] @ eshamow joined channel #puppet
[2010/02/22 10:02:11] <tim\|imac> in a ruby case statement... how can I match a true? 'when true' doesn't seem to work...
[2010/02/22 10:02:15] <Volcane> z00dax: yeah thats being fixed thankfully
[2010/02/22 10:02:28] @ p3rror joined channel #puppet
[2010/02/22 10:05:11] @ Quit: jcape: Ping timeout: 245 seconds
[2010/02/22 10:07:13] @ joe-mac joined channel #puppet
[2010/02/22 10:12:15] @ fzzzt joined channel #puppet
[2010/02/22 10:12:33] <fzzzt> morning. are (or can i make) regexes case-insensitive? does /i work?
[2010/02/22 10:12:58] <sts> duritong: isn't concatenated mean to just create the files and put it to a specified location?
[2010/02/22 10:13:42] <joe-mac> concatenation is grouping together several distinct objects into one contiguous object (of that type)
[2010/02/22 10:14:01] <joe-mac> so, it'd like making a bunch of files one contiguous file, same with strings
[2010/02/22 10:14:06] @ Quit: anakha: Changing host
[2010/02/22 10:14:06] @ anakha joined channel #puppet
[2010/02/22 10:14:15] <joe-mac> i assume you're talking about someone's file concatenation module
[2010/02/22 10:14:24] <sts> joe-mac: yes :)
[2010/02/22 10:15:00] <sts> yeah, but i thought i will end up with a concatenated file in a common location, and not having it linked to /var/lib/puppet/modules/...
[2010/02/22 10:15:01] <joe-mac> yea, so, imagnie uiptables rules. you want a beginning that every machine gets then the second part that is machuine specific, you serve out both then concatenate them together into one set of rules
[2010/02/22 10:15:08] <duritong> sts: yes but it concatenates the files in /var/lib/puppet/modules/
[2010/02/22 10:15:14] * Volcane just made a sexy new concatenator http://srt.ly/e
[2010/02/22 10:15:35] <duritong> sts: but the shorewall module should bring a correct config which points to /var/lib/puppet/modules/...
[2010/02/22 10:15:56] <fzzzt> is it "pre" __--==<{[(*)]}>==--__ "post"?
[2010/02/22 10:16:09] <fzzzt> :P
[2010/02/22 10:17:01] <fzzzt> oh that kind
[2010/02/22 10:17:03] <fzzzt> dang!
[2010/02/22 10:17:09] @ Quit: ckauhaus: Ping timeout: 276 seconds
[2010/02/22 10:17:24] <Omahn> Is it possible for me to remove the hosts entry (from /etc/hosts) for a given IP, such as 127.0.1.1 with Puppet and Augeas? I can do it manually using augtool but I'm failing to work out how to convert that to fit with Puppet.
[2010/02/22 10:17:35] <fzzzt> nice
[2010/02/22 10:17:52] <sts> duritong: yes, I know. I just wanted to know wether its possible to put the files generated into a common location instead of /var/lib/puppet/modules/...
[2010/02/22 10:18:09] <duritong> sts: you can, have a look at the manifests
[2010/02/22 10:18:22] @ mezgani joined channel #puppet
[2010/02/22 10:18:38] <duritong> you can pass another path than the one in modules to the concatenated_file thing
[2010/02/22 10:19:10] <duritong> Volcane: I couldn't yet look at your code, but how does it differ?
[2010/02/22 10:19:29] <Volcane> differ?
[2010/02/22 10:19:31] <Volcane> from what?
[2010/02/22 10:19:56] <duritong> from davids solution
[2010/02/22 10:20:04] <Volcane> my old concat you had to tell it where to put the .d files and each time for a snippet you have to tell it where to find the .d dir
[2010/02/22 10:20:10] <Volcane> now its all automagic
[2010/02/22 10:20:14] <tim\|imac> http://pastie.org/836869 <-- can someone explain to me lines 7 and 11 from the output?? :S
[2010/02/22 10:20:28] <Volcane> i guess its roughly equiv to davids but i dont really trust those massive one-liners he use
[2010/02/22 10:20:41] <Volcane> i have a helper shell script with tons of error checking and sanity checks built in that does the heavy lifting
[2010/02/22 10:20:47] <duritong> ok
[2010/02/22 10:21:09] <Volcane> not sure if he use the new regex stuff in 0.24.late yet to auto build the .d filenames
[2010/02/22 10:21:15] @ ccaum joined channel #puppet
[2010/02/22 10:21:18] <duritong> so I think I'll keep a sticky bit on your new solution and will have a look at it
[2010/02/22 10:21:20] @ ccaum left channel #puppet ()
[2010/02/22 10:21:30] <duritong> Volcane: who cares about pre 0.25? :P
[2010/02/22 10:21:37] <Volcane> duritong: yeah :P
[2010/02/22 10:22:13] <Volcane> this module also use the improve means of purgining unmanaged files in 0.25
[2010/02/22 10:22:40] <Volcane> which works awesomely cos the other solution causes extra unintedned restarts
[2010/02/22 10:22:42] <duritong> :)
[2010/02/22 10:23:08] <joe-mac> tim\|imac: i've never used notify like that- i've used the notify function but i never even knew there was a resource version
[2010/02/22 10:23:30] <tim\|imac> joe-mac: it's an easy way to output stuff on the client instead of the puppetmaster :)
[2010/02/22 10:23:51] <Volcane> joe-mac: its in my debugging blog post that you're so fond of :)
[2010/02/22 10:24:26] <tim\|imac> ah hm... a puppetmaster restart fixed my problem I pasted above :/
[2010/02/22 10:24:28] <joe-mac> must have missed that
[2010/02/22 10:24:59] <joe-mac> tim\|imac: i've been having an issue with .25.4 master to .25.4 clients that just cays ERROR 400, then something ambiguous
[2010/02/22 10:25:06] <joe-mac> then i restart the master processes and it works
[2010/02/22 10:25:21] <joe-mac> o it says invalid method fact_merge for Nil:NilClass
[2010/02/22 10:25:30] <joe-mac> i think it has to do with stored configs...
[2010/02/22 10:25:34] <tim\|imac> joe-mac: that's strange... did you file a bug for that?
[2010/02/22 10:25:57] <tim\|imac> i do notice sometimes that the 0.25.4 puppetmaster looses it's connections to mysql
[2010/02/22 10:26:07] <tim\|imac> and it doesn't reuse mysql connections, for that matter
[2010/02/22 10:26:25] <tim\|imac> still waiting on Nigel to test that
[2010/02/22 10:26:34] <joe-mac> tim\|imac: not yet because i wanted to make sure i wasn't the one at fault. i don't like to run and file bugs immediately especially because i workd at a large open source company before the would see the kind of bugs dev havet o triage and sorta felt their pain
[2010/02/22 10:26:49] <joe-mac> tim\|imac: i recall if you're using the wriong mysql ruby bindings that can happen
[2010/02/22 10:27:35] <tim\|imac> joe-mac: yeah, but I have the correct mysql bindings installed
[2010/02/22 10:31:26] <z00dax> duritong: all 3 puppet setups I look at, are pre 0.25
[2010/02/22 10:31:48] @ nigelk joined channel #puppet
[2010/02/22 10:34:11] <duritong> z00dax: upgrade! ;) nah, I'm simply just happy to be on 0.25
[2010/02/22 10:36:42] <z00dax> duritong: i intend to upgrade; just a case of working out when and how that is going to work
[2010/02/22 10:37:00] * Volcane has one 0.24 left :(
[2010/02/22 10:37:06] @ Quit: mezgani: Ping timeout: 248 seconds
[2010/02/22 10:37:53] <duritong> z00dax: yeah finding time is a known problem... :/
[2010/02/22 10:38:01] @ lilmatt joined channel #puppet
[2010/02/22 10:39:27] @ zz_RedPepper is now known as RedPepper
[2010/02/22 10:45:09] @ mezgani joined channel #puppet
[2010/02/22 10:45:55] @ ckauhaus joined channel #puppet
[2010/02/22 10:46:02] <fzzzt> hrm.. not sure why this is happening: http://pastie.org/836916
[2010/02/22 10:46:39] @ Quit: ckauhaus: Client Quit
[2010/02/22 10:47:09] <Volcane> fzzzt: fail "Invalid record data source defined: '${record_data_source}'"
[2010/02/22 10:47:21] <fzzzt> hey good idea
[2010/02/22 10:47:25] <fzzzt> hits forehead
[2010/02/22 10:47:34] <Volcane> heh
[2010/02/22 10:47:56] * masterzen was about to propose the same change
[2010/02/22 10:48:13] <masterzen> fzzzt: BTW, do you really need regex?
[2010/02/22 10:48:47] <fzzzt> Probably not; I'm using it until I know all the options the dev is going to want
[2010/02/22 10:48:50] @ Quit: vzctl_: Ping timeout: 248 seconds
[2010/02/22 10:50:11] <fzzzt> Neat. Could not retrieve catalog from remote server: Error 400 on SERVER: Invalid record data source defined: fileSystem. at /etc/puppet/testing/modules/dds/manifests/init.pp:15 on node nab
[2010/02/22 10:50:41] <fzzzt> (the period is in the fail string)
[2010/02/22 10:50:45] <fzzzt> hmm
[2010/02/22 10:52:17] <fzzzt> yay meeting time
[2010/02/22 10:54:51] <fzzzt> woot postponed
[2010/02/22 10:55:36] @ Quit: afletcher: Quit: afletcher
[2010/02/22 10:55:46] @ lak joined channel #puppet
[2010/02/22 10:56:14] <fzzzt> It works as a string not a regex
[2010/02/22 10:57:00] @ vzctl_ joined channel #puppet
[2010/02/22 10:57:37] @ ccaum joined channel #puppet
[2010/02/22 10:57:45] @ rcrowley joined channel #puppet
[2010/02/22 10:57:49] @ ccaum left channel #puppet ()
[2010/02/22 10:59:32] <masterzen> fzzzt: by default case "downcases" all variables for matching. But regex are case sensitive. So it compares filesystem to fileSystem and you get no match.
[2010/02/22 10:59:49] * masterzen wonders if regex match shouldn't be case-insensitive by default
[2010/02/22 11:00:21] <masterzen> fzzzt: you can make it work by adding --casesensitive to puppetd or write your regex as /filesystem/.
[2010/02/22 11:01:37] @ Quit: cedric_b: Quit: Ex-Chat
[2010/02/22 11:01:37] @ jab_doa joined channel #puppet
[2010/02/22 11:02:51] @ kaptk2 joined channel #puppet
[2010/02/22 11:03:07] <kjetilho> masterzen: I don't think there is a modifier for making a regexp case-sensitive
[2010/02/22 11:03:27] <kjetilho> the opposite of /i I mean
[2010/02/22 11:03:31] <masterzen> kjetilho: you mean in puppet?
[2010/02/22 11:03:44] <kjetilho> in any RE application
[2010/02/22 11:04:06] <masterzen> correct
[2010/02/22 11:04:09] <kjetilho> I think it's better that Puppet regexps behave like everywhere else
[2010/02/22 11:04:19] <kjetilho> which means, remember to use /i if that's what you want
[2010/02/22 11:04:36] <masterzen> except it triggers issues like fzzzt one
[2010/02/22 11:04:54] <kjetilho> yeah, but lots of stuff can trip people up
[2010/02/22 11:04:59] <masterzen> where case downcase the variables value before handing it to the regex match (which doesn't match anymore)
[2010/02/22 11:05:50] <masterzen> case are case-insensitive by default with string. I think it should still be the case with regex (too many case in this sentence :-))
[2010/02/22 11:05:56] @ benkevan joined channel #puppet
[2010/02/22 11:05:56] <kjetilho> I'm not a fan of automatic downcasing, but I don't have a good solution to the problem
[2010/02/22 11:06:06] @ hacim joined channel #puppet
[2010/02/22 11:06:06] <masterzen> I don't either :-'
[2010/02/22 11:06:09] <kjetilho> since you can have a mix of fixed strings and regexps in that case
[2010/02/22 11:06:10] <masterzen> :-(
[2010/02/22 11:06:20] @ d3vilbox joined channel #puppet
[2010/02/22 11:06:47] <kjetilho> I guess ideally it would do case-insensitive matching for fixed strings only. you just need to preserve the original value to the selector
[2010/02/22 11:07:04] @ Quit: mvn071: Quit: Leaving
[2010/02/22 11:07:29] <masterzen> we can't directly do this because the case statement doesn't know it deals with regex. It just handover comparison to whatever is the next case option.
[2010/02/22 11:08:11] <masterzen> so we need to push the variable downcasing somewhat later to where we're doing the actual comparison...
[2010/02/22 11:08:34] <masterzen> which I don't find satisfying. I'd prefer case regex to be case-insensitive.
[2010/02/22 11:09:01] * masterzen is going to file a bug
[2010/02/22 11:10:20] @ Quit: pacalm: Quit: pacalm
[2010/02/22 11:11:54] @ Quit: kaptk2: Quit: Leaving.
[2010/02/22 11:12:05] @ Quit: murkk: Remote host closed the connection
[2010/02/22 11:12:21] @ murkk joined channel #puppet
[2010/02/22 11:13:18] <masterzen> I filed #3229 - everyone interested make sure to comment there.
[2010/02/22 11:13:19] <gepetto> masterzen: #3229 is http://projects.reductivelabs.com/issues/show/3229 "Puppet - Bug #3229: Case regex are not case-insensitive - ReductiveLabs.com"
[2010/02/22 11:16:02] @ ccaum joined channel #puppet
[2010/02/22 11:16:15] @ Quit: ccaum: Client Quit
[2010/02/22 11:19:12] @ plathrop-away is now known as plathrop
[2010/02/22 11:20:36] @ Quit: kc7zzv: Quit: kc7zzv
[2010/02/22 11:21:19] @ inveratulo joined channel #puppet
[2010/02/22 11:21:26] @ Quit: lak: Quit: lak
[2010/02/22 11:21:42] @ allsystemsarego joined channel #puppet
[2010/02/22 11:21:46] @ Quit: vzctl_: Ping timeout: 268 seconds
[2010/02/22 11:21:55] @ eidolon joined channel #puppet
[2010/02/22 11:22:12] @ vzctl_ joined channel #puppet
[2010/02/22 11:25:56] <kjetilho> masterzen: I added my view :-)
[2010/02/22 11:26:14] <masterzen> kjetilho: thanks, let's lak or someone else decide :-)
[2010/02/22 11:27:20] <eidolon> nnngggg. okay, i need to find luke and stab him a few times.
[2010/02/22 11:27:31] <eidolon> puppet --help
[2010/02/22 11:27:31] <eidolon> No help available unless you have RDoc::usage installed
[2010/02/22 11:27:37] <eidolon> for a USAGE MESSAGE?
[2010/02/22 11:27:39] @ danbeck joined channel #puppet
[2010/02/22 11:28:12] <masterzen> eidolon: the help is provided through rdoc
[2010/02/22 11:28:13] <SyTonnerre> eidolon, that's what rdoc::usage is for
[2010/02/22 11:28:20] <kjetilho> and if it's installed, it's pretty unreadable anyway :)
[2010/02/22 11:28:31] <eidolon> yes, but requiring an entire package for a simple usage message is nutty.
[2010/02/22 11:28:55] <masterzen> on debian rdoc is part of the ruby package...
[2010/02/22 11:29:08] <kjetilho> no, the nutty thing is that rdoc::usage isn't required by the Puppet package
[2010/02/22 11:29:59] <kjetilho> ruby-rdoc on Fedora
[2010/02/22 11:30:13] <eidolon> kjetilho: yeah, that too. i'm just yum install rdocing right now
[2010/02/22 11:30:24] <eidolon> but grr. holy unnecessary dependencies, batman.
[2010/02/22 11:30:26] @ brothers joined channel #puppet
[2010/02/22 11:30:48] <kjetilho> eidolon: would you complain about a Perl package requiring Getopt::Long ?
[2010/02/22 11:31:12] <eidolon> yes. i hat eperl more than ruby :)
[2010/02/22 11:31:42] <masterzen> eidolon: don't complain, file a bug :-)
[2010/02/22 11:31:59] <eidolon> bah. i like bitching. makes me feel all net.studly n stuff.
[2010/02/22 11:32:13] * eidolon considers more coffee.
[2010/02/22 11:32:16] <masterzen> eidolon: better than filing a ticket: post a patch :-)
[2010/02/22 11:32:35] <eidolon> dude, i'm a java programmer. you don't want me digging into ruby code :)
[2010/02/22 11:33:50] <masterzen> everybody has to start somewhere: I also am a java dev, but I'm doing some ruby stuff for puppet too. I just tend to finish each line with some ';' :-)
[2010/02/22 11:33:53] <plathrop> eidolon: au contraire. We want everyone digging into ruby code. The more the merrier :-P
[2010/02/22 11:34:12] <masterzen> plathrop: so true.
[2010/02/22 11:37:00] @ jgosney joined channel #puppet
[2010/02/22 11:38:19] * eidolon is int he process of learning enough puppet to present on wednesday as a replacement for our home-grown build / deploy / version / maintain system.
[2010/02/22 11:38:24] <eidolon> sfsg :)
[2010/02/22 11:38:50] <jgosney> puppet newbe question please...
[2010/02/22 11:38:56] <eidolon> ~ask
[2010/02/22 11:39:00] <eidolon> mm, no bot.
[2010/02/22 11:39:06] <jgosney> Just began evaluting puppet....
[2010/02/22 11:39:11] <jgosney> using v. 0.24.8
[2010/02/22 11:39:34] <jgosney> Got it installed on a server and a host, making minor changes to default site.pp to learn how to use it...
[2010/02/22 11:39:42] <jgosney> Got a question about logging.
[2010/02/22 11:40:05] <jgosney> On the client running puppetd, the default log location is set to /var/log/puppet in the puppet.conf file.
[2010/02/22 11:40:19] <jgosney> Yet whenever I make updates to the site.pp file, I'm not seeing anything reflected in that log file.
[2010/02/22 11:40:39] <jgosney> Is there any correlation between the var/log/puppet log file and the "-l" command-line paramenter?
[2010/02/22 11:40:51] <jgosney> Or more simply, why are the changes not being logged?
[2010/02/22 11:41:15] @ Quit: mezgani: Read error: Operation timed out
[2010/02/22 11:42:20] <eidolon> are you making changes on the puppetmaster, and not seeing anything happening on the clients?
[2010/02/22 11:42:26] <eidolon> have you done puppetrun or hupped puppetd on the client?
[2010/02/22 11:42:29] <eidolon> the changes aren't immediate.
[2010/02/22 11:42:51] <jgosney> Making changes to the site.pp on the puppetmaster like changing rights on a file
[2010/02/22 11:43:16] <jgosney> and we're seeing the changes reflected on the client box. But the var/log/puppet directory is remaining empty.
[2010/02/22 11:43:33] <eidolon> do you see them in the log file on the puppetmaster?
[2010/02/22 11:43:38] <jgosney> let me check....
[2010/02/22 11:43:46] <eidolon> i haven't tried logging on puppetd yet - is anything logging at all? (ls -lt /var/log \| head)
[2010/02/22 11:45:11] <plathrop> I've never actually tried loggin to anywhere other than syslog
[2010/02/22 11:45:30] <jgosney> There is a var/log/puppet/masterhttp.log on the puppetmaster and there is a ton of info in it but nothing that jumps out at me as reflecting the changes that were pushed down.
[2010/02/22 11:45:43] <jgosney> Although the file is fairly large and i'd have to digest it.
[2010/02/22 11:45:55] @ Quit: verwilst: Quit: Ex-Chat
[2010/02/22 11:46:04] <jgosney> On the puppetd box, there are no files in the /var/log/puppet directory
[2010/02/22 11:46:29] <eidolon> okay, read what i said again please :)
[2010/02/22 11:46:34] <eidolon> look on the client box
[2010/02/22 11:46:43] <eidolon> is -anything- being logged from puppetd - it might not be going to /var/log/puppet
[2010/02/22 11:46:58] @ alfism joined channel #puppet
[2010/02/22 11:47:07] <eidolon> also, if you're not seeing anything on the puppetmaster, are you sure the changes are being pushed down? If you don't see anything on the puppetmaster server, you should up the verbosity level and push again.
[2010/02/22 11:48:34] <jgosney> hmm, not seeing any log files on the puppetd box anywhere. I've got the book "Pulling Strings with Puppet" and I'm using that to do this initial testing. Haven't got to modifying verbosity level yet.
[2010/02/22 11:48:44] <jgosney> Yes, the changes are being pushed down. I have verified that.
[2010/02/22 11:49:20] <jgosney> I've tried setting --verbose on the client but that didn't seem to help.
[2010/02/22 11:49:36] <plathrop> jgosney: can you pastie your puppet.conf?
[2010/02/22 11:49:51] <jgosney> yes, just a sec
[2010/02/22 11:50:23] <jgosney> It's just the basic out-of-the-box .conf at this point.
[2010/02/22 11:50:28] <jgosney> puppet2:/etc/puppet # cat puppet.conf
[2010/02/22 11:50:28] <jgosney> [main]
[2010/02/22 11:50:29] <jgosney> # Where Puppet stores dynamic and growing data.
[2010/02/22 11:50:29] <jgosney> # The default value is '/var/puppet'.
[2010/02/22 11:50:29] <jgosney> vardir = /var/lib/puppet
[2010/02/22 11:50:29] <jgosney> # The Puppet log directory.
[2010/02/22 11:50:31] <jgosney> # The default value is '$vardir/log'.
[2010/02/22 11:50:33] <jgosney> logdir = /var/log/puppet
[2010/02/22 11:50:35] <jgosney> # Where Puppet PID files are kept.
[2010/02/22 11:50:37] <jgosney> # The default value is '$vardir/run'.
[2010/02/22 11:50:39] <jgosney> rundir = /var/run/puppet
[2010/02/22 11:50:41] <jgosney> # Where SSL certificates are kept.
[2010/02/22 11:50:43] <jgosney> # The default value is '$confdir/ssl'.
[2010/02/22 11:50:47] <jgosney> ssldir = $vardir/ssl
[2010/02/22 11:50:49] <jgosney> [puppetd]
[2010/02/22 11:50:51] <jgosney> # The file in which puppetd stores a list of the classes
[2010/02/22 11:50:51] <nasrat> jgosney: it's probably logging to syslog by default
[2010/02/22 11:50:52] <plathrop> jgosney: ACK! pastie.org dude
[2010/02/22 11:50:53] <jgosney> # associated with the retrieved configuratiion. Can be loaded in
[2010/02/22 11:50:55] <jgosney> # the separate ``puppet`` executable using the ``--loadclasses``
[2010/02/22 11:50:57] <jgosney> # option.
[2010/02/22 11:50:59] <jgosney> # The default value is '$confdir/classes.txt'.
[2010/02/22 11:51:00] <eidolon> AIEEE
[2010/02/22 11:51:00] <nasrat> jgosney: USE PASTIE/GIST
[2010/02/22 11:51:01] <jgosney> classfile = $vardir/classes.txt
[2010/02/22 11:51:03] <jgosney> # Where puppetd caches the local configuration. An
[2010/02/22 11:51:04] <eidolon> he's in mid-paste
[2010/02/22 11:51:05] <jgosney> # extension indicating the cache format is added automatically.
[2010/02/22 11:51:07] <jgosney> # The default value is '$confdir/localconfig'.
[2010/02/22 11:51:08] <eidolon> this is all buffering.
[2010/02/22 11:51:09] <jgosney> localconfig = $vardir/localconfig
[2010/02/22 11:51:09] * plathrop facepalm
[2010/02/22 11:51:12] @ afletcher joined channel #puppet
[2010/02/22 11:51:13] <jgosney> Sorry :)
[2010/02/22 11:51:18] <eidolon> dude, don't -do- that.
[2010/02/22 11:51:40] <plathrop> jgosney: Okay, so the comments in the conf file are misleading.
[2010/02/22 11:51:47] <plathrop> jgosney: puppet logs to syslog by default
[2010/02/22 11:52:27] <jgosney> I'll check syslog. back in a sec...
[2010/02/22 11:53:25] <plathrop> jgosney: On my Debian boxen it ends up in daemon.log
[2010/02/22 11:53:42] <jgosney> yes, I see the changes that I pushed down in syslog. So the logdir option in puppet.conf is not used or irrelevant?
[2010/02/22 11:53:51] <eidolon> ls -lcd hmm, once i go to modules, i shouldn't be using /etc/puppet/classes anymore, right?
[2010/02/22 11:54:02] <eidolon> (er, minus the ls command)
[2010/02/22 11:54:15] @ HouseAway is now known as DrHouseMD
[2010/02/22 11:54:37] <nasrat> jgosney: puppet supports multiple logging backends
[2010/02/22 11:54:37] @ paxos joined channel #puppet
[2010/02/22 11:54:48] <nasrat> it defaults to syslog but also supports file which will go to that place
[2010/02/22 11:55:27] <nasrat> man puppet.conf or puppetd --genconfig will give the default configs and extensive comments
[2010/02/22 11:55:39] <nasrat> eg Where puppetmasterd logs. This is generally not used, since syslog is the default log destination.
[2010/02/22 11:56:38] <nasrat> logdest is used to override this on the command line
[2010/02/22 11:58:20] @ mezgani joined channel #puppet
[2010/02/22 11:59:33] <jgosney> Interesting, I did the --genconfig and in the outputed .conf file, the logdir is now /var/puppet/log. OK. I think I'll just have to play with this and determine what's going on here
[2010/02/22 12:00:58] @ Quit: jgosney: Quit: Leaving
[2010/02/22 12:01:20] @ jcape joined channel #puppet
[2010/02/22 12:02:27] <eidolon> sorry, i'm digging in the faq and docs - i'd like to do a 'sanity check' on my manifests and node defs - can i do a 'syntax check my brain here, but don't actually push anything yet'?
[2010/02/22 12:02:31] <eidolon> i thought isaw that somewhere.
[2010/02/22 12:02:44] <Volcane> puppet --parseonly foo.rb
[2010/02/22 12:02:46] <Volcane> foo.pp even
[2010/02/22 12:02:55] <eidolon> yeah, that!
[2010/02/22 12:03:45] @ Quit: WALoeIII: Ping timeout: 276 seconds
[2010/02/22 12:04:00] <eidolon> err: Could not parse for environment production: No file(s) found for import of 'sudo' at /etc/puppet/manifests/modules.pp:4
[2010/02/22 12:04:02] <eidolon> awesome.
[2010/02/22 12:04:05] * eidolon loves error messages.
[2010/02/22 12:04:06] * eidolon digs
[2010/02/22 12:05:37] @ Quit: Welsh_Dwarf: Remote host closed the connection
[2010/02/22 12:06:08] <jb> anybody here managing/deploying heartbeat clusters and such with puppet?
[2010/02/22 12:07:56] @ Quit: shug: Quit: Leaving
[2010/02/22 12:08:05] <eidolon> whoah
[2010/02/22 12:08:20] <eidolon> puppetd can also manage services? "If this isn't running, fergodsake restart it" ?
[2010/02/22 12:08:23] <eidolon> duuuuude.
[2010/02/22 12:09:13] <jb> of course :)
[2010/02/22 12:09:15] <danbeck> lol
[2010/02/22 12:09:18] <nareshov> :D
[2010/02/22 12:09:20] <danbeck> yes, and works quite well.
[2010/02/22 12:09:30] <astinus> as it only runs every 30 minutes by default on most distributions, that may not be ideal
[2010/02/22 12:09:38] <kjetilho> yeah, it's like totally rad, man
[2010/02/22 12:09:39] <astinus> we use Puppet to appropriately configure Monit to perform much more regular service checks
[2010/02/22 12:09:44] <danbeck> service { "name": ensure => "running"; }
[2010/02/22 12:10:15] <eidolon> nod got it.
[2010/02/22 12:10:21] <eidolon> sorry, lots of brain-shifting going on.
[2010/02/22 12:10:27] <nareshov> srsly
[2010/02/22 12:10:35] <danbeck> Nagios is for up to the minute service checking, but puppet is nice to have to make sure things like syslog, cron, etc are running.
[2010/02/22 12:10:38] @ Quit: jaredrhine: Ping timeout: 272 seconds
[2010/02/22 12:10:54] @ Quit: alban2: Ping timeout: 276 seconds
[2010/02/22 12:10:54] <plathrop> eidolon: I understand. Discovering Puppet was a huge paradigm shift for me.
[2010/02/22 12:11:46] <eidolon> so the puppet tutorial has one way to set up a service - then they shift gears, and show how to do it as a module - so i'm confused as to the proper way to do it. i have /etc/puppet/manifests having moddules.pp,. nodes.pp,. and site.pp. modules.pp has 'import "sudo"' - sudo is in /etc/puppet/modules/sudo/manifests/init.pp - but when i do a check, it says sudo isn't found
[2010/02/22 12:11:47] <jb> puppet client talks to puppetmaster via TCP/8140, right?
[2010/02/22 12:12:24] <jb> eidolon: i'd read http://www.devco.net/archives/2009/09/28/simple_puppet_module_structure.php
[2010/02/22 12:12:26] <plathrop> eidolon: I've found that "best practice" is usually to do everything in modules
[2010/02/22 12:12:38] <eidolon> plathrop: yeah, that's what i'm trying to do
[2010/02/22 12:12:45] <eidolon> i moved the /etc/puppet/manifests/sudo.pp out
[2010/02/22 12:12:53] <eidolon> jb: clix
[2010/02/22 12:13:12] @ shadoi joined channel #puppet
[2010/02/22 12:13:15] <plathrop> eidolon: also, you shouldn't have to explicitly import modules, puppet does autoloading
[2010/02/22 12:13:35] <plathrop> jb: I believe so, yes
[2010/02/22 12:14:11] <eidolon> http://pastebin.stonekeep.com/6554
[2010/02/22 12:14:20] <eidolon> plathrop: ohh....
[2010/02/22 12:14:23] <eidolon> let me try that.
[2010/02/22 12:14:24] * eidolon comments out
[2010/02/22 12:14:29] @ Quit: Robbie_: Remote host closed the connection
[2010/02/22 12:14:43] <eidolon> wait, then what's the point of the modules.pp file? :)
[2010/02/22 12:15:20] <plathrop> eidolon: it has no point. So, one "problem" with puppet is that it has been fast-moving, so a lot of information out there is outdated.
[2010/02/22 12:15:26] <eidolon> ahhhhh
[2010/02/22 12:15:38] <eidolon> okay, parseonly succeeded on site.pp without theline in modules.pp
[2010/02/22 12:15:41] <nareshov> so that puppet book is of little use now?
[2010/02/22 12:15:42] <eidolon> yeah, i found that confusing on the doc site.
[2010/02/22 12:15:58] <jb> nareshov: not totally.. still good info.. you are talking about pulling strings with puppet?
[2010/02/22 12:16:01] <nareshov> ya
[2010/02/22 12:16:04] <jb> i think the second edition is due soon
[2010/02/22 12:16:05] <plathrop> nareshov: I wouldn't say it's of little use, but jamesturnbull is trying to get a new edition out, iirc
[2010/02/22 12:16:12] @ gwar99991 left channel #puppet ()
[2010/02/22 12:16:17] <Volcane> nareshov: the book has use, it gets you the concepts etc and to the point where the rest of the docs - that arent very great i agree - makes sense :)
[2010/02/22 12:16:21] <plathrop> nareshov: The concepts are still importan
[2010/02/22 12:16:23] <jb> the manifest organization in it is a bit outdated, however..
[2010/02/22 12:16:26] <nareshov> okay
[2010/02/22 12:16:32] <eidolon> i see how i can clean it up
[2010/02/22 12:16:44] <eidolon> /etc/puppet/manifests for site config
[2010/02/22 12:16:53] @ Quit: shadoi: Client Quit
[2010/02/22 12:16:58] <eidolon> /etc/puppet/modules/[modulename]/manifests/init.pp for individual modules
[2010/02/22 12:16:59] <plathrop> I started working on a better Best Practices doc, but then my son was born 3 months early
[2010/02/22 12:17:16] <eidolon> plathrop: oof. that'll stop a lot of work in it's tracks.
[2010/02/22 12:17:24] <plathrop> I'll tell you how I organize things
[2010/02/22 12:17:24] @ benlovell joined channel #puppet
[2010/02/22 12:17:29] <eidolon> <-- is a dad too, but not a preemie dad.
[2010/02/22 12:17:45] <plathrop> /etc/puppet/manifests has site.pp and variables.pp
[2010/02/22 12:17:50] * eidolon ndos
[2010/02/22 12:17:50] @ shadoi joined channel #puppet
[2010/02/22 12:17:53] <plathrop> All site.pp does is set resource defaults
[2010/02/22 12:17:56] <eidolon> not nodes.pp ?
[2010/02/22 12:18:07] <plathrop> And set up a default node
[2010/02/22 12:18:24] <eidolon> oic. you combind them
[2010/02/22 12:18:25] <plathrop> eidolon: ah yes, nodes.pp too
[2010/02/22 12:18:28] <eidolon> oh. :)
[2010/02/22 12:18:29] <eidolon> heh
[2010/02/22 12:18:41] <plathrop> eidolon: I forgot to mention because I'm in the middle of moving to an external node tool
[2010/02/22 12:18:47] * eidolon nods. ldap?
[2010/02/22 12:18:53] <plathrop> variables.pp has all my site-wide variables
[2010/02/22 12:19:10] <jb> erm, i have a ensure => version which is not causing a package to be updated
[2010/02/22 12:19:26] <plathrop> No, not LDAP. We don't like LDAP. We're using a home-grown central system (which we'll open-source soon)
[2010/02/22 12:19:32] <eidolon> ok
[2010/02/22 12:19:44] <plathrop> jb: Debian? if so, and using apt provider, it won't downgrade
[2010/02/22 12:19:50] <jb> plathrop: no, RHEL/yum
[2010/02/22 12:20:03] <plathrop> So, anyway, site.pp variables.pp and nodes.pp are all that is in /etc/puppet/manifests
[2010/02/22 12:20:07] <jb> sudo 1.6.x is currently installed, i have an ensure => "1.7.2..."
[2010/02/22 12:20:13] <jb> and its not updating, or even trying to
[2010/02/22 12:20:18] <plathrop> jb: weird
[2010/02/22 12:20:27] <plathrop> Then I have /etc/puppet/modules
[2010/02/22 12:20:32] * eidolon nods
[2010/02/22 12:20:35] <eidolon> this sounds like where i'm heading/
[2010/02/22 12:20:48] <plathrop> I have a "site" module which stores our site-specific configs
[2010/02/22 12:20:58] <plathrop> And then I have modules like "apache" and "sudo"
[2010/02/22 12:21:08] <plathrop> I don't explicitly import them anywhere
[2010/02/22 12:21:19] <eidolon> yah, okay, that makes sense.
[2010/02/22 12:21:30] <plathrop> as long as you follow the module organization, Puppet autoloads them when you do 'include sudo'
[2010/02/22 12:21:36] <jb> oh.
[2010/02/22 12:21:37] <eidolon> man i thought i was out of classloader second-guessing:)
[2010/02/22 12:21:38] <plathrop> (in the node declaration)
[2010/02/22 12:21:43] <eidolon> yep, i got it.
[2010/02/22 12:21:52] @ ody joined channel #puppet
[2010/02/22 12:21:57] <eidolon> okay, good. i need to do a couple setups now - i will probably poke you in a bit. but maybe lunch first.
[2010/02/22 12:22:00] @ ody is now known as odyi
[2010/02/22 12:22:10] <plathrop> eidolon: yeah, I got to break fast and get to theoffice
[2010/02/22 12:22:13] @ Quit: phips: Quit: phips
[2010/02/22 12:22:15] <eidolon> later :)
[2010/02/22 12:22:17] * eidolon idles for lunch.
[2010/02/22 12:22:21] <plathrop> eidolon: But feel free to message me
[2010/02/22 12:22:32] <eidolon> thanks again :)
[2010/02/22 12:22:36] <plathrop> eidolon: np
[2010/02/22 12:24:24] <inveratulo> can puppet do RHN registration?
[2010/02/22 12:24:58] <nasrat> inveratulo: exec rhn_regiser_ks with a creates
[2010/02/22 12:25:07] <nasrat> or something IIRC
[2010/02/22 12:25:12] <inveratulo> got it thanks
[2010/02/22 12:25:37] @ mvn071 joined channel #puppet
[2010/02/22 12:25:40] @ jgartrel joined channel #puppet
[2010/02/22 12:25:41] @ Quit: sts: Read error: Operation timed out
[2010/02/22 12:25:51] @ ccaum joined channel #puppet
[2010/02/22 12:25:57] @ Quit: ccaum: Client Quit
[2010/02/22 12:26:20] @ Quit: TREllis: Ping timeout: 246 seconds
[2010/02/22 12:26:37] <nasrat> rhnreg_ks but yeah cool
[2010/02/22 12:27:05] <jgartrel> How do I disable cert checking from the command line with puppetd .... I am trying to test against a test puppet server and getting hung up on the cert checking code
[2010/02/22 12:27:40] <jgartrel> http_enable_post_connection_check does not work anymore
[2010/02/22 12:28:48] <jgartrel> Optimally I would like to have the following set, but that does not look possible ...
[2010/02/22 12:28:49] <jgartrel> http.verify_mode = OpenSSL::SSL::VERIFY_NONE
[2010/02/22 12:29:04] @ sts joined channel #puppet
[2010/02/22 12:29:26] @ WALoeIII joined channel #puppet
[2010/02/22 12:34:53] @ Quit: afletcher: Quit: afletcher
[2010/02/22 12:35:43] @ Quit: Phibs: Quit: leaving
[2010/02/22 12:35:48] <joe-mac> you can't disable certification without changing the code afaik
[2010/02/22 12:36:00] @ Phibs joined channel #puppet
[2010/02/22 12:36:14] <jgartrel> looks like it might be possible .... here ... return false unless (defined?(@cert) and @cert) or self.read_cert
[2010/02/22 12:36:36] <jgartrel> but Ill trust you guys on that
[2010/02/22 12:37:02] <jgartrel> I didnt want to slog through the code for two hours to come to the same conclusion
[2010/02/22 12:37:03] @ bitfield joined channel #puppet
[2010/02/22 12:37:21] @ bitfield left channel #puppet ()
[2010/02/22 12:38:18] @ teyo joined channel #puppet
[2010/02/22 12:39:29] @ Quit: danielbln: Quit: Leaving.
[2010/02/22 12:40:31] @ Quit: telmich: Changing host
[2010/02/22 12:40:31] @ telmich joined channel #puppet
[2010/02/22 12:43:49] @ Quit: jgartrel: Quit: jgartrel
[2010/02/22 12:46:27] @ jra__ joined channel #puppet
[2010/02/22 12:49:02] @ Quit: gebi: Ping timeout: 264 seconds
[2010/02/22 12:51:52] @ Quit: jcape: Ping timeout: 245 seconds
[2010/02/22 12:58:02] @ jgartrel joined channel #puppet
[2010/02/22 12:58:43] @ Quit: noradific: Quit: Leaving
[2010/02/22 13:00:30] @ jaredrhine joined channel #puppet
[2010/02/22 13:04:01] @ Quit: xerxas: Ping timeout: 252 seconds
[2010/02/22 13:07:18] @ Quit: giskard: Remote host closed the connection
[2010/02/22 13:08:54] @ xerxas joined channel #puppet
[2010/02/22 13:09:25] @ plathrop is now known as plathrop-away
[2010/02/22 13:10:43] @ Quit: noyb: Read error: Connection reset by peer
[2010/02/22 13:10:44] @ Quit: rcrowley: Read error: Connection reset by peer
[2010/02/22 13:10:52] @ rcrowley joined channel #puppet
[2010/02/22 13:11:14] @ Quit: rcrowley: Read error: Connection reset by peer
[2010/02/22 13:11:49] @ rcrowley joined channel #puppet
[2010/02/22 13:12:44] @ Quit: rcrowley: Read error: Connection reset by peer
[2010/02/22 13:13:16] @ Quit: WALoeIII: Quit: Bai.
[2010/02/22 13:13:17] @ rcrowley joined channel #puppet
[2010/02/22 13:13:51] @ lak joined channel #puppet
[2010/02/22 13:14:14] @ Quit: bug: Quit: bug
[2010/02/22 13:14:58] <jgartrel> @lak ... Is there a way to disble cert checking from the command line with puppetd .... I am trying to test against a test puppet server and getting hung up on the cert checking code
[2010/02/22 13:15:16] @ d3vilbox left channel #puppet ()
[2010/02/22 13:15:27] <jgartrel> http_enable_post_connection_check does not work anymore
[2010/02/22 13:15:40] <lak> jgartrel: there isn't, actually
[2010/02/22 13:16:17] <jgartrel> crappy. Do you have any suggestions?
[2010/02/22 13:16:18] <lak> i remember that being filed as a bug but i haven't been the one looking at it
[2010/02/22 13:16:20] <kjetilho> jgartrel: I use a separate directory for communicating with the test server
[2010/02/22 13:16:41] <kjetilho> so it can download correctly signed certificates
[2010/02/22 13:16:41] <jgartrel> I got excited when I saw this in the code ...
[2010/02/22 13:16:42] <jgartrel> # Just no-op if we don't have certs.
[2010/02/22 13:16:43] <jgartrel> return false unless (defined?(@cert) and @cert) or self.read_cert
[2010/02/22 13:16:58] <lak> jgartrel: how did you build the test server's cert? you should be able to set the dnscertname so the server's cert works
[2010/02/22 13:17:10] <lak> jgartrel: that's a fall-back for when a client doesn't yet have a cert
[2010/02/22 13:17:15] <lak> rather than a way to disable needing it
[2010/02/22 13:17:39] <jgartrel> I want to create N test servers ... but creating certs is just not possible
[2010/02/22 13:17:46] <kjetilho> lak: just use a different name for the test server, you don't really need any magic
[2010/02/22 13:17:58] <jgartrel> where those servers are launched in ec2 on demand
[2010/02/22 13:18:08] <nigelk> jgartrel: I have test certs with subject altnames of , ., .., ... etc
[2010/02/22 13:18:16] <nigelk> they work fine for deploying anywhere :)
[2010/02/22 13:18:23] <kjetilho> jgartrel: then you'll need to turn on autosigning I guess
[2010/02/22 13:18:24] <lak> ==nigelk
[2010/02/22 13:18:39] <kjetilho> otherwise running puppetca --sign will be too tedious
[2010/02/22 13:18:44] <jgartrel> thanks nigelk ... that might work in this case
[2010/02/22 13:18:50] <nigelk> if you're comfortable making certs by hand .... I have to do tests in some odd environments where DNS is a bit surreal
[2010/02/22 13:19:18] <kjetilho> jgartrel: will you be using stored configs?
[2010/02/22 13:19:19] <jgartrel> if theres not a better way I might try that route
[2010/02/22 13:19:30] <jgartrel> no
[2010/02/22 13:19:43] <kjetilho> (do you want your servers to keep state among themselves?)
[2010/02/22 13:19:48] <kjetilho> ok
[2010/02/22 13:20:04] <jgartrel> it seems all I really want to do on the client is to set the following on a test run
[2010/02/22 13:20:04] <jgartrel> + http.verify_mode = OpenSSL::SSL::VERIFY_NONE
[2010/02/22 13:21:14] @ bug joined channel #puppet
[2010/02/22 13:21:28] <fred> I'm aiming for "apt-get install puppet" is all I need on new nodes; unfortunately, these nodes run https servers - what's the normal way to do this? (hoping it's not passphrase-less keys :p)
[2010/02/22 13:21:35] <jgartrel> actually the wildcard I dont think is going to work
[2010/02/22 13:22:14] <fred> (i.e. any suggestions for providing the passphrase and hooking it into puppet?)
[2010/02/22 13:22:26] <eidolon> hmm, in order for puppetrun to work, i have to have 'serve' enabled in the puppetd.conf on the client, right? what's the syntax? man pages / examples aren't clear.
[2010/02/22 13:22:27] <jgartrel> I want to test my production clients against a test server with newer puppet manifests
[2010/02/22 13:22:35] <jgartrel> and verify the configs
[2010/02/22 13:22:50] <jgartrel> I dont want to change the client configs
[2010/02/22 13:22:54] @ gebi joined channel #puppet
[2010/02/22 13:23:27] <astinus> jgartrel: it should be possible to build an SSL CA with implicit trust, so anything signed by server1 would be 'trusted' on serverN
[2010/02/22 13:23:56] <jgartrel> its not about the server trusint the clients ... its about the clients trusting the server
[2010/02/22 13:24:16] <astinus> that should also be possible by that approach...
[2010/02/22 13:24:24] <eidolon> oh, maybe not. hm.
[2010/02/22 13:24:30] <astinus> you install your own SSL CA certificate which has signed the test server?
[2010/02/22 13:24:47] <astinus> i could be getting the wrong end of the stick :)
[2010/02/22 13:25:03] <astinus> i only use that technique for doing HA between two masters, not for anything really fancy like release mgmt
[2010/02/22 13:25:40] <jgartrel> yes but the test servers are dynamic and get started dynamically in this case
[2010/02/22 13:31:42] @ filler joined channel #puppet
[2010/02/22 13:31:56] <kjetilho> jgartrel: what is your actual problem? Puppet uses self-signed certificates by default, it works out of the box for me.
[2010/02/22 13:32:48] <kjetilho> but a client certificate signed by master1 will not be accepted by master2, so you either need to clean out /var/lib/puppet/certs
[2010/02/22 13:32:51] @ afletcher joined channel #puppet
[2010/02/22 13:33:02] <kjetilho> or specify separate vardir for each testserver
[2010/02/22 13:36:06] @ plathrop-away is now known as plathrop
[2010/02/22 13:36:41] @ rgsteele joined channel #puppet
[2010/02/22 13:37:04] @ Quit: lak: Quit: lak
[2010/02/22 13:37:57] <jgartrel> Trying to start up a new Dev Test server for each revision of puppet manifests , then test production clients against the new test servers in noop mode
[2010/02/22 13:38:32] <jgartrel> client need to trust the new test servers or just trust all (for this single,noop, run only)
[2010/02/22 13:39:49] <astinus> TBQH i'm not sure there is an easy solution than that, other than to patch out cert verifciation
[2010/02/22 13:40:48] @ Quit: afletcher: Read error: Connection reset by peer
[2010/02/22 13:41:33] <plathrop> jgartrel: I'm curious why it doesn't work to just keep the test server running and push new revisions to it?
[2010/02/22 13:41:36] @ afletcher joined channel #puppet
[2010/02/22 13:41:51] @ Quit: ShiNboi: Quit: Verlassend
[2010/02/22 13:42:03] <kjetilho> jgartrel: with autosigning it will just work (tm)
[2010/02/22 13:42:17] <jgartrel> because there is one dev test server per developer
[2010/02/22 13:42:33] <plathrop> jgartrel: ah, that's one way to do it.
[2010/02/22 13:42:44] <eidolon> do i have to do some magic to allow puppetrun to work witha --host param? it looks like puppetd on the client machine isn't accepting connections.
[2010/02/22 13:43:19] <plathrop> eidolon: listen = true in [puppetd] section of puppet.conf
[2010/02/22 13:43:23] <eidolon> ah
[2010/02/22 13:43:53] <eidolon> cd /meh. i don't know why i didn'ts ee that in the docs
[2010/02/22 13:43:56] <eidolon> sheesh.
[2010/02/22 13:44:32] <kjetilho> jgartrel: that's what I use this for, I run puppetmasterd on my workstation so I can test before committing to the company tree
[2010/02/22 13:47:25] @ ahasenack joined channel #puppet
[2010/02/22 13:49:08] @ Quit: danbeck: Quit: danbeck
[2010/02/22 13:49:58] @ danbeck joined channel #puppet
[2010/02/22 13:53:25] @ mikerowehl joined channel #puppet
[2010/02/22 13:53:33] @ Quit: xerxas: Quit: Leaving.
[2010/02/22 13:54:13] <plathrop> hrm... taking a look at http://projects.reductivelabs.com/issues/1999 and I'm not sure how to write a test for it.
[2010/02/22 13:55:09] <tim\|imac> :D that's my ticket :D
[2010/02/22 13:55:52] <tim\|imac> plathrop: how do the tests that install a package operate? actually install a package?
[2010/02/22 13:56:05] <plathrop> tim\|imac: not sure. Good place to start, though, thanks.
[2010/02/22 13:56:45] @ mfournier joined channel #puppet
[2010/02/22 14:00:14] <dan__t> I'm going to do the gross, the nasty, the unthinkable. I'm going to implement LDAP nodes with AD.
[2010/02/22 14:00:40] <tim\|imac> ... that's gross
[2010/02/22 14:00:49] <dan__t> fact.
[2010/02/22 14:01:38] <tim\|imac> hey, could be worse
[2010/02/22 14:01:46] <tim\|imac> you could be the one that's going to have to maintain it
[2010/02/22 14:02:10] <dan__t> I just want everything in LDAP.
[2010/02/22 14:02:38] @ jes5 joined channel #puppet
[2010/02/22 14:02:51] @ Alagar joined channel #puppet
[2010/02/22 14:03:23] <plathrop> dan__t: AD? Really? You are a braver man than I.
[2010/02/22 14:03:58] @ Quit: unxfrek: Ping timeout: 260 seconds
[2010/02/22 14:04:15] <dan__t> :/
[2010/02/22 14:06:04] <dan__t> Welp. I can make a Computer account for the machines, and integrate DHCP and DNS, tie it all today.
[2010/02/22 14:06:07] <dan__t> er, tie it all together.
[2010/02/22 14:07:38] @ Quit: benlovell: Quit: benlovell
[2010/02/22 14:08:42] @ Quit: \ask: Remote host closed the connection
[2010/02/22 14:09:23] @ bobbyz_ joined channel #puppet
[2010/02/22 14:13:44] @ bodepd joined channel #puppet
[2010/02/22 14:14:59] @ Quit: murkk: Quit: murkk
[2010/02/22 14:17:42] <weaselkeeper> anyone using foreman with puppet?
[2010/02/22 14:17:52] @ unxfrek joined channel #puppet
[2010/02/22 14:22:31] @ TREllis joined channel #puppet
[2010/02/22 14:24:11] @ Quit: bodepd: Quit: bodepd
[2010/02/22 14:25:08] @ Quit: ahasenack: Quit: Leaving
[2010/02/22 14:28:29] @ toi joined channel #puppet
[2010/02/22 14:31:26] @ ambroff joined channel #puppet
[2010/02/22 14:36:54] @ Spruit_elf joined channel #puppet
[2010/02/22 14:37:25] @ bodepd joined channel #puppet
[2010/02/22 14:37:28] @ Quit: mboyd: Quit: back in a few
[2010/02/22 14:40:29] @ alban2 joined channel #puppet
[2010/02/22 14:44:47] @ erm_ joined channel #puppet
[2010/02/22 14:46:00] @ xerxas joined channel #puppet
[2010/02/22 14:46:10] @ Pirate_Hunter joined channel #puppet
[2010/02/22 14:47:28] <fzzzt> masterzen: Thanks for the tip about case statement case sensitivity, that was the case, my case is now lower case and it's working in every case. :)
[2010/02/22 14:48:05] @ jcape joined channel #puppet
[2010/02/22 14:49:03] @ Quit: Spruit_elf: Quit: Spruit_elf
[2010/02/22 14:52:56] @ Quit: bug: Quit: bug
[2010/02/22 14:53:31] <eidolon> meh. listen = true isn't working on puppetd.
[2010/02/22 14:53:33] * eidolon fiddles
[2010/02/22 14:54:41] @ giskard joined channel #puppet
[2010/02/22 14:55:04] @ fzzzt left channel #puppet ()
[2010/02/22 14:56:11] <eidolon> aha. namespaceauth
[2010/02/22 14:56:56] <eidolon> HAH.
[2010/02/22 14:57:07] * eidolon uses puppet to distribute the namespaceauth.conf file :)
[2010/02/22 14:57:10] * eidolon is teh witty.
[2010/02/22 14:57:12] @ mboyd joined channel #puppet
[2010/02/22 14:57:36] @ WALoeIII joined channel #puppet
[2010/02/22 14:58:45] <zirpu> heh
[2010/02/22 15:00:52] <eidolon> so, here's a question. why does a modules init.pp have a requirement for itself?
[2010/02/22 15:01:22] @ fredden joined channel #puppet
[2010/02/22 15:01:23] <eidolon> class something { package blah... then file { ... require =>Package["something"] }
[2010/02/22 15:01:49] <fredden> I'm new to puppet, and was wondering if a feature exists, or if I need to do some magic to make it happen. I don't know ruby yet, so I'm hoping to not need too much magic. :)
[2010/02/22 15:01:50] <fredden> currently, I'm maintaining two lists: one in a class, another in a flat file
[2010/02/22 15:01:59] <fredden> I'd like to have the flat file generated on the fly, based on what's in the class
[2010/02/22 15:02:02] <fredden> can anyone help with that?
[2010/02/22 15:02:04] @ fzzzt joined channel #puppet
[2010/02/22 15:02:08] <fzzzt> oops.
[2010/02/22 15:05:27] @ Quit: swygue: Ping timeout: 252 seconds
[2010/02/22 15:05:30] <inveratulo> how do i make puppetmaster listen on a specified interface IP ?
[2010/02/22 15:05:57] @ tonyskapunk joined channel #puppet
[2010/02/22 15:06:44] <eidolon> inveratulo: iirc, that's in the puppet FAQ.
[2010/02/22 15:07:34] <paxos> inveratulo: http://docs.reductivelabs.com/references/stable/configuration.html
[2010/02/22 15:07:34] <inveratulo> eidolon: thanks, i've been going through the "pulling strings.." book and it leaves out some details :-P
[2010/02/22 15:07:50] <eidolon> nod the website is really the best reference source i've found. but even it has dated information.
[2010/02/22 15:08:50] @ Quit: unxfrek: Ping timeout: 264 seconds
[2010/02/22 15:10:38] @ mattwynne joined channel #puppet
[2010/02/22 15:11:29] @ showy joined channel #puppet
[2010/02/22 15:12:28] <showy> hi
[2010/02/22 15:13:25] <showy> the puppet version in debian etch is 0.24 , my etch clients dont update new resources that I add to the manifest until I restart the procces
[2010/02/22 15:14:21] @ Quit: eidolon: Quit: Leaving.
[2010/02/22 15:16:22] @ swygue joined channel #puppet
[2010/02/22 15:18:01] <showy> sry, puppet version in debian etch 0.20
[2010/02/22 15:23:42] <Volcane> dont use 0.20
[2010/02/22 15:23:47] <Volcane> its practically from the stone age
[2010/02/22 15:24:25] <fzzzt> If I don't include a class, would if (Class["asd"]) ... except?
[2010/02/22 15:25:58] @ \ask joined channel #puppet
[2010/02/22 15:27:36] <bodepd> frzzzt: use if(! defined Class['asd']){fail('blah')}
[2010/02/22 15:28:03] <fzzzt> ah, thanks
[2010/02/22 15:28:31] <bodepd> actually, the way that you wrote it seems to work...
[2010/02/22 15:29:26] <fzzzt> hm, even if asd isn't included at all
[2010/02/22 15:29:34] <bodepd> if you want to fail, if you just want to check it use defined
[2010/02/22 15:29:48] <fzzzt> yeah, ok
[2010/02/22 15:30:37] @ MrHeavy joined channel #puppet
[2010/02/22 15:31:20] @ bodepd left channel #puppet ()
[2010/02/22 15:32:31] @ Quit: tim\|imac: Quit: tim\|imac
[2010/02/22 15:33:34] @ Quit: londo: Ping timeout: 260 seconds
[2010/02/22 15:35:21] @ londo joined channel #puppet
[2010/02/22 15:38:11] @ tim\|imac joined channel #puppet
[2010/02/22 15:40:37] @ londo__ joined channel #puppet
[2010/02/22 15:42:01] @ Quit: londo: Ping timeout: 268 seconds
[2010/02/22 15:45:54] @ Quit: allsystemsarego: Quit: Leaving
[2010/02/22 15:46:54] @ Quit: \ask: Remote host closed the connection
[2010/02/22 15:47:31] @ \ask joined channel #puppet
[2010/02/22 15:50:06] @ blahdeblah joined channel #puppet
[2010/02/22 15:52:24] @ glaw joined channel #puppet
[2010/02/22 15:53:10] @ Quit: londo__: Ping timeout: 260 seconds
[2010/02/22 15:56:03] @ londo__ joined channel #puppet
[2010/02/22 15:57:38] @ eidolon joined channel #puppet
[2010/02/22 15:58:42] @ jmslagle joined channel #puppet
[2010/02/22 15:59:45] <eidolon> hey folks i'm getting a warning on my .pp file and i dont' know why. the checker is not throwing an error :(
[2010/02/22 15:59:46] <eidolon> help?
[2010/02/22 15:59:50] <eidolon> sec, i'll pastebin
[2010/02/22 16:01:15] @ Quit: giskard: Remote host closed the connection
[2010/02/22 16:01:32] @ Quit: londo__: Read error: Operation timed out
[2010/02/22 16:02:27] <eidolon> http://pastebin.stonekeep.com/6555
[2010/02/22 16:03:15] @ giskard joined channel #puppet
[2010/02/22 16:03:47] @ londo__ joined channel #puppet
[2010/02/22 16:04:09] <eidolon> ping plathrop ? :)
[2010/02/22 16:04:25] <plathrop> eidolon: I'm looking :-P
[2010/02/22 16:05:06] @ Quit: toi: Quit: Ex-Chat
[2010/02/22 16:05:06] <eidolon> :)
[2010/02/22 16:05:09] <jb> i thought you were going to use modules?
[2010/02/22 16:05:14] <eidolon> ummm
[2010/02/22 16:05:18] <eidolon> i thought that is a module
[2010/02/22 16:05:28] <eidolon> or is this YER DOIN IT RONG!
[2010/02/22 16:05:36] <jb> oh one sec
[2010/02/22 16:05:49] <plathrop> eidolon: you aren't really showing the relevant stuff. I need to see /etc/puppet/modules/lwm-repositories/manifests/init.pp ; but it looks like the error is coming from your package system
[2010/02/22 16:05:52] <jb> erm ok
[2010/02/22 16:06:02] @ Quit: cliff-hm: Ping timeout: 245 seconds
[2010/02/22 16:06:02] <eidolon> oh!
[2010/02/22 16:06:02] <eidolon> sorry
[2010/02/22 16:06:06] <eidolon> dang
[2010/02/22 16:06:17] <eidolon> esxcept
[2010/02/22 16:06:19] <jb> i'd organize modules like: /etc/puppet/modules/modulename/{files,templates,manifests}
[2010/02/22 16:06:21] <eidolon> look at pastein line 5
[2010/02/22 16:06:25] <eidolon> jb it is
[2010/02/22 16:06:32] <jb> # /etc/puppet/manifests/classes/sudo.pp ?
[2010/02/22 16:06:34] <eidolon> i have 2 failed entries there.
[2010/02/22 16:06:41] <jb> what is that?
[2010/02/22 16:06:47] <eidolon> jb: a mistyped comment :)
[2010/02/22 16:06:52] <eidolon> one moment :)
[2010/02/22 16:07:01] <plathrop> eidolon: oh, yeah um... ur doin' it rong
[2010/02/22 16:07:06] <eidolon> hang on hang on
[2010/02/22 16:07:11] <eidolon> there's a lot misrepresented there.
[2010/02/22 16:07:11] <eidolon> std by
[2010/02/22 16:07:15] <eidolon> i was in mid-meeting
[2010/02/22 16:07:18] <eidolon> let me redo it.
[2010/02/22 16:07:18] <plathrop> Unless you built a custom package called "namespaceauth"
[2010/02/22 16:07:21] <eidolon> i do
[2010/02/22 16:07:22] <jb> yeah
[2010/02/22 16:07:22] <eidolon> sec.
[2010/02/22 16:07:22] <plathrop> okay, I'll wait
[2010/02/22 16:07:25] <eidolon> thanks :)
[2010/02/22 16:07:28] * eidolon redoes
[2010/02/22 16:09:11] @ kaptk2 joined channel #puppet
[2010/02/22 16:10:01] <ashp> this is my first heavy puppet day in forever and boy do i keep finding horrors in my modules
[2010/02/22 16:10:17] <ashp> i had to get nagios to install nrpe and check disks remotely and argh best describes this :D
[2010/02/22 16:10:44] <eidolon> try this
[2010/02/22 16:10:45] <eidolon> http://pastebin.stonekeep.com/6556
[2010/02/22 16:10:51] <eidolon> nrpe is a pain
[2010/02/22 16:11:09] <jb> nagios is a pain.
[2010/02/22 16:11:11] <jb> everything about it :)
[2010/02/22 16:11:14] <ashp> monitoring is a pain
[2010/02/22 16:11:26] <eidolon> yeah, we migrated from nagios to zenoss
[2010/02/22 16:11:26] <ashp> next on my list is to start looking at rolling out collectd all over, sigh
[2010/02/22 16:11:46] @ Quit: markl_: Quit: leaving
[2010/02/22 16:11:52] @ markl joined channel #puppet
[2010/02/22 16:12:12] <jb> eidolon: its telling you it can't find the "lvm-repositories" package
[2010/02/22 16:12:32] <eidolon> it also can't find the namespaceauth one wither
[2010/02/22 16:12:34] <eidolon> lvm?
[2010/02/22 16:12:40] <eidolon> did i typo?
[2010/02/22 16:12:44] <jb> ?
[2010/02/22 16:12:49] <eidolon> should be lwm
[2010/02/22 16:12:53] * eidolon chex
[2010/02/22 16:12:55] <jb> oh
[2010/02/22 16:12:56] <jb> you are right
[2010/02/22 16:13:03] <eidolon> ok :)
[2010/02/22 16:13:05] <eidolon> but why can't it find it?
[2010/02/22 16:13:13] <eidolon> the init.pp is there
[2010/02/22 16:13:17] <jb> well
[2010/02/22 16:13:24] <jb> what repo is it in?
[2010/02/22 16:13:29] <jb> is it in your lwm-littleton.repo?
[2010/02/22 16:13:33] <plathrop> eidolon: Okay, I think you may be a little tiny bit confused
[2010/02/22 16:13:37] <eidolon> i'm sure i am :)
[2010/02/22 16:13:50] <jb> you can't install a package from 'x' repo, if 'x' repo is not defined on a system :)
[2010/02/22 16:13:50] @ verwilst joined channel #puppet
[2010/02/22 16:13:51] <eidolon> i'm trying to push... namespaceconf and the repo definition file to the client(s)
[2010/02/22 16:13:53] <eidolon> no
[2010/02/22 16:13:56] <eidolon> i'm not installing any packages.
[2010/02/22 16:14:00] <eidolon> or don't want to
[2010/02/22 16:14:01] <eidolon> OH!
[2010/02/22 16:14:01] <jb> you are
[2010/02/22 16:14:03] <eidolon> i am
[2010/02/22 16:14:05] <eidolon> but i don't want to :)
[2010/02/22 16:14:06] <jb> package { lwm-repositories: ensure => latest }
[2010/02/22 16:14:09] @ Quit: giskard: Ping timeout: 256 seconds
[2010/02/22 16:14:09] <eidolon> i ju8st want to p ush files out.
[2010/02/22 16:14:10] <plathrop> eidolon: then why are you telling puppet to install a package?
[2010/02/22 16:14:10] <jb> that says "install lwm-repositories"
[2010/02/22 16:14:15] <jb> basically, yum install lwm-repositories
[2010/02/22 16:14:18] <eidolon> plathrop: because i'm an idiot.
[2010/02/22 16:14:21] <plathrop> lol
[2010/02/22 16:14:29] <eidolon> okay okay
[2010/02/22 16:14:31] <plathrop> eidolon: there ya go. Take those package lines out
[2010/02/22 16:14:32] <eidolon> i see totally what's wrong here
[2010/02/22 16:14:36] <eidolon> right, got it.
[2010/02/22 16:14:58] <jb> also
[2010/02/22 16:15:04] <jb> i'd reccomend having a "puppet" module
[2010/02/22 16:15:09] <jb> to manage resources like namespaceauth.conf, etc
[2010/02/22 16:15:12] <eidolon> nod
[2010/02/22 16:15:14] <plathrop> +1
[2010/02/22 16:15:29] <eidolon> okay, hang on a few. if i change the init.pp et al, does teh change go live immediately, or do i have to puppetmaster restart?
[2010/02/22 16:15:36] <jb> no
[2010/02/22 16:15:41] <jb> no need to restart..
[2010/02/22 16:15:49] <eidolon> ok
[2010/02/22 16:15:53] * eidolon edits
[2010/02/22 16:15:57] <eidolon> (thanks man, you guys are awesome)
[2010/02/22 16:16:15] <eidolon> (what was confusing me was the term 'package' - which has multiuple meanings depending on OS, language, and environment)
[2010/02/22 16:16:36] <jb> package = RPM in your case
[2010/02/22 16:16:51] <jb> as the docs clearly state :)
[2010/02/22 16:16:58] <eidolon> yeah... but ruby / perl / etc - have a concept of a 'package'
[2010/02/22 16:17:02] <eidolon> that's what i was thinking.
[2010/02/22 16:17:05] <weaselkeeper> I am running puppetmaster via passenger, and that seems to handle new configs fine, although sometimes takes a minute or two. I think it's because each passenger will get the new configs as it spawns, but the old ones, retain the stuff that was current when they were spawned
[2010/02/22 16:17:24] <plathrop> weaselkeeper: that's not quite 100% accurate
[2010/02/22 16:17:28] @ glaw left channel #puppet ("Leaving.")
[2010/02/22 16:17:33] <plathrop> weaselkeeper: but close enough for government work
[2010/02/22 16:18:15] <jb> yeah, I see that issue sometimes
[2010/02/22 16:18:45] <eidolon> Feb 22 16:06:46 ltl-dev-bo-db01 puppetd[25278]: (//Node[basenode]/namespaceauth/File[/etc/puppet/namespaceauth.conf]/ensure) created
[2010/02/22 16:18:45] <eidolon> Feb 22 16:06:47 ltl-dev-bo-db01 puppetd[25278]: (//Node[basenode]/lwm-repositories/File[/etc/yum.repos.d/lwm-littleton.repo]/ensure) created
[2010/02/22 16:18:48] <eidolon> hey look at that.
[2010/02/22 16:19:03] <jb> ensure?
[2010/02/22 16:19:20] <jb> oh, yeah
[2010/02/22 16:19:28] <weaselkeeper> plathrop: what does happen?
[2010/02/22 16:21:48] <eidolon> what's the weird word that luke uses meaning "this can run many times without harm"?
[2010/02/22 16:22:03] <fzzzt> idempotent?
[2010/02/22 16:22:07] <jb> yeah.
[2010/02/22 16:22:09] <weaselkeeper> not microsoft :P
[2010/02/22 16:22:16] <eidolon> yeah, taht one.
[2010/02/22 16:22:18] <eidolon> thanks :)
[2010/02/22 16:22:23] <fzzzt> it's idempotent
[2010/02/22 16:22:25] <fzzzt> :P
[2010/02/22 16:22:45] <fzzzt> not to be confused with omnipotent or impotent
[2010/02/22 16:22:49] <plathrop> weaselkeeper: as far as I've observed on my setup, which has some longer-lived puppetmasters, the new configs get picked up after about 30 seconds or so
[2010/02/22 16:23:04] @ Spruit_elf joined channel #puppet
[2010/02/22 16:23:04] <jb> weaselkeeper: yeah, it takes about 30 seconds usually
[2010/02/22 16:23:12] <fzzzt> though i suppose impotent could be thought of as being able to run many times without harm
[2010/02/22 16:23:18] * fzzzt goes back to work...
[2010/02/22 16:23:27] <plathrop> weaselkeeper: but sometimes you can't tell, because some nodes are mid-run at the time, so get older configs
[2010/02/22 16:23:47] <weaselkeeper> yeah, that makes sense. I haven;t timed, I just know I haven't restarted things to have changes take effect.
[2010/02/22 16:25:23] @ bug joined channel #puppet
[2010/02/22 16:25:24] @ lak joined channel #puppet
[2010/02/22 16:30:25] @ sparagos is now known as sparagos_away
[2010/02/22 16:36:15] @ Quit: mfournier: Ping timeout: 256 seconds
[2010/02/22 16:39:54] <ashp> hmm, i swear i had foreman working before. Now it can't see the mysql database puppet uses.
[2010/02/22 16:39:57] <eidolon> yay! i 500'ed my puppetd!
[2010/02/22 16:40:02] * eidolon feels so spehshuhl.
[2010/02/22 16:40:15] <eidolon> i need to try foreman at some point
[2010/02/22 16:40:29] <ashp> I wonder why it's not working. :/
[2010/02/22 16:40:46] <jb> foreman > * :)
[2010/02/22 16:40:58] <eidolon> yea?
[2010/02/22 16:41:00] <eidolon> cool.
[2010/02/22 16:41:09] <ashp> It doesn't even seem to attempt to connect, I wonder if my mysql gem is bust.
[2010/02/22 16:41:16] <jb> no storeconfigs here :/
[2010/02/22 16:41:32] <ashp> maybe I need to do the populate_hosts again
[2010/02/22 16:41:40] <ashp> -sh-3.2# rake puppet:migrate:populate_hosts RAILS_ENV=production
[2010/02/22 16:41:41] <ashp> (in /var/rails/foreman)
[2010/02/22 16:41:41] <ashp> rake aborted!
[2010/02/22 16:41:41] <ashp> undefined method `mac=' for #<Host:0x2ab4d8603120>
[2010/02/22 16:41:44] <ashp> Well, I guess not. :)
[2010/02/22 16:42:15] <ashp> I need to clear out what I have and start again I guess.
[2010/02/22 16:43:07] <eidolon> so i have a namespaceauth.conf that has [puppetrunner] allow host.x.com
[2010/02/22 16:43:42] <eidolon> but the puppetd client is showing: ltl-dev-bo-db01 puppetd[29455]: Denying unauthenticated client host.x.com(x.x.x.x) access to puppetrunner.run
[2010/02/22 16:43:59] <Spruit_elf> are there any issues i need to worry about when upgrading puppet from 24.8 to 25.4 ?
[2010/02/22 16:44:38] @ Quit: markl: Quit: leaving
[2010/02/22 16:45:03] <fzzzt> global economic meltdown
[2010/02/22 16:45:06] @ markl joined channel #puppet
[2010/02/22 16:45:22] <fzzzt> and stray puppies
[2010/02/22 16:45:31] <nigelk> Spruit_elf: the big one that hit me was that all the clients will download the CRL from whatever functions as your CA
[2010/02/22 16:45:39] <nigelk> whereas in 0.24 the CRL wasn't used at all
[2010/02/22 16:45:41] <weaselkeeper> mmm puppie melt
[2010/02/22 16:45:53] <nigelk> so if you have a gazillion clients and a single CA, it will suffer more load
[2010/02/22 16:45:54] <kjetilho> every time someone upgrades Puppet, $DEITY $ACTION a kitten.
[2010/02/22 16:46:00] <jb> and environments between 0.24 and 0.25
[2010/02/22 16:46:00] <weaselkeeper> lol
[2010/02/22 16:46:18] <jb> iirc, external node classifiers could define environments in 0.24.x
[2010/02/22 16:46:33] <fzzzt> the whole /modules thing
[2010/02/22 16:46:39] <weaselkeeper> We are in the process of implementing Puppet ,(well, testing it, final decision is soon) should I be testing .25 rather than .24?
[2010/02/22 16:46:39] <fzzzt> no worry, just annoying
[2010/02/22 16:46:39] <jb> yeah but that still works
[2010/02/22 16:46:41] <Spruit_elf> nigelk: oh with one puppetmaster and one client it wont be a big issue then
[2010/02/22 16:46:43] <jb> its just being depcreated :)
[2010/02/22 16:46:47] <eidolon> ~kjetilho++
[2010/02/22 16:46:52] <jb> weaselkeeper: yes, definetely.
[2010/02/22 16:46:55] <kjetilho> pluginsync uses a new path
[2010/02/22 16:46:55] <weaselkeeper> I just grabbed the latest that was in epel for RH 5.4
[2010/02/22 16:46:57] <nigelk> weaselkeeper: absofrickinglutely
[2010/02/22 16:47:07] <jb> 0.25.3 is in EPEL
[2010/02/22 16:47:11] <jb> epel-testing at least
[2010/02/22 16:47:11] <nigelk> if you never have to deal with 0.24, you'll be much happier
[2010/02/22 16:47:12] <jgartrel> nigelk: how are you generating server certs with wildcards?
[2010/02/22 16:47:12] <fzzzt> 25
[2010/02/22 16:47:17] <fzzzt> imho
[2010/02/22 16:47:18] <nigelk> jgartrel: by hand
[2010/02/22 16:47:26] <jgartrel> that are signed by the puppet CA?
[2010/02/22 16:47:27] <Spruit_elf> blastwave has just included puppet 25.4
[2010/02/22 16:47:32] <weaselkeeper> ok, I can build new packages if it's not avail. Thanks
[2010/02/22 16:47:39] <jgartrel> con you shoot me a openssl.cnf?
[2010/02/22 16:47:42] <jb> weaselkeeper: RPMs are available
[2010/02/22 16:47:50] <nigelk> jgartrel: I set up the standard openssl CA stuff to do it, I'll see if I can grab a .cnf file today
[2010/02/22 16:48:06] <fzzzt> weaselkeeper: I've used the non-epel rpms on rhel5 and they have worked perfectly (my manifests havent though)
[2010/02/22 16:48:15] <weaselkeeper> I just generally stick to what's in epel release rather than testing for the usual reasons. But in this case. I'd rather jump a version if it is stable, and will need some munging to upgrade later.
[2010/02/22 16:48:26] <jb> weaselkeeper: deinetely jump to 0.25
[2010/02/22 16:48:32] <jgartrel> ok .. thanks I will try and reverse engineer it in the meantime .
[2010/02/22 16:48:34] <jb> defintely rather :)
[2010/02/22 16:49:01] <fzzzt> weaselkeeper: http://tmz.fedorapeople.org/repo/puppet/epel/5/x86_64/
[2010/02/22 16:49:09] <weaselkeeper> thanks
[2010/02/22 16:49:24] <fzzzt> i'm pretty sure those are the same packages that make it into epel
[2010/02/22 16:50:08] @ giskard joined channel #puppet
[2010/02/22 16:51:58] <tmz> fzzzt: Not the exact same, but should always be close. 0.25.4 is in epel-testing now though, just: yum --enablerepo epel-testing update puppet
[2010/02/22 16:54:00] <tmz> Also, if anyone's using and testing those packages, giving positive (or negative) karma at https://admin.fedoraproject.org/updates/EL-5/FEDORA-EPEL-2010-0154 would be welcome. That's for EL-5. There are similar places for fedora and older rhel/centos.
[2010/02/22 16:55:17] <fzzzt> wow, what a captcha that site has
[2010/02/22 16:55:58] @ murkk joined channel #puppet
[2010/02/22 16:59:20] <tmz> fzzzt: :) I've heard it can be a pain in the ass. If you see it, I think that means you don't have a fedora account. If not, then I don't think you can give karma (to prevent drive-by abuse). But that might be different now with the captcha.
[2010/02/22 17:00:08] @ Quit: fzzzt: Read error: Connection reset by peer
[2010/02/22 17:00:31] @ fzzzt joined channel #puppet
[2010/02/22 17:00:47] <fzzzt> It's pretty crazy, but I got them :P
[2010/02/22 17:01:04] <fzzzt> hrm, i don't have an acct, but i left feedback anyway
[2010/02/22 17:02:16] <tmz> Thanks! I think it's about time to get mark that stable. I haven't seen (m)any issues.
[2010/02/22 17:02:52] @ Quit: verwilst: Quit: Ex-Chat
[2010/02/22 17:03:40] @ Quit: lak: Quit: lak
[2010/02/22 17:05:12] @ Quit: rgsteele: Remote host closed the connection
[2010/02/22 17:07:19] @ Quit: alfism: Quit: http://opensolaris.com/
[2010/02/22 17:07:41] @ alfism joined channel #puppet
[2010/02/22 17:08:07] @ Quit: jcape: Ping timeout: 245 seconds
[2010/02/22 17:11:05] @ benlovell joined channel #puppet
[2010/02/22 17:11:40] @ Quit: rcrowley: Quit: rcrowley
[2010/02/22 17:13:13] @ fzzzt left channel #puppet ()
[2010/02/22 17:15:30] @ Quit: mattwynne: Quit: Leaving...
[2010/02/22 17:15:41] @ Quit: eidolon: Quit: Leaving.
[2010/02/22 17:17:57] <showy> 0.25 clients can be used with 0.24 masters ?
[2010/02/22 17:18:59] <Volcane> no
[2010/02/22 17:22:12] <weaselkeeper> any special notes on .24->.25 upgrades with passenger? webrick works fine with my upgrade now, but passenger isn't working. Diving into logs now, but wondered if there's a known issue to check?
[2010/02/22 17:22:39] @ Quit: benlovell: Quit: benlovell
[2010/02/22 17:22:50] @ benlovell joined channel #puppet
[2010/02/22 17:22:50] <nigelk> weaselkeeper: did you update the config.ru file?
[2010/02/22 17:23:02] <weaselkeeper> umm...
[2010/02/22 17:23:11] <nigelk> there should be a full config in ext/rack I think in the source distro
[2010/02/22 17:23:33] <nigelk> it's completely different now and the 0.24.x config.ru doesn't work with 0.25, the new one is much simpler
[2010/02/22 17:23:59] <weaselkeeper> ok, that gives me something to beat on, thanks
[2010/02/22 17:24:04] <nigelk> np
[2010/02/22 17:24:59] <hacim> darn, i just voted for an issue in redmine that I didn't mean to... now I can't unvote :)
[2010/02/22 17:25:24] @ Quit: swygue: Quit: Ex-Chat
[2010/02/22 17:26:23] <barn> hacim: just vote every other issue in redmine up
[2010/02/22 17:26:42] <nigelk> hacim: get two of us to vote it down? :)
[2010/02/22 17:27:06] <hacim> i dont want it voted down either! :)
[2010/02/22 17:27:15] @ Quit: benlovell: Ping timeout: 256 seconds
[2010/02/22 17:31:04] @ Quit: mvn071: Quit: Leaving
[2010/02/22 17:31:39] <weaselkeeper> hrm, puppet0.25 via passenger now up, (using config.ru in ext/rack) but terminating connections Is there something else I have to poke?
[2010/02/22 17:31:48] <weaselkeeper> puppet wiki seems down, so I can't rtfm :P
[2010/02/22 17:32:01] @ Quit: erm_: Quit: leaving
[2010/02/22 17:32:59] @ RedPepper is now known as zz_RedPepper
[2010/02/22 17:35:06] @ Quit: nigelk: Quit: nigelk
[2010/02/22 17:38:47] @ Quit: shenson: Quit: /me taps out
[2010/02/22 17:40:37] @ rellis joined channel #puppet
[2010/02/22 17:40:38] @ Quit: rellis: Remote host closed the connection
[2010/02/22 17:41:08] @ Quit: afletcher: Quit: afletcher
[2010/02/22 17:43:06] @ Quit: blahdeblah: Ping timeout: 245 seconds
[2010/02/22 17:45:03] @ copious joined channel #puppet
[2010/02/22 17:46:40] @ Quit: jaredrhine: Ping timeout: 256 seconds
[2010/02/22 17:47:23] @ Quit: bug: Quit: bug
[2010/02/22 17:49:11] <weaselkeeper> nm, had to roll back to passenger-2.2.4 to work with puppet-0.25.4 hrm
[2010/02/22 17:49:22] <barn> roll the version of passenger dice!
[2010/02/22 17:52:27] <z00dax> weaselkeeper: from 2.2.9 ?
[2010/02/22 17:54:00] @ Quit: giskard: Remote host closed the connection
[2010/02/22 17:54:45] <weaselkeeper> yeah,
[2010/02/22 17:55:17] <z00dax> httpd ? nginx ?
[2010/02/22 17:55:26] <weaselkeeper> some notes about it in the passenger configs page on reductive labs, just installed the mod_passenger and passenger gems from epel and it's fine now apache
[2010/02/22 17:55:45] <weaselkeeper> 2.2.9 was installed from gems, Not sad to see that go.
[2010/02/22 17:56:02] @ \ask_ joined channel #puppet
[2010/02/22 17:56:10] @ Quit: \ask_: Remote host closed the connection
[2010/02/22 17:56:23] @ Quit: \ask: Read error: Connection reset by peer
[2010/02/22 17:56:46] @ \ask joined channel #puppet
[2010/02/22 17:58:55] @ Quit: alban2: Quit: Leaving.
[2010/02/22 17:58:56] @ alban21 joined channel #puppet
[2010/02/22 17:59:02] @ sarah84 joined channel #puppet
[2010/02/22 18:01:02] @ Quit: paxos: Quit: paxos
[2010/02/22 18:01:19] @ Quit: sarah84: Client Quit
[2010/02/22 18:08:45] @ Quit: biertie: Remote host closed the connection
[2010/02/22 18:12:06] @ ahuman joined channel #puppet
[2010/02/22 18:21:20] @ lak joined channel #puppet
[2010/02/22 18:21:49] @ Quit: TREllis: Quit: leaving
[2010/02/22 18:29:24] @ Spads joined channel #puppet
[2010/02/22 18:29:46] @ afletcher joined channel #puppet
[2010/02/22 18:31:09] @ Quit: flakrat: Quit: Leaving
[2010/02/22 18:33:08] @ Quit: kaptk2: Quit: Leaving.
[2010/02/22 18:33:40] <eric0> 2.2.9 working fine here
[2010/02/22 18:33:48] <eric0> with 0.25.4
[2010/02/22 18:34:15] <jrojas> ^+1
[2010/02/22 18:34:35] <eric0> just make sure you add either the httpd.conf->puppet variable mapping , or httpd.conf StdEnvVars -> puppet.conf mapping
[2010/02/22 18:38:51] @ Quit: JD__: Remote host closed the connection
[2010/02/22 18:38:54] @ JD_ joined channel #puppet
[2010/02/22 18:40:41] @ bug joined channel #puppet
[2010/02/22 18:42:22] @ Quit: danbeck: Quit: danbeck
[2010/02/22 18:43:25] @ Quit: Spruit_elf: Quit: Spruit_elf
[2010/02/22 18:43:42] @ Quit: WALoeIII: Quit: Bai.
[2010/02/22 18:49:03] @ Quit: robinbowes: Quit: Leaving
[2010/02/22 18:50:44] @ cwebber joined channel #puppet
[2010/02/22 18:53:36] @ robinbowes joined channel #puppet
[2010/02/22 18:55:45] @ Quit: gebi: Remote host closed the connection
[2010/02/22 18:59:06] @ Quit: Pirate_Hunter: Quit: Oh nO! wHo pUlleD ThE pLUg?
[2010/02/22 18:59:30] @ Quit: bobbyz_: Ping timeout: 248 seconds
[2010/02/22 19:00:34] @ gebi joined channel #puppet
[2010/02/22 19:02:28] <joe-mac> ping jamesturnbull
[2010/02/22 19:02:30] <joe-mac> you around?
[2010/02/22 19:02:36] <jamesturnbull> joe-mac: I am
[2010/02/22 19:03:13] <jamesturnbull> joe-mac: I actually in US timezones this week - actually sitting next to Teyo in Reductive's offices in Portland
[2010/02/22 19:03:27] <jrojas> jamesturnbull: fancy.
[2010/02/22 19:03:27] <joe-mac> o nice, what are you guys getting done?
[2010/02/22 19:04:13] @ jcape joined channel #puppet
[2010/02/22 19:04:48] @ Quit: bug: Quit: bug
[2010/02/22 19:07:01] <jamesturnbull> joe-mac: wiki finally goign to nail the bastard
[2010/02/22 19:08:22] <joe-mac> nice man
[2010/02/22 19:11:57] <jgartrel> nigelk: any chance on that cnf ... Ive hit a brick wall here ...
[2010/02/22 19:12:00] <jgartrel> 11586:error:0E06D06C:configuration file routines:NCONF_get_string:no value:conf_lib.c:329:group= name=unique_subject
[2010/02/22 19:12:21] <jgartrel> the "group= " I have no idea how to get passed
[2010/02/22 19:12:49] <jgartrel> thats using openssl to generate the cert from the CSR
[2010/02/22 19:13:59] <jgartrel> is there a way to get puppetca to sign a CSR that was generated manually?
[2010/02/22 19:14:47] <jrojas> jgartrel: what are you trying to do?
[2010/02/22 19:15:16] <jgartrel> sign a csr with wildcars in the subject alt name
[2010/02/22 19:15:40] <jrojas> jgartrel: cant you just use openssl to sign it and then put it in the appropriate place for the puppetmaster?
[2010/02/22 19:16:01] <jgartrel> sigh ... Im getting the error above
[2010/02/22 19:16:02] <jgartrel> 11586:error:0E06D06C:configuration file routines:NCONF_get_string:no value:conf_lib.c:329:group= name=unique_subject
[2010/02/22 19:17:15] <jgartrel> and yes I have unique_subject in my conf, but not in the null section
[2010/02/22 19:17:28] <jgartrel> I have no idea how to put something in the null group
[2010/02/22 19:18:50] <jrojas> jgartrel: so set a groupchange unique_subject=no ?
[2010/02/22 19:19:17] <jgartrel> its in the ca group
[2010/02/22 19:19:26] <jgartrel> but still the error persists
[2010/02/22 19:20:26] * tessier ponders someday putting his virtual machine configs in a db and generating the config files using a puppet template pulling stuff out of the db
[2010/02/22 19:21:08] <jrojas> jgartrel: can you share your openssl.cnf?
[2010/02/22 19:21:36] <jgartrel> root@netops-puppet-01 cert]# cat p.cnf
[2010/02/22 19:21:36] <jgartrel> [ ca ]
[2010/02/22 19:21:36] <jgartrel> default_ca = CA_default
[2010/02/22 19:21:37] <jgartrel> [ CA_default ]
[2010/02/22 19:21:37] <jgartrel> dir = ./ssl/ca
[2010/02/22 19:21:37] <jgartrel> # unsed at present, and my limited certs can be kept in current dir
[2010/02/22 19:21:38] <jgartrel> certs = $dir/certs
[2010/02/22 19:21:38] <jgartrel> new_certs_dir = $dir/signed
[2010/02/22 19:21:39] <jgartrel> crl_dir = $dir/crl
[2010/02/22 19:21:40] <jgartrel> database = $dir/index
[2010/02/22 19:21:40] <jgartrel> certificate = $dir/ca_crt.pem
[2010/02/22 19:21:41] <jgartrel> serial = $dir/serial
[2010/02/22 19:21:41] <jrojas> jgartrel: with pastie
[2010/02/22 19:21:42] <jgartrel> crl = $dir/ca_crl.pem
[2010/02/22 19:21:42] <jgartrel> private_key = $dir/ca_key.pem
[2010/02/22 19:21:43] <jgartrel> RANDFILE = $dir/private/.rand
[2010/02/22 19:21:43] <jgartrel> x509_extensions = usr_cert
[2010/02/22 19:21:44] <jgartrel> # Make new requests easier to sign - allow two subjects with same name
[2010/02/22 19:21:45] <jgartrel> # (Or revoke the old certificate first.)
[2010/02/22 19:21:56] <jgartrel> commonName = supplied
[2010/02/22 19:21:56] <jgartrel> emailAddress = optional
[2010/02/22 19:21:56] <jgartrel> # For the 'anything' policy
[2010/02/22 19:21:57] <jgartrel> # At this point in time, you must list all acceptable 'object'
[2010/02/22 19:21:57] <jgartrel> # types.
[2010/02/22 19:21:58] <jgartrel> [ policy_anything ]
[2010/02/22 19:21:58] <jgartrel> countryName = optional
[2010/02/22 19:21:58] <jrojas> ..
[2010/02/22 19:21:59] <jgartrel> stateOrProvinceName = optional
[2010/02/22 19:21:59] <jgartrel> localityName = optional
[2010/02/22 19:22:00] <jgartrel> organizationName = optional
[2010/02/22 19:22:00] <jgartrel> organizationalUnitName = optional
[2010/02/22 19:22:01] <jgartrel> commonName = supplied
[2010/02/22 19:22:02] <jgartrel> emailAddress = optional
[2010/02/22 19:22:02] <jgartrel> lol
[2010/02/22 19:22:02] <jrojas> use pastie
[2010/02/22 19:22:03] <jgartrel> sorry
[2010/02/22 19:22:03] <jgartrel> excuse me
[2010/02/22 19:22:15] <jrojas> pastie.org
[2010/02/22 19:22:23] <jgartrel> http://www.pastie.org/837875
[2010/02/22 19:22:39] <jgartrel> I mean excuse me for the pastie
[2010/02/22 19:22:54] <jgartrel> I didnt copy the link
[2010/02/22 19:22:57] <jgartrel> lol
[2010/02/22 19:24:37] <jgartrel> Sorry to all about the paste ... It was meant to be the link to pastie ... but that never made it to my clipboard
[2010/02/22 19:25:12] <jrojas> jgartrel: were you following any specific instructions?
[2010/02/22 19:25:25] <jgartrel> no ... groping in the dark
[2010/02/22 19:25:48] <jgartrel> Ive been able to generate the appropriate CSR
[2010/02/22 19:25:53] <jgartrel> but not get it signed
[2010/02/22 19:25:58] <jgartrel> close .. though
[2010/02/22 19:26:03] <jgartrel> just the error above
[2010/02/22 19:26:24] @ Quit: benkevan: Remote host closed the connection
[2010/02/22 19:28:03] <jrojas> jgartrel: try using the conf here: http://reductivelabs.com/trac/puppet/wiki/PuppetScalability and modify it for your needs?
[2010/02/22 19:28:54] @ Quit: Eghie: Ping timeout: 272 seconds
[2010/02/22 19:29:08] <jgartrel> Im not sure thats any different from mine ... trying though
[2010/02/22 19:29:55] @ Quit: cwebber: .net .split
[2010/02/22 19:29:56] @ Quit: afletcher: .net .split
[2010/02/22 19:29:56] @ Quit: alban21: .net .split
[2010/02/22 19:29:57] @ Quit: \ask: .net .split
[2010/02/22 19:29:57] @ Quit: cmoates: .net .split
[2010/02/22 19:29:58] @ Quit: jason^: .net .split
[2010/02/22 19:29:58] @ Quit: maxagaz: .net .split
[2010/02/22 19:29:58] @ Quit: mizzy: .net .split
[2010/02/22 19:29:59] @ Quit: RSpacePope: .net .split
[2010/02/22 19:30:00] @ Quit: euclid: .net .split
[2010/02/22 19:30:00] @ Quit: monachus: .net .split
[2010/02/22 19:30:01] @ Quit: xmslack: .net .split
[2010/02/22 19:30:04] @ Quit: LapTop006: .net .split
[2010/02/22 19:30:05] @ Quit: Disconnect: .net .split
[2010/02/22 19:30:05] @ Quit: nasrat: .net .split
[2010/02/22 19:30:06] @ Quit: stick: .net .split
[2010/02/22 19:30:07] @ Quit: IronChef: .net .split
[2010/02/22 19:30:08] @ Quit: Clint: .net .split
[2010/02/22 19:30:09] @ xmslack joined channel #puppet
[2010/02/22 19:30:09] <jrojas> jgartrel: why do you want a *.domain cert for the CA anyways?
[2010/02/22 19:30:09] @ jason^ joined channel #puppet
[2010/02/22 19:30:09] @ mizzy joined channel #puppet
[2010/02/22 19:30:10] @ Clint joined channel #puppet
[2010/02/22 19:30:10] @ LapTop006 joined channel #puppet
[2010/02/22 19:30:10] @ Disconnect joined channel #puppet
[2010/02/22 19:30:10] @ euclid joined channel #puppet
[2010/02/22 19:30:10] @ stick joined channel #puppet
[2010/02/22 19:30:11] @ RSpacePope joined channel #puppet
[2010/02/22 19:30:11] @ IronChef joined channel #puppet
[2010/02/22 19:30:13] @ alban2 joined channel #puppet
[2010/02/22 19:30:15] @ nasrat joined channel #puppet
[2010/02/22 19:30:22] @ cmoates joined channel #puppet
[2010/02/22 19:30:28] @ \ask joined channel #puppet
[2010/02/22 19:30:43] @ maxagaz joined channel #puppet
[2010/02/22 19:31:39] @ monachus joined channel #puppet
[2010/02/22 19:33:47] <jgartrel> after touch ./ssl/index ./ssl/index.attr ; and adding the email_in_dn = no to the config file ....
[2010/02/22 19:33:48] <jgartrel> 12522:error:0E06D06C:configuration file routines:NCONF_get_string:no value:conf_lib.c:329:group= name=unique_subject
[2010/02/22 19:33:51] <jgartrel> same error
[2010/02/22 19:34:01] <jrojas> hmm
[2010/02/22 19:34:27] <jrojas> are you sure you are using the proper openssl conf?
[2010/02/22 19:34:54] <jgartrel> openssl version
[2010/02/22 19:34:54] <jgartrel> OpenSSL 0.9.8b 04 May 2006
[2010/02/22 19:34:58] <jgartrel> and the conf you gave me
[2010/02/22 19:35:41] <jgartrel> openssl ca -config p2.cnf -in wc.csr -out wc.cert
[2010/02/22 19:35:55] <jgartrel> where p2.cnf is what you directed me to
[2010/02/22 19:36:25] <jrojas> did you use the same conf to generate the request?
[2010/02/22 19:36:56] <jgartrel> no
[2010/02/22 19:37:30] <jrojas> jgartrel: well that could be a problem...
[2010/02/22 19:40:13] <weaselkeeper> eric0: sorry, been AFK a while, can you elabourate on " just make sure you add either the httpd.conf->puppet variable mapping , or httpd.conf StdEnvVars -> puppet.conf mapping"
[2010/02/22 19:40:47] <jrojas> weaselkeeper: there is a section in the config that adds SSLOptions +StdEnvVars
[2010/02/22 19:40:59] <jrojas> and a bunch of Request header set X- to the vhost config
[2010/02/22 19:41:13] <jrojas> thats what eric0 was referring to
[2010/02/22 19:41:35] <weaselkeeper> jrojas: ok, I can look into that. THanks
[2010/02/22 19:42:10] @ Eghie joined channel #puppet
[2010/02/22 19:49:07] <jgartrel> still no workie
[2010/02/22 19:50:45] <weaselkeeper> jrojas: I already had the SSL stuff enabled as the passenger docs in puppet wiki said, that was working fine with 2.2.9. and puppet 0.24.8, It's working now with the rpm packages of 2passenger 2.2.4 and frankly, I'd rather stick with rpms than gems, so I'll just leave as is.
[2010/02/22 19:53:17] @ Quit: himynameisthor: Read error: Connection reset by peer
[2010/02/22 19:58:21] @ himynameisthor joined channel #puppet
[2010/02/22 20:03:31] @ Djelibeybi joined channel #puppet
[2010/02/22 20:06:56] @ tonyskapunk left channel #puppet ()
[2010/02/22 20:14:27] @ ppickfor joined channel #puppet
[2010/02/22 20:15:10] <eshamow> posed this question in channel a few days ago -- got a response which i thought worked at the time, turned out it doesn't
[2010/02/22 20:15:19] <eshamow> i need to get both x86_64 and i386 versions of a package installed
[2010/02/22 20:15:38] <eshamow> this is on CentOS 4 and 5 set of hosts, running Puppet 0.25.4, yum provider
[2010/02/22 20:15:54] <eshamow> it was recommended that i use 'pkg.i386' and 'pkg.x86_64'
[2010/02/22 20:16:07] <eshamow> this works when called via the command line yum, but not when passed to puppet
[2010/02/22 20:16:14] <eshamow> any ideas?
[2010/02/22 20:17:21] @ Quit: Alagar: Read error: Connection reset by peer
[2010/02/22 20:22:57] @ Quit: jab_doa: Quit: Verlassend
[2010/02/22 20:23:10] @ sebas891 joined channel #puppet
[2010/02/22 20:23:31] @ swygue joined channel #puppet
[2010/02/22 20:25:44] @ joe-mac left channel #puppet ()
[2010/02/22 20:27:53] <nevyn> eshamow: package{ pkg.i386: doen't work?
[2010/02/22 20:28:00] <eshamow> nevyn: nope
[2010/02/22 20:28:12] <eshamow> err: //mod-oas-de/Package[apr_i386]/ensure: change from absent to 0.9.4-24.9 failed: Could not update: Could not find package apr.i386 at /etc/puppet/modules/mod-oas-de/manifests/init.pp:11
[2010/02/22 20:28:30] <eshamow> and the apr_i386 in the first line there is after many attempts at using apr.i386
[2010/02/22 20:28:40] <eshamow> then using a different name from alias, etc etc
[2010/02/22 20:28:50] <nevyn> oh whee.
[2010/02/22 20:28:51] <eshamow> it seems as though puppet can't see the different between both pacakges
[2010/02/22 20:29:45] <eshamow> yum can see it and install straight from the command line.
[2010/02/22 20:30:04] <eshamow> what i'm doing now is defining a custom provider to see if i can force it to install that way...but obviously the yum provider should work
[2010/02/22 20:30:07] @ Quit: ppickfor: Quit: Leaving.
[2010/02/22 20:32:55] @ blahdeblah joined channel #puppet
[2010/02/22 20:38:50] <pquerna> hi, i'm having some trouble getting variable scope right with a template -- the varible I am trying to get always seems to be undefined, even if i use the scope.lookupvar function mentioned on the wiki
[2010/02/22 20:40:30] <Djelibeybi> lak: do you know you just pasted the URL to the GPLv2 instead of your actual LVM module in your email to puppet-dev? :)
[2010/02/22 20:40:41] <lak> hur
[2010/02/22 20:40:42] <lak> no
[2010/02/22 20:40:44] <lak> :/
[2010/02/22 20:40:45] <lak> crap
[2010/02/22 20:41:36] <Djelibeybi> I was considering a facetious reply showing the --debug output when I try to use the GPLv2 as a module, but I sat quietly until that feeling passed.
[2010/02/22 20:41:55] @ cliff-hm joined channel #puppet
[2010/02/22 20:42:29] <lak> Djelibeybi: i appreciate it :)
[2010/02/22 20:42:33] <eshamow> nevyn: just found a bug that seems to indicate that it won't be fixed -- take a look at #1380
[2010/02/22 20:42:34] <gepetto> eshamow: nevyn: #1380 is http://projects.reductivelabs.com/issues/show/1380 "Puppet - Bug #1380: type package with yum installs/updates native arch - ReductiveLabs.com"
[2010/02/22 20:42:38] <Djelibeybi> lak: I thought you might.
[2010/02/22 20:42:46] <eshamow> heh -- gepetto -- talk about timing
[2010/02/22 20:43:02] <eshamow> any known workarounds? nothing in the ticket really helps
[2010/02/22 20:43:31] @ DrHouseMD is now known as HouseAway
[2010/02/22 20:43:50] <Djelibeybi> lak: question about that namespace issue for LVs: Can't I have logical_volume { "vgname-lvname": name => "lvname", volume_group => "vgname", }
[2010/02/22 20:44:11] <Djelibeybi> eshamow: gepetto is a bot. he was kindly showing us the URL to the bug you found
[2010/02/22 20:44:23] <eshamow> oh crap. well that explains his awesome timing
[2010/02/22 20:44:29] <eshamow> thanks Djelibeybi
[2010/02/22 20:44:38] <pquerna> hmm. actually, looks like its concating it into a string: http://pastebin.com/m5539a19d instead of a list.
[2010/02/22 20:47:49] <eshamow> ok looks like i may have found a workaround. but it relies on specifying an exact version number
[2010/02/22 20:48:33] <eshamow> package { 'apr_i386':
[2010/02/22 20:48:34] <eshamow> name => 'apr',
[2010/02/22 20:48:34] <eshamow> ensure => '0.9.4-24.9', }
[2010/02/22 20:48:42] <eshamow> apologies -- that should be
[2010/02/22 20:48:45] <eshamow> name => 'apr.i386'
[2010/02/22 20:48:50] <eshamow> will not work. however:
[2010/02/22 20:49:00] <eshamow> package { 'apr_i386':
[2010/02/22 20:49:00] <eshamow> name => 'apr-0.9.4-24.9.i386',
[2010/02/22 20:49:00] <eshamow> ensure => installed,
[2010/02/22 20:49:00] <eshamow> }
[2010/02/22 20:49:01] <eshamow> will
[2010/02/22 20:49:24] <eshamow> looks like the default yum provider is having trouble appending the architecture to the end of the version number. so as long as you specify an exact version, you are fine
[2010/02/22 20:51:14] <lak> Djelibeybi: i don't understand your question
[2010/02/22 20:51:24] <nevyn> eshamow: gepetto is a bot man
[2010/02/22 20:51:40] <eshamow> yeah i realized, a little late
[2010/02/22 20:51:45] <eshamow> see a few lines back, i did find a workaround
[2010/02/22 20:51:46] <Djelibeybi> lak: nevermind, I just realised my question is stupid.
[2010/02/22 20:51:49] @ Quit: gebi: Ping timeout: 260 seconds
[2010/02/22 20:54:06] @ Quit: jes5: Quit: Leaving.
[2010/02/22 20:56:41] @ Quit: \ask: Remote host closed the connection
[2010/02/22 20:57:07] @ Quit: Djelibeybi: Quit: Leaving
[2010/02/22 20:59:10] @ Quit: eshamow: Quit: eshamow
[2010/02/22 21:00:16] @ plathrop is now known as plathrop-away
[2010/02/22 21:04:40] @ rcrowley joined channel #puppet
[2010/02/22 21:04:42] @ Quit: mezgani: Read error: Operation timed out
[2010/02/22 21:07:34] @ socalzx9r joined channel #puppet
[2010/02/22 21:12:17] @ Quit: blahdeblah: Quit: Leaving.
[2010/02/22 21:22:04] @ Quit: teyo: Quit: teyo
[2010/02/22 21:22:14] @ Quit: socalzx9r: Quit: socalzx9r
[2010/02/22 21:25:32] @ Quit: lak: Quit: lak
[2010/02/22 21:32:24] @ Quit: alfism: Quit: http://opensolaris.com/
[2010/02/22 21:33:28] @ jes5 joined channel #puppet
[2010/02/22 21:33:32] @ Quit: jes5: Client Quit
[2010/02/22 21:33:44] @ Quit: bobbyz: Ping timeout: 246 seconds
[2010/02/22 21:39:18] <ashp> does anyone use that collectd module davidS made?
[2010/02/22 21:39:29] @ Quit: jgartrel: Quit: jgartrel
[2010/02/22 21:41:04] @ fredden left channel #puppet ("Leaving")
[2010/02/22 21:46:55] @ alexine_dsouza joined channel #puppet
[2010/02/22 21:49:30] @ bobbyz joined channel #puppet
[2010/02/22 22:00:52] @ Quit: mizzy: Quit: SIGTERM received; exit
[2010/02/22 22:01:09] @ mizzy joined channel #puppet
[2010/02/22 22:10:16] @ zz_RedPepper is now known as RedPepper
[2010/02/22 22:14:18] @ pkokati_ joined channel #puppet
[2010/02/22 22:14:36] @ Quit: pkokati_: Client Quit
[2010/02/22 22:24:25] @ jgartrel joined channel #puppet
[2010/02/22 22:27:34] @ Quit: cliff-hm: Ping timeout: 256 seconds
[2010/02/22 22:28:25] @ bug joined channel #puppet
[2010/02/22 22:31:01] @ Quit: jcape: Ping timeout: 245 seconds
[2010/02/22 22:33:33] @ bug_ joined channel #puppet
[2010/02/22 22:34:32] @ Quit: bug_: Client Quit
[2010/02/22 22:35:25] @ Quit: bobbyz: Ping timeout: 260 seconds
[2010/02/22 22:36:47] @ Quit: jgartrel: Quit: jgartrel
[2010/02/22 22:36:56] @ jaredrhine joined channel #puppet
[2010/02/22 22:40:03] @ Quit: nb: Ping timeout: 256 seconds
[2010/02/22 22:41:34] @ nb joined channel #puppet
[2010/02/22 22:54:39] @ bobbyz joined channel #puppet
[2010/02/22 22:58:26] @ Bevo joined channel #puppet
[2010/02/22 22:58:30] @ jcape joined channel #puppet
[2010/02/22 22:58:52] <Bevo> jamesturnbull, hey you around ?
[2010/02/22 22:59:38] @ blahdeblah joined channel #puppet
[2010/02/22 22:59:52] <Bevo> can anyone tell me why i can no longer edit pages on the puppet track wiki?
[2010/02/22 23:01:49] @ Quit: bobbyz: Read error: Connection reset by peer
[2010/02/22 23:02:32] @ Djelibeybi joined channel #puppet
[2010/02/22 23:07:29] @ sebas891 left channel #puppet ()
[2010/02/22 23:16:02] <nb> hmm, i have a puppet module which has ensure running for puppet, and it doesn't make it start on my puppetmaster
[2010/02/22 23:16:10] <nb> puppetmasters still need the puppetd running too don't they?
[2010/02/22 23:16:37] <Djelibeybi> nb: only if you want to manage your puppetmaster with puppet
[2010/02/22 23:16:48] <nb> which i do
[2010/02/22 23:16:56] <Djelibeybi> nb: but, if puppet is running, then ensure => running is true.
[2010/02/22 23:17:13] <nb> ooh, so even if i puppetd -t, it will see that it is running?
[2010/02/22 23:17:26] <nb> so it won't start the background service if i run puppet via puppetd -t the first time?
[2010/02/22 23:17:30] <nb> makes sense i guess
[2010/02/22 23:17:35] @ Quit: doubleukay: Ping timeout: 240 seconds
[2010/02/22 23:17:47] <nb> but it did look like it chkconfig'ed it on
[2010/02/22 23:17:55] <Djelibeybi> nb: correct. I get puppet to create a cronjob that checks if puppet is running and starts it if not
[2010/02/22 23:18:05] <Djelibeybi> That also solves the "someone stops puppet" problem
[2010/02/22 23:18:53] @ bobbyz joined channel #puppet
[2010/02/22 23:20:54] <nb> yeah
[2010/02/22 23:26:47] @ LinuxCode joined channel #puppet
[2010/02/22 23:28:30] <LinuxCode> I am trying to use a custom fact, I dumped it into the module, it syncs with the puppet node
[2010/02/22 23:28:40] <LinuxCode> however, running facter doesnt run it
[2010/02/22 23:28:53] <LinuxCode> but exporting the dir as a ruby lib dir does
[2010/02/22 23:29:14] <LinuxCode> anyone know why it might not execute otherwise ?
[2010/02/22 23:30:40] @ joe-mac joined channel #puppet
[2010/02/22 23:32:59] <Djelibeybi> LinuxCode: known bug with running facter manually
[2010/02/22 23:33:07] <LinuxCode> aha!
[2010/02/22 23:33:19] <LinuxCode> was there a fix mate ?
[2010/02/22 23:33:28] <LinuxCode> and if so do you know the version by chance ?
[2010/02/22 23:33:30] <Djelibeybi> LinuxCode: not yet, AFAIK. Next major version of Factor (1.6)
[2010/02/22 23:33:32] <joe-mac> what's that, facter factname working for some facs and not others?
[2010/02/22 23:33:48] <LinuxCode> joe-mac, no, facter not working for the sync dir
[2010/02/22 23:33:49] <Djelibeybi> joe-mac: no, running # facter doesn't show the output of custom facts that have been distributed by Puppet
[2010/02/22 23:33:49] <joe-mac> that one always pisses me off, so i'ber gotten used to running facter \| grep factname
[2010/02/22 23:33:56] <joe-mac> OOOO
[2010/02/22 23:34:09] <joe-mac> i don't have any custom facts yet surprisingly after like a year+ of puoppet
[2010/02/22 23:34:11] <LinuxCode> Djelibeybi, I guess just bashprofile the export then
[2010/02/22 23:34:24] <LinuxCode> temporarily
[2010/02/22 23:34:48] <LinuxCode> at first I thought my fact broke on me haha
[2010/02/22 23:34:50] <Djelibeybi> LinuxCode: that would work
[2010/02/22 23:34:55] @ Quit: bgupta: Quit: bgupta
[2010/02/22 23:34:58] <LinuxCode> I was like O_o
[2010/02/22 23:35:29] <LinuxCode> was james around by chance ?
[2010/02/22 23:35:37] <joe-mac> jamesturnbull should be around
[2010/02/22 23:35:41] <joe-mac> he's in portland this week apparently
[2010/02/22 23:35:45] <LinuxCode> jamesturnbull, ping
[2010/02/22 23:35:47] <joe-mac> doing the wiki migration
[2010/02/22 23:35:51] <Djelibeybi> jamesturnbull is in Portland
[2010/02/22 23:35:55] <Djelibeybi> Oh, snap
[2010/02/22 23:36:03] <joe-mac> yea Djelibeybi guess so
[2010/02/22 23:36:10] <joe-mac> i talked to him a few hours ago
[2010/02/22 23:36:16] <LinuxCode> I need the guys to fix their SMTPD
[2010/02/22 23:36:25] <joe-mac> oh? why'
[2010/02/22 23:36:27] <joe-mac> s that?
[2010/02/22 23:36:32] <LinuxCode> just want to check and see , if they saw my message here
[2010/02/22 23:36:41] <LinuxCode> joe-mac, its not sending a fqdn ehlo
[2010/02/22 23:36:55] @ bgupta joined channel #puppet
[2010/02/22 23:36:56] <joe-mac> oooo i c
[2010/02/22 23:36:57] <LinuxCode> bouncy bouncy email
[2010/02/22 23:37:08] <LinuxCode> ;-}
[2010/02/22 23:37:13] <joe-mac> yea i think james would be the guy on that, i think he is like RL's IT guy lol
[2010/02/22 23:37:35] <joe-mac> it's funny to even think about it like that to me...
[2010/02/22 23:37:41] * LinuxCode would like his login for the wiki
[2010/02/22 23:37:43] <Djelibeybi> I could text him if it's important
[2010/02/22 23:37:51] <LinuxCode> gotta file a bug for puppet.vim
[2010/02/22 23:37:58] <LinuxCode> and errm something else, cant recall
[2010/02/22 23:38:05] <LinuxCode> Djelibeybi, hmmmm
[2010/02/22 23:38:05] <joe-mac> LinuxCode: i can file it if you really don't want to register...
[2010/02/22 23:38:15] <LinuxCode> joe-mac, I want to register
[2010/02/22 23:38:21] <joe-mac> o but the email
[2010/02/22 23:38:24] <LinuxCode> haha
[2010/02/22 23:38:28] <LinuxCode> you see the dilemma!
[2010/02/22 23:38:29] <joe-mac> gotcha
[2010/02/22 23:38:31] <LinuxCode> ;-}
[2010/02/22 23:38:33] <joe-mac> yea man that sucks
[2010/02/22 23:38:35] <Djelibeybi> I'll text jamesturnbull
[2010/02/22 23:38:50] <LinuxCode> Djelibeybi, hmmmm
[2010/02/22 23:38:53] <joe-mac> everyone who uses puppet should register on the wiki and the bug tracker especially imo
[2010/02/22 23:38:58] <LinuxCode> I dont like disturbing him
[2010/02/22 23:39:17] <joe-mac> people like me who are not heavy coders, i feel like it's our duty to do the little stuff like file bugs and help out in here
[2010/02/22 23:39:22] <LinuxCode> but it not being rfc compliant is kinda a bummer
[2010/02/22 23:39:32] <LinuxCode> joe-mac, hehe yeh
[2010/02/22 23:39:35] <joe-mac> i didn't know the RFC called for FQDN
[2010/02/22 23:39:42] <Djelibeybi> LinuxCode: sent. I don't mind disturbing him at all. :)
[2010/02/22 23:39:45] @ Quit: mikerowehl: Quit: mikerowehl
[2010/02/22 23:39:49] <LinuxCode> Djelibeybi, hehe k
[2010/02/22 23:39:54] <joe-mac> Djelibeybi: are you a coworker of his or something?
[2010/02/22 23:40:03] <LinuxCode> just ask him to change the hostname to be fqdn
[2010/02/22 23:40:05] <Djelibeybi> joe-mac: no, he's one of my 3 best friends.
[2010/02/22 23:40:47] <joe-mac> o nice, so you gusy actually go back?
[2010/02/22 23:40:49] <Djelibeybi> joe-mac: though don't tell him that. it'll go right to his head.
[2010/02/22 23:41:18] <joe-mac> i only have a couple friends in it, well, had, now it's down to one after an ex had relations with him rofl
[2010/02/22 23:41:22] <LinuxCode> yeh, best to keep close people as "enemies"
[2010/02/22 23:41:25] <LinuxCode> makes them work harder
[2010/02/22 23:41:27] <LinuxCode> haha
[2010/02/22 23:41:29] <LinuxCode> j/k
[2010/02/22 23:41:53] <joe-mac> while she wasn't an ex... lmao was about to get him an interview to do QA for red hat too...
[2010/02/22 23:41:56] <Djelibeybi> joe-mac: we've known each other for about 2 years now. Ironically, I'm now a vendor consultant to the company for which he works.
[2010/02/22 23:42:14] <joe-mac> sweet, what kind of stuff do you sell, sw, hw?
[2010/02/22 23:42:51] @ Quit: bobbyz: Read error: Operation timed out
[2010/02/22 23:43:04] @ bobbyz joined channel #puppet
[2010/02/22 23:43:39] * Djelibeybi works for Oracle, so .. yes.
[2010/02/22 23:43:51] <joe-mac> o yea that's right now i reemember
[2010/02/22 23:44:08] <joe-mac> there's one right in burlington, which is funny cause it's the buuilding directly next door to
[2010/02/22 23:44:10] <joe-mac> SAP
[2010/02/22 23:44:18] <joe-mac> (massachusetts)
[2010/02/22 23:44:26] @ doubleukay joined channel #puppet
[2010/02/22 23:44:57] <LinuxCode> Djelibeybi, if he calls you say I said hi
[2010/02/22 23:45:22] <Djelibeybi> LinuxCode: I doubt he'll call. I'll get a rude text in a few hours, I'd imagine. ;-)
[2010/02/22 23:45:29] <LinuxCode> lol k
[2010/02/22 23:45:30] @ ccaum joined channel #puppet
[2010/02/22 23:45:35] @ Quit: ccaum: Client Quit
[2010/02/22 23:45:35] <joe-mac> haha... now that's what friends are for
[2010/02/22 23:45:42] <joe-mac> rude and/or drunken texts and vms
[2010/02/22 23:46:17] <LinuxCode> I thought that privilege was restricted to brothers/sisters
[2010/02/22 23:46:27] <joe-mac> took me a while to get my company to pay for me to have a phone so i had it going to my blackberry, which meant i could never turn it off so drunken phone calls waking me up became the norm for a few months, soooo glad i now have a work cell
[2010/02/22 23:46:50] <LinuxCode> joe-mac, Red Hat ?
[2010/02/22 23:47:05] <joe-mac> yea i used to work there at the westford office
[2010/02/22 23:47:12] <LinuxCode> k
[2010/02/22 23:47:43] <joe-mac> not an engineer, i was on the 'helpdesk', hated the term cause it was like supporting, deploying desktops and laptops for a world wide mass of people...
[2010/02/22 23:48:19] <LinuxCode> yeh, spot has some funny stories while he used to do that
[2010/02/22 23:48:24] <joe-mac> it was fun, real fun... i just felt like i was digging deeper and deeper into the 'support hole'
[2010/02/22 23:48:31] <joe-mac> spot? the sparc lead guy?
[2010/02/22 23:48:34] <LinuxCode> I understand that feeling
[2010/02/22 23:48:43] <LinuxCode> Tom
[2010/02/22 23:49:06] <joe-mac> callaway was it?
[2010/02/22 23:49:11] <LinuxCode> yah
[2010/02/22 23:49:19] <joe-mac> yea he sat directly across from me in the old office heh
[2010/02/22 23:49:26] <LinuxCode> haha cool
[2010/02/22 23:49:38] <joe-mac> i was a total sparc geek when i was a teenager so i used to geek out in his cube sometimes lol
[2010/02/22 23:49:48] <joe-mac> he's no longer with RH?
[2010/02/22 23:49:48] <LinuxCode> lol
[2010/02/22 23:49:52] <LinuxCode> he is
[2010/02/22 23:49:55] <joe-mac> oooo ok
[2010/02/22 23:50:26] <joe-mac> i was gonna say, he was pretty good from what i understood, made aurora linux back when rh stopped making sparc edition
[2010/02/22 23:51:00] <joe-mac> and when i left they were thinking or working on making FC have a sparc version
[2010/02/22 23:51:15] <LinuxCode> Fedora has one now
[2010/02/22 23:51:16] <joe-mac> idk what ever happened with that
[2010/02/22 23:51:21] <joe-mac> really they finally did it eh
[2010/02/22 23:51:45] <joe-mac> that's cool i'm thinking about buying a t2000 and colo'ing it
[2010/02/22 23:51:50] <LinuxCode> http://fedoraproject.org/wiki/Architectures
[2010/02/22 23:51:57] <joe-mac> LDOMs really make me feel all funny inside
[2010/02/22 23:52:08] <Djelibeybi> joe-mac: you mean Oracle VM Server for SPARC. :p
[2010/02/22 23:52:38] <joe-mac> Djelibeybi: i honestly know very little abiotu oracle products other than i filed expense reports in it at one job
[2010/02/22 23:52:39] <joe-mac> lol
[2010/02/22 23:53:02] <Djelibeybi> joe-mac: we "renamed" LDoms ... or at least, the website did.
[2010/02/22 23:53:07] <Djelibeybi> joe-mac: I was quite amused
[2010/02/22 23:53:26] <LinuxCode> probably too close to "linux domains"
[2010/02/22 23:53:34] <LinuxCode> people (suits) might get confused
[2010/02/22 23:53:35] <joe-mac> O FFS that's so stupid
[2010/02/22 23:53:43] <LinuxCode> lol
[2010/02/22 23:53:45] <Djelibeybi> No, just to bring it into the Oracle VM product family
[2010/02/22 23:53:51] <Djelibeybi> Like VirtualBox is now Oracle VM VirtualBox
[2010/02/22 23:53:52] <LinuxCode> ahh
[2010/02/22 23:54:02] <LinuxCode> will that happen to mysql
[2010/02/22 23:54:06] <LinuxCode> OracelSQL
[2010/02/22 23:54:08] <joe-mac> Oracle MySQL
[2010/02/22 23:54:08] <LinuxCode> haha
[2010/02/22 23:54:09] <joe-mac> lol
[2010/02/22 23:54:16] <Djelibeybi> Heh, I doubt it.
[2010/02/22 23:54:23] <joe-mac> i thjink mysql is actually going to get better
[2010/02/22 23:54:24] <Djelibeybi> I'd be more interested to see what happens to Open/StarOffice
[2010/02/22 23:54:25] <LinuxCode> not for the next 5 years anyway
[2010/02/22 23:54:33] <LinuxCode> they made a promise
[2010/02/22 23:54:36] <joe-mac> i have a feeling they will put some features in it from the big DB
[2010/02/22 23:54:50] <LinuxCode> joe-mac, I think they will scrap mysql
[2010/02/22 23:54:51] <joe-mac> supposedly they're going to invest in sparc hardware
[2010/02/22 23:54:53] <LinuxCode> ;-\|
[2010/02/22 23:54:56] <joe-mac> LinuxCode: seriously?
[2010/02/22 23:55:02] <Djelibeybi> LinuxCode: no, we don't
[2010/02/22 23:55:06] <joe-mac> i don't think so man, i think it's so widely used they will make it better
[2010/02/22 23:55:08] <joe-mac> market it more
[2010/02/22 23:55:10] <LinuxCode> Djelibeybi, good, or I keeel you
[2010/02/22 23:55:14] <Djelibeybi> LinuxCode: we want to invest in MySQL as a Microsoft SQL Server killer
[2010/02/22 23:55:24] <joe-mac> Djelibeybi: ++++++
[2010/02/22 23:55:31] <joe-mac> i give oracle a high five for that
[2010/02/22 23:55:31] <LinuxCode> Djelibeybi, ok, now I like Oracle a bit more
[2010/02/22 23:55:38] <Djelibeybi> And if all else fails, there is always MariaDB. :p
[2010/02/22 23:55:44] <Djelibeybi> LinuxCode: we've owned InnoDB for years
[2010/02/22 23:55:45] <LinuxCode> hahah yeh innit
[2010/02/22 23:55:49] <joe-mac> wtf is mariadb
[2010/02/22 23:55:54] <LinuxCode> joe-mac, spin off
[2010/02/22 23:55:55] <joe-mac> really??!?
[2010/02/22 23:55:55] <Djelibeybi> joe-mac: Monty's fork of MySQL
[2010/02/22 23:56:02] <joe-mac> i never even knew that about innodb
[2010/02/22 23:56:07] <LinuxCode> nor me
[2010/02/22 23:56:28] <Djelibeybi> Yeah, we bought Innobase at least 3 years ago
[2010/02/22 23:56:34] <Djelibeybi> And BerkeleyDB
[2010/02/22 23:56:38] <Djelibeybi> We own them both. :)
[2010/02/22 23:57:12] <joe-mac> holy shit
[2010/02/22 23:57:20] <joe-mac> i really had no idea about that
[2010/02/22 23:57:24] <LinuxCode> I should have written that to my MEP
[2010/02/22 23:57:26] <LinuxCode> lol
[2010/02/22 23:57:28] <joe-mac> i thought no one owned berkeley's shit
[2010/02/22 23:57:36] <LinuxCode> but now you say, they want to make it better and invest
[2010/02/22 23:57:44] <LinuxCode> Im more ...optimistic
[2010/02/22 23:57:51] <odyi> What! Is there a real live Oracle person here?

Generated by irclog2html.py 2.8 by Marius Gedminas - find it at mg.pov.lt!