Thursday, 2010-06-10

[2010/06/10 00:00:02] @ Log started by gepetto
[2010/06/10 00:00:02] <n3kl> So the first include that it comes to, it runs
[2010/06/10 00:02:03] <n3kl> Thanks for the insight
[2010/06/10 00:04:04] <n3kl> so If I just put my vars.pp in a class, then include that class in my site.pp... is that the right sort of direction?
[2010/06/10 00:04:21] <ohadlevy> n3kl: while i dont know why you are doing it this way - here is how to do it : http://pastie.org/998847
[2010/06/10 00:05:32] <n3kl> exactly
[2010/06/10 00:05:40] <n3kl> sweet, thanks for that
[2010/06/10 00:05:47] @ Quit: davea1: Quit: Leaving
[2010/06/10 00:08:07] <ohadlevy> n3kl: imho, it will be hard to maintain in the long run
[2010/06/10 00:08:21] <n3kl> yeah, I am thinking through this now
[2010/06/10 00:08:28] <n3kl> I'm not sure how to make this work best
[2010/06/10 00:08:55] <ohadlevy> I'll recommend either going the extlookup way or use a tool like foreman to define variables
[2010/06/10 00:09:08] <n3kl> I am using extlookup...
[2010/06/10 00:09:17] <n3kl> Would you like to hear the thought process?
[2010/06/10 00:09:40] <ohadlevy> n3kl: so just lookup the variable where ever you need it,rather then putting it all in one big place
[2010/06/10 00:11:06] @ shenson joined channel #puppet
[2010/06/10 00:11:13] <Jomo> \help
[2010/06/10 00:11:21] @ Jomo left channel #puppet ()
[2010/06/10 00:11:29] @ Quit: shenson: Client Quit
[2010/06/10 00:11:55] @ Nei joined channel #puppet
[2010/06/10 00:12:26] <Nei> Mongrel/Nginx or Passeger/Apache ?
[2010/06/10 00:12:30] <n3kl> I'l tell you anyway. The $new variable will only be used on hosts that have not been configured yet. So, scp the puppet/ config to the ~root/ on the new server, call puppet --modulepath ~/ro...et/modules ~/root/pu...site.pp
[2010/06/10 00:12:58] <n3kl> the puppet would config the box, and from then on puppet would be run out of /etc/puppet
[2010/06/10 00:13:11] <n3kl> Nei: git
[2010/06/10 00:13:18] <ohadlevy> n3kl: cant you use a fact instead ?
[2010/06/10 00:13:30] <n3kl> like how?
[2010/06/10 00:13:38] <ohadlevy> how do you define if a host has been configured?
[2010/06/10 00:13:39] <n3kl> can you set facts?
[2010/06/10 00:14:06] <n3kl> ohadlevy: manually, log in to the new host, and run puppet new.pp, which would set $new
[2010/06/10 00:14:26] <ohadlevy> n3kl: is there a way you can find out automatically ?
[2010/06/10 00:14:37] <n3kl> Seems like there should be a better way for this
[2010/06/10 00:16:08] <n3kl> surely I could make away
[2010/06/10 00:16:31] @ Quit: n0ts_: Ping timeout: 252 seconds
[2010/06/10 00:16:32] <n3kl> the existence of /etc/puppet/.config
[2010/06/10 00:16:38] <ohadlevy> in your puppet startup script (you dont use a puppetd right) you can just test for a file existence, and then setup the fact
[2010/06/10 00:16:54] <ohadlevy> exactly, then export FACTER_new="true" if that file doesnt exist
[2010/06/10 00:17:24] @ ahuman joined channel #puppet
[2010/06/10 00:17:43] <n3kl> so since I am not using puppetd, do I need to stick to the site.pp naming conventions?
[2010/06/10 00:19:22] <ohadlevy> no
[2010/06/10 00:20:05] <n3kl> I like this export method...
[2010/06/10 00:21:19] <n3kl> ohadlevy, thank you for the help. I think this will make it better and easier to maintain in the long run
[2010/06/10 00:21:34] <ohadlevy> anytime
[2010/06/10 00:36:48] @ gaveen joined channel #puppet
[2010/06/09 21:41:48] @ Log closed by gepetto (log rotation)
[2010/06/10 00:03:08] @ Log started by gepetto
[2010/06/10 00:03:08] @ Quit: DavidS: Read error: Connection reset by peer
[2010/06/10 00:03:49] @ DavidS joined channel #puppet
[2010/06/10 00:14:25] @ giskard joined channel #puppet
[2010/06/10 00:16:30] @ Quit: mattock: Ping timeout: 258 seconds
[2010/06/10 00:22:03] @ DavidS1 joined channel #puppet
[2010/06/10 00:24:47] @ Quit: DavidS: Ping timeout: 245 seconds
[2010/06/10 00:27:21] @ m1nish joined channel #puppet
[2010/06/10 00:31:44] @ mattock joined channel #puppet
[2010/06/10 00:33:25] @ allsystemsarego joined channel #puppet
[2010/06/10 00:36:57] @ verwilst joined channel #puppet
[2010/06/10 00:41:23] @ Quit: blair_: Quit: Ex-Chat
[2010/06/10 00:41:49] @ Ramonster joined channel #puppet
[2010/06/10 00:45:15] @ Quit: emarshall: Quit: emarshall
[2010/06/10 00:54:13] @ floess_chris joined channel #puppet
[2010/06/10 00:56:01] @ DavidS1 is now known as DavidS
[2010/06/10 00:56:09] @ PsychoSid joined channel #puppet
[2010/06/10 00:56:49] @ jab_doa joined channel #puppet
[2010/06/10 01:00:45] @ floess_chris is now known as flooose
[2010/06/10 01:04:18] @ ckauhaus joined channel #puppet
[2010/06/10 01:07:27] @ mauve joined channel #puppet
[2010/06/10 01:07:53] @ Quit: ckauhaus: Client Quit
[2010/06/10 01:08:05] @ ckauhaus joined channel #puppet
[2010/06/10 01:19:18] @ lohapuk joined channel #puppet
[2010/06/10 01:27:34] @ Quit: lohapuk: Quit: Leaving.
[2010/06/10 01:28:09] @ KenjiPops joined channel #puppet
[2010/06/10 01:29:33] @ andrewh joined channel #puppet
[2010/06/10 01:30:01] @ Quit: dreacu666: Ping timeout: 265 seconds
[2010/06/10 01:36:28] @ Quit: ckauhaus: Ping timeout: 272 seconds
[2010/06/10 01:36:30] @ dreacu666 joined channel #puppet
[2010/06/10 01:38:45] @ ckauhaus joined channel #puppet
[2010/06/10 01:40:14] @ alban2 joined channel #puppet
[2010/06/10 01:42:17] @ Quit: tripoux: Ping timeout: 245 seconds
[2010/06/10 01:43:06] @ Quit: ZBigBoss: Quit: KVIrc Insomnia 4.0.0, revision: 3462, sources date: 20090703, built on: 2009/09/09 21:59:43 UTC http://www.kvirc.net/
[2010/06/10 01:43:28] @ ZBigBoss joined channel #puppet
[2010/06/10 01:43:38] @ Quit: ZBigBoss: Client Quit
[2010/06/10 01:45:10] @ Quit: StuZZZs: Remote host closed the connection
[2010/06/10 01:50:43] @ nexx\| joined channel #puppet
[2010/06/10 01:52:29] @ Quit: KenjiPops: Quit: Leaving...
[2010/06/10 01:54:48] @ KenjiPops joined channel #puppet
[2010/06/10 01:57:27] @ tripoux joined channel #puppet
[2010/06/10 02:01:10] @ Quit: ckauhaus: Ping timeout: 272 seconds
[2010/06/10 02:04:13] @ ckauhaus joined channel #puppet
[2010/06/10 02:07:26] @ gebi joined channel #puppet
[2010/06/10 02:08:22] @ Quit: ckauhaus: Client Quit
[2010/06/10 02:08:28] @ ckauhaus joined channel #puppet
[2010/06/10 02:08:46] @ Quit: jkelly: Read error: Operation timed out
[2010/06/10 02:24:33] @ jkelly joined channel #puppet
[2010/06/10 02:32:50] @ Quit: ckauhaus: Ping timeout: 272 seconds
[2010/06/10 02:34:32] @ ckauhaus joined channel #puppet
[2010/06/10 02:38:05] @ Quit: malikai1: Quit: Leaving.
[2010/06/10 02:43:27] @ ohadlevy left channel #puppet ()
[2010/06/10 02:43:36] @ Quit: Cuchulain: Quit: leaving
[2010/06/10 02:51:34] @ sar left channel #puppet ()
[2010/06/10 02:58:44] @ thegcat joined channel #puppet
[2010/06/10 02:59:30] @ thegcat left channel #puppet ()
[2010/06/10 03:01:13] @ tommy joined channel #puppet
[2010/06/10 03:01:13] @ Quit: KenjiPops: Read error: Connection reset by peer
[2010/06/10 03:01:41] @ tommy is now known as Guest4680
[2010/06/10 03:03:19] @ KenjiPops joined channel #puppet
[2010/06/10 03:03:19] @ Quit: Guest4680: Read error: Connection reset by peer
[2010/06/10 03:04:03] @ Quit: malikai: Quit: Leaving.
[2010/06/10 03:04:37] @ malikai joined channel #puppet
[2010/06/10 03:04:38] @ Quit: KenjiPops: Read error: Connection reset by peer
[2010/06/10 03:04:41] @ KenjiPops joined channel #puppet
[2010/06/10 03:05:46] @ Quit: ckauhaus: Ping timeout: 264 seconds
[2010/06/10 03:05:46] @ Quit: KenjiPops: Read error: Connection reset by peer
[2010/06/10 03:06:03] @ KenjiPops joined channel #puppet
[2010/06/10 03:07:44] <nasrat> jamesturnbull: did my review for 3939 fix make sense?
[2010/06/10 03:07:45] @ Quit: KenjiPops: Read error: Connection reset by peer
[2010/06/10 03:08:06] @ Quit: benoit_: Ping timeout: 260 seconds
[2010/06/10 03:08:23] @ KenjiPops joined channel #puppet
[2010/06/10 03:08:36] @ Quit: KenjiPops: Remote host closed the connection
[2010/06/10 03:10:49] <DavidS> nasrat: can you send me a osx log of the failing specs from #339 ?
[2010/06/10 03:10:50] <gepetto> DavidS: nasrat: #339 is http://projects.puppetlabs.com/issues/show/339 "Puppet - Bug #339: puppet assumes that it is called by puppetrun with tags but it's not - Puppet Labs"
[2010/06/10 03:10:56] <DavidS> #3393
[2010/06/10 03:10:57] <gepetto> DavidS: #3393 is http://projects.puppetlabs.com/issues/show/3393 "Facter - Refactor #3393: Facter for MS Windows - Puppet Labs"
[2010/06/10 03:11:25] @ benoit_ joined channel #puppet
[2010/06/10 03:12:44] <nasrat> DavidS: sure
[2010/06/10 03:13:16] <nasrat> DavidS: it seemed like all execs on OS X were failing
[2010/06/10 03:13:59] @ jense joined channel #puppet
[2010/06/10 03:15:01] <nasrat> DavidS: http://gist.github.com/432790
[2010/06/10 03:16:44] <Volcane> nasrat: I see you're now working for the MS clone? :P
[2010/06/10 03:19:11] <nasrat> working on many things :)
[2010/06/10 03:20:13] <DavidS> nasrat: what's the content of Config::CONFIG['host_os'] from facter on OS-X? (see lib/facter/utils/resolution.rb:14 in my patch)
[2010/06/10 03:20:20] <DavidS> this smells
[2010/06/10 03:20:58] <DavidS> and should probably be replaced by "Facter.value(:kernel) == 'windows'"
[2010/06/10 03:23:04] <astinus> Okay this is a weird one, Ubuntu Lucid doesn't seem to have a /usr/share/puppet and the referenced apache2.conf in /usr/share/doc/puppet is also missing. If you do a 'dpkg -L puppetmaster' it doesn't give any indication it can run as a Rack application.
[2010/06/10 03:23:13] <nasrat> DavidS: >> Config::CONFIG['host_os']
[2010/06/10 03:23:13] <nasrat> => "darwin9.0"
[2010/06/10 03:23:19] <nasrat> hmm yeah
[2010/06/10 03:23:24] <DavidS> ouch!
[2010/06/10 03:23:38] <nasrat> the thing is host_os for win32 can vary
[2010/06/10 03:23:48] <astinus> Is anyone able to point out what I'm donig wrong? Unless there is good logic to doing otherwise I'd like a nice simple way to run Puppet under Phusion Passenger, rather than using webrick
[2010/06/10 03:24:12] <DavidS> hmm, but darwin9.0 doesn't match /mswin\|win32\|dos\|mingw\|cygwin/i
[2010/06/10 03:24:21] <nasrat> yeah
[2010/06/10 03:24:22] <nasrat> odd
[2010/06/10 03:24:26] <nasrat> let me have a look
[2010/06/10 03:24:47] <DavidS> do you have the newest version of that branch? the gist somehow doesn'T match what I'd be expecting ...
[2010/06/10 03:24:54] <DavidS> http://github.com/DavidS/facter/commit/eda71a320305cc5248b683e24a8dd6b3ac8ded19
[2010/06/10 03:26:19] <nasrat> git show commit eda71a320305cc5248b683e24a8dd6b3ac8ded19
[2010/06/10 03:26:28] <nasrat> that matches!
[2010/06/10 03:26:40] @ ckauhaus joined channel #puppet
[2010/06/10 03:27:26] <rohanpm> astinus: I followed the instructions on the wiki to set up puppetmaster with passenger, and I don't think you're doing anything wrong; the rack stuff just isn't packaged (yet?)
[2010/06/10 03:27:27] <nasrat> ok so I see Could not retrieve kernelversion: private method `split' called for nil:NilClass
[2010/06/10 03:28:00] <DavidS> strange thing: I'd have expected the spec to be "Facter when provided code as a string should execute the code in the shell on windows" or "... on non-windows"
[2010/06/10 03:29:01] <rohanpm> astinus: I grabbed config.ru from the source tree as mentioned at http://projects.reductivelabs.com/projects/puppet/wiki/Using_Passenger
[2010/06/10 03:29:59] <DavidS> ah, kernelversion is kernelrelease.split
[2010/06/10 03:30:26] <DavidS> ah, kernelversion is Facter['kernelrelease'].value.split('-')[0]
[2010/06/10 03:30:52] <nasrat> think that's just as it's nil
[2010/06/10 03:30:56] <nasrat> as kernel was nil
[2010/06/10 03:31:01] <nasrat> as it didn't exec
[2010/06/10 03:31:17] <DavidS> ah!
[2010/06/10 03:31:57] <DavidS> kernelrelease does setcode 'uname -r' which in turn should be executed by Facter::Util::Resolution
[2010/06/10 03:32:23] <astinus> rohanpm: Okay so I see the apache2.conf floating around and referencing DocumentRoot /usr/share/puppet/rack/puppetmasterd/public/
[2010/06/10 03:32:38] <astinus> rohanpm: Except I don't even have a /usr/share/puppet from the packaged version of Puppet shipped with Lucid
[2010/06/10 03:32:51] <DavidS> nasrat: perhaps the rescue on line 66 of lib/facter/util/resolution.rb?
[2010/06/10 03:32:53] <astinus> rohanpm: So even if I drop in the config.ru somewhere which Apache will grok?
[2010/06/10 03:33:24] <rohanpm> astinus: I'm not sure if it matters where you put it, I simply created that directory...
[2010/06/10 03:34:27] <rohanpm> astinus: actually, I wrote the config to set this up as a puppet module so I couldn't forget how to do it
[2010/06/10 03:34:52] <nasrat> DavidS: sorry I've got stuff to do
[2010/06/10 03:34:53] <DavidS> note to self: do test win32 patches on any *nix before publishing
[2010/06/10 03:35:02] <nasrat> I'll try look at later
[2010/06/10 03:35:13] <DavidS> nasrat: ok, I'll check whether I get the same error on linux, when I'm back from lunch
[2010/06/10 03:35:21] <DavidS> nasrat: thanks for the heads up anyways!
[2010/06/10 03:43:53] @ Quit: ckauhaus: Ping timeout: 258 seconds
[2010/06/10 03:46:29] <nasrat> np this is why I try test things pre push
[2010/06/10 03:46:58] @ Quit: andrewh: Quit: andrewh
[2010/06/10 03:48:10] <nasrat> oddly it seems to work from irb
[2010/06/10 03:49:41] <nasrat> hmm
[2010/06/10 03:49:47] <nasrat> wtf in dtruss -f I see 19371/0x99a44f0: access("./uname\0", 0x1, 0x3) = -1 Err#2
[2010/06/10 03:51:26] <nasrat> I think that have_which is to blame
[2010/06/10 03:56:45] <nasrat> so we are getting the path ./uname for some reason
[2010/06/10 03:57:44] @ MattyM joined channel #puppet
[2010/06/10 03:57:48] <DavidS> nasrat: line#23: which which ?
[2010/06/10 03:57:53] <nasrat> DavidS:
[2010/06/10 03:57:53] <nasrat> >> binary = File.join(File.dirname(code), File.basename(code).split.first)
[2010/06/10 03:57:53] <nasrat> => "./uname"
[2010/06/10 03:58:01] <nasrat> that's the issue
[2010/06/10 03:58:33] <nasrat> File.join("", "foo") creates a relative path
[2010/06/10 03:58:45] <nasrat> which then will fail to be found with which
[2010/06/10 03:58:51] <nasrat> b00m
[2010/06/10 03:59:22] <DavidS> ugh
[2010/06/10 03:59:34] <nasrat> you should be able to write a test on exec for that
[2010/06/10 03:59:49] <DavidS> yeah, will do!
[2010/06/10 04:00:50] <nasrat> you might want to use pathname
[2010/06/10 04:04:49] <matti> ;]
[2010/06/10 04:04:55] <DavidS> I'll restructure the whole check, e.g binary is not usedafter the if have_which and should be moved accordingly, I've got the feeling that there are some other improvements possible
[2010/06/10 04:08:28] <matti> Damn Google.
[2010/06/10 04:08:36] * matti sets Google front page on fire.
[2010/06/10 04:08:54] <barn> when do people ever visit the front page?
[2010/06/10 04:09:29] <kjetilho> when they want to check out the doodle everyone is talking about
[2010/06/10 04:09:36] <DavidS> barn: some people confuse the addressbar and the google front form
[2010/06/10 04:09:56] <Volcane> most people dont know urls exist
[2010/06/10 04:10:02] <Volcane> their home page is a search box
[2010/06/10 04:10:05] <Volcane> and they find what they want that way
[2010/06/10 04:10:13] <Volcane> totally oblivious to the basic concept of a url
[2010/06/10 04:10:19] <barn> that's true actually, you could remove the location bar
[2010/06/10 04:10:24] <barn> and most people wouldn't notice
[2010/06/10 04:10:32] <barn> other than phishers having a wonderful ol' time of it
[2010/06/10 04:10:36] <DavidS> It's amazing that the net still works
[2010/06/10 04:11:27] <Volcane> if i give my mom a url, she types it into the search box and somehow manages from there
[2010/06/10 04:11:51] <Volcane> i couldnt figure out why she couldnt see tings i tell her about, till i looked using logmein how she uses the computer
[2010/06/10 04:12:43] <matti> barn: I do use front page sometimes.
[2010/06/10 04:12:47] <DavidS> which reminds me of a PC-beginners course anno '99. The instructor told the students to move the mouse "left/right and up/down" and see what's happening
[2010/06/10 04:13:04] <barn> DavidS: all good advice! (:
[2010/06/10 04:13:08] <matti> barn: And there is nothing wrong with it.
[2010/06/10 04:13:34] <DavidS> one of the students complained "left/right is obvious, but when I lift the mouse, nothing happens!"
[2010/06/10 04:14:03] <matti> barn: And that is what I've seen this morning: http://twitpic.com/1vi8h0
[2010/06/10 04:14:05] <DavidS> just a point in case that instructions can always be incorrect
[2010/06/10 04:14:12] <kjetilho> can't fault the student for lack of precision on the instructor's part
[2010/06/10 04:14:13] <matti> barn: :)
[2010/06/10 04:14:16] <kjetilho> forward/backward
[2010/06/10 04:14:19] <kjetilho> he should have said
[2010/06/10 04:14:21] <barn> awww (:
[2010/06/10 04:14:40] <matti> barn: Hrhr. Disturbing, isnt it? :)
[2010/06/10 04:15:04] <Volcane> DavidS: i had a user at the isp i did my first support job at who somehow got his mouse upside down day one, and just managed to learn that down is up and up is down and used it that way
[2010/06/10 04:15:21] <DavidS> kjetilho: you are totally right. did I imply fault on the students side?
[2010/06/10 04:16:18] <DavidS> Volcane: ouch!
[2010/06/10 04:20:05] @ jab_doa_ joined channel #puppet
[2010/06/10 04:22:11] @ Quit: n3kl: Ping timeout: 260 seconds
[2010/06/10 04:22:12] @ ckauhaus joined channel #puppet
[2010/06/10 04:24:05] @ n3kl joined channel #puppet
[2010/06/10 04:24:06] @ Quit: n3kl: Changing host
[2010/06/10 04:24:06] @ n3kl joined channel #puppet
[2010/06/10 04:24:16] <unixdaemon> Volcane: and now he runs the accenture technical team ;)
[2010/06/10 04:25:16] @ Quit: gebi: Ping timeout: 276 seconds
[2010/06/10 04:26:23] @ lak joined channel #puppet
[2010/06/10 04:27:09] @ robinbowes joined channel #puppet
[2010/06/10 04:30:37] @ Quit: PsychoSid: Ping timeout: 245 seconds
[2010/06/10 04:30:54] @ PsychoSid joined channel #puppet
[2010/06/10 04:34:15] <malikai> would it be a good idea to set a variable by doing something like $classname::var=x where classname is a foreign class?
[2010/06/10 04:34:22] <nasrat> unixdaemon: wow on irc!
[2010/06/10 04:34:32] <whack> malikai: I'm pretty sure that's not valid.
[2010/06/10 04:34:39] <malikai> or is there another, more appropriate way?
[2010/06/10 04:35:03] <malikai> whack? why not? i can reference foreign class variables that way..
[2010/06/10 04:35:10] <whack> for reading, not changing.
[2010/06/10 04:35:20] <matti> Hi whack
[2010/06/10 04:35:21] <malikai> ok right yea this is why i'm asking
[2010/06/10 04:35:39] <malikai> i imagine it would at least be frowned upon if not outright illegal
[2010/06/10 04:35:45] <whack> malikai: you probably want to use facts instead
[2010/06/10 04:36:02] <whack> though I don't know your particular use case
[2010/06/10 04:36:08] <whack> I don't really use variables in puppet
[2010/06/10 04:36:24] <malikai> well i can do it with fact, the info will be provided by fact anyway
[2010/06/10 04:36:35] <malikai> i guess i'll go down that road
[2010/06/10 04:36:40] <malikai> thanks whack
[2010/06/10 04:36:59] @ Quit: ckauhaus: Ping timeout: 272 seconds
[2010/06/10 04:37:03] <whack> matti: howdy
[2010/06/10 04:37:13] @ Quit: saloxin: Quit: leaving
[2010/06/10 04:39:35] @ ckauhaus joined channel #puppet
[2010/06/10 04:45:10] @ ohadlevy_ joined channel #puppet
[2010/06/10 04:51:29] @ Quit: m1nish: Quit: Leaving
[2010/06/10 04:51:55] <malikai> i have several each of proxy, web, and mail servers.. they all run a monitoring daemon which is configured uniquely for each type of node.. i would like to use one class for setting up the monitoring daemon but i have to be able to put the correct configuration file on each type of host.. would it be a good idea to use the hostname (proxy1,mail2,etc) and strip the number with a regex or something to deploy the correct configuration file
[2010/06/10 04:52:24] <malikai> this doesn't exactly seem like an elegant solution to the problem
[2010/06/10 04:52:39] @ Quit: omry\|work: Read error: Operation timed out
[2010/06/10 04:53:12] <malikai> should i maybe use tags or groups for this?
[2010/06/10 04:53:25] @ Quit: lak: Quit: lak
[2010/06/10 04:53:29] @ marley joined channel #puppet
[2010/06/10 04:55:14] <malikai> i often think i would have made a better butcher than a surgeon
[2010/06/10 04:55:38] <matti> malikai: What about a vet?
[2010/06/10 04:55:39] <matti> ;]
[2010/06/10 04:57:02] <malikai> veteran, maybe.. of some barbarian war :)
[2010/06/10 04:58:56] <matti> ;D
[2010/06/10 04:59:09] <matti> malikai The Barbarian
[2010/06/10 04:59:21] @ Quit: jkelly: Ping timeout: 265 seconds
[2010/06/10 04:59:25] <malikai> lol
[2010/06/10 05:00:07] <malikai> looking at it, maybe tags are for this sort of problem..
[2010/06/10 05:06:31] <marley> anyone here have a Gitorious manifest?
[2010/06/10 05:09:54] @ Quit: ckauhaus: Ping timeout: 272 seconds
[2010/06/10 05:09:58] @ vachon joined channel #puppet
[2010/06/10 05:10:11] @ vachon left channel #puppet ()
[2010/06/10 05:12:33] @ ckauhaus joined channel #puppet
[2010/06/10 05:13:23] @ jkelly joined channel #puppet
[2010/06/10 05:18:15] @ ahasenack joined channel #puppet
[2010/06/10 05:19:05] @ emarshall joined channel #puppet
[2010/06/10 05:19:13] @ Quit: ckauhaus: Ping timeout: 276 seconds
[2010/06/10 05:21:07] <DavidS> nasrat: pushed a version that passes rake spec on debian and win32
[2010/06/10 05:21:49] <nasrat> DavidS: can you rake mail it too
[2010/06/10 05:21:59] <nasrat> or mail_patches whatever it is :)
[2010/06/10 05:23:19] <nasrat> DavidS: your last chunk has whitespace b0rkage
[2010/06/10 05:23:50] <nasrat> spec/unit/util/resolution.rb:264: trailing whitespace.
[2010/06/10 05:24:11] @ Quit: afletcher: Ping timeout: 248 seconds
[2010/06/10 05:28:21] @ Quit: f3ew: Ping timeout: 265 seconds
[2010/06/10 05:30:20] <DavidS> nasrat: is there an easy way to let git commit fail on whitespace b0rkage? It seems pretty silly to me to allow it on commit, but not on apply
[2010/06/10 05:30:24] @ f3ew joined channel #puppet
[2010/06/10 05:31:03] <nasrat> no it allows it
[2010/06/10 05:31:08] <nasrat> git diff --check
[2010/06/10 05:31:14] <nasrat> and git show --check
[2010/06/10 05:31:23] <nasrat> I don't care too much
[2010/06/10 05:31:42] <nasrat> I'll just ammend your commit
[2010/06/10 05:31:46] <DavidS> + 7b953c6...1adc473 ticket/master/3393 -> ticket/master/3393 (forced update)
[2010/06/10 05:32:01] <DavidS> that's the squashed and cleaned commit
[2010/06/10 05:33:00] <nasrat> ah that'll work
[2010/06/10 05:33:05] <nasrat> I'll nuke my branch and resync
[2010/06/10 05:34:51] @ cygnus joined channel #puppet
[2010/06/10 05:35:43] <DavidS> I also rebased it on top of current reductivelabs/master
[2010/06/10 05:36:23] @ Quit: emarshall: Quit: emarshall
[2010/06/10 05:39:44] @ Quit: jab_doa_: Quit: Verlassend
[2010/06/10 05:42:18] @ gebi joined channel #puppet
[2010/06/10 05:45:07] @ lohapuk joined channel #puppet
[2010/06/10 05:51:23] @ afletcher joined channel #puppet
[2010/06/10 05:51:23] @ Quit: rmiller4pi8: Quit: Leaving.
[2010/06/10 05:54:47] @ Quit: lohapuk: Quit: Leaving.
[2010/06/10 05:57:13] <LeLutin> DavidS: you could use a hook to automatically check for space problems on commit
[2010/06/10 05:57:16] @ cliff-hm-gone joined channel #puppet
[2010/06/10 06:02:17] @ lohapuk joined channel #puppet
[2010/06/10 06:03:23] <DavidS> LeLutin: that'd be nice, it sucks to be able to create patches that aren't wellformed. do you have a link/script at hand or should I just google it?
[2010/06/10 06:09:02] @ MPSimmons joined channel #puppet
[2010/06/10 06:12:13] <LeLutin> DavidS: the sample pre-commit hook that is created with a new repository runs git-rev-parse --verify HEAD .. sounds like it'll check for whitespaces
[2010/06/10 06:13:03] @ lak joined channel #puppet
[2010/06/10 06:13:33] @ felipe` joined channel #puppet
[2010/06/10 06:15:20] @ jrisch joined channel #puppet
[2010/06/10 06:21:18] @ Quit: rhyno: Read error: Connection reset by peer
[2010/06/10 06:25:20] @ Quit: kolla: Remote host closed the connection
[2010/06/10 06:25:41] @ jab_doa_ joined channel #puppet
[2010/06/10 06:27:08] @ Quit: [SMiTTY]: Remote host closed the connection
[2010/06/10 06:27:35] @ [SMiTTY] joined channel #puppet
[2010/06/10 06:27:42] @ marley is now known as dearka
[2010/06/10 06:30:10] @ Quit: Volcane: Ping timeout: 260 seconds
[2010/06/10 06:31:22] @ Quit: a3li: Ping timeout: 276 seconds
[2010/06/10 06:31:46] @ Volcane joined channel #puppet
[2010/06/10 06:31:56] @ a3li joined channel #puppet
[2010/06/10 06:37:44] <DavidS> LeLutin: thanks, will check
[2010/06/10 06:38:54] @ Quit: snoop: Ping timeout: 276 seconds
[2010/06/10 06:41:00] <LeLutin> DavidS: I've been trying out your nagios module recently and puppet screems out an error with the weirdest cause.. I can't find a way to correct the situation.
[2010/06/10 06:42:15] <LeLutin> I've also tried the nagios module developed by Immerda and it gives out exactly the same error. do you think you'd be able to help?
[2010/06/10 06:42:37] <Volcane> LeLutin: not if you dont show the error.
[2010/06/10 06:43:07] @ ckauhaus joined channel #puppet
[2010/06/10 06:45:10] <LeLutin> Volcane: err: Could not retrieve catalog from remote server: Could not intern from pson: Could not convert from pson: Could not find relationship target "Nagios::Host[]"
[2010/06/10 06:45:55] <Volcane> LeLutin: somewhere you have a relationship, like require => Nagios::Host[$foo] and $foo is empty
[2010/06/10 06:46:10] <LeLutin> I'm running puppetd on the puppetmaster host. both puppet and puppetmaster are at version 0.25.4
[2010/06/10 06:46:57] <LeLutin> I've pinpointed the problem and it shows up when the nagios::host function is called (defined in the nagios/manifests/host.pp file)
[2010/06/10 06:49:00] <LeLutin> the exact line that triggers this message is : nagios::host { $fqdn: parents => $nagios_parent }
[2010/06/10 06:49:32] @ Quit: jkelly: Quit: Leaving
[2010/06/10 06:50:23] @ sebas891 joined channel #puppet
[2010/06/10 06:51:04] <DavidS> LeLutin: do set $nagios_parent on your node.
[2010/06/10 06:51:54] <DavidS> LeLutin: and set it to "none" on the nagios master
[2010/06/10 06:52:35] <LeLutin> DavidS: I have the following for the puppetmaster node:
[2010/06/10 06:52:37] <LeLutin> node 'puppetmaster' { $nagios_parent = "physical-host" include baseclass
[2010/06/10 06:52:37] <LeLutin> }
[2010/06/10 06:52:56] <LeLutin> bleh, newlines got munched away
[2010/06/10 06:53:39] <LeLutin> the "baseclass" class does include nagios::target
[2010/06/10 06:54:28] <DavidS> do you have any residue in your storedconfig DB?
[2010/06/10 06:55:06] @ Quit: gaveen: Quit: Leaving
[2010/06/10 06:55:40] @ notbrien joined channel #puppet
[2010/06/10 06:57:46] <LeLutin> if I delete the storeconfigs.sqlite file and restart puppetmaster, no change.
[2010/06/10 06:59:49] @ gaveen joined channel #puppet
[2010/06/10 07:00:10] @ [GuS] joined channel #puppet
[2010/06/10 07:01:35] @ shenson joined channel #puppet
[2010/06/10 07:04:58] @ jdcasey joined channel #puppet
[2010/06/10 07:06:24] @ ohadlevy_ is now known as ohadlevy
[2010/06/10 07:06:57] @ mpdehaan joined channel #puppet
[2010/06/10 07:11:15] @ Quit: gaveen: Ping timeout: 265 seconds
[2010/06/10 07:14:55] @ Quit: ckauhaus: Ping timeout: 276 seconds
[2010/06/10 07:16:49] @ tonyskapunk joined channel #puppet
[2010/06/10 07:18:10] @ ckauhaus joined channel #puppet
[2010/06/10 07:20:21] <LeLutin> DavidS: could it be the sqlite backend is borked? I thought using it for testing would make me go faster..
[2010/06/10 07:26:27] @ Quit: itguru: Ping timeout: 245 seconds
[2010/06/10 07:27:04] @ lohapuk left channel #puppet ()
[2010/06/10 07:27:07] @ pheezy joined channel #puppet
[2010/06/10 07:28:13] @ Quit: allsystemsarego: Quit: Leaving
[2010/06/10 07:30:57] <DavidS> LeLutin: nah, don't think so
[2010/06/10 07:31:16] <DavidS> especially if you're using a fresh db and only one client
[2010/06/10 07:32:23] @ emarshall joined channel #puppet
[2010/06/10 07:33:39] <LeLutin> hmm.. well then I'm lost on this issue.. the only modules I have installed right now are "sudo", which works fine, and "common" and "nagios". but the nagios part doesn't work..
[2010/06/10 07:34:42] @ Quit: PsychoSid: Quit: Leaving.
[2010/06/10 07:37:09] <DavidS> LeLutin: try to reduce it to a smallest failing config and past that to http://paste.debian.net
[2010/06/10 07:37:18] @ Quit: mboyd: Quit: Read error: 131 (Connection reset by beer)
[2010/06/10 07:39:45] @ itguru joined channel #puppet
[2010/06/10 07:40:23] @ reyjrar joined channel #puppet
[2010/06/10 07:46:55] @ Quit: pkhamre: Quit: leaving
[2010/06/10 07:49:59] <LeLutin> DavidS: good idea. I'll try this soon
[2010/06/10 07:53:00] @ Quit: itguru: Quit: Leaving
[2010/06/10 07:58:05] * Volcane wonders if there's a way to run puppet so it just does the new cert dance and exits
[2010/06/10 07:58:46] <joe-mac> make a script that goes through the puppetca steps itself- or you mean send the csr, wait for it, then exit once it's signed?
[2010/06/10 07:59:22] @ rmiller4pi8 joined channel #puppet
[2010/06/10 07:59:29] @ Quit: Ramonster: Quit: So long, thanx for all the fish
[2010/06/10 07:59:36] <Volcane> yeah, just send the csr and exit
[2010/06/10 07:59:38] <Volcane> dont care for the wait
[2010/06/10 08:01:04] <ohadlevy> Volcane: you mean for a new install ?
[2010/06/10 08:01:22] <ohadlevy> Volcane: e.g. skip the run?
[2010/06/10 08:02:29] <Volcane> yup
[2010/06/10 08:02:41] <ohadlevy> Volcane: --tags no_such_tag ?
[2010/06/10 08:03:09] <ohadlevy> Volcane: or --environment no_such_env ?
[2010/06/10 08:03:25] <Volcane> hacky :)
[2010/06/10 08:04:01] <ohadlevy> and you get the facts on the master too :)
[2010/06/10 08:04:15] @ Quit: RageLink: Ping timeout: 240 seconds
[2010/06/10 08:04:43] @ RageLink joined channel #puppet
[2010/06/10 08:06:07] @ Quit: lak: Quit: lak
[2010/06/10 08:09:44] @ Quit: DavidS: Quit: Leaving.
[2010/06/10 08:13:09] @ Quit: dearka: Ping timeout: 276 seconds
[2010/06/10 08:15:59] @ Quit: mbruce: Quit: leaving
[2010/06/10 08:19:04] @ Quit: jrisch: Quit: jrisch
[2010/06/10 08:20:08] @ kaptk2 joined channel #puppet
[2010/06/10 08:23:35] <jason^> i have two datacenters, both with some configuration that is different... what's the best way to deliver different content to individual servers? environments? tags? something else?
[2010/06/10 08:23:36] @ Quit: MattM: Read error: Connection reset by peer
[2010/06/10 08:23:37] @ Quit: verwilst: Quit: Ex-Chat
[2010/06/10 08:24:06] @ Quit: emarshall: Quit: emarshall
[2010/06/10 08:26:04] @ MattM joined channel #puppet
[2010/06/10 08:26:22] <joe-mac> environments or external data lookups
[2010/06/10 08:26:34] <joe-mac> you'll need an add on like ohadlevy's or volcane's for external data lookups...
[2010/06/10 08:29:31] @ steph021 joined channel #puppet
[2010/06/10 08:29:54] @ sijis joined channel #puppet
[2010/06/10 08:30:33] @ Quit: MattM: Client Quit
[2010/06/10 08:31:55] @ MattM joined channel #puppet
[2010/06/10 08:34:13] @ Quit: ckauhaus: Ping timeout: 276 seconds
[2010/06/10 08:34:54] @ Quit: MattM: Read error: Connection reset by peer
[2010/06/10 08:34:59] @ gaveen joined channel #puppet
[2010/06/10 08:37:01] @ MattM joined channel #puppet
[2010/06/10 08:40:44] @ kolla joined channel #puppet
[2010/06/10 08:41:13] @ emarshall joined channel #puppet
[2010/06/10 08:41:20] @ Quit: MattM: Client Quit
[2010/06/10 08:41:37] @ Quit: kolla: Remote host closed the connection
[2010/06/10 08:42:50] @ kolla joined channel #puppet
[2010/06/10 08:43:32] @ MattM joined channel #puppet
[2010/06/10 08:48:23] @ Quit: MattM: Ping timeout: 265 seconds
[2010/06/10 08:48:56] @ Quit: eshamow: Read error: Connection reset by peer
[2010/06/10 08:49:27] @ MattM joined channel #puppet
[2010/06/10 08:49:30] @ Quit: MattM: Read error: Connection reset by peer
[2010/06/10 08:49:33] @ MattM joined channel #puppet
[2010/06/10 08:49:34] @ sub_ joined channel #puppet
[2010/06/10 08:49:48] <sub_> Hi everybody
[2010/06/10 08:49:57] <barn> Hi Doctor Nick!
[2010/06/10 08:50:18] @ Quit: MattM: Read error: Connection reset by peer
[2010/06/10 08:50:35] @ Quit: ssm: Ping timeout: 248 seconds
[2010/06/10 08:51:07] @ Quit: kjetilho: Ping timeout: 248 seconds
[2010/06/10 08:51:10] @ MattM joined channel #puppet
[2010/06/10 08:51:38] @ eshamow joined channel #puppet
[2010/06/10 08:53:02] <sub_> I would like to know if there is a way to use a central puppet Master and ¨slaves ¨ for example for remote sites
[2010/06/10 08:53:54] @ Quit: jdcasey: Remote host closed the connection
[2010/06/10 08:53:57] @ kjetilho joined channel #puppet
[2010/06/10 08:54:45] @ Quit: n3kl: Ping timeout: 272 seconds
[2010/06/10 08:55:54] @ n3kl joined channel #puppet
[2010/06/10 08:57:05] @ Quit: mauve: Quit: Leaving
[2010/06/10 08:57:30] @ henk joined channel #puppet
[2010/06/10 08:57:31] <henk> hi
[2010/06/10 08:57:37] @ Quit: shug: Quit: Leaving
[2010/06/10 08:59:30] @ Quit: emarshall: Quit: emarshall
[2010/06/10 09:01:03] @ emarshall joined channel #puppet
[2010/06/10 09:01:37] <flooose> hi all
[2010/06/10 09:02:31] <sub_> hi
[2010/06/10 09:02:39] <flooose> I'm getting "err: Could not request certificate: Retrieved certificate does not match private key; please remove certificate from server and regenerate it with the current key" on a fresh install of puppet. Does anyone know the best way to go about troubleshooting it?
[2010/06/10 09:03:16] @ Quit: giskard: Remote host closed the connection
[2010/06/10 09:04:43] <flooose> I googled the error and found a thread about it, but it didn't really help me, except that it was potentially a bug
[2010/06/10 09:05:46] <sub_> Did you try to regenerate the certificate ?
[2010/06/10 09:07:41] <flooose> no
[2010/06/10 09:07:48] <flooose> short answer
[2010/06/10 09:08:49] @ Quit: alban2: Quit: Leaving.
[2010/06/10 09:08:51] <flooose> I'm still sort of new at this and since I got to a point in the howto where the server does puppetca --sign mytestclient.domain.com
[2010/06/10 09:09:19] <sub_> cause the certificate is generated from a private key. if the private key is not in sync with the certificate it´s not good
[2010/06/10 09:09:21] <flooose> I thought it might be something else.
[2010/06/10 09:09:57] <sub_> I´m new in the puppet world but this sound more like an authentication problem
[2010/06/10 09:10:12] <ohadlevy> flooose: try puppetca --clean first
[2010/06/10 09:10:22] <flooose> okay
[2010/06/10 09:10:30] <ohadlevy> flooose: then run the client, and afterward sign it :)
[2010/06/10 09:10:34] <flooose> on the server ohadlevy?
[2010/06/10 09:10:49] <ohadlevy> flooose: puppetca on the server, yes
[2010/06/10 09:11:06] @ Quit: sub_: Quit: Page closed
[2010/06/10 09:13:20] @ Mick27 joined channel #puppet
[2010/06/10 09:15:51] <flooose> okay I did "puppetca --clean --all" it returned several "Removing...." lines.
[2010/06/10 09:16:16] <flooose> but client still gives same error
[2010/06/10 09:16:22] <LeLutin> Volcane: I just saw something new that might be related to my problem. in syslog, it says "Host is missing hostname and/or domain: puppetmaster". I guess that's where the empty relationship comes from..
[2010/06/10 09:18:37] <henk> in /etc/puppet/manifests/site.pp i have this: http://pastie.org/999586 however it seems that not all files updated by puppet are also actually backupped. what could be the reason?
[2010/06/10 09:19:49] @ bearnard_ joined channel #puppet
[2010/06/10 09:22:33] <flooose> ohadlevy: I've run puppetmasterd --debug, and got "Could not run: Retrieved certificate does not match private key...". Would removing /etc/puppet/ssl/ maybe help?
[2010/06/10 09:22:47] <ohadlevy> flooose: on the client
[2010/06/10 09:23:17] <flooose> no, this is back on the server because I got the same result after doing what you suggested. Sorry, should have pinged
[2010/06/10 09:23:23] @ sdog joined channel #puppet
[2010/06/10 09:23:48] <ohadlevy> flooose: to be on the safe side, delete the ssldir on the client, and run puppetca --clean fqdn on the master
[2010/06/10 09:23:57] <flooose> strangely enough, it was running because I called kill on the process
[2010/06/10 09:25:46] @ Quit: sdog: Changing host
[2010/06/10 09:25:46] @ sdog joined channel #puppet
[2010/06/10 09:27:30] <flooose> same thing ohadlevy.
[2010/06/10 09:27:53] <flooose> I think I need to go read up on ssl, that stuff is just bewildering to me and I have a feeling it has something to do with that
[2010/06/10 09:28:06] <ohadlevy> flooose: double check that you are delete the correct direcory, its usually in /var/lib/puppet/ssl
[2010/06/10 09:28:09] @ toi joined channel #puppet
[2010/06/10 09:28:21] @ mboyd joined channel #puppet
[2010/06/10 09:29:34] @ lak joined channel #puppet
[2010/06/10 09:29:41] @ morpheus joined channel #puppet
[2010/06/10 09:31:09] <flooose> ohadlevy: it's gone. but the issue at this point is that the server isn't starting after I shut it down
[2010/06/10 09:31:27] <ohadlevy> flooose: the master? why should it?
[2010/06/10 09:31:42] <flooose> what's the difference between /etc/puppet/ssl and /var/lib/puppet/ssl?
[2010/06/10 09:31:53] @ giskard joined channel #puppet
[2010/06/10 09:32:09] <flooose> yeah, the master isn't starting
[2010/06/10 09:32:19] <ptman> flooose, are you sure one isn't a symlink to the other? maybe distro packaging
[2010/06/10 09:32:35] <ohadlevy> flooose: check which one is used in your puppet.conf
[2010/06/10 09:33:09] <flooose> no, I'm doing this with the gems
[2010/06/10 09:37:03] @ Quit: flooose: Quit: Leaving
[2010/06/10 09:37:19] @ Quit: cliff-hm-gone: Ping timeout: 258 seconds
[2010/06/10 09:38:00] @ floess_chris joined channel #puppet
[2010/06/10 09:38:02] @ Quit: MattyM: Remote host closed the connection
[2010/06/10 09:38:13] @ floess_chris is now known as flooose
[2010/06/10 09:38:52] @ Quit: kjetilho: Remote host closed the connection
[2010/06/10 09:40:46] @ Quit: n3kl: Ping timeout: 240 seconds
[2010/06/10 09:42:07] <flooose> ptman: ohadlevy: I think I need to just start the install from scratch. I remember using installer.rb for one machine, then discovering that there was a gem, using it on another machine, then just going with the documentation, which sort of made it sound like there were sane defaults and now i've got ssl directories in two different places
[2010/06/10 09:42:24] @ n3kl joined channel #puppet
[2010/06/10 09:42:27] <flooose> so I think I might be assuming, presuming and speculating too much :)
[2010/06/10 09:45:28] @ Quit: mpdehaan: Quit: mpdehaan
[2010/06/10 09:47:08] @ mpdehaan joined channel #puppet
[2010/06/10 09:49:25] <fluxdude> when doing a define with ($require = undef) I get an error if I do not actually define the require when calling the define
[2010/06/10 09:49:32] <fluxdude> but I just want it to basically have no require
[2010/06/10 09:49:37] <fluxdude> any ideas how to do that?
[2010/06/10 09:50:07] <fluxdude> the only workaround I've been able to come up with is to make it default to a file I know if managed
[2010/06/10 09:50:10] @ Quit: pheezy: Read error: Connection reset by peer
[2010/06/10 09:50:29] @ labrown joined channel #puppet
[2010/06/10 09:50:32] @ pheezy joined channel #puppet
[2010/06/10 09:50:45] <jamesturnbull> odyi: a bit :)
[2010/06/10 09:51:33] @ mpdehaan left channel #puppet ()
[2010/06/10 09:57:50] <jamesturnbull> nasrat: yeah I have sent updated code
[2010/06/10 09:57:59] <jamesturnbull> nasrat: would be good if we cut a release... :)
[2010/06/10 10:03:58] <avocado> if i go with an external node script, will my site.pp still be read for any imports of other classes and defines?
[2010/06/10 10:09:28] @ Quit: piir: Read error: Connection reset by peer
[2010/06/10 10:10:10] @ Quit: flooose: Remote host closed the connection
[2010/06/10 10:14:57] @ Quit: jab_doa_: Remote host closed the connection
[2010/06/10 10:15:08] @ jab_doa_ joined channel #puppet
[2010/06/10 10:15:33] @ tecto joined channel #puppet
[2010/06/10 10:15:33] @ Quit: tecto: Changing host
[2010/06/10 10:15:33] @ tecto joined channel #puppet
[2010/06/10 10:17:52] @ Quit: pmorillo: Quit: pmorillo
[2010/06/10 10:19:27] @ pkhamre joined channel #puppet
[2010/06/10 10:21:03] @ Quit: jaredrhine: Quit: Leaving.
[2010/06/10 10:21:35] @ Alagar joined channel #puppet
[2010/06/10 10:25:42] @ dearka joined channel #puppet
[2010/06/10 10:27:16] @ alexine_dsouza joined channel #puppet
[2010/06/10 10:29:55] @ marley_ joined channel #puppet
[2010/06/10 10:33:40] @ Quit: dearka: Ping timeout: 258 seconds
[2010/06/10 10:34:54] <Insyte> In reading through the "file" type I see a pattern I haven't seen mentioned in any of the documentation for writing custom types: "@event = :file_changed". It seems significant... What is it for and why do other types not have similar constructs?
[2010/06/10 10:38:39] @ Quit: bearnard_: Quit: bearnard_
[2010/06/10 10:39:27] @ marley_ is now known as dearka
[2010/06/10 10:43:47] @ ckauhaus joined channel #puppet
[2010/06/10 10:45:33] @ ghg joined channel #puppet
[2010/06/10 10:48:55] @ Quit: morpheus: Quit: Leaving
[2010/06/10 10:51:52] @ Quit: Bevo: Ping timeout: 245 seconds
[2010/06/10 10:53:19] @ Quit: wakko666: Quit: Ex-Chat
[2010/06/10 10:54:24] @ wakko666 joined channel #puppet
[2010/06/10 10:55:26] @ Quit: ckauhaus: Quit: Leaving.
[2010/06/10 10:56:57] @ plathrop-away is now known as plathrop
[2010/06/10 10:58:03] @ alban2 joined channel #puppet
[2010/06/10 11:02:24] @ Quit: jab_doa_: Quit: Verlassend
[2010/06/10 11:06:25] @ Quit: MattM: Remote host closed the connection
[2010/06/10 11:06:36] <LeLutin> Volcane: ha! seems to be working, finally :) I cleaned the certificate for the puppetmaster host, changed the hostname to add a domain name, removed storeconfigs.sqlite, regenerated a certificate, signed, and now the error is gone
[2010/06/10 11:07:33] <LeLutin> Volcane: so my problem was that facter didn't return any value for the fqdn fact. I needed to use a hostname with a domain name..
[2010/06/10 11:10:43] @ jdcasey joined channel #puppet
[2010/06/10 11:10:46] <jamesturnbull> avocado: yes
[2010/06/10 11:14:32] @ bearnard joined channel #puppet
[2010/06/10 11:16:23] @ jaredrhine joined channel #puppet
[2010/06/10 11:18:06] <gepetto> ::redmine:: Wiki edit: Getting_Help (#4) @ http://projects.reductivelabs.com/projects/1/wiki/Getting_Help?version=4 (by James Turnbull)
[2010/06/10 11:18:28] @ Quit: Alagar: Quit: Leaving.
[2010/06/10 11:20:15] @ pting joined channel #puppet
[2010/06/10 11:20:36] @ agile joined channel #puppet
[2010/06/10 11:21:30] <agile> hey guys, is it pretty straight forward to use puppet to perform user management on a large number of machines? or is it the wrong tool to use
[2010/06/10 11:21:43] @ Alagar joined channel #puppet
[2010/06/10 11:21:51] <agaffney> I use it to manage my root password and one non-ldap user
[2010/06/10 11:21:54] <agaffney> and then ldap for the rest
[2010/06/10 11:21:56] <ashp> no it's pretty straight forward, agile
[2010/06/10 11:22:02] <agile> by user management I just mean setting up users, their ssh keys etc
[2010/06/10 11:22:07] <ashp> I use it to distribute accounts on a handful of servers but it would scale up just fine
[2010/06/10 11:22:37] <agile> you do that by way of recipes?
[2010/06/10 11:22:44] <gepetto> ::redmine:: Wiki edit: Bug_Submission_Guide (#3) @ http://projects.reductivelabs.com/projects/1/wiki/Bug_Submission_Guide?version=3 (by James Turnbull)
[2010/06/10 11:23:49] <agile> we have hundreds of machines.. some we want to ensure always have this handful of users, some with that handful of users etc..
[2010/06/10 11:26:08] <Volcane> agile: its easy as long as you dont have needs where say a user on these machines have these properties and on other sets of machines other properties, then it becomes complex quick
[2010/06/10 11:27:59] @ WALoeIII joined channel #puppet
[2010/06/10 11:29:16] <agile> we're also trying to really quickly evaluate whether to use puppet or chef, I expect some bias in here but why would we choose puppet over chef?
[2010/06/10 11:31:38] <Dominic> bias? here?
[2010/06/10 11:31:56] <ashp> use puppet over chef because chef requires you to do a bunch of ruby stuff and puppet doesn't, that's my opinion :D
[2010/06/10 11:33:12] @ Quit: Alagar: Ping timeout: 265 seconds
[2010/06/10 11:33:58] @ Quit: lak: Ping timeout: 260 seconds
[2010/06/10 11:34:15] <Insyte> ashp: Use puppet over chef because LAK isn't an asshat.
[2010/06/10 11:34:55] <ashp> Insyte: I never had a problem with uh, whatshisname, who wrote chef :)
[2010/06/10 11:35:09] <Insyte> He's done a few things that rubbed me the wrong way...
[2010/06/10 11:35:15] <ashp> holoway? i think
[2010/06/10 11:35:20] <Insyte> But I can't say I've ever actually talked to him.
[2010/06/10 11:35:49] <ashp> he used to be very active in here, was always really helpful
[2010/06/10 11:40:06] <jamesturnbull> agile: So tell us what sort of things you want to do with configuration management?
[2010/06/10 11:40:16] @ Quit: \ask: Remote host closed the connection
[2010/06/10 11:40:19] <jamesturnbull> agile: (disclosure - I work at Puppet Labs)
[2010/06/10 11:40:42] @ cliff-hm joined channel #puppet
[2010/06/10 11:41:01] <dearka> jamesturnbull, when you will come to Brazil? Any entrie in you agenda?
[2010/06/10 11:41:02] <jamesturnbull> agile: and what sort of shop/environment you are? Ruby-savvy developers? Crusty all grey beard *nix geeks? Something else entirely? :)
[2010/06/10 11:41:10] <alxm_> is there a puppet user group in portland?
[2010/06/10 11:41:17] <jamesturnbull> alxm_: there is!
[2010/06/10 11:41:19] <Kiloman> which portland?
[2010/06/10 11:41:19] @ Quit: bearnard: Ping timeout: 272 seconds
[2010/06/10 11:41:23] <alxm_> portland, or
[2010/06/10 11:41:31] <alxm_> jamesturnbull: you have linkage?
[2010/06/10 11:41:33] <Kiloman> the good portland! ;)
[2010/06/10 11:41:41] <alxm_> Kiloman: yep! ;)
[2010/06/10 11:41:47] <agile> first thing is automate creating/deleting user accounts, with appropriate group memberships, setting up their ssh keys, etc.. on appropriate machines
[2010/06/10 11:42:31] <agile> but also the basic admin tasks of installing/upgrading various pieces of software such as nginx gcc etc..
[2010/06/10 11:42:38] <jamesturnbull> alxm_: email c.a.herriges@gmail.com
[2010/06/10 11:42:45] <agile> and we're ruby savvy crusy old unix geeks
[2010/06/10 11:42:57] <jamesturnbull> alxm_: and that's Cody who is odyi here
[2010/06/10 11:43:35] <jamesturnbull> dearka: I'd love to - actually I might ask around about training in South America - do you think there'd be much interest in us running a training in Brasil?
[2010/06/10 11:43:42] * odyi waves at alxm_
[2010/06/10 11:43:44] <alxm_> jamesturnbull: nice - thanks. we have been liking puppet here. I would like to start implementing it more
[2010/06/10 11:43:51] <alxm_> odyi: aloha :)
[2010/06/10 11:44:07] <alxm_> odyi, did you got the plug meeting regarding puppet?
[2010/06/10 11:44:26] <alxm_> odyi, do you have a link to any puppet user group info?
[2010/06/10 11:44:31] <Kiloman> there are a fair number of us using puppet down here in Eugene at UO as well
[2010/06/10 11:44:38] <Kiloman> should do a meetup some time...
[2010/06/10 11:44:52] <dearka> jamesturnbull, a lot of... some friends at IBM and DELL are using puppet too here in Brazil... and the linux comunity is strong here
[2010/06/10 11:44:52] <alxm_> Kiloman: cool - yea - would be nice
[2010/06/10 11:44:58] <jamesturnbull> agile: platform?
[2010/06/10 11:45:09] <jamesturnbull> agile: platform(s) rather :)
[2010/06/10 11:45:20] @ Quit: WALoeIII: Quit: Bai.
[2010/06/10 11:45:58] <agile> jamesturnbull, right now we probably have 60-80% of our machines as aging gentoo boxes, most of the rest are new ubuntu installs and there are a few freebsd machines
[2010/06/10 11:46:02] <odyi> alxm_: I was at Open Source Bridge duing that PLUG meeting and we are still working on getting established so information is sparse. Once I or jamesturnbull is able to get the list of interested people from someone we will start disseminating info more.
[2010/06/10 11:47:14] <odyi> Currently meeting information can be found at http://www.calagator.org when I post them and following, @puppetlabs, @kartar, @igalko, or @odyrf on twitter usually suffices for getting told when events are happening.
[2010/06/10 11:47:19] <agile> jamesturnbull, I expect we'll be phasing the gentoo machines out, for ubuntu installs for a while
[2010/06/10 11:49:34] @ oremj joined channel #puppet
[2010/06/10 11:49:59] <oremj> hey, any reports of memory leaks with puppetmasterd from .25.4 -> .25.5?
[2010/06/10 11:54:10] <jamesturnbull> agile: okay so (obviously ++ bias here) I think Puppet is a more than solid choice on Ubuntu
[2010/06/10 11:55:13] <jamesturnbull> agile: the Ubuntu team has selected Puppet to the standard for integration and for their cloud offering (Chef, cfengine, etc obviously all still work)
[2010/06/10 11:55:33] <jamesturnbull> insert a "be" above
[2010/06/10 11:56:15] <jamesturnbull> it's also a lot "lighter" in terms of requirements - Puppet largely just needs Ruby to run with some extras like Rails if you want to do things like stored configuration (put your config in a DB)
[2010/06/10 11:56:31] <jamesturnbull> as a result it runs easily across a lot of platforms
[2010/06/10 11:58:50] <alxm_> odyi, thanks for the info!
[2010/06/10 11:59:27] <Insyte> jamesturnbull: Annoying question you must hear constantly, but: When is Pro Puppet coming out?
[2010/06/10 12:00:02] <jamesturnbull> Insyte: some issues there - I moved countries in mid-book - and me and the publisher are working out some other issues
[2010/06/10 12:00:23] <Insyte> Heh. And I imagine the country/job change is eating up a fair amount of your time now.
[2010/06/10 12:02:42] <odyi> jamesturnbull: So the IT Operations Manager at Canonical is the individual that had my job before me. Seems fitting after your statement about Ubuntu and Puppet then connecting it with my involvement with PuppetLabs.
[2010/06/10 12:04:28] @ Quit: emarshall: Quit: emarshall
[2010/06/10 12:04:45] @ MattM joined channel #puppet
[2010/06/10 12:07:44] <jamesturnbull> odyi: ah cool
[2010/06/10 12:10:16] @ Quit: steph021: Quit: Leaving
[2010/06/10 12:10:59] @ Quit: [SMiTTY]: Remote host closed the connection
[2010/06/10 12:11:48] <pheezy> Can you override a resource parameter by including a class, or does it have to be inherited?
[2010/06/10 12:12:49] <Kiloman> IIRC has to be inherited, all the way up
[2010/06/10 12:13:04] @ \ask joined channel #puppet
[2010/06/10 12:13:16] <Kiloman> ie; you can't include a setting in class A and then try to override it in A::B
[2010/06/10 12:14:58] <pheezy> hmm i think you're right
[2010/06/10 12:15:06] @ steph021 joined channel #puppet
[2010/06/10 12:15:55] <Kiloman> I'm still on 0.24 but last time I tried that it didn't work
[2010/06/10 12:19:02] @ p3rror joined channel #puppet
[2010/06/10 12:19:48] @ eidolon joined channel #puppet
[2010/06/10 12:19:53] @ WALoeIII joined channel #puppet
[2010/06/10 12:20:48] <eidolon> hi folks, i'm confused here. i have an error mesage in my messages file that says:
[2010/06/10 12:20:49] <eidolon> Jun 10 12:50:58 bos-rep-db03 puppetd[4149]: (//mysql-server/Package[mysql-server]/ensure) change from absent to latest failed: Could not update: Could not find package mysql-server at /etc/puppet/modules/mysql-server/manifests/init.pp:7
[2010/06/10 12:21:11] <eidolon> yet on the host when i do 'yum install mysql-server' I get: Package MySQL-server-community - 5.1.30-0.rhel5.x86_64 already installed and latest version
[2010/06/10 12:21:13] @ \ask_ joined channel #puppet
[2010/06/10 12:21:27] <eidolon> is this because puppet is trying to find 'mysql-server', and yum is munging mysql-server to mysql-server-community?
[2010/06/10 12:22:17] @ ajbourg joined channel #puppet
[2010/06/10 12:23:32] @ Quit: \ask: Ping timeout: 245 seconds
[2010/06/10 12:25:05] <ajbourg> I have a line in a definition that says require => user["${title}"], but puppet is parsing it as a literal user[$title]. How do I get it to parse the username?
[2010/06/10 12:25:39] <ajbourg> I've tried a couple of different variances, but it still parses it as a literal $title rather than the value
[2010/06/10 12:27:30] <ajbourg> hmmm, it's just $title where it does this, no other variable
[2010/06/10 12:27:57] <ajbourg> so for now I put a $username = $title and use require => user[$username] instead and it works fine
[2010/06/10 12:28:09] <ajbourg> not sure why that is, but FYI to anyone else out there...
[2010/06/10 12:29:17] <Kiloman> eidolon: yeah I don't know how puppet handles it when Yum switches out the package name due to Provides: or Obsoletes: substitution
[2010/06/10 12:29:29] <eidolon> meh
[2010/06/10 12:29:30] * eidolon nods
[2010/06/10 12:32:26] @ dorman joined channel #puppet
[2010/06/10 12:32:29] @ allsystemsarego joined channel #puppet
[2010/06/10 12:32:39] <dorman> hello
[2010/06/10 12:33:10] <dorman> I am new here and how do I contribute to Puppet?
[2010/06/10 12:33:15] @ Quit: gebi: Ping timeout: 240 seconds
[2010/06/10 12:33:53] <dorman> anyone here hello????
[2010/06/10 12:34:41] <tmz> dorman: Patience. :)
[2010/06/10 12:34:45] <tmz> http://projects.puppetlabs.com/projects/puppet/wiki/Development_Development_Lifecycle
[2010/06/10 12:35:04] <ashp> anyone else here use RHN?
[2010/06/10 12:35:14] <ashp> If so can you log in and see if it's totally fucking broken for you - or is it just my profile
[2010/06/10 12:35:44] <dorman> Can you answer something for me?
[2010/06/10 12:35:50] <ashp> we can try!
[2010/06/10 12:35:55] <dorman> Are you a dev?
[2010/06/10 12:36:15] <ashp> no, definitely not
[2010/06/10 12:36:54] <dorman> Ok cause I don't know where to go to start building new features for Puppet,but I am not a coder.
[2010/06/10 12:39:59] <dan__t> I've been working with openldap for the past few days.
[2010/06/10 12:40:02] <dan__t> I want to cry.
[2010/06/10 12:40:35] <dorman> Does anyone know if I can design features for Puppet,but not code them?
[2010/06/10 12:40:51] <dorman> You know sort of like an architect.
[2010/06/10 12:41:03] <bleything> dan__t: what class of problems? there's like three different kinds of issues people have with openldap, heh
[2010/06/10 12:41:15] <bleything> dorman: I think that'd be called a feature request.
[2010/06/10 12:41:34] <dan__t> Like, discovering that huge things change between minor versions.
[2010/06/10 12:41:49] <dan__t> And due to bureaucracy and red tape, I couldn't use a newer version of OpenLDAP.
[2010/06/10 12:41:50] <bleything> dan__t: oh really? huh. it's been a few years but that was never my experience. super frustrating though :(
[2010/06/10 12:42:03] <dorman> I know that,but I guess I am saying is it possible to build features into Puppet without knowing code and just like designing maps of it?
[2010/06/10 12:42:19] <bleything> how would that ever be possible?
[2010/06/10 12:42:21] <dorman> Or something like that.
[2010/06/10 12:42:28] <dorman> I don't know
[2010/06/10 12:42:29] <dan__t> an openldap replica is the only thing running on a quad xeon 3.0 w/16G RAM
[2010/06/10 12:42:31] <dan__t> I want that machine real bad.
[2010/06/10 12:42:36] <bleything> ha.
[2010/06/10 12:42:54] <bleything> dorman: I think it's safe to say that no, you can't make a program do something new without writing code.
[2010/06/10 12:42:57] <dan__t> with like 6 15k sas drives, I need that real bad to set up another smtp relay.
[2010/06/10 12:43:09] <dorman> I just like building things in tech,but I hate coding.
[2010/06/10 12:43:19] <dan__t> == dorman
[2010/06/10 12:43:25] <dorman> Well, I don't hate it.
[2010/06/10 12:43:30] <Kiloman> 15k SAS drives for mail!?
[2010/06/10 12:43:37] <dan__t> Its a lot of mail.
[2010/06/10 12:43:45] <Kiloman> must be!
[2010/06/10 12:43:49] <dan__t> spindles are the name of the game
[2010/06/10 12:44:02] <dorman> The passion's just not there for me to code. I guess went over to the Cyber Security side and Cloud Side. lol
[2010/06/10 12:44:09] <dan__t> Some 'tard who put together the other mail relay did so on a raid5, I can't redo that until I can stand up another relay as to not disrupt stuff.
[2010/06/10 12:47:33] <dorman> I just thought maybe you could do some sort architecting in building features with Puppet.
[2010/06/10 12:48:52] <bleything> dorman: I don't really understand what you're asking. "architecting in building features" doesn't mean anything to me.
[2010/06/10 12:49:30] <dorman> Well like Software Architect.
[2010/06/10 12:50:05] <bleything> ...
[2010/06/10 12:50:31] <bleything> architects tend to be programmers first. and the stuff they design gets handed to people to implement.
[2010/06/10 12:53:34] <mackn> most of the time it's just a promotion to keep them there.
[2010/06/10 12:53:35] <mackn> heh
[2010/06/10 12:53:36] <dorman> Ok So what you call a person who just wants to design maybe the layouts or blueprints of the feature. What I mean by blue prints are some sort of way maybe person could design the feature just not in code?
[2010/06/10 12:53:54] @ emarshall joined channel #puppet
[2010/06/10 12:54:08] <Volcane> dorman: a manager
[2010/06/10 12:54:10] <mackn> you mean more like a product designer/manager type of role?
[2010/06/10 12:54:18] @ Quit: emarshall: Client Quit
[2010/06/10 12:54:31] <dorman> Yes,but would they have any role in the design specs or plans?
[2010/06/10 12:54:35] <bleything> sure.
[2010/06/10 12:54:43] <bleything> if that's what you want to do for puppet, you should file feature requests.
[2010/06/10 12:54:49] <Volcane> usually comic relief for the people who do the work :P
[2010/06/10 12:54:53] <mackn> haha
[2010/06/10 12:55:09] <dorman> Ok now were getting somewhere
[2010/06/10 12:55:43] <dorman> So with the feature requests what do I have to submit?
[2010/06/10 12:55:45] <bleything> that's what I said 15 minutes ago.
[2010/06/10 12:55:48] * bleything sigh
[2010/06/10 12:55:54] <dorman> lol
[2010/06/10 12:56:16] <Volcane> dorman: u need to understand the tool first obviously, know how to use it, have used it in the past and come across something u want to do that it cant yet do
[2010/06/10 12:56:41] <bleything> then, write up a document that describes what you want it to do, and some ideas about how it could be implemented.
[2010/06/10 12:56:47] <dorman> Well, I really want to design maybe a Security tool in it.
[2010/06/10 12:56:57] <bleything> how would that work?
[2010/06/10 12:57:03] <Volcane> dorman: just keep reading my sentence over and over :)
[2010/06/10 12:57:07] <mackn> haha
[2010/06/10 12:57:20] <dorman> Could I attach drawings or the feature or specs?
[2010/06/10 12:57:24] <mackn> you need to identify what's wrong now and how you see fixing it..
[2010/06/10 12:57:30] @ DavidS joined channel #puppet
[2010/06/10 12:57:34] <dorman> Ok
[2010/06/10 12:57:57] <bleything> dorman: you can do whatever you want. but if it's not compelling, nobody is going to listen. you're basically asking other people to do your work for you, and if you can't convince them it's a good idea nothing will ever happen
[2010/06/10 12:58:11] <mackn> don't forget to attach a power point presentation
[2010/06/10 12:58:21] <dorman> That's a good point.
[2010/06/10 12:58:27] <dorman> Nice mackn.
[2010/06/10 12:58:28] <dorman> ;)
[2010/06/10 12:58:30] <mackn> heh
[2010/06/10 12:58:41] @ Quit: [GuS]: Remote host closed the connection
[2010/06/10 12:59:28] <dorman> Thanks guys for all your help. I have been trying to join a Cloud Computing or VM Open Source Group. I have had troule getting any responses.
[2010/06/10 13:00:18] <Volcane> have you used any clouds? like run actual things on them?
[2010/06/10 13:00:19] <bleything> dorman: in this world, code speaks louder than words. if you want people to listen to what you have to say, it really helps to be willing to do the work yourself
[2010/06/10 13:00:41] <mackn> unless you have awesome ideas
[2010/06/10 13:00:49] @ gmcquillan joined channel #puppet
[2010/06/10 13:01:13] <dorman> Oh believe me I want to build it I just really struggle with writing code.
[2010/06/10 13:01:37] <dorman> Plus like I said before the passion is not there to code.
[2010/06/10 13:01:57] <dorman> I like building things though just not doing the code part.
[2010/06/10 13:02:14] <Volcane> dorman: you'd probably rather speak to azure cloud users than unix ones
[2010/06/10 13:02:15] <bleything> not to be a dick, but if you're not writing the code you're not building it.
[2010/06/10 13:02:44] <dorman> Right I understand that. Good pint.
[2010/06/10 13:02:58] <bleything> that's not to diminish the contribution of good planning at all. just a terminology issue that's sort of a pet peeve of mine :)
[2010/06/10 13:03:30] @ thekad joined channel #puppet
[2010/06/10 13:03:55] <dorman> Right I understand I just hope you guys understand where I am coming from in terms of wanting to build features,but don't have that power coders get. :)
[2010/06/10 13:04:01] @ Quit: reyjrar: Quit: Leaving.
[2010/06/10 13:07:10] <mackn> just out of curiosity..what is your feature
[2010/06/10 13:07:18] <mackn> or did i miss it in scrollback?
[2010/06/10 13:08:20] @ Quit: \ask_: Remote host closed the connection
[2010/06/10 13:08:37] <dorman> You missed it,but all I said was something really general like securing Puppet more in terms of a Security Feature.
[2010/06/10 13:08:56] @ \ask joined channel #puppet
[2010/06/10 13:08:57] <Volcane> is there somethingw rong with puppets security?
[2010/06/10 13:09:08] <mackn> that's.. quite generic heh
[2010/06/10 13:10:06] <dorman> I know,but I wouldn't know yet I have not checked that out. I am just experimenting here in differnet Open Source VM Communities.
[2010/06/10 13:10:15] <mackn> ah
[2010/06/10 13:10:21] <Volcane> VM community?
[2010/06/10 13:10:21] <bleything> this is hardly a VM community though.
[2010/06/10 13:10:30] <mackn> so you don't know what security measures puppet already utilizes
[2010/06/10 13:10:37] <dorman> I know,but I mean like Cloud.
[2010/06/10 13:10:45] <Volcane> mackn: and he thinks its a VM :P
[2010/06/10 13:10:46] <bleything> that either.
[2010/06/10 13:10:49] <bleything> do you know what puppet does?
[2010/06/10 13:11:01] <dorman> I am just starting out guys. That's why I came here.
[2010/06/10 13:11:37] <Volcane> dorman: it would be helpful if you read the getting started guide, or overview guide on the wiki, so we're all on the right page
[2010/06/10 13:11:41] <mackn> this probably isn't the right place to start out if you're looking for cloud/VM groups
[2010/06/10 13:11:43] <bleything> dorman: I'm trying to be sensitive to that, but it's frustrating when people try to get involved without a basic understanding of what a project does. that's why I asked.
[2010/06/10 13:12:26] <dorman> I know you guys are a datacenter automation framework right?
[2010/06/10 13:12:35] <Volcane> dorman: i think lots of the people here are very familiar with mentoring new people etc, but you should at least take the time to know what it is they're doing, those guides will get you there
[2010/06/10 13:12:59] <dorman> Ok
[2010/06/10 13:13:31] <dorman> Thanks for the advice guys I really appreciate it since I'm a noobie here. :P
[2010/06/10 13:14:39] @ Bass10 joined channel #puppet
[2010/06/10 13:16:27] <dorman> So I'll ask you guys is there any security holes in Puppet? Crazy question I know.
[2010/06/10 13:16:40] @ Quit: Bass10: Max SendQ exceeded
[2010/06/10 13:16:46] <plathrop> facepalm
[2010/06/10 13:16:51] <mackn> if there were it would be fixed haha
[2010/06/10 13:17:02] <mackn> finding the holes is the difficult part:)
[2010/06/10 13:17:15] @ Bass10 joined channel #puppet
[2010/06/10 13:17:27] <mackn> i'm sure there are known issues
[2010/06/10 13:17:40] <dorman> Yeah that's true mackn.
[2010/06/10 13:17:49] <plathrop> dorman: I think you are trying to somersault a whole career's worth of development; it just doesn't work like that.
[2010/06/10 13:18:09] @ devilp joined channel #puppet
[2010/06/10 13:18:33] <plathrop> You can't just call up an engineering firm and say "Hey I want to design the next-gen bullet train, but I don't want to do any small-scale engineering first"
[2010/06/10 13:18:42] <plathrop> well, you can, but they will just hang up on you
[2010/06/10 13:19:10] * mackn puts his phone down.
[2010/06/10 13:19:15] <plathrop> You have to begin at the beginning, proceed through the middle, and then arrive at the end where you are a badass software architect, because you've been in the trenches and written REAL code.
[2010/06/10 13:19:21] <dorman> I am just trying to start out with just helping filling the holes.
[2010/06/10 13:19:33] <mackn> it woudl help if you find the holes
[2010/06/10 13:19:53] <dorman> That's what I want to do and patch them or secure for you.
[2010/06/10 13:19:55] <mackn> and the engineers will fill them in :)
[2010/06/10 13:20:07] <dorman> That's were the tools would come in handy.
[2010/06/10 13:20:09] <plathrop> If you want to start out just helping fill holes, go to projects.reductivelabs.com, pick a ticket, and write a patch for it.
[2010/06/10 13:20:20] <plathrop> even if the patch SUCKS, that's the best place to start
[2010/06/10 13:20:42] <Volcane> mackn: but if you dont code, and dont like coding, and havnt done it. how will you know how to identify them, or what to look for, and how will we put any trust in your prposed fixes?
[2010/06/10 13:20:52] <Volcane> s/mackn/dorman/
[2010/06/10 13:20:58] <Volcane> mackn: sorry :P
[2010/06/10 13:21:06] <dorman> Good point.
[2010/06/10 13:21:12] <mackn> well i figure it's better he find the holes rather then fill them :)
[2010/06/10 13:21:16] <mackn> than
[2010/06/10 13:21:21] <mackn> oh
[2010/06/10 13:21:22] <mackn> haha
[2010/06/10 13:21:36] <dorman> What's Puppet written in?
[2010/06/10 13:21:38] <Volcane> dorman: so if u dig and learn the code, learn the tool and ecosystem, and during the process pick up some coding, then thats a good constructive approach
[2010/06/10 13:21:39] <mackn> ...
[2010/06/10 13:21:42] * mackn wanders away
[2010/06/10 13:21:59] <mackn> sorry.. that's the best line ever
[2010/06/10 13:22:06] <dorman> I know dumb question.
[2010/06/10 13:22:09] <dorman> lol :P
[2010/06/10 13:22:16] <Volcane> dorman: like, back to the introduction pages please
[2010/06/10 13:22:58] <plathrop> headdesk
[2010/06/10 13:23:14] <plathrop> dorman: We're trying to be nice here, but you're starting to look like a troll to me.
[2010/06/10 13:23:29] @ Quit: WALoeIII: Quit: Bai.
[2010/06/10 13:24:22] <dorman> Hey I appreciate it guys.
[2010/06/10 13:24:38] @ Quit: mattock: Ping timeout: 258 seconds
[2010/06/10 13:25:33] <neek> pointer req: can I do "includes" into .erb templates?
[2010/06/10 13:27:03] <Volcane> neek: you want to include a class?
[2010/06/10 13:27:14] @ adrian_broher joined channel #puppet
[2010/06/10 13:27:57] <dorman> IOk here we go
[2010/06/10 13:27:59] <dorman> http://docs.puppetlabs.com/guides/security.html
[2010/06/10 13:28:14] @ danderson joined channel #puppet
[2010/06/10 13:28:18] <neek> Volcane: another template, or even just plain text
[2010/06/10 13:29:12] <Volcane> neek: you can, File.read("/some/file") or whatever, but knowing which path to go look in etc probablys ux
[2010/06/10 13:30:42] <neek> yuck
[2010/06/10 13:30:56] <neek> can I merge two files in a file {} instead? :)
[2010/06/10 13:31:16] <Volcane> template(file1, file2)
[2010/06/10 13:31:24] <Volcane> concatenates them
[2010/06/10 13:31:29] <neek> sweet, that works.
[2010/06/10 13:31:30] <neek> thx
[2010/06/10 13:31:41] <Volcane> or something a bit more powerful try http://github.com/ripienaar/puppet-concat
[2010/06/10 13:32:40] @ thekad is now known as thekad-afk
[2010/06/10 13:32:46] @ thekad-afk is now known as thekad
[2010/06/10 13:34:19] @ Quit: cliff-hm: Ping timeout: 248 seconds
[2010/06/10 13:34:20] @ Quit: dorman: Quit: Page closed
[2010/06/10 13:34:37] <neek> yeah, one of these days.. :)
[2010/06/10 13:34:49] @ Quit: artis: Ping timeout: 264 seconds
[2010/06/10 13:35:02] <zahna> was the --tags flag removed from puppetd's potential arguments?
[2010/06/10 13:35:12] @ artis joined channel #puppet
[2010/06/10 13:35:21] <Volcane> zahna: no
[2010/06/10 13:35:46] @ Quit: nexx\|: Quit: quit
[2010/06/10 13:35:57] @ walkeran joined channel #puppet
[2010/06/10 13:36:21] <zahna> ok, it's not seeming to apply when i use it
[2010/06/10 13:36:54] <zahna> puppetd -t --tags system, ldap::client --fqdn <fqdn>
[2010/06/10 13:37:31] @ Quit: seanos: Ping timeout: 260 seconds
[2010/06/10 13:37:52] <Volcane> does your node file or classifier include those classes?
[2010/06/10 13:39:47] <zahna> on this particular node, yes for system, no for ldap
[2010/06/10 13:39:58] @ Quit: toi: Quit: Ex-Chat
[2010/06/10 13:40:02] <Volcane> cant --tags someting thats not included, sadly
[2010/06/10 13:40:07] <zahna> wait, i think my message is unrelated to tags
[2010/06/10 13:40:31] <zahna> Volcane: i thought it just ignored it
[2010/06/10 13:40:39] <zahna> in fact, i'm pretty sure it just ignores it
[2010/06/10 13:40:42] <Volcane> yes
[2010/06/10 13:40:58] <Volcane> but you were short on details of what symptoms are :)
[2010/06/10 13:41:01] <zahna> but hold on, i might be boneheaded
[2010/06/10 13:41:07] <Volcane> so i am just saying, if u expect it to work, u need to include it
[2010/06/10 13:41:45] <zahna> sure, but on this particular node, i don't want ldap
[2010/06/10 13:41:53] <zahna> it's part of a script
[2010/06/10 13:43:34] <zahna> i'm boneheaded. my error wasn't related to tags.
[2010/06/10 13:44:29] <zahna> i guess even when using tags, puppet builds the entire manifest and parses through it
[2010/06/10 13:45:13] @ skvidal joined channel #puppet
[2010/06/10 13:46:01] <skvidal> hi all. have y'all ever seen a case where a puppet certificate is revoked but the host is stillable to use the cert to authenticate and use puppet normally?
[2010/06/10 13:46:28] <Volcane> did you set up the webserver - apache, nginx, whatever - to look at the crl?
[2010/06/10 13:48:32] <skvidal> yes
[2010/06/10 13:48:42] <skvidal> but I'll verify that it is getting a correct version right now
[2010/06/10 13:49:16] <skvidal> SSLCARevocationFile /var/lib/puppet/ssl/ca/ca_crl.pem
[2010/06/10 13:49:27] <skvidal> that looks right
[2010/06/10 13:50:27] <skvidal> ah
[2010/06/10 13:50:30] <skvidal> I think I've found it
[2010/06/10 13:50:39] <skvidal> SSLVerifyClient is set to 'optional'
[2010/06/10 13:50:57] <skvidal> Volcane: thank you for pointing me to the right place to look, it's appreciated
[2010/06/10 13:51:03] <Volcane> no worries
[2010/06/10 13:51:12] <skvidal> maybe a note
[2010/06/10 13:51:23] <skvidal> the docs here
[2010/06/10 13:51:24] <skvidal> http://projects.puppetlabs.com/projects/puppet/wiki/Using_Mongrel
[2010/06/10 13:51:31] <skvidal> say to use SSLVerifyClient optional
[2010/06/10 13:51:31] @ Quit: labrown: Quit: Leaving
[2010/06/10 13:51:43] <skvidal> which it probably shouldn't
[2010/06/10 13:52:04] <Volcane> there used to be all sorts of crl related bugs
[2010/06/10 13:52:12] <Volcane> but you can edit the wiki and fix it
[2010/06/10 13:52:36] <skvidal> ah ha
[2010/06/10 13:52:36] <skvidal> okay
[2010/06/10 13:52:37] <skvidal> thx
[2010/06/10 13:53:31] @ dorman joined channel #puppet
[2010/06/10 13:53:41] <dorman> Ok I'm back
[2010/06/10 13:53:44] <mackn> nice
[2010/06/10 13:54:06] <dorman> I did some more research on Puppet in the Security Docs.
[2010/06/10 13:54:29] <dorman> Sorry before I was a little frustrated and wanted to get going quickly.
[2010/06/10 13:54:32] <dorman> :P
[2010/06/10 13:54:38] <mackn> what's the rush
[2010/06/10 13:54:47] @ Quit: dearka: Read error: Connection reset by peer
[2010/06/10 13:55:04] <dorman> I just hadn't been getting any repys from any other Open Source Projects.
[2010/06/10 13:55:43] <dorman> So I guess when I found you guys I was happy,but excited. Ok too excited. :P lol
[2010/06/10 13:56:16] <dorman> I just wanna help out.
[2010/06/10 13:57:18] <dorman> http://docs.puppetlabs.com/guides/security.html
[2010/06/10 13:57:45] <dorman> You guys have some good implementations. ;)
[2010/06/10 13:58:04] <Volcane> comes with years of coding experience
[2010/06/10 13:58:06] <Volcane> :P
[2010/06/10 13:58:13] <dorman> I know.
[2010/06/10 13:58:14] @ Quit: cygnus: Quit: Leaving.
[2010/06/10 13:58:29] @ Quit: \ask: Remote host closed the connection
[2010/06/10 13:58:40] <dorman> I bet did does come with a lot of experience.
[2010/06/10 13:59:29] <dorman> Just fergive me for being soft of lost before.
[2010/06/10 13:59:41] <dorman> Sort of lost before.
[2010/06/10 14:00:59] <dorman> Juts want to help out your project. :) So can you guys please help me out?
[2010/06/10 14:01:29] <mackn> what do you need? :)
[2010/06/10 14:02:30] <dorman> First just be welcomed to the project,but I have already had that. :)
[2010/06/10 14:04:10] <mackn> welcome, dorman
[2010/06/10 14:04:39] <dorman> lol You've already welcomed me before it seems when you guys gave me great advice.
[2010/06/10 14:05:48] <dorman> So what do you guys need help with?
[2010/06/10 14:07:10] <mackn> there's a contribute button on the blog
[2010/06/10 14:07:12] <mackn> with some ideas
[2010/06/10 14:07:23] <dorman> Ok
[2010/06/10 14:08:12] @ Quit: jense: Quit: Verlassend
[2010/06/10 14:09:12] <dorman> I can't seem to find the link on the website. Is it http://www.puppetlabs.com/blog
[2010/06/10 14:09:22] @ Quit: Mick27: Quit: Leaving
[2010/06/10 14:09:32] <mackn> it's in the banner at the top
[2010/06/10 14:09:35] <mackn> it's a dropdown
[2010/06/10 14:09:37] <mackn> not really a link
[2010/06/10 14:09:40] <dorman> Never mind got it
[2010/06/10 14:09:44] <dorman> thanks
[2010/06/10 14:09:47] @ Quit: afletcher: Quit: afletcher
[2010/06/10 14:10:55] <dorman> Oh you guys are on Twitter cool.
[2010/06/10 14:11:02] <dorman> I am on their as well.
[2010/06/10 14:12:07] @ skvidal left channel #puppet ("Ex-Chat")
[2010/06/10 14:12:11] <dorman> I like the way you guys do the PupperForge.
[2010/06/10 14:12:20] <dorman> PuppetForge
[2010/06/10 14:13:30] <dorman> No Security Modules. Okay I found 4 networking mods though.
[2010/06/10 14:14:03] <mackn> what's your background? wondering why you're so in to security
[2010/06/10 14:14:03] <BLZbubba> how does puppet figure out where the directory is for this kind of statement: content => template("resolv.conf.erb")
[2010/06/10 14:14:22] <mackn> there is a templatedir config item in puppet.conf ... or something like that
[2010/06/10 14:14:23] <BLZbubba> is template() hard coded to /var/lib/puppet/template or can i move it somewhere else?
[2010/06/10 14:14:29] <mackn> i'm guessing at the name.. templatedir? heh
[2010/06/10 14:14:40] <mackn> but i know it's there in puppet.conf
[2010/06/10 14:14:45] <BLZbubba> ah cool ty
[2010/06/10 14:14:46] <mackn> or can be
[2010/06/10 14:15:02] <dorman> Cyber Security,but I am a student right now.
[2010/06/10 14:15:03] <BLZbubba> i should have checked the man page first, how embarrassing :)
[2010/06/10 14:15:07] <mackn> heh
[2010/06/10 14:15:08] <bleything> you don't say.
[2010/06/10 14:15:18] <dorman> Just trying to get involved.
[2010/06/10 14:15:19] <mackn> a student studying?
[2010/06/10 14:15:26] <mackn> i assume not computer science
[2010/06/10 14:15:27] <mackn> heh
[2010/06/10 14:15:34] <dorman> lol
[2010/06/10 14:16:21] <BLZbubba> cool, i keep manifests, dist, and templates in svn so if they're in 1 dir it will be much easier to deal with
[2010/06/10 14:16:26] <BLZbubba> anything else i should put in svn ?
[2010/06/10 14:17:13] <mackn> i like to backup my certs
[2010/06/10 14:17:25] <mackn> in case the master blows up
[2010/06/10 14:17:34] <mackn> i.. don't wanna deal with re-doing certs
[2010/06/10 14:18:02] <BLZbubba> yeah i have backups too
[2010/06/10 14:18:16] <BLZbubba> don't really need to keep a history of certs :)
[2010/06/10 14:18:19] <mackn> yeah
[2010/06/10 14:18:20] <mackn> heh
[2010/06/10 14:18:41] <mackn> if i backed up my certs elsewhere i'd never find it when i need them haha
[2010/06/10 14:20:59] <joe-mac> mine are in svn
[2010/06/10 14:21:00] @ Quit: dorman: Quit: Page closed
[2010/06/10 14:23:05] <mackn> i pretty much keep everythign in /etc/puppet in svn.. and i moved my templates dir in there as well
[2010/06/10 14:25:05] @ joe-mac left channel #puppet ()
[2010/06/10 14:26:30] <BLZbubba> i guess i could symlink /etc/puppet into /var/lib/puppet/puppetsvn/
[2010/06/10 14:26:40] @ Quit: allsystemsarego: Quit: Leaving
[2010/06/10 14:26:44] @ Quit: DavidS: Quit: Leaving.
[2010/06/10 14:26:54] <BLZbubba> or put dist/templates in /etc/puppet
[2010/06/10 14:27:05] <BLZbubba> my goal is one single directory with all the svn stuff
[2010/06/10 14:27:19] <BLZbubba> and no symlinks
[2010/06/10 14:27:54] <BLZbubba> guess i can do a circular reference, put the puppetmaster config files themselves into puppet, hmm
[2010/06/10 14:29:17] <whack> BLZbubba: you don't use the module layout?
[2010/06/10 14:29:38] <whack> ie; /etc/puppet/modules/modulename/{files,manifests,templates,plugins,...}
[2010/06/10 14:31:11] @ seanos joined channel #puppet
[2010/06/10 14:31:21] <BLZbubba> whack: no, never heard of it
[2010/06/10 14:31:32] <BLZbubba> i am just using the default settings for now
[2010/06/10 14:31:35] @ Quit: kolla: Remote host closed the connection
[2010/06/10 14:31:37] <BLZbubba> in the rpm
[2010/06/10 14:32:09] <whack> http://projects.puppetlabs.com/projects/puppet/wiki/Puppet_Best_Practice
[2010/06/10 14:32:11] <BLZbubba> what modules are there? is there like a faq
[2010/06/10 14:32:12] <BLZbubba> ok ty
[2010/06/10 14:32:27] <whack> rather than dumping all templates in a single directory, you split them into relevant modules by directory
[2010/06/10 14:32:28] @ kolla joined channel #puppet
[2010/06/10 14:32:30] <BLZbubba> i followed a best practice guide like 4 years ago; maybe it's changed since then :)
[2010/06/10 14:32:58] <whack> yeah, much changed.
[2010/06/10 14:33:10] <mackn> heh
[2010/06/10 14:33:31] <mackn> you must have a hairy manifests dir
[2010/06/10 14:35:31] <BLZbubba> plenty of files in there certainly :)
[2010/06/10 14:36:43] @ Quit: steph021: Quit: Leaving
[2010/06/10 14:38:55] @ fredden joined channel #puppet
[2010/06/10 14:44:37] <walkeran> I'm pretty sure I've done this before, but I'm not having a lot of luck looking around online. Is there a param I can pass to puppetd that will either display or save the retreived manifest so I can review them?
[2010/06/10 14:45:38] <whack> walkeran: the catalog is saved to $vardir/client_yaml/catalog
[2010/06/10 14:46:14] <whack> there are tools somewhere that parse the catalog and let you do things with it
[2010/06/10 14:46:15] <walkeran> whack: Oh, right! I was on the wrong track :) Thanks much
[2010/06/10 14:51:04] @ Quit: adrian_broher: Quit: Verlassend
[2010/06/10 14:51:18] <BLZbubba> ok one of the classes i have is a local yum repository
[2010/06/10 14:51:36] <BLZbubba> is there an easy way to make sure it is always first, without specifying it as a dependency in every single package that i define?
[2010/06/10 14:51:58] <BLZbubba> having to run puppetd twice to get a new system up to date drives me ins4ne
[2010/06/10 14:52:50] @ andrew3 joined channel #puppet
[2010/06/10 14:52:59] <Kiloman> BLZbubba: Package{ require => Yumrepo['myrepo'] }
[2010/06/10 14:53:07] <Kiloman> before listing your packages
[2010/06/10 14:54:27] <BLZbubba> could i just put that at the top of site.pp?
[2010/06/10 14:54:39] <Kiloman> you can also just do:
[2010/06/10 14:54:39] <Kiloman> Package{ ensure=> installed, require => Yumrepo['myrepo'] }
[2010/06/10 14:54:40] <Kiloman> package { "foo": ; "bar": ; "baz": ;}
[2010/06/10 14:54:55] <Kiloman> I'm sure someone here will shoot me for that, but it works ;)
[2010/06/10 14:54:58] <BLZbubba> heh
[2010/06/10 14:55:38] <BLZbubba> that won't get you shot. try suggesting that they move puppet over to lisp and see what happens :P
[2010/06/10 14:55:53] <Kiloman> couldn't be worse than ruby ;)
[2010/06/10 14:56:13] <Kiloman> I'm a perl guy, I do OK with python and PHP... but I look at ruby and my ears start bleeding
[2010/06/10 14:56:24] <Volcane> Kiloman: package{[one, two, three]: ensure => present}
[2010/06/10 14:56:26] <BLZbubba> i am not too religious, they all do more or less the same thing
[2010/06/10 14:56:49] <BLZbubba> computers wouldn't be the same if people didn't re-invent the wheel all of the time
[2010/06/10 14:56:54] <Kiloman> Volcane: I like it! I didn't know you could do arrays on the left side, I'll have to keep that in mind
[2010/06/10 14:57:13] <Volcane> Kiloman: its effectively a for loop
[2010/06/10 14:57:18] @ kaptk2 left channel #puppet ()
[2010/06/10 14:57:33] @ thekad is now known as thekad-afk
[2010/06/10 14:57:41] @ kaptk2 joined channel #puppet
[2010/06/10 14:57:44] <Kiloman> I usually break my way out into separate lines, one for each package entry, and sort them alphabetically
[2010/06/10 14:57:46] <Volcane> Kiloman: define print() { notice($name) } print{$some_array: }
[2010/06/10 14:58:19] @ Quit: sebas891: Quit: Leaving.
[2010/06/10 14:58:20] <Kiloman> which works pretty well when you have some dumb vendor trashball that wants 100 different packages but doesn't know how to ask for them
[2010/06/10 14:59:04] <Kiloman> makes for nice changelog entries in the puppet VCS when adding/removing packages from the manifest too
[2010/06/10 14:59:05] @ Quit: eidolon: Quit: Leaving.
[2010/06/10 14:59:34] <BLZbubba> heh
[2010/06/10 14:59:45] <Kiloman> easier than just having a big long +/- line and trying to read it and figure out what got changed
[2010/06/10 14:59:51] <Kiloman> when you've got that many packages
[2010/06/10 14:59:58] <Volcane> Kiloman: you can split the array over lines too
[2010/06/10 15:00:00] @ Quit: mboyd: Quit: Read error: 131 (Connection reset by beer)
[2010/06/10 15:00:17] <Kiloman> cool
[2010/06/10 15:03:10] @ rossmc joined channel #puppet
[2010/06/10 15:04:59] @ devilp left channel #puppet ()
[2010/06/10 15:06:16] @ Quit: MPSimmons: Quit: Leaving.
[2010/06/10 15:08:11] @ Quit: p3rror: Ping timeout: 248 seconds
[2010/06/10 15:09:39] <avocado> is using svn over puppet okay? or what do people do to keep codebase on different machines the same
[2010/06/10 15:10:31] <dan__t> I use environments, since we don't really have dev/test/qa/prod branches
[2010/06/10 15:10:31] <Volcane> i use puppet to create cronjobs that do it at the right frequency for my needs
[2010/06/10 15:11:32] <avocado> hmm
[2010/06/10 15:12:20] @ Quit: seanos: Read error: Connection reset by peer
[2010/06/10 15:12:56] <avocado> also, is there a "yaml for puppet dummies" guide? i just want to list a few classes depending on the host...
[2010/06/10 15:14:26] @ rossmc left channel #puppet ()
[2010/06/10 15:14:44] <mackn> for external nodes?
[2010/06/10 15:14:51] <avocado> yea
[2010/06/10 15:15:01] <mackn> the amount of yaml you need to know is minimal
[2010/06/10 15:15:10] <mackn> the example should be enough
[2010/06/10 15:15:30] <mackn> assuming you saw the example yaml output on the external nodes page
[2010/06/10 15:16:25] <avocado> do indents have meaning in yaml?
[2010/06/10 15:16:28] <mackn> i nub'd it up the first time and only put 2 dashes at the top instead of 3... it makes a diff haha
[2010/06/10 15:16:48] <avocado> oh :P see i would do something like that
[2010/06/10 15:16:58] <mackn> i pretty much made my output look exactly like the sample and it works fine :)
[2010/06/10 15:17:39] @ Quit: shenson: Quit: /me taps out
[2010/06/10 15:18:24] @ plathrop is now known as plathrop-away
[2010/06/10 15:18:49] @ \ask joined channel #puppet
[2010/06/10 15:19:45] @ seanos joined channel #puppet
[2010/06/10 15:21:10] @ p3rror joined channel #puppet
[2010/06/10 15:22:15] @ Bevo joined channel #puppet
[2010/06/10 15:22:28] @ Quit: jdcasey:
[2010/06/10 15:22:50] @ rodnet joined channel #puppet
[2010/06/10 15:23:14] @ Quit: pheezy: Remote host closed the connection
[2010/06/10 15:24:11] <Volcane> avocado: not sure if this is any better but if you just fill in the obvious things here - and keep adding - it will print it for you as valid yaml http://pastie.org/1000134
[2010/06/10 15:25:01] <avocado> i guess maybe i should learn ruby
[2010/06/10 15:25:17] <Volcane> for that you really dont need to know ruby
[2010/06/10 15:25:24] <avocado> no
[2010/06/10 15:25:31] <Volcane> it shows each of the options u can have in a yaml file, just fill in the gaps
[2010/06/10 15:25:36] <avocado> yea
[2010/06/10 15:25:44] <avocado> no, that's great, thanks, Volcane
[2010/06/10 15:25:52] <Volcane> but do you have some kind of node tool already or are you writing one?
[2010/06/10 15:26:02] <avocado> i was just lamenting...
[2010/06/10 15:26:07] <avocado> i'm writing one
[2010/06/10 15:26:30] <avocado> i don't have puppet .25 on my servers, so i'm basically just doing some sort of dynamic hostname matching
[2010/06/10 15:26:44] <Volcane> ah
[2010/06/10 15:26:53] <Volcane> (reload the pastie, fixed something stupid)
[2010/06/10 15:27:01] <Volcane> what language are you writing it in?
[2010/06/10 15:27:11] <avocado> perl
[2010/06/10 15:27:22] <Volcane> perl can output yaml from variables too
[2010/06/10 15:27:43] @ Quit: agile: Remote host closed the connection
[2010/06/10 15:28:40] @ ajbourg_ joined channel #puppet
[2010/06/10 15:28:44] @ thekad-afk is now known as thekad
[2010/06/10 15:29:28] @ Quit: kaptk2: Quit: Leaving.
[2010/06/10 15:31:49] @ Quit: ajbourg_: Client Quit
[2010/06/10 15:32:06] @ Quit: ajbourg: Ping timeout: 240 seconds
[2010/06/10 15:38:33] <avocado> woo
[2010/06/10 15:42:18] @ Quit: seanos: Read error: Operation timed out
[2010/06/10 15:42:22] @ seanos joined channel #puppet
[2010/06/10 15:43:15] @ Quit: p3rror: Ping timeout: 272 seconds
[2010/06/10 15:45:25] @ Quit: ghg: Quit: ghg
[2010/06/10 15:46:34] @ Quit: notbrien: Quit: notbrien
[2010/06/10 15:49:02] <avocado> shweeeeeeet
[2010/06/10 15:52:47] @ acrollet joined channel #puppet
[2010/06/10 15:53:31] @ Quit: seanos: Ping timeout: 248 seconds
[2010/06/10 15:54:17] @ seanos joined channel #puppet
[2010/06/10 15:54:50] @ OpenMedia joined channel #puppet
[2010/06/10 15:56:08] @ p3rror joined channel #puppet
[2010/06/10 15:57:43] @ vagn joined channel #puppet
[2010/06/10 15:59:47] @ Quit: artista_frustrad: Ping timeout: 245 seconds
[2010/06/10 16:01:40] @ Quit: jab_doa: Quit: Verlassend
[2010/06/10 16:02:56] @ bodepd joined channel #puppet
[2010/06/10 16:16:04] @ Quit: acrollet: Quit: acrollet
[2010/06/10 16:16:55] @ Quit: bodepd: Quit: bodepd
[2010/06/10 16:17:59] @ bobinabottle joined channel #puppet
[2010/06/10 16:22:34] @ Quit: tecto: Quit: tecto
[2010/06/10 16:29:19] <dan__t> Hrm, what to puppetize now....
[2010/06/10 16:29:38] <Hunner> Toaster!
[2010/06/10 16:29:41] <dan__t> heh
[2010/06/10 16:30:59] <dan__t> Postfix....
[2010/06/10 16:31:01] <dan__t> I can do that.
[2010/06/10 16:31:25] * odyi wants to see someone puppet their android
[2010/06/10 16:31:47] <odyi> Not sure what you would manage.
[2010/06/10 16:32:55] @ axolx joined channel #puppet
[2010/06/10 16:34:18] @ thekad is now known as thekad-afk
[2010/06/10 16:43:14] @ bodepd joined channel #puppet
[2010/06/10 16:43:17] @ bodepd left channel #puppet ()
[2010/06/10 16:47:54] <ReinH> your face
[2010/06/10 16:49:11] @ thekad-afk is now known as thekad
[2010/06/10 16:51:21] @ bodepd joined channel #puppet
[2010/06/10 16:56:02] @ Quit: robinbowes: Quit: Leaving
[2010/06/10 16:56:54] @ Quit: bodepd: Quit: bodepd
[2010/06/10 16:59:57] @ beata- joined channel #puppet
[2010/06/10 17:03:16] @ joe-mac joined channel #puppet
[2010/06/10 17:03:20] @ Quit: tonyskapunk: Quit: ERC Version 5.3 (IRC client for Emacs)
[2010/06/10 17:03:42] * odyi ponders what part of his face he would manage...
[2010/06/10 17:04:32] <justdave> heh, searching for "puppet" on the android marketplace gets some "interesting" results.
[2010/06/10 17:04:57] <joe-mac> i'd like to see someone enforce information policies on android through puppet
[2010/06/10 17:04:59] <joe-mac> that'd be pretty sick
[2010/06/10 17:05:07] <Hunner> I saw there is a cruby compilation for it
[2010/06/10 17:05:12] <Hunner> s/it/android/
[2010/06/10 17:05:14] <joe-mac> i don't know what cruby is
[2010/06/10 17:06:05] @ robinbowes joined channel #puppet
[2010/06/10 17:06:18] <justdave> compact ruby I would guess
[2010/06/10 17:06:31] @ kaos01 joined channel #puppet
[2010/06/10 17:06:42] <Hunner> I took it to mean the mri, but maybe not
[2010/06/10 17:06:52] <justdave> has anyone been complaining about memory usage in 0.25.5?
[2010/06/10 17:08:09] <justdave> my puppetmasters picked up 0.25.5 last night, and they were using like 4 GB of RAM
[2010/06/10 17:08:19] <justdave> had to revert to 0.25.4
[2010/06/10 17:08:58] <justdave> 0.25.4 normally uses about 50 to 70 MB of RAM per process
[2010/06/10 17:09:06] <mackn> i guess the fact that I run it via passenger makes me immune! heh
[2010/06/10 17:09:21] <mackn> do you see the same issue with puppetd?
[2010/06/10 17:10:09] <justdave> no, just with puppetmasterd
[2010/06/10 17:10:47] <justdave> back in a few, need to move locations
[2010/06/10 17:14:50] <beata-> anyone using puppet dashboard? any decent docs on how to configure/use it
[2010/06/10 17:14:53] <beata-> ?
[2010/06/10 17:38:15] @ seryl joined channel #puppet
[2010/06/10 17:38:30] <seryl> Puppet still has clients poll the server for updates correct?
[2010/06/10 17:38:58] <hMz> seryl: its a daemon that checks back in a psuedo random interval, so yes.
[2010/06/10 17:39:06] <hMz> or some run it directly from cron
[2010/06/10 17:39:45] <hMz> seryl: however, there exists another tool which lets you tickle the remote puppet daemons to trigger a push
[2010/06/10 17:39:56] <seryl> hMz: wouldn't it make more sense to setup jabber? Have them all join a room, send push notifications when there's an update (an on channel joins to make sure they're up to date), if they are/aren't decide to add them to a queue and do your pushes that way?
[2010/06/10 17:40:17] <seryl> sorry, was just thinking about that and wanted to get the idea out before it passed
[2010/06/10 17:40:43] <joe-mac> seryl: depends on your definition of "sense"
[2010/06/10 17:41:15] <Kiloman> seems to be how Red Hat is doing it with Satellite
[2010/06/10 17:41:17] <seryl> push > poll is all I'm saying.
[2010/06/10 17:42:15] <andrew3> seryl: Check out http://code.google.com/p/mcollective-plugins/ and the agentpuppetd plugin.
[2010/06/10 17:42:19] <mackn> that ideas been had before
[2010/06/10 17:42:23] <andrew3> seryl: I use it here and it works _great_
[2010/06/10 17:42:24] <mackn> it really depends on your needs
[2010/06/10 17:42:45] <joe-mac> it's still pulling in the end
[2010/06/10 17:42:49] <joe-mac> this is a stupid argument
[2010/06/10 17:42:54] <mackn> yeah
[2010/06/10 17:43:05] <seryl> wasn't an argument, was a thought I wanted to toss out
[2010/06/10 17:43:13] <seryl> sorry if you're offended
[2010/06/10 17:43:20] <seryl> kind of find it silly that you would be
[2010/06/10 17:43:31] <mackn> what makes you say anyojne was offended
[2010/06/10 17:43:39] <seryl> this is a stupid argument
[2010/06/10 17:43:41] @ Quit: alexine_dsouza: Read error: Connection reset by peer
[2010/06/10 17:43:55] <mackn> shrug
[2010/06/10 17:44:01] <Kiloman> I will put out there that for puppetrun type stuff it would be nice to have some sort of method that didn't require opening ports on all the clients
[2010/06/10 17:44:04] @ alexine_dsouza joined channel #puppet
[2010/06/10 17:44:34] <Kiloman> or just a forking 'ssh puppetd --test'
[2010/06/10 17:44:44] <Kiloman> er, ssh host puppetd --test
[2010/06/10 17:45:24] <Kiloman> maybe that's what mcollective is good for, I haven't looked in to it yet?
[2010/06/10 17:46:58] <joe-mac> seryl: the word 'argument' does not necessarily imply anger
[2010/06/10 17:47:26] @ acrollet joined channel #puppet
[2010/06/10 17:47:26] <mackn> he was probably picking on the fact that you called it stupid
[2010/06/10 17:47:38] <mackn> heh
[2010/06/10 17:48:21] <mackn> he was probably offended by that
[2010/06/10 17:51:44] @ Quit: ppickfor: Remote host closed the connection
[2010/06/10 17:52:07] @ Quit: rmiller4pi8: Ping timeout: 265 seconds
[2010/06/10 17:52:24] @ Quit: acrollet: Client Quit
[2010/06/10 17:54:15] @ cliff-hm joined channel #puppet
[2010/06/10 17:54:51] @ afletcher joined channel #puppet
[2010/06/10 17:57:23] <hMz> oh man, i missed the fun.
[2010/06/10 17:57:24] <hMz> dagnabit
[2010/06/10 17:58:03] <hMz> jabber based management is pretty aweomse, you have to admit that :P
[2010/06/10 17:59:28] @ Quit: gmcquillan: Quit: gmcquillan
[2010/06/10 18:01:10] <mackn> 10 years ago it was irc based management... every decade there's a new one... heh
[2010/06/10 18:01:30] <mackn> prolly more than 10 years ago actually
[2010/06/10 18:01:31] <seryl> ejabberd :) it scales.
[2010/06/10 18:01:32] <mackn> but anywyz
[2010/06/10 18:01:51] <hMz> theres nothing wrong with the message passing architecture, you just have to accept its downfalls and i wouldnt want that for my configuration management system
[2010/06/10 18:02:47] <hMz> publish/subscribe style stuff works for everything currently present and online but doesnt usually accommodate nodes which are offline or on shady connections
[2010/06/10 18:03:04] <hMz> so you missing a message means your in the weeds for a while
[2010/06/10 18:03:40] <hMz> or you setup a polling method behind your message bus and then why arent you just polling?
[2010/06/10 18:03:50] <mackn> heh
[2010/06/10 18:03:52] <mackn> nod
[2010/06/10 18:04:38] <seryl> message update on channel join, setup queuing to handle the herd, and spam message/setup queue based on responses
[2010/06/10 18:04:53] <mackn> let us know when you finish it
[2010/06/10 18:04:57] <hMz> you also increase the dependency bus
[2010/06/10 18:05:07] <hMz> and thats always a wobbly foundation
[2010/06/10 18:05:14] <Kiloman> if you do it I'll use it ;)
[2010/06/10 18:05:20] <hMz> haha
[2010/06/10 18:05:34] <seryl> Might actually.
[2010/06/10 18:05:36] <hMz> i mean, realistically, i can see people using it. I'm just not one of those people
[2010/06/10 18:05:58] <hMz> today, right now
[2010/06/10 18:06:04] <hMz> thats been the shortcoming with mcollective in my group
[2010/06/10 18:06:11] <Kiloman> you've already got the SSL infrastructure in place
[2010/06/10 18:06:19] @ Quit: p3rror: Ping timeout: 248 seconds
[2010/06/10 18:06:27] <Kiloman> shouldn't have to plumb too much more together to get the notifications working
[2010/06/10 18:06:57] <Kiloman> I'm starting to sound like dorman now though...
[2010/06/10 18:07:01] <hMz> i mean, the backend is realistically http so you could probably do some comet style stuff if you got crazy
[2010/06/10 18:07:03] <mackn> haha
[2010/06/10 18:07:49] <mackn> hell let's throw torrents in to the mix
[2010/06/10 18:07:56] <hMz> haha
[2010/06/10 18:07:58] <hMz> that would be awesome
[2010/06/10 18:08:09] <hMz> p2p puppet would be teh awesomez
[2010/06/10 18:08:12] <mackn> haha
[2010/06/10 18:08:14] <Kiloman> awesome! bittorrent based file distribution
[2010/06/10 18:08:14] <hMz> everyones a client and a server
[2010/06/10 18:08:20] <mackn> nod
[2010/06/10 18:08:34] <hMz> sounds like someone needs to fork
[2010/06/10 18:08:36] <hMz> lol
[2010/06/10 18:08:37] <mackn> haha
[2010/06/10 18:08:57] <hMz> use the puppet logo from the godfather
[2010/06/10 18:09:16] <hMz> it'll be just like nuke evolution
[2010/06/10 18:09:23] <Kiloman> source => puppet://p2p/foo.iso
[2010/06/10 18:10:00] <hMz> source => bt://seedpool/file/<name>
[2010/06/10 18:10:01] <hMz> :P
[2010/06/10 18:10:30] @ Quit: gaveen: Ping timeout: 265 seconds
[2010/06/10 18:10:40] <Kiloman> lol
[2010/06/10 18:12:27] @ Quit: seryl: Quit: leaving
[2010/06/10 18:14:10] @ thekad is now known as thekad-afk
[2010/06/10 18:17:02] @ Cuchulain joined channel #puppet
[2010/06/10 18:17:09] @ sebas891 joined channel #puppet
[2010/06/10 18:20:26] @ Quit: jaredrhine: Quit: Leaving.
[2010/06/10 18:21:22] @ ppickfor joined channel #puppet
[2010/06/10 18:22:00] @ Quit: ppickfor: Client Quit
[2010/06/10 18:22:07] @ gaveen joined channel #puppet
[2010/06/10 18:27:22] @ Quit: axolx: Quit: axolx
[2010/06/10 18:41:07] <Tonnerre> So, Puppet in NetBSD has been upgraded to 0.25.5
[2010/06/10 18:41:09] <Tonnerre> Enjoy
[2010/06/10 18:44:52] @ MPSimmons joined channel #puppet
[2010/06/10 18:45:35] @ bodepd joined channel #puppet
[2010/06/10 18:46:05] @ bodepd left channel #puppet ()
[2010/06/10 18:52:28] <mackn> whee
[2010/06/10 18:53:50] <joe-mac> i was really happy when i discovered obsd 4.7 comes with .25.4 in packages
[2010/06/10 18:54:39] <Tonnerre> joe-mac, there was a slight problem with the bin files placement in 0.25.1 so I went to 0.24.9 first
[2010/06/10 18:54:58] <joe-mac> yea, i waited til .25.4 to move from .24.X
[2010/06/10 18:59:28] @ rmiller4pi8 joined channel #puppet
[2010/06/10 19:00:23] @ blueyoko joined channel #puppet
[2010/06/10 19:03:39] @ Quit: ahasenack: Quit: Leaving
[2010/06/10 19:11:27] @ artista_frustrad joined channel #puppet
[2010/06/10 19:11:42] @ Quit: alexine_dsouza: Read error: Connection reset by peer
[2010/06/10 19:12:17] @ ahuman joined channel #puppet
[2010/06/10 19:16:23] @ acrollet joined channel #puppet
[2010/06/10 19:20:44] @ mig5 joined channel #puppet
[2010/06/10 19:22:16] @ jaredrhine joined channel #puppet
[2010/06/10 19:32:14] @ Quit: acrollet: Quit: acrollet
[2010/06/10 19:36:26] @ Quit: MPSimmons: Quit: Leaving.
[2010/06/10 19:41:16] @ gmcquillan joined channel #puppet
[2010/06/10 19:41:53] @ Quit: gmcquillan: Client Quit
[2010/06/10 19:43:43] @ jietoh joined channel #puppet
[2010/06/10 19:44:35] <jietoh> hey guys, where would be the best place to learn some more detail on the security between puppetmasterd and puppetd?
[2010/06/10 19:45:17] @ Quit: sdog: Ping timeout: 258 seconds
[2010/06/10 19:45:24] <jietoh> the brief description at http://docs.puppetlabs.com/guides/security.html is pretty light
[2010/06/10 19:48:32] @ bodepd joined channel #puppet
[2010/06/10 19:53:01] @ gmcquillan joined channel #puppet
[2010/06/10 20:03:02] <jietoh> okay perhaps a more specific question will work better:
[2010/06/10 20:03:25] <jietoh> does the client machine have a server certificate which is used to authenticate against the puppet master?
[2010/06/10 20:03:38] <jietoh> or is DNS/hostname/IP the only "authentication"?
[2010/06/10 20:05:27] @ joe-mac left channel #puppet ()
[2010/06/10 20:05:50] @ Quit: gmcquillan: Quit: gmcquillan
[2010/06/10 20:06:04] <ckdake> the client generates a CSR which the server signs. the client uses that cert every time and if the server gets a requst from a client with the same name as one in puppetca, but a different client cert, it won't let it in
[2010/06/10 20:06:32] <ckdake> you can try this out by tinkering with puppetca —clean and removing client certs on clients in $ssldir
[2010/06/10 20:07:31] <jietoh> ok so that covers authenticating the client, what happens if another server is "suddenly" in the place of the previous server? Does the client notice?
[2010/06/10 20:08:48] <bodepd> jietoh: it would not connect if the server ssl certs were not signed by the trusted ca
[2010/06/10 20:09:40] <jietoh> what just noticed the part "removing client certs on clients in $ssldir", so the client does retain a cert from it's initial connection to the ca?
[2010/06/10 20:09:49] <jietoh> s/what/wait
[2010/06/10 20:09:58] <ckdake> jietoh: correct!
[2010/06/10 20:10:03] <bodepd> jiteoh: check ssldir/certs/ca.pem
[2010/06/10 20:10:40] <ckdake> any mismatch of things on the client and server will prevent things from working
[2010/06/10 20:10:41] <jietoh> So then I could optionally include the ca cert in a kickstart build or something similar?
[2010/06/10 20:11:09] <jietoh> sounds great! I'm getting ready to set up a small Virtual network to really play with this stuff
[2010/06/10 20:11:32] <bodepd> jietoh: you could, but you would still need to sign the clients cert with the ca's private key
[2010/06/10 20:11:32] <ckdake> one good way of approaching this is to have the cert signed on the master as part of your provisioning process
[2010/06/10 20:11:37] <jietoh> took a look at cfengine after hearing about it on FLOSS weekly, but it was too much like nagware to me!
[2010/06/10 20:11:53] <ckdake> i.e. the first puppet run, it requests, but doesn't get the signed one until you run puppetca on the puppetmaster
[2010/06/10 20:12:08] <bodepd> jietoh: cfengine = square peg, my brain = round hole
[2010/06/10 20:12:34] <bodepd> jietoh: you might also want to look into puppetca --generate
[2010/06/10 20:12:43] <jietoh> that is great! I really like that explicit step being involved.
[2010/06/10 20:12:49] * ckdake only knows what I need to know based on what has broken. heh
[2010/06/10 20:12:51] <jietoh> thanks bodepd, adding to my notes now!
[2010/06/10 20:13:30] <bodepd> check out bodepd.com, I have a bog about how to set up multi puppet masters with shared ca manually.
[2010/06/10 20:15:04] <ohadlevy> jietoh: if you are interested in kickstart integration, you can checkout foreman
[2010/06/10 20:15:40] <bodepd> hi ohad! you get alerts for anything implemented in foreman, dont you :)
[2010/06/10 20:16:23] @ Quit: pting: Quit: Ex-Chat
[2010/06/10 20:16:35] <ohadlevy> bodepd: you mean like google open wireless network data? ;)
[2010/06/10 20:17:14] <jietoh> ohadlevy: oh sorry, can't use anything that doesn't have the top listing on a google search :)
[2010/06/10 20:17:25] * ckdake out
[2010/06/10 20:17:34] <bodepd> ohadlevy: theres no such thing as a free s/lunch/'wireless access point'/g
[2010/06/10 20:18:07] <ohadlevy> bodepd: not if you are google, then you know where all the open networks are :)
[2010/06/10 20:18:17] <jietoh> a 'linux' qualifier got me to theforeman.org, thanks
[2010/06/10 20:18:31] <ohadlevy> jietoh: did you try 'puppet foreman' in google? ;)
[2010/06/10 20:18:53] <ohadlevy> jietoh: last time i checked, all hits were relevant
[2010/06/10 20:19:29] @ Quit: sebas891: Quit: Leaving.
[2010/06/10 20:26:02] @ Quit: cliff-hm: Ping timeout: 245 seconds
[2010/06/10 20:29:42] <jietoh> ohadlevy: thanks for the pointer looks like foreman is an interesting project. I think I'll learn the nitty gritty puppet first, don't want to start too many projects at once!
[2010/06/10 20:43:51] <jietoh> thanks guys, I'm really pumped about playing around with puppet. I'm sure ya'll see me again!
[2010/06/10 20:44:17] @ enoch2038 joined channel #puppet
[2010/06/10 20:44:27] @ Quit: jietoh: Quit: Leaving
[2010/06/10 21:07:33] @ Quit: rodnet: Read error: Connection reset by peer
[2010/06/10 21:07:34] @ rodnet_ joined channel #puppet
[2010/06/10 21:15:02] @ Quit: Maliuta: Read error: Connection reset by peer
[2010/06/10 21:19:11] @ Quit: odyi: Read error: Connection reset by peer
[2010/06/10 21:19:11] @ odyi joined channel #puppet
[2010/06/10 21:20:13] @ Maliuta joined channel #puppet
[2010/06/10 21:20:53] @ Quit: \ask: Remote host closed the connection
[2010/06/10 21:21:24] @ Quit: jbooth: Ping timeout: 252 seconds
[2010/06/10 21:21:39] @ jbooth joined channel #puppet
[2010/06/10 21:23:36] @ Quit: OpenMedia: Quit: Leaving.
[2010/06/10 21:40:39] @ pinoyskull joined channel #puppet
[2010/06/10 21:51:47] @ Quit: Maliuta: Read error: No route to host
[2010/06/10 22:09:26] @ Quit: Bass10: Ping timeout: 240 seconds
[2010/06/10 22:17:59] @ nexx\| joined channel #puppet
[2010/06/10 22:20:04] @ blahdeblah joined channel #puppet
[2010/06/10 22:21:11] @ \ask joined channel #puppet
[2010/06/10 22:25:06] @ Quit: ahuman: Remote host closed the connection
[2010/06/10 22:26:01] @ Maliuta joined channel #puppet
[2010/06/10 22:30:09] @ Quit: andrew3: Quit: Leaving.
[2010/06/10 22:31:56] @ lak joined channel #puppet
[2010/06/10 22:32:44] @ bodepd left channel #puppet ()
[2010/06/10 22:33:57] @ Quit: artista_frustrad: Ping timeout: 245 seconds
[2010/06/10 22:38:26] @ mattock joined channel #puppet
[2010/06/10 22:39:54] @ Quit: Maliuta: Remote host closed the connection
[2010/06/10 22:40:24] @ Maliuta joined channel #puppet
[2010/06/10 22:46:26] @ artista_frustrad joined channel #puppet
[2010/06/10 22:49:29] @ Quit: lak: Quit: lak
[2010/06/10 22:50:47] @ jellis-real joined channel #puppet
[2010/06/10 22:53:15] @ Quit: artista_frustrad: Ping timeout: 248 seconds
[2010/06/10 22:56:19] @ Quit: kolla: Remote host closed the connection
[2010/06/10 22:57:06] @ shug joined channel #puppet
[2010/06/10 22:57:42] @ Quit: \ask: Ping timeout: 245 seconds
[2010/06/10 22:58:38] @ \ask joined channel #puppet
[2010/06/10 23:04:51] @ Quit: rodnet_: Quit: rodnet_
[2010/06/10 23:06:14] @ artista_frustrad joined channel #puppet
[2010/06/10 23:09:23] @ sdog joined channel #puppet
[2010/06/10 23:10:57] @ Quit: fredden: Quit: Leaving
[2010/06/10 23:11:21] @ sdog left channel #puppet ()
[2010/06/10 23:12:34] @ Quit: artista_frustrad: Ping timeout: 260 seconds
[2010/06/10 23:12:38] @ herdingcat joined channel #puppet
[2010/06/10 23:13:27] @ DavidS joined channel #puppet
[2010/06/10 23:16:11] @ Quit: cfx: Ping timeout: 248 seconds
[2010/06/10 23:22:03] @ Quit: Chiku\|dc: Read error: Connection reset by peer
[2010/06/10 23:22:26] @ Chiku\|dc joined channel #puppet
[2010/06/10 23:23:45] @ Quit: jaredrhine: Ping timeout: 240 seconds
[2010/06/10 23:24:40] @ artista_frustrad joined channel #puppet
[2010/06/10 23:26:25] @ jab_doa joined channel #puppet
[2010/06/10 23:27:45] @ jaredrhine joined channel #puppet
[2010/06/10 23:28:57] @ Quit: artista_frustrad: Ping timeout: 245 seconds
[2010/06/10 23:29:47] @ Quit: alban2: Quit: Leaving.
[2010/06/10 23:31:16] @ Quit: gaveen: Quit: Leaving
[2010/06/10 23:33:15] @ kc7zzv joined channel #puppet
[2010/06/10 23:33:36] <kc7zzv> Can templates be put in modules?
[2010/06/10 23:33:57] <kc7zzv> I can see how to reference them in modules, but not how to put them in modules.
[2010/06/10 23:34:28] <henk> kc7zzv: /etc/puppet/modules/yourmodulename/templates/yourtemplate.erb
[2010/06/10 23:34:38] <henk> at least that's what i have...
[2010/06/10 23:34:41] <kc7zzv> Thanks.
[2010/06/10 23:35:07] <kc7zzv> Also, can anyone point me to a simple module that has a client, server and common section?
[2010/06/10 23:35:54] <kc7zzv> I'm trying to figure this out but every module example is too simple, or way too complicated.
[2010/06/10 23:36:10] <kc7zzv> *every module example I've found.
[2010/06/10 23:36:36] <henk> a module with sections? as in different classes in the module for things where there is a client and a server?
[2010/06/10 23:37:14] <henk> you just add classes like 'class modulename::server { whatever is needed } \n class modulename::client { whatever }
[2010/06/10 23:37:26] <kc7zzv> Sort of. As a simple example, suppose that all computers using this module need common.conf.
[2010/06/10 23:37:39] @ Quit: marut: Quit: WeeChat 0.3.0
[2010/06/10 23:37:50] <kc7zzv> Nevermind. I hadn't seen your second line.
[2010/06/10 23:37:58] <henk> include modulename::common in both classes...
[2010/06/10 23:38:55] <henk> kc7zzv: http://www.devco.net/archives/2009/09/28/simple_puppet_module_structure.php that could help...
[2010/06/10 23:39:43] <kc7zzv> That's what I want. Thanks.
[2010/06/10 23:40:38] @ Quit: \ask: Read error: Connection reset by peer
[2010/06/10 23:40:38] @ marut joined channel #puppet
[2010/06/10 23:40:45] <kc7zzv> So if in that example, I create a module called ntp::server, I would then put "include ntp, ntp::server" in my node definition?
[2010/06/10 23:41:04] <kc7zzv> Sorry, I meant class called ntp::server.
[2010/06/10 23:41:13] @ artista_frustrad joined channel #puppet
[2010/06/10 23:41:30] @ Quit: Maliuta: Ping timeout: 260 seconds
[2010/06/10 23:43:27] @ \ask joined channel #puppet
[2010/06/10 23:45:17] @ giskard_ joined channel #puppet
[2010/06/10 23:45:45] @ Quit: artista_frustrad: Ping timeout: 240 seconds
[2010/06/10 23:45:52] @ gaveen joined channel #puppet
[2010/06/10 23:46:16] @ toi joined channel #puppet
[2010/06/10 23:47:09] <zipkid> kc7zzv: only include ntp::server
[2010/06/10 23:47:09] @ Quit: giskard: Ping timeout: 252 seconds
[2010/06/10 23:47:51] <kc7zzv> Because including ntp::server automatically causes ntp to be included?
[2010/06/10 23:48:31] <kc7zzv> Or because ntp::server should explicitly include ntp if I'm doing it right?
[2010/06/10 23:49:01] @ kolla joined channel #puppet

Generated by irclog2html.py 2.8 by Marius Gedminas - find it at mg.pov.lt!