Monday, 2011-10-24

[2011/10/24 00:00:41] @ Log started by gepetto
[2011/10/24 00:00:41] <marcus_> and is it save to delete the files from spool kesor
[2011/10/24 00:03:48] <kesor> well, I brought back up the delayed_job script, and run if in foreground to see which yaml file was having the problem. and removed those files.
[2011/10/24 00:04:01] <kesor> then let it process the remaining jobs
[2011/10/24 00:04:27] <marcus_> could you tell me how I can run this script in foreground
[2011/10/24 00:04:29] <kesor> also did a grep 'host: badhost' and remove all the yaml files for that host that had the invalid character problem
[2011/10/24 00:04:44] <kesor> just run delayed_job -h or something and it says it in help
[2011/10/24 00:04:47] <kesor> dont remember the option
[2011/10/24 00:04:55] <marcus_> ok
[2011/10/24 00:05:40] <kesor> i opened a ticket for the problem I had, https://projects.puppetlabs.com/issues/10234 ... no idea if you have the exact same problem, but if you do put a +1 there or something.
[2011/10/24 00:09:43] @ pisco joined channel #puppet
[2011/10/24 00:10:34] @ Ramonster joined channel #puppet
[2011/10/24 00:12:28] @ raphdg joined channel #puppet
[2011/10/24 00:13:14] @ Quit: Vide: Quit: Leaving
[2011/10/24 00:15:23] @ brtl joined channel #puppet
[2011/10/24 00:17:03] @ Quit: oholiab: Ping timeout: 244 seconds
[2011/10/24 00:23:59] @ oholiab joined channel #puppet
[2011/10/24 00:32:19] @ gniks joined channel #puppet
[2011/10/24 00:36:17] @ Quit: larstobi1: Quit: Leaving.
[2011/10/24 00:37:13] <marcus_> i have now started ./delayed_job run but no output yet
[2011/10/24 00:38:23] @ Quit: bmahe: Quit: Leaving
[2011/10/24 00:42:50] @ jbraeuer joined channel #puppet
[2011/10/24 00:46:05] @ maes_ joined channel #puppet
[2011/10/24 00:48:00] @ trickyf joined channel #puppet
[2011/10/24 00:48:03] @ Quit: _nono_: Ping timeout: 244 seconds
[2011/10/24 00:48:10] @ Stenbryggen joined channel #puppet
[2011/10/24 00:48:18] @ Quit: maes_`: Ping timeout: 245 seconds
[2011/10/24 00:48:29] @ Spads joined channel #puppet
[2011/10/24 00:49:09] @ pmorillon joined channel #puppet
[2011/10/24 00:50:26] @ bobra left channel #puppet ()
[2011/10/24 00:55:23] @ Quit: kermit: Read error: Operation timed out
[2011/10/24 00:56:50] @ _nono_ joined channel #puppet
[2011/10/24 01:01:24] @ Razique joined channel #puppet
[2011/10/24 01:01:56] @ mogitaff joined channel #puppet
[2011/10/24 01:02:12] @ dissipate joined channel #puppet
[2011/10/24 01:02:12] @ Quit: dissipate: Changing host
[2011/10/24 01:02:13] @ dissipate joined channel #puppet
[2011/10/24 01:02:49] <dissipate> does anyone know if the 'pro puppet' book is out of date when it talks about the SSL certs?
[2011/10/24 01:03:15] <dissipate> it says the certs should have been generated the first time puppet master is run, but they are nowhere in /etc/puppet
[2011/10/24 01:05:55] <codec> certs are in /var/lib/puppet/ssl
[2011/10/24 01:06:04] <fragfutter> /var/lib/puppet/ssl
[2011/10/24 01:09:32] <dissipate> codec, fragfutter, ah i see, thanks!
[2011/10/24 01:13:24] @ larstobi joined channel #puppet
[2011/10/24 01:15:24] @ Quit: pmorillon: Quit: pmorillon
[2011/10/24 01:18:38] @ Quit: choonming: Quit: Leaving
[2011/10/24 01:19:15] @ pmorillon joined channel #puppet
[2011/10/24 01:19:49] @ Isotopp left channel #puppet ("gone")
[2011/10/24 01:20:06] @ lkoranda joined channel #puppet
[2011/10/24 01:20:36] @ Quit: swati: Ping timeout: 265 seconds
[2011/10/24 01:24:42] @ Quit: silentg: Quit: Leaving.
[2011/10/24 01:24:51] @ rutger_ joined channel #puppet
[2011/10/24 01:26:03] @ taihen joined channel #puppet
[2011/10/24 01:26:56] @ itguru joined channel #puppet
[2011/10/24 01:28:18] @ mukulm joined channel #puppet
[2011/10/24 01:28:46] @ Quit: rutger_: Remote host closed the connection
[2011/10/24 01:29:07] <mukulm> hi, how can i check that client is not getting the updates from server after certificates are signed ?
[2011/10/24 01:29:58] @ rutger_ joined channel #puppet
[2011/10/24 01:30:39] @ unxbm3r1 joined channel #puppet
[2011/10/24 01:31:57] <unxbm3r1> trying to install puppet-dashboard from the site
[2011/10/24 01:32:10] <unxbm3r1> keep getting bad key ID
[2011/10/24 01:32:24] <unxbm3r1> on puppet-dashboard 1.2.2 rpm package
[2011/10/24 01:38:16] @ Holocaine joined channel #puppet
[2011/10/24 01:40:18] @ Quit: gniks: Quit: Leaving.
[2011/10/24 01:40:46] @ Quit: lbt: Remote host closed the connection
[2011/10/24 01:41:08] @ lbt joined channel #puppet
[2011/10/24 01:41:08] @ Quit: lbt: Changing host
[2011/10/24 01:41:08] @ lbt joined channel #puppet
[2011/10/24 01:50:56] @ gaveen joined channel #puppet
[2011/10/24 01:51:59] @ Quit: dissipate: Ping timeout: 256 seconds
[2011/10/24 01:52:39] @ jovy joined channel #puppet
[2011/10/24 01:53:44] @ AikiLinux joined channel #puppet
[2011/10/24 01:54:29] @ Quit: itguru: Quit: This computer has gone to sleep
[2011/10/24 01:55:32] @ Spads_ joined channel #puppet
[2011/10/24 01:55:44] @ jaymurtii joined channel #puppet
[2011/10/24 01:56:15] @ Quit: Spads: Ping timeout: 244 seconds
[2011/10/24 01:59:14] @ Quit: Spads_: Client Quit
[2011/10/24 01:59:28] @ Spads joined channel #puppet
[2011/10/24 01:59:30] @ fr3nd joined channel #puppet
[2011/10/24 02:00:10] @ nimrod10` joined channel #puppet
[2011/10/24 02:01:38] @ Quit: nimrod10: Ping timeout: 258 seconds
[2011/10/24 02:02:09] @ Quit: gaveen: Read error: Connection reset by peer
[2011/10/24 02:02:33] @ gaveen joined channel #puppet
[2011/10/24 02:04:44] @ Quit: gaveen: Read error: Connection reset by peer
[2011/10/24 02:07:42] @ MartVisser joined channel #puppet
[2011/10/24 02:09:08] @ Quit: gebi: Ping timeout: 245 seconds
[2011/10/24 02:12:27] @ sdog joined channel #puppet
[2011/10/24 02:15:01] @ Quit: rutger_: Ping timeout: 240 seconds
[2011/10/24 02:19:03] @ trek1s joined channel #puppet
[2011/10/24 02:21:19] @ olibuijr joined channel #puppet
[2011/10/24 02:22:54] @ Quit: sdog: Changing host
[2011/10/24 02:22:54] @ sdog joined channel #puppet
[2011/10/24 02:24:54] <mukulm> how can i check that client is not getting the updates from server after certificates are signed ??
[2011/10/24 02:25:59] <henk> mukulm: Strangely phrased… What exactly do you need?
[2011/10/24 02:27:54] @ danikov joined channel #puppet
[2011/10/24 02:30:07] @ Quit: Beens: Remote host closed the connection
[2011/10/24 02:33:45] @ rutger_ joined channel #puppet
[2011/10/24 02:36:49] @ Vide joined channel #puppet
[2011/10/24 02:37:07] @ Quit: Vide: Quit: Leaving
[2011/10/24 02:37:23] @ Vide joined channel #puppet
[2011/10/24 02:40:01] @ Quit: jaymurtii: Ping timeout: 260 seconds
[2011/10/24 02:46:09] <Vide> how to check in a puppet template if a variable is undef?
[2011/10/24 02:46:17] @ sihil joined channel #puppet
[2011/10/24 02:46:32] <Vide> if variable.nil?
[2011/10/24 02:46:41] <Vide> or if variable.defined?
[2011/10/24 02:47:07] <Vide> if !variable.nil? sorry
[2011/10/24 02:47:15] <henk> .nil? AFAICT ruby does not have .defined?
[2011/10/24 02:47:16] <mig5> http://docs.puppetlabs.com/guides/templating.html#undefined-variables
[2011/10/24 02:47:28] <Vide> mig5, thx
[2011/10/24 02:47:32] <Vide> henk, thx as well
[2011/10/24 02:47:47] <Vide> it seems that I'm not able to search puppet doc with google
[2011/10/24 02:47:55] <Vide> sorry for that
[2011/10/24 02:48:17] <henk> I guess the way in the puppet wiki should be preferred, so never mind me ;)
[2011/10/24 02:48:56] <Vide> if has_variable?("variable")
[2011/10/24 02:49:04] <Vide> is the right way
[2011/10/24 02:49:39] @ hynek joined channel #puppet
[2011/10/24 02:54:26] <Vide> is this a sane define?
[2011/10/24 02:54:43] <Vide> define my_def ( $host = "$title" ) { blah blah}
[2011/10/24 02:55:14] <Vide> I'd like to have a host parameter defaulting to the invocation name of the definition
[2011/10/24 02:55:39] <Vide> just like in File or other puppet classess
[2011/10/24 03:00:02] @ Quit: davewongillies: Remote host closed the connection
[2011/10/24 03:00:57] @ los3241 joined channel #puppet
[2011/10/24 03:01:38] @ Quit: trek1s: Quit: leaving
[2011/10/24 03:02:30] @ trek1s joined channel #puppet
[2011/10/24 03:06:20] @ nils__ joined channel #puppet
[2011/10/24 03:06:40] @ Vasik\|work joined channel #puppet
[2011/10/24 03:07:31] @ nils__ is now known as illenseer
[2011/10/24 03:07:41] <Volcane> that should work in recent versions
[2011/10/24 03:07:46] <Volcane> but maybe use $name
[2011/10/24 03:07:49] <Volcane> not $title
[2011/10/24 03:08:17] @ davewongillies joined channel #puppet
[2011/10/24 03:09:03] <Vide> Volcane, recent as in 2.6.x?
[2011/10/24 03:09:14] <Volcane> late 2.6.x yeah
[2011/10/24 03:09:34] <Vide> debian 2.6.2?
[2011/10/24 03:09:40] <Volcane> too old i guess
[2011/10/24 03:09:45] <Vide> fsck
[2011/10/24 03:09:48] <Vide> so..
[2011/10/24 03:09:54] <Vide> if !defined($host) { $host = $title }
[2011/10/24 03:09:55] <Volcane> fairly sure thats not the latest thats in debian though
[2011/10/24 03:10:03] <Vide> within the define would be OK?
[2011/10/24 03:10:18] <Vide> in squeeze I guess it is
[2011/10/24 03:10:43] <Volcane> ah
[2011/10/24 03:10:54] <Volcane> your if wont work - cant redefine variables
[2011/10/24 03:11:13] <Vide> well but it's not defined
[2011/10/24 03:11:28] <Vide> $host = undef,
[2011/10/24 03:11:31] @ Quit: mukulm: Quit: Page closed
[2011/10/24 03:11:35] <Vide> and the if !defined
[2011/10/24 03:11:43] <Volcane> yeah that should be ok maybe
[2011/10/24 03:11:57] <Vide> I have something like that with passwords and your very extlookup
[2011/10/24 03:12:12] <Vide> and it works :)
[2011/10/24 03:13:25] @ kenneho joined channel #puppet
[2011/10/24 03:13:43] @ ekik joined channel #puppet
[2011/10/24 03:14:58] <kenneho> Hi all, is there any way to bootstrap a Puppet Enterprise client (i.e. "puppet agent") from the command line? I know one can use a response file, but I'd rather do this from the command line. In the past puppet version I'd go something like "puppetd --server puppetmaster.example.local --test"
[2011/10/24 03:16:43] <Volcane> kenneho: its the same
[2011/10/24 03:19:47] @ ken_barber joined channel #puppet
[2011/10/24 03:20:48] @ jaymurtii joined channel #puppet
[2011/10/24 03:20:51] @ Quit: Vasik\|work: Remote host closed the connection
[2011/10/24 03:21:22] <kenneho> Ah, okay I'll try that then. Didn't find the "server" option in the new puppet agent manpage before, but I just saw it in the example section.
[2011/10/24 03:22:19] @ AikiLinux left channel #puppet ("Embarking on a sideway trek.")
[2011/10/24 03:26:38] @ Quit: pmorillon: Quit: pmorillon
[2011/10/24 03:26:49] @ bobra joined channel #puppet
[2011/10/24 03:29:36] @ bronto left channel #puppet ()
[2011/10/24 03:30:28] <Vide> if I want to include some classes with the same values in different hosts, whhat's the best way to achieve it?
[2011/10/24 03:31:16] <Vide> is it mandatory to use another class?
[2011/10/24 03:31:33] <Vide> or can I just include it with import ?
[2011/10/24 03:31:36] <henk> Just include it?
[2011/10/24 03:31:36] @ Quit: stsmith3: Read error: Connection reset by peer
[2011/10/24 03:32:07] <Vide> yeah, I mean, the class must be present in say 3 hosts with the same values
[2011/10/24 03:32:12] <Vide> (a part from the $fqdn)
[2011/10/24 03:32:27] <Vide> but those 3 hosts may have other different classes
[2011/10/24 03:32:37] <Vide> may use
[2011/10/24 03:32:55] <henk> Sorry, don’t see the problem…
[2011/10/24 03:39:01] @ Quit: ken_barber: Ping timeout: 240 seconds
[2011/10/24 03:40:07] <Vide> say I have host1, host2 and host3
[2011/10/24 03:40:21] <Vide> and classA, clssB and classC
[2011/10/24 03:40:58] <Vide> i want host1, host2 and host3 include always classA with the same parameters passed
[2011/10/24 03:41:07] <Vide> host2 include only classB
[2011/10/24 03:41:12] <Vide> and host3 only classC
[2011/10/24 03:41:26] <Vide> and I want to write the classA call just once
[2011/10/24 03:41:50] <henk> Press enter when you are done writing please, not simply every 10 words. It’s a pain to read.
[2011/10/24 03:42:02] <Vide> sorry
[2011/10/24 03:42:12] <Vide> ok, I'm done
[2011/10/24 03:42:38] <henk> So you are talking about parameterised classes?
[2011/10/24 03:43:03] @ ken_barber joined channel #puppet
[2011/10/24 03:43:36] <Vide> yes, classA is parametrized but with these 3 hosts it should have the same values, but in other hosts the values may be different
[2011/10/24 03:45:36] @ Quit: olibuijr: Ping timeout: 248 seconds
[2011/10/24 03:47:00] <Vide> I'm not sure if I should use import or include
[2011/10/24 03:47:02] <Volcane> class foo { class{"bar": you, common, params} }
[2011/10/24 03:47:04] <Volcane> include foo
[2011/10/24 03:47:05] <henk> Vide: ok, and your question is how to write it? What have you tried? What didn’t work?
[2011/10/24 03:47:06] <unxbm3r1> by default how often does my agent run and where can I change that value?
[2011/10/24 03:47:12] @ Quit: lovemj1: Ping timeout: 248 seconds
[2011/10/24 03:47:17] <henk> Volcane: classes always include usually…
[2011/10/24 03:47:19] @ lovemj joined channel #puppet
[2011/10/24 03:47:23] <Vide> henk, no, I'm looking for best practices
[2011/10/24 03:47:29] <henk> s/Volcane/Vide/ sorry
[2011/10/24 03:47:44] <Volcane> Vide: see above
[2011/10/24 03:48:02] @ Quit: Razique: Quit: Razique
[2011/10/24 03:48:14] <henk> Vide: Ah ok, then listening to Volcane is always a good idea IMHO ;)
[2011/10/24 03:48:26] <Vide> Volcane, ok, and where in the file hierarchy should I put class foo ?
[2011/10/24 03:48:33] <Vide> i don't want to put in modules/
[2011/10/24 03:48:53] <Volcane> Vide: depends, if this foo describes a role of servers i tend to make a module 'roles' and have in there something like roles::webserver or something
[2011/10/24 03:49:01] <Volcane> everything in modules
[2011/10/24 03:49:26] <Vide> Volcane, yes, it does exactly that... I'll go for the 'roles ' module then, thanks!
[2011/10/24 03:52:22] @ gaveen joined channel #puppet
[2011/10/24 03:52:22] @ Quit: gaveen: Changing host
[2011/10/24 03:52:23] @ gaveen joined channel #puppet
[2011/10/24 03:53:47] @ Quit: swygue: Ping timeout: 252 seconds
[2011/10/24 03:54:20] @ CAMIR joined channel #puppet
[2011/10/24 03:55:00] @ olibuijr joined channel #puppet
[2011/10/24 03:55:40] @ Quit: MartVisser: Ping timeout: 258 seconds
[2011/10/24 03:57:55] @ Vasik\|work joined channel #puppet
[2011/10/24 04:00:28] @ MartVisser joined channel #puppet
[2011/10/24 04:03:36] @ Quit: kenneho: Ping timeout: 240 seconds
[2011/10/24 04:05:01] @ walterheck joined channel #puppet
[2011/10/24 04:06:59] @ Quit: olibuijr: Ping timeout: 258 seconds
[2011/10/24 04:07:15] @ Quit: csanchez: Quit: csanchez
[2011/10/24 04:08:02] <ekik> Im having an issue getting puppet-vcsrepo to checkout a svn repository. The vcsrepo module is in /etc/puppet/modules and I have a .pp file saying: vcsrepo { "/tmp/repo": ensure => present, provider => svn, source => "http://long.url" }
[2011/10/24 04:08:22] <ekik> Puppetagent gladly connects to the master and the catalog is applied
[2011/10/24 04:08:34] <ekik> But no repository is checked out or any error message printed
[2011/10/24 04:08:43] <ekik> (running with --verbose and even tried --debug)
[2011/10/24 04:09:10] <ekik> Very grateful for any ideas, since I'm new to puppet and don't know where to start troubleshooting these kinds of issues.
[2011/10/24 04:10:06] @ pmorillon joined channel #puppet
[2011/10/24 04:10:25] <walterheck> ekik: when you run puppetd -t, what kind of output do you get? can you paste bin?
[2011/10/24 04:11:06] @ Quit: Xeross: Ping timeout: 244 seconds
[2011/10/24 04:12:44] @ Quit: Enf: Quit: Leaving
[2011/10/24 04:13:32] <ekik> http://paste.pocoo.org/show/497297/
[2011/10/24 04:14:43] <ekik> It doesn't really show much. All I can say is that simple things like installing packages etc works fine. vcsrepo is the problem somehow...tried it with both hg and svn while trying to troubleshoot.
[2011/10/24 04:14:49] @ Xeross joined channel #puppet
[2011/10/24 04:15:30] <walterheck> ekik: try restarting puppet master and then execute another puppetd -t
[2011/10/24 04:15:35] <Holocaine> ekik: Do you have plugin sync turned on?
[2011/10/24 04:15:54] <ekik> Holocain: Don't really know what that is I'm afraid
[2011/10/24 04:16:07] <Holocaine> ekik: It's what propagates plugins (like vcsrepo) out to agents.
[2011/10/24 04:16:09] <walterheck> i've been seeing the same problem, where th first time you execute a misbehaving recipe it fails with a proper error message, and then you restart puppet master and it shows the error again
[2011/10/24 04:16:31] @ gebi joined channel #puppet
[2011/10/24 04:16:40] <Holocaine> ekik: It's a setting in puppet.conf
[2011/10/24 04:16:40] <ekik> walterheck: Already tried that I'm afraid. Runnign both master and agent in non-deamonized mode restarting them every time...
[2011/10/24 04:16:47] <ekik> Holocaine: Oooohhh...
[2011/10/24 04:16:52] <ekik> That explains things then
[2011/10/24 04:16:57] <ekik> goes to look
[2011/10/24 04:17:23] @ Razique joined channel #puppet
[2011/10/24 04:18:01] @ Quit: hynek: Remote host closed the connection
[2011/10/24 04:19:44] @ Quit: devdas: Remote host closed the connection
[2011/10/24 04:20:21] <ekik> Holocaine: Beautiful, thanks a bunch!
[2011/10/24 04:20:29] <ekik> ...and to you too walterheck
[2011/10/24 04:20:34] <ekik> works like a charm now
[2011/10/24 04:20:42] <Holocaine> ekik: No worries. =)
[2011/10/24 04:21:03] @ kenneho joined channel #puppet
[2011/10/24 04:23:25] <kenneho> I've uploaded our pe-puppet RPM, along with the other RPMs included in the puppet enterprise tarball, to our RPM repo. When running "yum install pe-puppet", I get error messages like this (from the postscript-section of the RPM, I presume): "warning: user pe-puppet does not exist - using root".
[2011/10/24 04:24:07] <kenneho> Thought I'd bootstrap the puppet agent by installing the RPM(s) this way, but seems like it won't work out of the box. Anyone else had the same issue?
[2011/10/24 04:24:50] <fragfutter> kenneho your rpm needs to create the user pe-puppet in its post script
[2011/10/24 04:25:37] <kenneho> Yeah, that's what I thought, too, but apparently it doesn't..
[2011/10/24 04:25:50] <fragfutter> so your rpm is broken. recompile it.
[2011/10/24 04:26:55] @ Quit: beorn_: Ping timeout: 258 seconds
[2011/10/24 04:27:06] @ Quit: jimi_c: Remote host closed the connection
[2011/10/24 04:27:47] <fragfutter> ah wait. pe is puppet enterprise and you are using an offical package?
[2011/10/24 04:27:57] @ kermit joined channel #puppet
[2011/10/24 04:28:12] <Volcane> dont u have to do the pe install using the script they provide?
[2011/10/24 04:29:18] <kenneho> This is the script sections of the RPM: http://pastebin.com/EjyhkCxk
[2011/10/24 04:29:33] <kenneho> And yes, I'm using the official package from Puppetlabs.
[2011/10/24 04:30:51] <kenneho> Volcane: I didn't use the install script this time around, as I hoped it would suffice install the necessary RPMs. But seems like I may have to go for the script install method.
[2011/10/24 04:35:17] @ GioGio joined channel #puppet
[2011/10/24 04:35:50] <GioGio> hi everyone
[2011/10/24 04:36:36] <GioGio> i have a question, is it possible to execute a script on the server instead of the client ? (with exec resource for example).
[2011/10/24 04:39:26] <kjetilho> generate()
[2011/10/24 04:39:46] <kjetilho> not exactly what you want, you may want to use exported resources instead
[2011/10/24 04:47:22] @ itguru joined channel #puppet
[2011/10/24 04:47:22] @ Quit: itguru: Changing host
[2011/10/24 04:47:22] @ itguru joined channel #puppet
[2011/10/24 04:50:08] @ Quit: marczak: Ping timeout: 260 seconds
[2011/10/24 04:51:54] @ Quit: Holocaine:
[2011/10/24 04:52:08] @ Quit: erodriguez: Quit: erodriguez
[2011/10/24 04:52:25] <Vide> I'm looking the modules autoloading doc, but I don't understand how that works with those modules which its init.pp contains "import classes/*.pp"
[2011/10/24 04:52:36] @ marrusl joined channel #puppet
[2011/10/24 04:52:41] <Vide> does autoload still work with the rules described in the doc?
[2011/10/24 04:52:50] @ Quit: itguru: Quit: This computer has gone to sleep
[2011/10/24 04:53:42] <henk> Vide: Modules go in their own dir, not in classes/. I don’t see a point in having that classes/ thing anyway…
[2011/10/24 04:54:42] <Vide> henk, I mean $module_path/$module_name/classes/${class}.pp
[2011/10/24 04:54:51] <Vide> I saw modules organized like this
[2011/10/24 04:55:43] <Vide> and $module_path/$module_name/init.pp just an include classes/*.pp
[2011/10/24 04:55:49] <henk> And what’s the point?
[2011/10/24 04:57:04] <dcarley> Vide: it seems to be a pre-autoloader hangover. there's no good reason to do it. just let the autoloader work for you.
[2011/10/24 04:57:20] <henk> foo/manifests/init.pp is class/module foo, foo/manifests/bar.pp is class foo::bar, foo/manifests/bar/baz.pp is class foo::bar::baz.
[2011/10/24 04:58:41] <Vide> dcarley, ok, I should stop using puppet modules found on the Internet as reference and starting reading more the docs :)
[2011/10/24 04:59:14] <dcarley> yeah, good call :)
[2011/10/24 05:00:55] <Vide> ok, 'svn mv ' time then :)
[2011/10/24 05:01:40] @ Quit: Razique: Read error: Connection reset by peer
[2011/10/24 05:01:48] @ Razique joined channel #puppet
[2011/10/24 05:02:58] @ Quit: _UsUrPeR_: Remote host closed the connection
[2011/10/24 05:03:18] <Vide> anyway, with this module autoloading, what should I put in init.pp? the base class? and if I don't have one?
[2011/10/24 05:04:19] <Vide> I don't grasp compeltely the names separations in the 'class' and 'define' cases
[2011/10/24 05:05:11] <Vide> I mean, if I have a class foo::bar::bla where bla is a define, how should I organize the file?
[2011/10/24 05:05:54] <dcarley> Vide: have "define foo::bar::bla() {}" alone in the file foo/manifests/bar/bla.pp
[2011/10/24 05:08:19] <Vide> ok, but the define should have the entire class path, not just define bla
[2011/10/24 05:08:58] <Vide> I guess
[2011/10/24 05:08:59] <dcarley> Vide: correct
[2011/10/24 05:09:09] @ Quit: oatsport1: Read error: Connection reset by peer
[2011/10/24 05:10:19] <Vide> ok, thanks for the explanation, I'm going to move things around and change classes name and I'll be back when the next doubt arises :P
[2011/10/24 05:10:23] @ Quit: rutger_: Ping timeout: 245 seconds
[2011/10/24 05:11:36] @ rutger_ joined channel #puppet
[2011/10/24 05:15:52] @ Quit: zul: Quit: Ex-Chat
[2011/10/24 05:16:09] @ kelseyhightower joined channel #puppet
[2011/10/24 05:17:28] @ itguru joined channel #puppet
[2011/10/24 05:17:29] @ Quit: itguru: Changing host
[2011/10/24 05:17:29] @ itguru joined channel #puppet
[2011/10/24 05:17:47] @ oatsport1 joined channel #puppet
[2011/10/24 05:21:00] @ Quit: Vasik\|work: Remote host closed the connection
[2011/10/24 05:21:35] @ erthad left channel #puppet ()
[2011/10/24 05:21:42] @ erthad joined channel #puppet
[2011/10/24 05:24:28] @ Quit: bje: Ping timeout: 244 seconds
[2011/10/24 05:24:48] @ Quit: brunix: Ping timeout: 248 seconds
[2011/10/24 05:28:00] @ Quit: rutger_: Ping timeout: 248 seconds
[2011/10/24 05:28:04] @ bd__ joined channel #puppet
[2011/10/24 05:28:08] <bd__> hi
[2011/10/24 05:29:21] <bd__> I am seeing can not save cart for $HOSTNAME parent directory /etc/puppet/ssl/ca/requests does not exist
[2011/10/24 05:29:49] <bd__> however ssldir ist set to: ssldir=/var/lib/puppet/ssl
[2011/10/24 05:31:39] @ bje joined channel #puppet
[2011/10/24 05:33:25] @ Quit: kjalil: Quit: leaving
[2011/10/24 05:33:38] <kelseyhightower> bd__: how did you install puppet master ?
[2011/10/24 05:33:55] @ illsci joined channel #puppet
[2011/10/24 05:33:55] <bd__> kelseyhightower: apt-get install, this is on debian squeeze
[2011/10/24 05:34:15] <bd__> it stops to work if i specify a certdnsnames in puppet.conf
[2011/10/24 05:34:20] <kelseyhightower> bd__: did you install the puppet-server or just puppet?
[2011/10/24 05:34:33] @ Quit: itguru: Quit: This computer has gone to sleep
[2011/10/24 05:34:33] <bd__> kelseyhightower: both
[2011/10/24 05:34:50] <kelseyhightower> what version of puppet are you using?
[2011/10/24 05:35:17] <bd__> ii puppetmaster 2.6.2-5+squeeze
[2011/10/24 05:35:19] <illsci> I want to setup a monitoring system that allows puppet clients to automattically register with the system. I would like to use Zenoss but I'm not sure if puppet and zenoss can integrate automattically... Is there a good way of setting that up?
[2011/10/24 05:35:40] @ brunix joined channel #puppet
[2011/10/24 05:36:21] <bd__> kelseyhightower: it may be that i do not need the certdnsnames stanza after all, let me check ...
[2011/10/24 05:36:34] <kelseyhightower> bd__: you do not
[2011/10/24 05:38:13] @ blentz joined channel #puppet
[2011/10/24 05:38:21] <kelseyhightower> illsci: when you say register, what is involved in that process?
[2011/10/24 05:39:21] <kelseyhightower> illsci: one I understand the process of registering a node, I can recommend a Puppet resource you can use.
[2011/10/24 05:39:31] <illsci> I'm not really sure... I just want to start with a monitoring system that I can easily automate. I've used nagios in the past and it was a pain in the ass and I just recently setup Zenoss but I had to manually register all the nodes.
[2011/10/24 05:39:50] @ lborda joined channel #puppet
[2011/10/24 05:40:11] <kelseyhightower> illsci: let's say that Zenoss had an API access via say CURL
[2011/10/24 05:41:08] <henk> illsci: puppet works very well with icinga (nagios fork) here…
[2011/10/24 05:41:36] <kelseyhightower> illsci: I could then use the exec resource and during a puppet run register the node by using cURL.
[2011/10/24 05:41:57] @ ksheurs joined channel #puppet
[2011/10/24 05:42:14] <kelseyhightower> illsci: that way when you run Puppet on the node it will use the exec. You can get better solution with custom types and providers as well
[2011/10/24 05:42:39] @ uphillian joined channel #puppet
[2011/10/24 05:44:31] <kelseyhightower> henk: are you referring the built-in nagios types?
[2011/10/24 05:44:53] <kelseyhightower> henk: if you have a link, I would love to check it out as this question comes up pretty often.
[2011/10/24 05:45:11] <pisco> can anyone point me at a solution for "## --PUPPET_NAME-- (called '_naginator_name' in the manifest)" in nagios_service?
[2011/10/24 05:45:40] @ Quit: Kritz: Quit: ZNC - http://znc.in
[2011/10/24 05:46:39] <henk> kelseyhightower: Not really, I use them atm, but will remove them. They seem rather strange.
[2011/10/24 05:46:42] <kelseyhightower> pisco: sorry I have never used that resource type. Can you use paste bin and post a more complete error>
[2011/10/24 05:47:20] @ Quit: AshishH: Remote host closed the connection
[2011/10/24 05:48:07] @ tnguyen joined channel #puppet
[2011/10/24 05:48:15] @ Quit: Stenbryggen: Quit: Leaving.
[2011/10/24 05:50:14] <pisco> kelseyhightower: yes of course: http://pastebin.com/F9nZNwbz
[2011/10/24 05:51:09] <pisco> kelseyhightower: I have found this bug(?) mentioned several places, but no explanation or workaround
[2011/10/24 05:52:22] <_rc> so what's the problem?
[2011/10/24 05:52:34] <kelseyhightower> pisco: I noticed that your target in the resource definition is different than the file you are "catting" out
[2011/10/24 05:52:58] <kelseyhightower> pisco: also from the paste I am not sure what error message you are getting
[2011/10/24 05:54:15] <pisco> kelseyhightower: sorry, that's a typo. But I did cat the correct file.
[2011/10/24 05:54:56] <pisco> kelseyhightower: I don't get an error, but the line "## --PUPPET_NAME-- (called '_naginator_name' in the manifest) current_load_11" doesn't belong in there
[2011/10/24 05:55:01] @ Quit: EL84: Quit: Leaving.
[2011/10/24 05:55:03] <kelseyhightower> pisco: ok, just checking. Hopefully other can help out. I think _rc may have some ideas
[2011/10/24 05:55:49] <_rc> when you say 'doesn't belong' do you mean it gives you nagios a syntax error, or that you simply find it untidy?
[2011/10/24 05:57:20] @ Quit: gebi: Read error: Operation timed out
[2011/10/24 05:57:48] <pisco> _rc: got me, I'll check it just now
[2011/10/24 05:58:52] <_rc> I've a feeling it's the latter
[2011/10/24 05:59:06] @ ksheurs left channel #puppet ()
[2011/10/24 06:00:01] @ marczak joined channel #puppet
[2011/10/24 06:00:02] <vStone> Hi, I'm having a weird error. On one node, I'm getting syntax error on ` logdir = /var/log/puppet', The same configuration runs fine on another node. any clues on where to search first?
[2011/10/24 06:00:27] <kelseyhightower> vStone: you seem to be missing a '
[2011/10/24 06:00:35] <pisco> _rc: I think I can confirm your feeling :-)
[2011/10/24 06:00:40] <_rc> md5sum/diff it
[2011/10/24 06:00:59] <pisco> thank you _rc and kelseyhightower
[2011/10/24 06:01:08] <vStone> kelseyhightower: there are no quotes in any puppet.conf file. besides, then it should fail on other nodes too
[2011/10/24 06:01:45] <kelseyhightower> vStone: can you use a paste bin and post the complete error?
[2011/10/24 06:01:53] @ johnston joined channel #puppet
[2011/10/24 06:01:55] <bd__> kelseyhightower: seems like you are right and I won't need certdnsnames
[2011/10/24 06:02:03] @ Quit: alanevans: Remote host closed the connection
[2011/10/24 06:02:05] <kelseyhightower> bd__: good
[2011/10/24 06:02:10] <bd__> puppet.$DOMAIN is included in the cert
[2011/10/24 06:02:19] <kelseyhightower> bd__: yep, just update your DNS
[2011/10/24 06:02:36] <bd__> already is, I manage my puppetmaster with pacemaker for failover
[2011/10/24 06:02:51] <kelseyhightower> bd__: there you have it then.
[2011/10/24 06:03:18] <bd__> and I was under the impression that the cn is the node name only, which would fail of the master migrates to the other node. but since puppet.$DOMAIN is already included that seems to work
[2011/10/24 06:03:34] <bd__> seeing problems where none are ;)
[2011/10/24 06:03:36] <vStone> kelseyhightower: http://pastebin.com/Y2euV5c1
[2011/10/24 06:05:38] <kelseyhightower> vStone: did you recently indent puppet.conf?
[2011/10/24 06:05:47] @ Quit: marczak: Ping timeout: 252 seconds
[2011/10/24 06:06:13] @ Quit: ghaskins: Quit: Leaving
[2011/10/24 06:06:13] <vStone> kelseyhightower: I have copied over a blank copy
[2011/10/24 06:06:39] @ mcarpent joined channel #puppet
[2011/10/24 06:06:53] @ Quit: lborda: Remote host closed the connection
[2011/10/24 06:06:55] @ newtMcKerr joined channel #puppet
[2011/10/24 06:07:09] @ nottings joined channel #puppet
[2011/10/24 06:07:11] @ nottings_ joined channel #puppet
[2011/10/24 06:08:22] <kelseyhightower> vStone: hmm, can we try two things. The first is pretty simple, can you remove the indentation from puppet.conf and try again.
[2011/10/24 06:09:01] <sdog> kelseyhightower: the puppet.conf file is identical to the one vStone is using on another box next to it which does work ..
[2011/10/24 06:10:26] <kelseyhightower> sdog: so this maybe a miss leading error. From the pasting it seems you are catting the puppet.conf on the agent, what about the master?
[2011/10/24 06:10:33] @ Quit: mcarpent: Client Quit
[2011/10/24 06:11:06] <vStone> thats untouched too
[2011/10/24 06:11:32] <sdog> kelseyhightower: and then you'd expect errors on other nodes too which don't happen ..
[2011/10/24 06:11:54] <kelseyhightower> vStone: so I would move on to the modules for the node. Can we make sure that this node is not assigned anything and run again?
[2011/10/24 06:12:13] <kelseyhightower> sdog: we are close, I am search bugs now
[2011/10/24 06:12:15] <sdog> kelseyhightower: we did that already .....
[2011/10/24 06:12:40] <kelseyhightower> sdog: so with no classes assigned you still get that error?
[2011/10/24 06:12:45] @ lborda joined channel #puppet
[2011/10/24 06:12:53] @ jarekps joined channel #puppet
[2011/10/24 06:15:03] @ cliff-hm joined channel #puppet
[2011/10/24 06:15:08] <vStone> a bare node with nothing included also fails
[2011/10/24 06:15:18] <kelseyhightower> sdog: can you paste both the master and client puppet.conf? Based on the output you sent, I really believe the error is there
[2011/10/24 06:16:14] <sdog> kelseyhightower: so how do you explain 2 (tested) working nodes and 1 failing with the same conf on the master ?
[2011/10/24 06:16:49] <sdog> Catalog compiled .. then 400 error on the Passenger / Apache ... thinking out loud .. not a dupclicat ip right ? vStone ?
[2011/10/24 06:17:04] <kelseyhightower> vStone: can you paste the out of a successful run? I am flying blind as I cannot validate your setup. However, the more info you share, the better I can help
[2011/10/24 06:18:17] <MrHeavy> vStone: On a lark, run dos2unix on puppet.conf and try again
[2011/10/24 06:18:26] <erthad> what is the advised way to install facter? .deb packages are outdated even in puppetlabs' repo. through gems?
[2011/10/24 06:18:46] <kelseyhightower> MrHeavy: good suggestion
[2011/10/24 06:19:13] <kelseyhightower> I believe I saw this issue in the past, search for the ticket now
[2011/10/24 06:20:32] <kelseyhightower> sdog: what version of puppet are you using?
[2011/10/24 06:20:50] <vStone> kelseyhightower: http://pastebin.com/UstMKTFU >> puppet master config
[2011/10/24 06:20:58] <erthad> hmm, actually the updated facter is there, at puppetlabs' site but is not included in deb repo. does anyone know the reason for that?
[2011/10/24 06:21:06] <vStone> and we are using 2.6.9
[2011/10/24 06:21:26] @ bretm joined channel #puppet
[2011/10/24 06:21:28] <MrHeavy> deb repo is maintained by volunteers, ask on the -devel list
[2011/10/24 06:22:17] @ Quit: bretm: Client Quit
[2011/10/24 06:22:30] @ bretm joined channel #puppet
[2011/10/24 06:22:58] <kelseyhightower> vStone: did you run dos2unix on puppet.conf as suggested by MrHeavy
[2011/10/24 06:23:21] <erthad> MrHeavy: but signed by puppetlabs' key. Never mind though, I'll take the .deb package by hand then, thank you
[2011/10/24 06:23:26] <kelseyhightower> vStone: are you using Puppet master to mange puppet.conf on the agents?
[2011/10/24 06:24:36] @ gniks joined channel #puppet
[2011/10/24 06:25:10] <kelseyhightower> vStone: maybe we are chasing the wrong thing. Maybe this is an error from one of your Puppet modules. I would do a grep on your module dir; grep for 'logdir = /var/log/puppet' or 'logdir'
[2011/10/24 06:25:19] <henk> erthad: What’s wrong with what’s in debian repos?
[2011/10/24 06:25:49] @ csanchez joined channel #puppet
[2011/10/24 06:26:02] <vStone> kelseyhightower: done that. I've even replaced the template with an empty file
[2011/10/24 06:26:15] <erthad> henk: sorry, I was talking about ubuntu -- debian repo seems to be fine
[2011/10/24 06:26:20] @ spiette joined channel #puppet
[2011/10/24 06:26:30] <henk> You use ubuntu for servers? hahaha
[2011/10/24 06:26:37] @ choonming joined channel #puppet
[2011/10/24 06:26:47] <kelseyhightower> vStone: so are we setting a logdir var in a puppet manifest then?
[2011/10/24 06:27:17] <kelseyhightower> from the error, it does not like the syntax of the assignment to logdir. I was saying earlier that you are missing a single quote
[2011/10/24 06:27:31] <vStone> thats just a quote from the error output
[2011/10/24 06:27:39] <kelseyhightower> logdir = /var/log/puppet'
[2011/10/24 06:27:49] <vStone> it really contains logdir = /var/log/puppet
[2011/10/24 06:27:53] <kelseyhightower> should be logdir = '/var/log/puppet'
[2011/10/24 06:28:23] <kelseyhightower> vStone: can we surround that by single quotes, just to rule that out.
[2011/10/24 06:28:25] @ mcarpent joined channel #puppet
[2011/10/24 06:28:32] <vStone> kelseyhightower: just did that, still the same
[2011/10/24 06:29:10] @ Quit: cyflea: Read error: Connection reset by peer
[2011/10/24 06:29:12] <erthad> henk: sadly, I'm not the person responsible for that decision in the company I work for
[2011/10/24 06:29:59] @ Quit: TuxOtaku: Quit: WeeChat 0.3.5
[2011/10/24 06:30:15] <kelseyhightower> vStone: to recap, a node with no classes still fails, but you have some nodes that work using the exact same management class. There is some thing simple going on.
[2011/10/24 06:30:19] @ doo1 joined channel #puppet
[2011/10/24 06:30:25] @ Quit: doo: Disconnected by services
[2011/10/24 06:30:36] <kelseyhightower> vStone: how are you managing nodes, in site.pp?
[2011/10/24 06:30:41] @ Quit: doo1: Client Quit
[2011/10/24 06:30:45] <vStone> looks like it might be a storedconfig problem
[2011/10/24 06:30:55] @ doo joined channel #puppet
[2011/10/24 06:31:16] <kelseyhightower> vStone: hmm, whats going on there?
[2011/10/24 06:31:26] @ Stenbryggen joined channel #puppet
[2011/10/24 06:31:30] <vStone> I disabled the storeconfigs and it works
[2011/10/24 06:31:34] @ ghaskins joined channel #puppet
[2011/10/24 06:31:42] <vStone> gonna go take a peek inside the database now
[2011/10/24 06:31:47] @ marczak joined channel #puppet
[2011/10/24 06:32:09] <henk> erthad: Oh, my sympathies in that case!
[2011/10/24 06:32:25] <kelseyhightower> vStone: let me know what you find.
[2011/10/24 06:32:27] @ Jeff_S joined channel #puppet
[2011/10/24 06:32:57] @ sduchesneau joined channel #puppet
[2011/10/24 06:33:04] <MrHeavy> Choice of distro is basically irrelevant for any sufficiently complex infrastructure
[2011/10/24 06:33:20] @ Av joined channel #puppet
[2011/10/24 06:33:22] <MrHeavy> But I shouldn't feed the trolls :)
[2011/10/24 06:33:57] @ Quit: sduchesneau: Remote host closed the connection
[2011/10/24 06:34:27] @ Quit: Vide: Remote host closed the connection
[2011/10/24 06:34:49] @ sduchesneau joined channel #puppet
[2011/10/24 06:34:55] @ Quit: lkoranda: Quit: Ex-Chat
[2011/10/24 06:35:04] @ lkoranda joined channel #puppet
[2011/10/24 06:37:44] @ Quit: timyim: Quit: Page closed
[2011/10/24 06:38:57] @ brunoleon_ joined channel #puppet
[2011/10/24 06:39:37] @ olibuijr joined channel #puppet
[2011/10/24 06:39:40] @ Quit: brunoleon_: Remote host closed the connection
[2011/10/24 06:40:03] @ Quit: pmorillon: Quit: pmorillon
[2011/10/24 06:40:04] @ Quit: ckauhaus: Quit: Leaving.
[2011/10/24 06:41:00] <fragfutter> MrHeavy: ever seen a live and big gentoo installation
[2011/10/24 06:41:30] <MrHeavy> fragfutter: Sure, and while I sure as hell wouldn't want to administer it, it worked for the people running it
[2011/10/24 06:41:39] <MrHeavy> You have to follow the same release engineering conventions as everyone else
[2011/10/24 06:41:46] <MrHeavy> And Gentoo probably makes most of those harder
[2011/10/24 06:42:25] <fragfutter> MrHeavy: seen, once, laughed, took your stance "this is interessting, i don't want to administrate it, where is my popcorn"
[2011/10/24 06:42:45] <MrHeavy> haha
[2011/10/24 06:42:49] @ Quit: Stenbryggen: Ping timeout: 252 seconds
[2011/10/24 06:43:03] <MrHeavy> From an admin standpoint, it's probably no worse than BSD if you freeze your releases correctly
[2011/10/24 06:43:15] @ Quit: bobra: Ping timeout: 256 seconds
[2011/10/24 06:43:30] <MrHeavy> I don't understand why someone would deliberately choose a distro without real package management but whatever
[2011/10/24 06:43:37] @ brunoleon_ joined channel #puppet
[2011/10/24 06:45:35] @ Quit: saiju: Ping timeout: 244 seconds
[2011/10/24 06:45:35] <vStone> kelseyhightower: looks like the problem was a template in storedconfigs.
[2011/10/24 06:45:49] @ mawser joined channel #puppet
[2011/10/24 06:46:01] <kelseyhightower> vStone: and that temple had the logdir assignment ?
[2011/10/24 06:46:50] @ alanevans joined channel #puppet
[2011/10/24 06:47:02] <vStone> I didnt investigate any further. A quick delete of the template in the database made my day
[2011/10/24 06:47:06] <vStone> kind of on a tight schedule here
[2011/10/24 06:47:06] <vStone> :)
[2011/10/24 06:47:28] @ amadou joined channel #puppet
[2011/10/24 06:47:38] @ Vide joined channel #puppet
[2011/10/24 06:48:50] <kelseyhightower> vStone: ok, well it was fun troubleshooting.
[2011/10/24 06:49:18] @ brandon_dacrib joined channel #puppet
[2011/10/24 06:49:53] <vStone> o, look! I reproduced it :/
[2011/10/24 06:49:54] @ jarekps_ joined channel #puppet
[2011/10/24 06:50:17] <vStone> forgot to reload the server after disabling storedconfigs :/
[2011/10/24 06:50:19] @ brtl left channel #puppet ("WHO #zurditos")
[2011/10/24 06:50:38] <kelseyhightower> vStone: it's back? … or is it fixed now?
[2011/10/24 06:50:46] <Vide> hi, i'm still struggling with classes autoload: if I have a define foo:bar:bla and another define foo:bar how should I create the dir tree? or I simply cannot have two nested defines?
[2011/10/24 06:50:59] @ Quit: jarekps: Ping timeout: 260 seconds
[2011/10/24 06:51:14] <ekik> e1xwXhabigw=
[2011/10/24 06:51:35] <vStone> now its back.. forgot to reload the httpd after disabling storeconfigs. but gonna see what the exact problem is now first
[2011/10/24 06:51:37] <Volcane> Vide: foo/manifests/bar.pp foo/manifests/bar/bla.pp
[2011/10/24 06:51:38] @ pmorillon joined channel #puppet
[2011/10/24 06:51:42] @ Quit: ekik: Quit: ircII EPIC5-1.1.2 -- Are we there yet?
[2011/10/24 06:51:46] @ j00bar joined channel #puppet
[2011/10/24 06:52:00] <Vide> ah, it's smart!
[2011/10/24 06:52:12] <Vide> smart enough I mean
[2011/10/24 06:53:32] @ Quit: amadou: Quit: Leaving
[2011/10/24 06:53:55] @ amadou joined channel #puppet
[2011/10/24 06:54:41] @ djambar joined channel #puppet
[2011/10/24 06:55:16] @ Quit: amadou: Client Quit
[2011/10/24 06:55:16] @ Quit: djambar: Client Quit
[2011/10/24 06:55:27] @ djambar joined channel #puppet
[2011/10/24 06:57:05] @ Nadir_Seen_Fire joined channel #puppet
[2011/10/24 06:57:41] @ jarekps joined channel #puppet
[2011/10/24 06:58:28] @ zorg1 joined channel #puppet
[2011/10/24 06:58:29] @ cyrilz_ joined channel #puppet
[2011/10/24 06:58:55] @ Quit: cyrilz_: Read error: Connection reset by peer
[2011/10/24 06:58:56] @ itguru joined channel #puppet
[2011/10/24 06:59:07] @ Quit: jarekps_: Ping timeout: 256 seconds
[2011/10/24 06:59:29] @ hal-j joined channel #puppet
[2011/10/24 06:59:42] @ londo joined channel #puppet
[2011/10/24 07:00:00] @ Quit: DanielFriesen: Ping timeout: 240 seconds
[2011/10/24 07:00:01] <Vide> Volcane, so in a autoload scenario, init.pp what should contain?
[2011/10/24 07:00:07] @ Quit: elementai: Remote host closed the connection
[2011/10/24 07:00:12] <Volcane> init.pp is optional
[2011/10/24 07:00:15] <Vide> import "foo.pp" ?
[2011/10/24 07:00:21] @ Quit: jamison: Excess Flood
[2011/10/24 07:00:22] <Volcane> autload == auto import
[2011/10/24 07:00:27] <Volcane> so you dont need any import statements
[2011/10/24 07:00:30] <Vide> ok, so no init.pp at all
[2011/10/24 07:00:34] <Vide> or empty?
[2011/10/24 07:00:34] <itguru> Hi Volcane :)
[2011/10/24 07:00:43] <Volcane> Vide: its optional
[2011/10/24 07:00:45] <Vide> ok
[2011/10/24 07:00:52] <Vide> no init.pp :)
[2011/10/24 07:00:53] @ geekbri joined channel #puppet
[2011/10/24 07:00:54] <Volcane> hi itguru
[2011/10/24 07:00:57] @ ckauhaus joined channel #puppet
[2011/10/24 07:01:11] <Volcane> Vide: in all cases though, no harm from just trying it and learning something on your own :)
[2011/10/24 07:01:13] @ jamison joined channel #puppet
[2011/10/24 07:01:20] @ Quit: csanchez: Quit: csanchez
[2011/10/24 07:01:21] @ kaptk2 joined channel #puppet
[2011/10/24 07:02:17] @ Quit: Wolfspyre: Quit: Leaving.
[2011/10/24 07:03:38] @ freezey joined channel #puppet
[2011/10/24 07:03:50] @ Quit: jaydg: Quit: Verlassend
[2011/10/24 07:04:44] @ Quit: jamison: Excess Flood
[2011/10/24 07:04:47] @ jarekps_ joined channel #puppet
[2011/10/24 07:05:46] @ themadcanudist joined channel #puppet
[2011/10/24 07:05:55] @ Quit: mcarpent: Ping timeout: 252 seconds
[2011/10/24 07:06:43] @ jamison joined channel #puppet
[2011/10/24 07:06:51] @ Quit: jarekps: Ping timeout: 260 seconds
[2011/10/24 07:07:55] @ kangman joined channel #puppet
[2011/10/24 07:07:55] @ Quit: bretm: Ping timeout: 258 seconds
[2011/10/24 07:08:33] @ jarekps joined channel #puppet
[2011/10/24 07:08:46] @ Quit: kenneho: Quit: Leaving
[2011/10/24 07:09:13] @ Quit: jarekps_: Ping timeout: 252 seconds
[2011/10/24 07:12:11] @ ldlework joined channel #puppet
[2011/10/24 07:15:03] @ key joined channel #puppet
[2011/10/24 07:15:33] @ bretm joined channel #puppet
[2011/10/24 07:15:35] @ Quit: scode: Quit: brb
[2011/10/24 07:16:21] @ lak joined channel #puppet
[2011/10/24 07:16:21] @ Quit: lak: Changing host
[2011/10/24 07:16:21] @ lak joined channel #puppet
[2011/10/24 07:18:23] @ mcarpent joined channel #puppet
[2011/10/24 07:18:53] @ Quit: zorg1: Quit: Leaving
[2011/10/24 07:20:48] @ littleidea joined channel #puppet
[2011/10/24 07:23:55] @ Wolfspyre joined channel #puppet
[2011/10/24 07:25:39] @ Quit: marcus_: Quit: Verlassend
[2011/10/24 07:29:40] @ Quit: lak: Quit: Leaving.
[2011/10/24 07:29:43] @ soh joined channel #puppet
[2011/10/24 07:29:58] @ gebi joined channel #puppet
[2011/10/24 07:29:59] @ Quit: ldlework: Quit: Leaving
[2011/10/24 07:30:52] @ Quit: brunoleon_: Remote host closed the connection
[2011/10/24 07:32:28] <jmslagle> Morning puppet peeps
[2011/10/24 07:34:34] <Vide> Volcane, yeah you're right, I know I'm being a little pedant but I really want to learn pupept the right way and not start from scratch with my own bad habits
[2011/10/24 07:37:56] <Volcane> best to just make peace with the fact that you'll be redoing whatever you do now at least twice as you learn
[2011/10/24 07:38:04] @ los3241 left channel #puppet ()
[2011/10/24 07:38:33] @ jarekps_ joined channel #puppet
[2011/10/24 07:38:36] <Volcane> and learn by experimentation because then not only do you blindly follow some 'best practice' but you discover the reasons they exist which is infinitely more value
[2011/10/24 07:39:21] @ jcspray joined channel #puppet
[2011/10/24 07:39:27] @ Quit: jarekps: Ping timeout: 260 seconds
[2011/10/24 07:39:53] <jmslagle> There are so many variations of best practices because the DSL is evolving.
[2011/10/24 07:40:05] <Volcane> yup
[2011/10/24 07:40:24] <Volcane> and the published doco is more a wishlist for what might be best practise one day when all the legion of bugs is resolved
[2011/10/24 07:40:37] <jmslagle> Yessum
[2011/10/24 07:41:02] <jmslagle> I stole your snippets :P
[2011/10/24 07:41:07] @ devzero\|afk is now known as devzero
[2011/10/24 07:41:19] <jmslagle> But I'm modifying them to look more like my style - you hate whitespace even more than I do it appears :P
[2011/10/24 07:41:27] <Volcane> heh quite
[2011/10/24 07:42:06] <jmslagle> I'm trying to figure out which of these vim modules I installed collapses all these snippets
[2011/10/24 07:42:52] @ Quit: Phibs: Quit: Lost terminal
[2011/10/24 07:43:02] @ Phibs joined channel #puppet
[2011/10/24 07:43:16] @ Quit: Meier: Quit: Leaving.
[2011/10/24 07:44:10] @ Quit: littleidea: Read error: Connection reset by peer
[2011/10/24 07:45:35] @ Quit: jarekps_: Ping timeout: 256 seconds
[2011/10/24 07:45:36] @ Stenbryggen joined channel #puppet
[2011/10/24 07:46:23] @ Quit: soh: Quit: Computer has gone to sleep.
[2011/10/24 07:46:29] @ Quit: itguru: Quit: This computer has gone to sleep
[2011/10/24 07:47:26] @ Quit: toi: Ping timeout: 260 seconds
[2011/10/24 07:48:57] @ Quit: Dyresen: Quit: leaving
[2011/10/24 07:49:34] @ _miche_ joined channel #puppet
[2011/10/24 07:49:48] @ dyresen joined channel #puppet
[2011/10/24 07:50:02] @ Quit: gaveen: Quit: Leaving
[2011/10/24 07:50:18] @ jbstlmo joined channel #puppet
[2011/10/24 07:50:22] @ soh joined channel #puppet
[2011/10/24 07:54:36] @ itguru joined channel #puppet
[2011/10/24 07:54:36] @ Quit: itguru: Changing host
[2011/10/24 07:54:36] @ itguru joined channel #puppet
[2011/10/24 07:55:18] @ Quit: skullone: Remote host closed the connection
[2011/10/24 07:55:26] @ Quit: MartVisser: Quit: Leaving
[2011/10/24 07:55:41] @ Quit: GioGio: Quit: Page closed
[2011/10/24 07:55:41] @ MartVisser joined channel #puppet
[2011/10/24 07:55:46] @ roog joined channel #puppet
[2011/10/24 07:56:42] <roog> I have written custom facts that are properly distributed to nodes, however those custom facts don't seem to override the facts defined in nodes.pp. How can I change that?
[2011/10/24 07:57:29] <Volcane> you access facts using $::some_fact
[2011/10/24 07:58:06] <Volcane> the variables in nodes arent actually facts, they dont really override each other
[2011/10/24 07:58:10] <Volcane> cos they're not the same thing
[2011/10/24 07:58:19] <Volcane> but nodes will win if you just access $some_fact
[2011/10/24 07:58:45] <Volcane> and soon that will just stop working, so best not to think of variables and facts as the same interchangable thing
[2011/10/24 07:59:20] <roog> oh, i though puppet considered them the same as far as templates go
[2011/10/24 07:59:39] <Volcane> its different overlapping scopes
[2011/10/24 07:59:42] <Volcane> facts are in the top scope
[2011/10/24 07:59:54] @ Quit: kermit: Quit: Leaving.
[2011/10/24 07:59:54] <Volcane> node variables are one step down - but even thats changing again
[2011/10/24 08:00:10] @ kermit joined channel #puppet
[2011/10/24 08:00:17] <Volcane> basically it boils down to "stay sane, dont use 2.7"
[2011/10/24 08:00:18] @ Quit: MattyM: Remote host closed the connection
[2011/10/24 08:00:18] @ lwhalen joined channel #puppet
[2011/10/24 08:00:22] @ Quit: ckauhaus: Quit: Leaving.
[2011/10/24 08:00:42] @ Quit: zwi: Quit: Leaving.
[2011/10/24 08:00:45] @ mawser_ joined channel #puppet
[2011/10/24 08:01:52] @ Quit: artkrz: Quit: Linkinus - http://linkinus.com
[2011/10/24 08:03:29] <roog> what im trying to accomplish: I have a template defined to all machines, i set a default value for the variables in the template in my nodes.pp, some machines, i want the ability to override this on the client, so i wrote a rb script for facter that loads facts from an ini file. but that requires facts to take precidance
[2011/10/24 08:04:08] <agaffney> they don't
[2011/10/24 08:04:09] @ Quit: mawser: Ping timeout: 255 seconds
[2011/10/24 08:04:10] <Volcane> then you need to check if the fact is set with has_variable?("::somefact")
[2011/10/24 08:04:15] <Volcane> and load that up if it is
[2011/10/24 08:04:25] @ mawser joined channel #puppet
[2011/10/24 08:04:38] @ riha left channel #puppet ()
[2011/10/24 08:04:53] <roog> in the template, that doesn't seem too horrid
[2011/10/24 08:05:37] <roog> or just override the var on puppetmaster's node.pp
[2011/10/24 08:07:15] @ Quit: mawser_: Ping timeout: 260 seconds
[2011/10/24 08:08:03] @ Quit: raphdg: Remote host closed the connection
[2011/10/24 08:08:55] @ Quit: itguru: Quit: Leaving
[2011/10/24 08:11:02] @ Quit: larstobi: Quit: Leaving.
[2011/10/24 08:12:46] @ Quit: mawser: Remote host closed the connection
[2011/10/24 08:12:55] <Raboo> whats the easiest way to edit a file through puppet?
[2011/10/24 08:13:06] @ mawser joined channel #puppet
[2011/10/24 08:13:07] <Raboo> i want to change the first line of some files
[2011/10/24 08:13:09] <Raboo> #!/usr/bin/env ruby
[2011/10/24 08:13:25] <Raboo> to #!/path/to/ruby instead
[2011/10/24 08:13:57] @ Quit: beata: Remote host closed the connection
[2011/10/24 08:16:00] @ benjiedmund joined channel #puppet
[2011/10/24 08:16:44] @ rsnhyperion joined channel #puppet
[2011/10/24 08:16:59] <freezey> walkeran: you around?
[2011/10/24 08:17:21] @ ukd1 joined channel #puppet
[2011/10/24 08:17:22] <walkeran> freezey: I am... a little preoccupied at the moment, but I should be available in a few minutes
[2011/10/24 08:17:41] <freezey> walkeran: ok let me know
[2011/10/24 08:18:34] <fragfutter> i have a set of stages (pre->main->post) and i would like to make sure that the class yum::repo::foobar is run in stage pre. How would i do that?
[2011/10/24 08:19:13] @ Quit: pisco: Quit: pisco
[2011/10/24 08:21:15] <_rc> class { "yum::repo::foobar": stage => "pre" }
[2011/10/24 08:22:17] @ bsg_kwolf joined channel #puppet
[2011/10/24 08:22:18] <fragfutter> hm somehow it doesn't work. notice: /Stage[main]/Yum::Repo::Foobar
[2011/10/24 08:22:43] <_rc> do you also see it as /Stage[pre]/ ?
[2011/10/24 08:22:49] @ dissipate joined channel #puppet
[2011/10/24 08:22:55] <_rc> as a class can be inlcuded in both stages
[2011/10/24 08:23:43] <fragfutter> no
[2011/10/24 08:24:36] @ ghanima joined channel #puppet
[2011/10/24 08:24:42] <fragfutter> ah. now it works. guess the master was busy compiling and served the old manifest
[2011/10/24 08:24:56] <jmslagle> volc
[2011/10/24 08:24:59] <jmslagle> Volcane: Hahahaha
[2011/10/24 08:25:03] <jmslagle> don't use 2.7 eh :P
[2011/10/24 08:25:17] <jmslagle> I'm in the middle of fixing all my .24isms so I can GO to 2.7
[2011/10/24 08:25:30] @ rgsteele joined channel #puppet
[2011/10/24 08:25:34] <Volcane> jmslagle: how could anyone? there's so many bugs, edge cases and outright design failures that when those get fixed there is zero chance backwards compat will be maintained
[2011/10/24 08:25:49] <Volcane> jmslagle: are you ready to refactor all your manifests again?
[2011/10/24 08:26:06] <jmslagle> As I'm refactoring I'm doing so in a 2.7 compatible way
[2011/10/24 08:26:12] <fragfutter> at which point does the yum provider build the list of available packages?
[2011/10/24 08:26:28] <walkeran> freezey: Ok, I'm around now
[2011/10/24 08:26:31] <Volcane> jmslagle: and 2.7 will be an island - cos it has so many bugs that they cant be fixed and backward compat maintained
[2011/10/24 08:26:38] <Volcane> jmslagle: which ensures you'll be doing it again
[2011/10/24 08:27:06] @ mhiggs joined channel #puppet
[2011/10/24 08:27:09] @ craftytech joined channel #puppet
[2011/10/24 08:27:24] <walkeran> jmslagle: It's ok... you won't be lonely, as I'll be stuck on that island, too :)
[2011/10/24 08:27:25] <jmslagle> I'll agree there seem to be some... less than thought out things... :P
[2011/10/24 08:27:34] <jmslagle> Our island will have lots of beer
[2011/10/24 08:27:40] <jmslagle> Cause we'll need something to put our tears in.
[2011/10/24 08:27:40] <walkeran> It had better...
[2011/10/24 08:27:42] <Vide> does require => Class["foo::bar"] work with autoload? cause it's always throwing me errors of Could not find dependency Class[Foo::Bar] and it makes no sense to me
[2011/10/24 08:27:57] <walkeran> Vide: You have to include the class from somewhere
[2011/10/24 08:28:10] @ Quit: sdog: Quit: Leaving.
[2011/10/24 08:28:11] @ hooper joined channel #puppet
[2011/10/24 08:28:11] <jmslagle> I'd actually prefer to see some of those long outstanding bugs fixed.
[2011/10/24 08:28:27] <jmslagle> I've thought about submitting patches, but my rspec foo is weak
[2011/10/24 08:28:35] <jmslagle> and they don't seem to want them without test cases
[2011/10/24 08:28:38] <jmslagle> I guess I could learn :P
[2011/10/24 08:29:24] <Vide> walkeran, but why? I thought that autoload made include optional, and forbidden in other modules
[2011/10/24 08:29:28] <Volcane> jmslagle: yeah - and patches you send now will be reviewed somewhere in 2012 at current rate by which point hte code base probably moved so far on that it will just enter a state where they wait again for you to refactor your code to work with latest master, rince repeat
[2011/10/24 08:29:56] <walkeran> Vide: Autoload makes import unnecessary
[2011/10/24 08:30:12] <Rince> why should I repeat?
[2011/10/24 08:30:36] <jmslagle> Hehehehe
[2011/10/24 08:30:38] <jmslagle> Man :P
[2011/10/24 08:30:41] <Volcane> heh, s/rince/rinse :P
[2011/10/24 08:30:42] <jmslagle> Volcane is biter :P
[2011/10/24 08:30:44] <craftytech> hello gang.., I'm having a class not found problem..
[2011/10/24 08:31:01] <Rince> :-)
[2011/10/24 08:31:29] <craftytech> can't I just do include from the init.pp, and then include the class in the node declaration?
[2011/10/24 08:32:01] @ Quit: sp33t: Ping timeout: 244 seconds
[2011/10/24 08:32:03] <walkeran> Vide: to refer to a class (or any resource, for that matter) in a require/before/after/notify parameter, it must be part of the compiled catalog. For it to be part of the catalog, it has to be included by something, whether it the node or another of the classes that's included by the node
[2011/10/24 08:32:13] <_rc> craftytech: what happens when you try
[2011/10/24 08:32:48] @ samrose joined channel #puppet
[2011/10/24 08:32:50] <jmslagle> Whoops
[2011/10/24 08:32:55] @ neonflux joined channel #puppet
[2011/10/24 08:32:57] <craftytech> "Could not find class wcm_teamsite::spars for redhat1 at /etc/puppet/manifests/nodes/dev_nodes.pp:3"
[2011/10/24 08:32:59] @ Quit: Ramonster: Quit: So Long and thanks for all the fish
[2011/10/24 08:33:01] <freezey> walkeran: that notify didnt resolve it... so read through the pro puppet a bit and saw you can define the variable under your class
[2011/10/24 08:33:12] <freezey> walkeran: and still i get no dice
[2011/10/24 08:33:22] <Vide> walkeran, yeah, but I thought that autoload implicitly included classes, but it's not the case. just a matter of include foo::bar and it worked. thanks
[2011/10/24 08:33:28] <walkeran> freezey: Huh? I'm going to need some context here...
[2011/10/24 08:33:42] <walkeran> Vide: Yup, you're welcome
[2011/10/24 08:33:50] <craftytech> I have a class called teamsite declared in init.pp and teamsite::spars declared in another file
[2011/10/24 08:34:02] <freezey> walkeran: this issue i talked to you about before http://pastie.org/2737234
[2011/10/24 08:34:38] <walkeran> The notify resource obviously doesn't resolve anything... remember, the notify was just so you could get some debugging output?
[2011/10/24 08:34:44] <_rc> craftytech: in modules/wcm_teamsite/modules/spars.pp?
[2011/10/24 08:35:01] <craftytech> teamsitespars.pp
[2011/10/24 08:35:04] <freezey> walkeran: yeah and it did notify proplerly
[2011/10/24 08:35:07] @ ldlework joined channel #puppet
[2011/10/24 08:35:15] <freezey> so i moved it back with variables under the class
[2011/10/24 08:35:16] @ Quit: limed: Quit: leaving
[2011/10/24 08:35:18] <_rc> craftytech: that's your issue. the autoloader won't know to look there
[2011/10/24 08:35:25] @ limed_ is now known as limed
[2011/10/24 08:35:34] <craftytech> no?
[2011/10/24 08:35:42] <walkeran> freezey: Ok, so, your variable is being set correctly, and you can be assured that that, specifically, isn't the problem
[2011/10/24 08:35:43] <_rc> no.
[2011/10/24 08:35:43] <_rc> http://docs.puppetlabs.com/guides/modules.html#module-autoloading
[2011/10/24 08:35:49] @ Quit: limed: Changing host
[2011/10/24 08:35:50] @ limed joined channel #puppet
[2011/10/24 08:35:56] <freezey> walkeran: bingo
[2011/10/24 08:36:44] <craftytech> let me try re-namming it
[2011/10/24 08:37:12] <craftytech> yep, that works..., thanks
[2011/10/24 08:37:30] <craftytech> I guess things changed since ver 25.5
[2011/10/24 08:38:20] <walkeran> freezey: You are going to have to give me a full pastie with _all_ of the code in question, as well as the error that you are getting. I don't really have the time to dig back to last Friday's logs and figure out what the whole story was
[2011/10/24 08:38:52] <freezey> np
[2011/10/24 08:39:17] @ Quit: kermit: Remote host closed the connection
[2011/10/24 08:39:32] @ kermit joined channel #puppet
[2011/10/24 08:40:13] @ Quit: MartVisser: Ping timeout: 240 seconds
[2011/10/24 08:40:42] <freezey> walkeran: http://pastie.org/2751089
[2011/10/24 08:40:48] <_rc> craftytech: no, it hasn't changed since 0.25
[2011/10/24 08:41:09] @ methods1 left channel #puppet ()
[2011/10/24 08:41:23] <_rc> craftytech: what you probably had is an import "*.pp" in your init.pp, which makes things very compilation order sensitive
[2011/10/24 08:41:28] @ hobbeswalsh joined channel #puppet
[2011/10/24 08:41:38] <rgsteele> Anybody know the trick to not having augeas resources filebucket every run? For some reason, my augeas resources always recreate the entire file from scratch every time. it doesn't create duplicate lines or anything - the file is just always rewritten. And, using an 'onlyif' isn't really feasible, since I have about 50 set's that can be potentially applied to the file.
[2011/10/24 08:41:56] <craftytech> hmm, probably.. I'm drawing a blank
[2011/10/24 08:42:37] <walkeran> freezey: Does the wget work without any varaibles... as in, if you were to hardcode $version into the name and source... does it work?
[2011/10/24 08:42:52] <freezey> havent tried.. let me check
[2011/10/24 08:42:56] <walkeran> freezey: wget isn't a native puppet type, so anything could really be going on there
[2011/10/24 08:43:23] <walkeran> which is why I had you just spit out some info with a notify resource, so we could rule out any other silliness
[2011/10/24 08:43:43] @ eshamow_ joined channel #puppet
[2011/10/24 08:43:53] <fragfutter> freezey: why not wrap your app in a package?
[2011/10/24 08:45:34] <freezey> cause i have about 50 other wgets grabbing other plugins
[2011/10/24 08:45:40] <freezey> i stripped it all out
[2011/10/24 08:45:45] <freezey> to see why this is breaking
[2011/10/24 08:45:55] <walkeran> Aieee... even more reason to package it up :)
[2011/10/24 08:46:20] <freezey> walkeran: Still gettingCould not run Puppet configuration client: Parameter unless failed: can't convert nil into String
[2011/10/24 08:46:56] @ lak joined channel #puppet
[2011/10/24 08:46:56] @ Quit: lak: Changing host
[2011/10/24 08:46:56] @ lak joined channel #puppet
[2011/10/24 08:47:19] <fragfutter> freezey: and if you want to stick with wget you could run it through a pipe to avoid the local file
[2011/10/24 08:47:45] @ Quit: lak: Client Quit
[2011/10/24 08:48:42] @ Quit: eshamow_: Ping timeout: 255 seconds
[2011/10/24 08:49:28] @ semiosis joined channel #puppet
[2011/10/24 08:49:47] <freezey> i have other pp files running wget like that and it works
[2011/10/24 08:49:50] @ Quit: ukd1: Quit: Lost terminal
[2011/10/24 08:50:04] @ Quit: hooper: Ping timeout: 258 seconds
[2011/10/24 08:50:14] <fragfutter> freezey: show the wget define, i would guess the unless is in there
[2011/10/24 08:51:29] @ wolflar joined channel #puppet
[2011/10/24 08:51:38] @ wolflar left channel #puppet ()
[2011/10/24 08:54:35] @ ccaum joined channel #puppet
[2011/10/24 08:55:45] @ Quit: jamison: Excess Flood
[2011/10/24 08:55:55] @ ukd1 joined channel #puppet
[2011/10/24 08:57:18] @ Quit: ccaum: Client Quit
[2011/10/24 08:57:26] @ Quit: sihil: Quit: Leaving...
[2011/10/24 08:57:43] @ jamison joined channel #puppet
[2011/10/24 08:59:10] @ Quit: gebi: Ping timeout: 260 seconds
[2011/10/24 08:59:47] @ dan__t_ joined channel #puppet
[2011/10/24 08:59:52] <dan__t_> 'morning.
[2011/10/24 09:03:01] @ zwi joined channel #puppet
[2011/10/24 09:04:04] @ djm68 joined channel #puppet
[2011/10/24 09:06:40] <n1x0n> Hello, is it possible to reference array element inside command => "" ? it seems to literally add [1] at the end of all 4 elements o_O
[2011/10/24 09:07:03] <n1x0n> i.e something like this : command => "ntpdate $ntp_hosts[1] && touch /etc/ntp/ntpdate.first",
[2011/10/24 09:07:35] @ benkevan joined channel #puppet
[2011/10/24 09:07:51] @ trickyf left channel #puppet ()
[2011/10/24 09:08:01] @ Quit: the_ramink: Ping timeout: 252 seconds
[2011/10/24 09:09:22] @ Quit: jjungnickel: Quit: jjungnickel
[2011/10/24 09:11:05] <j00bar> any suggestions on how to configure a daemon that doesn't have an "include configuration files from a directory" directive using exported resources on puppet?
[2011/10/24 09:12:03] <_rc> also push an exec resource to cat fragments together
[2011/10/24 09:12:43] @ Quit: soh: Quit: Computer has gone to sleep.
[2011/10/24 09:13:09] <j00bar> _rc: what if you then later removed one of the exported resources?
[2011/10/24 09:13:26] <freezey> fragfutter: http://pastie.org/2751268
[2011/10/24 09:13:30] <_rc> then you sync the files to a directory with purge on it
[2011/10/24 09:13:49] <_rc> and arrange for the exec to trigger on that too
[2011/10/24 09:14:14] <j00bar> o.O
[2011/10/24 09:14:23] <j00bar> complex, but i'll give it a shot.
[2011/10/24 09:14:33] <j00bar> no way to iterate over them in a template or anything?
[2011/10/24 09:14:38] @ duerF joined channel #puppet
[2011/10/24 09:14:47] <misc> i do that
[2011/10/24 09:14:50] <misc> but that's a hack
[2011/10/24 09:15:10] <dcarley> n1x0n: what version of puppet?
[2011/10/24 09:15:29] @ littleidea joined channel #puppet
[2011/10/24 09:15:31] @ cruzfox joined channel #puppet
[2011/10/24 09:15:35] @ gwar9999 joined channel #puppet
[2011/10/24 09:16:01] <_rc> j00bar: http://pastie.org/2751275
[2011/10/24 09:16:20] @ soh joined channel #puppet
[2011/10/24 09:16:27] @ Quit: p3rror: Ping timeout: 244 seconds
[2011/10/24 09:16:42] <j00bar> _rc: i will don my ninja outfit and attempt something similar. thanks!
[2011/10/24 09:17:03] @ Quit: soosfarm_: Ping timeout: 245 seconds
[2011/10/24 09:17:48] <misc> j00bar: http://svnweb.mageia.org/adm/puppet/modules/bind/manifests/init.pp?revision=1806&view=markup see list_exported_ressources
[2011/10/24 09:18:02] @ Quit: Hilli: Quit: Leaving
[2011/10/24 09:18:16] <gwar9999> Hello. Can I run the scan_certs utility standalone (just to check to see if our puppet infrastructure is vulnerable w/o making any changes)? When I do so, it first complains about /opt/puppet/bin/puppet which is hardcoded in the scan_certs module (I changed it to /usr/bin/puppet) but then it errors out with a "scan_certs:103:in `display': undefined method `reduce' for #<Hash:0x2af5b42efcf0> (NoMethodError)". Not sure if running the script standalone is
[2011/10/24 09:18:29] @ key__ joined channel #puppet
[2011/10/24 09:18:32] <_rc> misc: where does list_exported_resources come from? looks useful
[2011/10/24 09:18:40] @ soosfarm joined channel #puppet
[2011/10/24 09:18:45] <misc> http://svnweb.mageia.org/adm/puppet/modules/stored_config/lib/puppet/parser/functions/
[2011/10/24 09:19:10] <misc> _rc: directly from a ruby function and puppet::rails
[2011/10/24 09:19:19] @ eshamow joined channel #puppet
[2011/10/24 09:19:37] <misc> I think there should be a higher level API for that, but I didn't look at faces for now
[2011/10/24 09:19:48] <_rc> yeah, I more meant where did the function come from :) thanks.
[2011/10/24 09:20:04] <j00bar> wow - that's a great function. thanks!
[2011/10/24 09:20:05] @ Hilli joined channel #puppet
[2011/10/24 09:20:07] <misc> ( and I fear that directly plugging to puppet is a little bit fragile and not very clean, but I will see in the long run )
[2011/10/24 09:20:11] @ n8 joined channel #puppet
[2011/10/24 09:20:31] <j00bar> is it really spelled with two "s"?
[2011/10/24 09:21:01] <_rc> in that case it is. when you rip it off you can fix that
[2011/10/24 09:21:26] <misc> mhhh indeed
[2011/10/24 09:21:30] <misc> in french, it is 2 s :)
[2011/10/24 09:21:34] <misc> not in english
[2011/10/24 09:21:46] <j00bar> kewl.
[2011/10/24 09:21:51] <j00bar> thanks again, guys!
[2011/10/24 09:22:14] <jason^> other than remctl and mcollective, are there any decent orchestration software?
[2011/10/24 09:22:20] <misc> func ?
[2011/10/24 09:22:26] @ iw_work joined channel #puppet
[2011/10/24 09:22:31] @ Quit: key: Ping timeout: 260 seconds
[2011/10/24 09:24:57] <walkeran> freezey: Yeah, that 'wget' define of yours defines an exec resource, and if not passed any value for 'unless', it creates that exec resource with unless => "", which isn't valid syntax, and throws "Parameter unless failed: can't convert nil into String"
[2011/10/24 09:25:07] <freezey> yeah
[2011/10/24 09:25:09] <freezey> i removed unless
[2011/10/24 09:25:11] <freezey> and it works
[2011/10/24 09:25:16] @ j00bar left channel #puppet ()
[2011/10/24 09:25:42] <walkeran> freezey: Ah, good deal
[2011/10/24 09:26:38] <dcarley> gwar9999: it relies on a new version of ruby. try running it with --yaml for a verbose but functional output.
[2011/10/24 09:26:54] @ Quit: _nono_: Ping timeout: 260 seconds
[2011/10/24 09:27:29] @ bosszaru joined channel #puppet
[2011/10/24 09:27:30] @ Quit: cruzfox: Quit: cruzfox
[2011/10/24 09:27:56] @ Quit: dissipate: Ping timeout: 260 seconds
[2011/10/24 09:28:10] @ Quit: soh: Quit: Computer has gone to sleep.
[2011/10/24 09:28:21] @ cruzfox joined channel #puppet
[2011/10/24 09:28:44] <gwar9999> dcarley: thanks! Yes, it's quite verbose. I see a lot of "bucket: No subjectAltName" does this indicate that the respective cert is clean? Also, what is the inverse (to indicate a vulnerable cert) such that I can grep to see if any host is vulnerable.
[2011/10/24 09:28:59] @ Quit: mogitaff: Quit: Leaving
[2011/10/24 09:29:28] <_rc> gwar9999: No subjectAltName is fine
[2011/10/24 09:29:54] <dcarley> gwar9999: yeah, those are safe. the opposite is "Potentially Vulnerable".
[2011/10/24 09:29:57] <_rc> the bug was that the master would set the altname to its name
[2011/10/24 09:32:31] <freezey> walkeran: so now appending the variables at top and then doing the wgets with $variable name
[2011/10/24 09:32:33] <freezey> should work?
[2011/10/24 09:33:11] @ simNIX joined channel #puppet
[2011/10/24 09:33:16] <gwar9999> dcarley: _rc: thanks for the info. Only one host said it was potentially vulnerable.
[2011/10/24 09:33:20] @ alfism joined channel #puppet
[2011/10/24 09:34:18] <dcarley> gwar9999: was it the puppet master itself?
[2011/10/24 09:34:20] <_rc> for us it was the master, which wasn't really vulnerable, it just had an alias on it
[2011/10/24 09:34:49] <dcarley> yep.
[2011/10/24 09:34:57] <_rc> backporting the script was a headscratch
[2011/10/24 09:35:22] <gwar9999> dcarley: yes, but below the "subjectaltnames" there was a bucket that listed another potentially vulnerable host.
[2011/10/24 09:35:22] @ hooper joined channel #puppet
[2011/10/24 09:35:51] @ _nono_ joined channel #puppet
[2011/10/24 09:36:00] @ Quit: danikov: Quit: danikov
[2011/10/24 09:36:01] <walkeran> freezey: Yeah, I'd say so
[2011/10/24 09:36:32] @ Quit: eshamow: Ping timeout: 248 seconds
[2011/10/24 09:36:32] @ eshamow__ joined channel #puppet
[2011/10/24 09:36:32] @ eshamow__ is now known as eshamow
[2011/10/24 09:38:36] @ peridot joined channel #puppet
[2011/10/24 09:38:42] @ kenperkins joined channel #puppet
[2011/10/24 09:38:50] @ Quit: illenseer: Quit: Ex-Chat
[2011/10/24 09:39:41] <jmccune> Good morning. =)
[2011/10/24 09:41:20] @ toi joined channel #puppet
[2011/10/24 09:42:08] <jmccune> gwar9999: If you use --yaml with the scan tool you can identify the host that showed up that way in the summary
[2011/10/24 09:42:31] @ ryancoleman joined channel #puppet
[2011/10/24 09:42:49] @ mrwacky42 joined channel #puppet
[2011/10/24 09:43:30] <jmccune> If it's only the puppet master certificate itself, then you're not vulnerable since no other certificates could impersonate the master
[2011/10/24 09:43:46] <nigelk> for the lurkers, Puppet Labs folks here include: nigelk jmccune ken_barber kelseyhightower eshamow stahnma amongst others
[2011/10/24 09:44:08] <kelseyhightower> hello
[2011/10/24 09:44:23] <stahnma> and haus
[2011/10/24 09:44:24] <gwar9999> I removed the potentially vulnerable cert (since it was from a decommissioned host) and re-running the cert scan showed a different vulnerable cert that wasn't there the first time. Why?
[2011/10/24 09:45:47] * eshamow waves hi
[2011/10/24 09:45:49] <stahnma> gwar9999: this is an excellent question
[2011/10/24 09:45:55] <stahnma> and I don't know the answer
[2011/10/24 09:46:00] @ ccaum joined channel #puppet
[2011/10/24 09:46:13] <stahnma> ccaum is also a PL employee for those playing the home game
[2011/10/24 09:46:14] @ Quit: ccaum: Client Quit
[2011/10/24 09:46:17] <eshamow> to add to nigelk's list, ccaum is PL
[2011/10/24 09:46:20] * odyi thinks about how useful a command to list all people with puppetlabs masks
[2011/10/24 09:46:20] <jmccune> gwar9999: The scan tool looks at all of the certificates in Puppet's $cadir/signed/
[2011/10/24 09:46:31] * stahnma doesn't have a PL mask
[2011/10/24 09:46:32] <jmccune> gwar9999: Have any new certs been signed recently?
[2011/10/24 09:46:33] <eshamow> odyi: i don't have a PL mask unfortunately
[2011/10/24 09:46:35] <ken_barber> nigelk: I'm an expert lurker
[2011/10/24 09:46:46] @ devzero is now known as devzero\|afk
[2011/10/24 09:47:02] @ Quit: olibuijr: Quit: Leaving
[2011/10/24 09:47:34] @ Quit: djambar: Quit: Leaving
[2011/10/24 09:48:33] @ Quit: toi: Ping timeout: 256 seconds
[2011/10/24 09:49:40] <gwar9999> I don't even see this potentially vuln hosts cert in /var/lib/puppet/ssl/ca/signed/ so not sure where the scanner is getting it from.
[2011/10/24 09:50:49] @ illsci left channel #puppet ()
[2011/10/24 09:51:35] <jmccune> gwar9999: The scanner figures out your CA's directory by simply executing "puppet master --configprint cadir"
[2011/10/24 09:52:21] <jmccune> gwar9999: If you run that in the same shell you're running the scanner, is it using /var/lib/puppet/ssl/ca/signed/ ?
[2011/10/24 09:53:29] <gwar9999> jmccune: "/var/lib/puppet/ssl/ca"
[2011/10/24 09:53:58] <jmccune> Yep, that's right.
[2011/10/24 09:54:40] @ Quit: KaiserBeto1: Ping timeout: 248 seconds
[2011/10/24 09:55:05] <jmccune> gwar9999: COuld you redirect the output of --yaml to a file and email it to me?
[2011/10/24 09:56:33] @ williemach joined channel #puppet
[2011/10/24 09:57:02] <gwar9999> jmccune: My bad, it was there. I forgot to append the domain name when looking for the file. The 2nd vulnerable cert is there (since June) but it didn't show up during the first scan run. This host is live and also associated with the puppetmaster.
[2011/10/24 09:57:12] @ krak3n joined channel #puppet
[2011/10/24 09:57:21] <jmccune> gwar9999: Ah, cool
[2011/10/24 09:57:42] <jmccune> Glad it's identifying the correct things now.
[2011/10/24 09:57:57] @ Quit: jodok: Quit: jodok
[2011/10/24 09:58:07] <jmslagle> Whee!
[2011/10/24 09:58:17] @ scsinutz joined channel #puppet
[2011/10/24 09:58:31] @ scsinutz left channel #puppet ()
[2011/10/24 09:58:55] <gwar9999> jmccune: so should I delete the cert for the 2nd host and regen it?
[2011/10/24 10:00:05] <eric0> "Configure all Puppet agent nodes to contact the Puppet master at its new name" ... i.e. turn off server auto-discovery?
[2011/10/24 10:00:09] <jmccune> gwar9999: Yes, thought that may not be sufficient if you think the private key may have been compromised
[2011/10/24 10:00:45] <jmccune> gwar9999: If you're sure nobody else has the private key to that certificate, then it's fine to just re-issue it.
[2011/10/24 10:01:11] <jmccune> eric0: Server auto-discovery? =)
[2011/10/24 10:01:14] @ pdtpatrick1 joined channel #puppet
[2011/10/24 10:03:08] <gwar9999> All agents do use the puppetmaster at it's new name. We've never used auto discovery and never used certdnsnames so not sure why I've gotten 2 potentially vulnerable hits but not during the same run. I'm not sure if I should rely on this utility since it gave different results the 2nd time. If I look at the openssl output of a cert how can I tell if this new host is really vulnerable rather than "potentially" so?
[2011/10/24 10:03:13] @ Quit: ryancoleman: Quit: Leaving.
[2011/10/24 10:03:35] @ jsurfer joined channel #puppet
[2011/10/24 10:03:51] <krak3n> hey guys, I'm having some issues with Nginx (0.7.67-3), Puppetmaster (2.6.1) with Mongrel (1.1.5) - been following this guide for setting up a nginx / mongrel puppet master: http://www.davidpashley.com/blog/systems-administration/puppet/nginx-mongrel - however when an agent connects it receives: Forbidden request: node.domain.net.net(xxx.xxx.xxx.xxx) access to /catalog/node.domain.net (where xxx.xxx.xxx..xxx is the nodes IP address) - been trying to
[2011/10/24 10:03:51] <krak3n> solve this for hours with no luck :( anyone come across this before?
[2011/10/24 10:04:10] @ lak joined channel #puppet
[2011/10/24 10:04:10] @ Quit: lak: Changing host
[2011/10/24 10:04:10] @ lak joined channel #puppet
[2011/10/24 10:04:49] <jmccune> gwar9999: openssl x509 -text -noout -in /path/to/certificate.pem
[2011/10/24 10:05:23] <jmccune> gwar9999: If the certificate contains the subjectAltNames attribute with the DNS names of the puppet master, then that certificate and private key could potentially be used by an attacker to impersonate your Puppet master.
[2011/10/24 10:05:41] <jmccune> gwar9999: That openssl command gives you the same information that "puppet cert print foo" gives you.
[2011/10/24 10:05:55] @ p3rror joined channel #puppet
[2011/10/24 10:07:59] <gwar9999> jmccune: thanks for the info. In looking at the cert on the puppetmaster for the "potentially vulnerable" host, I don't see "subjectAltNames". However, in looking at the puppetmaster's pem, I see it.
[2011/10/24 10:08:14] @ roog left channel #puppet ()
[2011/10/24 10:08:33] @ clustermagnet joined channel #puppet
[2011/10/24 10:08:43] @ papertigers joined channel #puppet
[2011/10/24 10:08:52] <eric0> oh my goodness, nevermind. just read through the faq. that bug is .... unfortunate
[2011/10/24 10:09:08] <clustermagnet> guys.. :) having some Passenger/puppet front end problem....
[2011/10/24 10:09:08] <clustermagnet> http://pastie.org/2751536
[2011/10/24 10:09:13] <jmccune> eric0: Yeah... =(
[2011/10/24 10:09:15] @ ryancoleman joined channel #puppet
[2011/10/24 10:09:20] <clustermagnet> if someone could help, that would be awesome! thanks!
[2011/10/24 10:09:28] <jmccune> eric0: It's been... "interesting" to try and fix.
[2011/10/24 10:09:44] <papertigers> Does puppet support the use of chattr? I have found puppet feature #2902, but thats 2 years old
[2011/10/24 10:11:14] <kelseyhightower> clustermagnet: can you do gem install rack -v 1.1.0
[2011/10/24 10:11:59] <clustermagnet> kelseyhightower: doing
[2011/10/24 10:12:13] <clustermagnet> kelseyhightower: now i get can't activate rack-1.1.0, already activated rack-1.1.2
[2011/10/24 10:12:28] @ Quit: littleidea: Ping timeout: 245 seconds
[2011/10/24 10:12:30] @ soh joined channel #puppet
[2011/10/24 10:12:45] <kelseyhightower> hmm, gem uninstall rack -v 1.1.0 and install 1.1.2
[2011/10/24 10:12:55] <kelseyhightower> I will be away for a few moments
[2011/10/24 10:13:00] <kelseyhightower> we will get is solved
[2011/10/24 10:13:05] @ Quit: jsurfer: Quit: jsurfer
[2011/10/24 10:13:18] @ jsurfer joined channel #puppet
[2011/10/24 10:13:23] @ Quit: soh: Client Quit
[2011/10/24 10:14:09] <eric0> that's right ~> is an exact version specifier in gem reqs
[2011/10/24 10:14:34] <clustermagnet> kelseyhightower: now i have 3 racks installed,,,, rack (1.3.5, 1.2.3, 1.1.2)
[2011/10/24 10:14:44] <kelseyhightower> clustermagnet: don't you love gems
[2011/10/24 10:14:45] <clustermagnet> and i think its working :)
[2011/10/24 10:14:52] @ Quit: espent: Quit: ZNC - http://znc.sourceforge.net
[2011/10/24 10:14:55] @ jwhitlock_zzz is now known as jwhitlock
[2011/10/24 10:14:57] <clustermagnet> now its complaining about the database.yml file
[2011/10/24 10:14:59] <clustermagnet> which ill fix
[2011/10/24 10:15:12] <clustermagnet> did database.yml change from dashboard 1.0 to 1.2
[2011/10/24 10:15:13] <clustermagnet> ?
[2011/10/24 10:15:23] @ ckauhaus joined channel #puppet
[2011/10/24 10:15:27] @ the_ramink joined channel #puppet
[2011/10/24 10:15:30] <stahnma> clustermagnet: to 1.2.2 I think it did
[2011/10/24 10:15:31] <kelseyhightower> clustermagnet: hmm not sure about that. How did you install?
[2011/10/24 10:15:32] @ jwhitlock is now known as jwhitlock_zzz
[2011/10/24 10:15:45] <kelseyhightower> clustermagnet: what he said :)
[2011/10/24 10:15:59] <clustermagnet> diffing the 2 example files ;)
[2011/10/24 10:16:06] @ Quit: nottings_: Quit: Leaving
[2011/10/24 10:16:42] <stahnma> I think the database.yml just changed in s/root/dashboard
[2011/10/24 10:16:43] @ Quit: jsurfer: Remote host closed the connection
[2011/10/24 10:16:46] <stahnma> and some more comments
[2011/10/24 10:16:52] <stahnma> but I could be wrong
[2011/10/24 10:17:08] @ jsurfer joined channel #puppet
[2011/10/24 10:17:15] @ Quit: emag: Read error: Operation timed out
[2011/10/24 10:17:39] <craftytech> hey, does anyone know how do I check exit code in puppet?
[2011/10/24 10:17:56] <kelseyhightower> craftytech: does echo $? not work
[2011/10/24 10:18:08] <kelseyhightower> it may not give out a detailed exit code
[2011/10/24 10:18:17] <stahnma> craftytech: there are some detailed exit code options as well
[2011/10/24 10:18:22] <craftytech> say, I have a defined resource type, and when instantiated, check its exit code
[2011/10/24 10:18:23] <clustermagnet> kelseyhightower: nice! http://pastie.org/2751583
[2011/10/24 10:18:25] @ Quit: ukd1: Ping timeout: 252 seconds
[2011/10/24 10:18:25] <gwar9999> so if only the puppetmaster cert has "Subject Alternative Name" does that mean we are vulnerable or are we fine?
[2011/10/24 10:18:27] @ emag joined channel #puppet
[2011/10/24 10:18:33] <clustermagnet> its really yelling at me now :)
[2011/10/24 10:18:44] <craftytech> so it worked do this, if it didn't do that
[2011/10/24 10:18:49] <nate_h> we have root trust keys all over the place anyways so who cares :P
[2011/10/24 10:19:05] @ soh joined channel #puppet
[2011/10/24 10:19:10] @ Quit: lak: Quit: Leaving.
[2011/10/24 10:19:16] <clustermagnet> ah, i see!
[2011/10/24 10:19:16] @ labrown joined channel #puppet
[2011/10/24 10:19:20] <clustermagnet> the db needs to be upgraded
[2011/10/24 10:19:38] <nigelk> gwar9999: if only your master has it, you're fine.
[2011/10/24 10:19:40] <grim_radical> craftytech: defined "worked"
[2011/10/24 10:19:54] <grim_radical> craftytech: like, if puppet ran but had no changes to apply, do you want that to return a 0 or a 1?
[2011/10/24 10:20:11] <gwar9999> nigelk:thanks, thought so, but wanted to make sure.
[2011/10/24 10:20:15] <grim_radical> craftytech: if puppet throws an exception, it should exit with a non-zero exit status
[2011/10/24 10:20:16] <kelseyhightower> clustermagnet: make sure you follow the upgrade process
[2011/10/24 10:20:22] <craftytech> if a I have defined resource type of Exec, and the exit code returned something other than zero
[2011/10/24 10:20:26] <kelseyhightower> clustermagnet: link on the way
[2011/10/24 10:20:32] @ danikov joined channel #puppet
[2011/10/24 10:20:46] <kelseyhightower> clustermagnet: http://docs.puppetlabs.com/dashboard/manual/1.2/upgrading.html
[2011/10/24 10:20:52] <craftytech> and then I want to perform an additional function based on that non-zero exit code
[2011/10/24 10:21:18] <grim_radical> craftytech: ah, so this is internal to your code...AFAIK, the exec resource wants the commands executed to return a zero
[2011/10/24 10:21:24] <clustermagnet> kelseyhightower: uhm, i can always drop the db and recreate,, yes? :)
[2011/10/24 10:21:33] <craftytech> yeah
[2011/10/24 10:21:34] <grim_radical> craftytech: I don't believe there's a great way to chain them based purely on exit status
[2011/10/24 10:21:43] <kelseyhightower> clustermagnet: do you want to save your data?
[2011/10/24 10:21:45] <craftytech> ahhh
[2011/10/24 10:22:09] @ sdog joined channel #puppet
[2011/10/24 10:22:10] <grim_radical> craftytech: can you just modify the command being executed and use a && or \|\| or something else specific to your use case?
[2011/10/24 10:22:14] <clustermagnet> kelseyhightower: dont care :)
[2011/10/24 10:22:14] @ Quit: sdog: Changing host
[2011/10/24 10:22:14] @ sdog joined channel #puppet
[2011/10/24 10:22:27] <craftytech> I hear you...
[2011/10/24 10:22:31] <kelseyhightower> clustermagnet: ok, give the install guide a read then
[2011/10/24 10:22:31] <craftytech> how about this
[2011/10/24 10:22:45] <craftytech> what do you guys use for notification in puppet
[2011/10/24 10:22:59] <grim_radical> craftytech: define "notification". :)
[2011/10/24 10:23:19] <grim_radical> like, pinging a monitoring system or something?
[2011/10/24 10:23:20] <kelseyhightower> craftytech: returns - The expected return code(s). An error will be returned if the executed command returns something else. Defaults to 0. Can be specified as an array of acceptable return codes or a single value.
[2011/10/24 10:23:27] <kelseyhightower> craftytech: http://docs.puppetlabs.com/references/stable/type.html#exec
[2011/10/24 10:23:32] <craftytech> a summary of actions performed via puppet to be emailed to a selected group of people
[2011/10/24 10:23:35] <grim_radical> kelseyhightower: good catch
[2011/10/24 10:23:58] <nate_h> craftytech, i would do it with an unless
[2011/10/24 10:23:59] <grim_radical> kelseyhightower: though I don't know if you can notify a separate resource depending on the exit code
[2011/10/24 10:24:01] @ Quit: cruzfox: Quit: cruzfox
[2011/10/24 10:24:13] <dpittman> grim_radical: Nope.
[2011/10/24 10:24:21] <nate_h> craftytech, the main exec would be the failthrough case, and the primary exec would be in the unless.
[2011/10/24 10:24:24] <craftytech> so if a bunch of items get realized, I want to create a summary report of what was done
[2011/10/24 10:24:33] @ toi joined channel #puppet
[2011/10/24 10:24:40] @ jeremy joined channel #puppet
[2011/10/24 10:24:45] <nate_h> craftytech, of course that won't work for all situations because that unless will fire everytime
[2011/10/24 10:24:52] <kelseyhightower> grim_radical: can a resource watch the exec?
[2011/10/24 10:25:29] <nate_h> kelseyhightower, subscribe ?
[2011/10/24 10:25:36] @ Quit: soh: Quit: Computer has gone to sleep.
[2011/10/24 10:25:55] <nate_h> or do you mean subscribe based on exit code
[2011/10/24 10:25:58] <kelseyhightower> nate_h: maybe, that is what I am thinking
[2011/10/24 10:25:59] <grim_radical> kelseyhightower: it can, but that notification won't include the exit status...so if craftytech wants to do something different depending on how the exec returned, i'm not sure how to make that happen
[2011/10/24 10:26:12] <grim_radical> like, either you get notified or you don't
[2011/10/24 10:26:32] <grim_radical> what, AFAIK, is based on "the exec resource was successfully applied" or it wasn't
[2011/10/24 10:26:51] <clustermagnet> guys, uhm http://pastie.org/2751641
[2011/10/24 10:27:00] <clustermagnet> for some reason, cant import a new fresh db :)
[2011/10/24 10:27:10] <grim_radical> you should be able to use the "returns" attribute to help define what "successfully applied" means, but it's still kind of all or nothing in terms of event triggering
[2011/10/24 10:27:27] @ soh joined channel #puppet
[2011/10/24 10:27:37] <grim_radical> craftytech: maybe a report processor would be a better fit for what you're trying to do?
[2011/10/24 10:27:39] @ Quit: pmorillon: Quit: pmorillon
[2011/10/24 10:27:55] <craftytech> is that part of puppet?
[2011/10/24 10:27:58] <grim_radical> yup
[2011/10/24 10:28:10] <craftytech> cool, I'll take a look
[2011/10/24 10:28:19] <craftytech> thanks grim
[2011/10/24 10:28:31] <grim_radical> craftytech: there's already a tagmail report plugin that you can configure to email people
[2011/10/24 10:28:40] @ los324 joined channel #puppet
[2011/10/24 10:29:08] <grim_radical> craftytech: http://docs.puppetlabs.com/references/stable/report.html
[2011/10/24 10:29:28] <craftytech> yeah, I tried that, but that generates too much info, which for me is fine... but it'll start a firestorm with the users when they start asking what all of this mean
[2011/10/24 10:29:36] <clustermagnet> guys… having a strange issue… /usr/local/ruby/bin/gem
[2011/10/24 10:29:46] <clustermagnet> http://pastie.org/2751641
[2011/10/24 10:29:48] <grim_radical> craftytech: if you know some ruby, you can make your own report processor that just includes the stuff you want
[2011/10/24 10:30:23] <craftytech> I know 'some' ruby
[2011/10/24 10:30:49] <nate_h> craftytech, oh here's an idea
[2011/10/24 10:30:56] <craftytech> is there a place where I can get started, some sort or reference, sample something?
[2011/10/24 10:31:10] <grim_radical> craftytech: i'd look at the code for the existing report processors
[2011/10/24 10:31:19] <grim_radical> craftytech: it's in lib/puppet/reports
[2011/10/24 10:31:20] <nate_h> err nm
[2011/10/24 10:31:21] @ ksheurs joined channel #puppet
[2011/10/24 10:31:35] <craftytech> yeah, it makes sence
[2011/10/24 10:33:25] @ cruzfox joined channel #puppet
[2011/10/24 10:37:13] @ Quit: benkevan: Quit: leaving
[2011/10/24 10:37:28] @ benkevan joined channel #puppet
[2011/10/24 10:37:28] @ Quit: krak3n: Remote host closed the connection
[2011/10/24 10:37:34] @ Quit: pugnacity: Ping timeout: 244 seconds
[2011/10/24 10:37:34] <clustermagnet> guys, is ruby 1.9.2 supported by puppet/dashboard?
[2011/10/24 10:38:27] @ Quit: benkevan: Client Quit
[2011/10/24 10:38:47] @ benkevan joined channel #puppet
[2011/10/24 10:39:52] @ larstobi joined channel #puppet
[2011/10/24 10:40:06] <the_ramink> clustermagnet: no, 1.8.7 specifically. https://github.com/puppetlabs/puppet-dashboard/blob/master/README.markdown
[2011/10/24 10:41:11] <clustermagnet> the_ramink: thanks! so i will make sure the env has 1.8.7 specifically
[2011/10/24 10:41:23] @ pugnacity joined channel #puppet
[2011/10/24 10:42:58] <dan__t_> So I made a parameterized class to do some NFS-ish stuff. I used it, it works great. Then I tried using it again, to specify a different mount point. Of course, I run in to "Duplicate definition, class yada is already defined"
[2011/10/24 10:43:02] @ gwar9999 left channel #puppet ()
[2011/10/24 10:43:39] <dan__t_> Disappointed that I didn't think of this before creating the class, but I effectively wanted to pass one single option as a parameter to some piece of data - a class, definiton, something like that - but reuse that definition multiple times, in this case, to specify multiple mount points for NFS.
[2011/10/24 10:44:21] <Sp4rKy> dan__t_: just ensure that all your ressource definitions will have some "unique" part
[2011/10/24 10:44:26] <Sp4rKy> like $fqdn
[2011/10/24 10:44:32] <torrancew> dan__t_: you want a define instead of a parameterized class, I believe
[2011/10/24 10:45:06] @ KaiserBeto1 joined channel #puppet
[2011/10/24 10:45:09] <dan__t_> Hrm, not a bad idea, Sp4rKy.
[2011/10/24 10:45:15] <dan__t_> torrancew, where would I actually "apply" a define to a node?
[2011/10/24 10:45:47] @ Quit: KaiserBeto1: Read error: Connection reset by peer
[2011/10/24 10:46:00] <torrancew> Well, assuming you've already rewritten your define to something like:
[2011/10/24 10:46:15] <torrancew> define nfs_mount($mount_point, $server){ ... }
[2011/10/24 10:46:26] <torrancew> then inside of your node you would just do:
[2011/10/24 10:46:33] <eric0> jmccune: sorry, one furhter question on the exact nature of the vulnerability -- under FAQ question one, istn't there an additional step required to exploit?
[2011/10/24 10:46:38] <torrancew> include <NFS_MODULE>
[2011/10/24 10:46:51] <eric0> i.e. you'd need to subvert DNS on another node to point it to a compromised node with the fake cert
[2011/10/24 10:47:00] <torrancew> nfs_mount{ "my_mount": mount_point => '/mnt/foo', server => 'bar.example.com' }
[2011/10/24 10:47:26] @ los324 left channel #puppet ()
[2011/10/24 10:48:04] @ Chiku\|dc joined channel #puppet
[2011/10/24 10:48:04] @ Quit: Chiku\|dc: Changing host
[2011/10/24 10:48:04] @ Chiku\|dc joined channel #puppet
[2011/10/24 10:48:42] <dan__t_> I'd include nfs_mount() inside fo the node definition?
[2011/10/24 10:48:42] @ Quit: soh: Quit: Computer has gone to sleep.
[2011/10/24 10:49:10] @ Quit: jamison: Excess Flood
[2011/10/24 10:49:15] @ jamison joined channel #puppet
[2011/10/24 10:49:27] <dpittman> eric0: Nope. You just need to trick it into sending traffic to you, not the real server or router.
[2011/10/24 10:49:49] <dpittman> eric0: There are off-the-shelf tools to attack the local switch, or even fabric, and achieve that.
[2011/10/24 10:50:28] <dpittman> eric0: The obvious example is MAC swapping for HA purposes, ditto gratuitous ARP for the same.
[2011/10/24 10:50:36] <torrancew> dan__t_: you'd "include" the module, and then you'd call the nfs_mount as if it were a puppet resource type (like file, package, etc)
[2011/10/24 10:50:36] @ papertigers left channel #puppet ("WeeChat 0.3.4")
[2011/10/24 10:50:38] @ Quit: Chiku: Ping timeout: 258 seconds
[2011/10/24 10:50:42] <torrancew> define == defined type
[2011/10/24 10:51:37] <dan__t_> right, i get that part
[2011/10/24 10:52:13] <dan__t_> But I mean, if my definiton is inside my "nfs" module which I've included, in my nodes.pp (that's where I have nodes), I declare nfs_mount { "my_mount"..... .... ...} ?
[2011/10/24 10:52:21] @ Quit: mawser: Quit: mawser
[2011/10/24 10:52:27] <torrancew> ya]
[2011/10/24 10:52:43] <dan__t_> I'm almost positive I did that the other day.
[2011/10/24 10:52:48] <torrancew> and give each mount a unique $namevar ("my_mount" in your example)
[2011/10/24 10:52:53] <dan__t_> right
[2011/10/24 10:53:02] <eric0> dpittman: OK, name resolution or network MITM vector
[2011/10/24 10:53:04] <dan__t_> i wouldn't define 10 iof the same nfs mount points heh
[2011/10/24 10:53:07] <dpittman> eric0: Yes.
[2011/10/24 10:53:39] <dan__t_> Thanks, torrancew.
[2011/10/24 10:53:39] <dpittman> eric0: You absolutely need to achieve a MITM vector for the attack to work, but pretty much anyone who counts on the network to protect them is going to be wrong.
[2011/10/24 10:54:05] @ soh joined channel #puppet
[2011/10/24 10:54:39] @ Quit: toi: Ping timeout: 258 seconds
[2011/10/24 10:54:49] <torrancew> dpittman: Also, anyone who believes the network will protect them hasn't worked with some of the network engineers I have...
[2011/10/24 10:55:30] @ Quit: ken_barber: Quit: Leaving.
[2011/10/24 10:56:12] <dpittman> eric0: Does that answer your question about why?
[2011/10/24 10:57:17] @ littleidea joined channel #puppet
[2011/10/24 10:57:44] <dan__t_> hot shit. it works.
[2011/10/24 10:57:45] <dan__t_> thanks, torrancew.
[2011/10/24 10:58:11] @ olibuijr joined channel #puppet
[2011/10/24 10:59:26] <torrancew> np, dan__t_
[2011/10/24 10:59:52] <dan__t_> Just looking for easier ways for other admins to apply configs.
[2011/10/24 11:00:11] <eric0> dpittman: yeah, we have an affected environment, so i need to assess risk and provide info to the sec department
[2011/10/24 11:00:14] @ BManojlovic joined channel #puppet
[2011/10/24 11:00:14] @ Quit: BManojlovic: Changing host
[2011/10/24 11:00:14] @ BManojlovic joined channel #puppet
[2011/10/24 11:00:41] <dan__t_> can I.... function { "somethingunique": someval => "name" } ?
[2011/10/24 11:00:53] <dpittman> eric0: nod From that point of view, if you can prevent a network MITM you are safe.
[2011/10/24 11:00:56] <dpittman> eric0: Sorry. :)
[2011/10/24 11:01:22] @ ryanspaulding joined channel #puppet
[2011/10/24 11:01:32] <eric0> dpittman: it predates you, no need to apologise
[2011/10/24 11:01:35] <dan__t_> er, someval => $name
[2011/10/24 11:01:43] <peridot> Can I store files somewhere other than modules/modulename/files? I want to use production and testing environments, but have quite a few files and don't want to have to keep two different sources up.
[2011/10/24 11:01:43] <torrancew> dan__t_: what do you mean?
[2011/10/24 11:01:45] @ thisKat joined channel #puppet
[2011/10/24 11:02:02] @ lak joined channel #puppet
[2011/10/24 11:02:02] @ Quit: lak: Changing host
[2011/10/24 11:02:02] @ lak joined channel #puppet
[2011/10/24 11:04:16] <dan__t_> nothin, it doesn't work
[2011/10/24 11:04:29] <dan__t_> trying to use the name of what I had defined as the value for someval
[2011/10/24 11:04:33] <dan__t_> er, the label
[2011/10/24 11:04:46] <dpittman> eric0: v
[2011/10/24 11:04:54] <dpittman> Ahem. Wrong buffer. Sorry.
[2011/10/24 11:05:01] @ csanchez joined channel #puppet
[2011/10/24 11:05:12] @ Quit: matchaw: Ping timeout: 240 seconds
[2011/10/24 11:05:37] @ KaiserBeto1 joined channel #puppet
[2011/10/24 11:08:28] <torrancew> dan__t_: that works in some cases, but I'd recommend against it
[2011/10/24 11:11:47] @ Quit: csanchez: Quit: csanchez
[2011/10/24 11:14:46] @ Quit: pugnacity: Ping timeout: 244 seconds
[2011/10/24 11:17:53] @ pugnacity joined channel #puppet
[2011/10/24 11:19:08] @ Quit: lak: Quit: Leaving.
[2011/10/24 11:20:40] @ the_ramink__ joined channel #puppet
[2011/10/24 11:20:45] @ gaveen joined channel #puppet
[2011/10/24 11:22:06] @ Quit: the_ramink: Ping timeout: 260 seconds
[2011/10/24 11:23:32] @ the_ramink__ is now known as the_raminkk
[2011/10/24 11:25:41] @ bretm_ joined channel #puppet
[2011/10/24 11:26:23] @ Quit: jbraeuer: Quit: jbraeuer
[2011/10/24 11:27:20] @ bmahe joined channel #puppet
[2011/10/24 11:27:21] @ Quit: bmahe: Changing host
[2011/10/24 11:27:21] @ bmahe joined channel #puppet
[2011/10/24 11:28:01] @ jsurfer_ joined channel #puppet
[2011/10/24 11:28:58] @ Quit: soh: Quit: Computer has gone to sleep.
[2011/10/24 11:29:15] @ Quit: bretm: Ping timeout: 260 seconds
[2011/10/24 11:31:00] @ Quit: bretm_: Read error: Connection reset by peer
[2011/10/24 11:31:27] @ Quit: jsurfer: Ping timeout: 258 seconds
[2011/10/24 11:31:27] @ jsurfer_ is now known as jsurfer
[2011/10/24 11:32:10] @ Quit: MattTheRat: Ping timeout: 260 seconds
[2011/10/24 11:32:37] @ barn joined channel #puppet
[2011/10/24 11:32:51] @ Quit: fladi_: Ping timeout: 244 seconds
[2011/10/24 11:32:58] @ gregp76 joined channel #puppet
[2011/10/24 11:33:15] @ MattTheRat joined channel #puppet
[2011/10/24 11:33:39] @ ryancoleman1 joined channel #puppet
[2011/10/24 11:33:40] @ Quit: ryancoleman: Read error: Connection reset by peer
[2011/10/24 11:33:52] @ Quit: williemach: Ping timeout: 248 seconds
[2011/10/24 11:35:23] @ lak joined channel #puppet
[2011/10/24 11:35:29] @ Quit: lak: Changing host
[2011/10/24 11:35:29] @ lak joined channel #puppet
[2011/10/24 11:36:47] @ soh joined channel #puppet
[2011/10/24 11:37:44] @ lwhalen42 joined channel #puppet
[2011/10/24 11:38:35] @ Quit: lwhalen: Read error: Operation timed out
[2011/10/24 11:39:04] @ williemach joined channel #puppet
[2011/10/24 11:39:42] @ lian_ joined channel #puppet
[2011/10/24 11:41:02] @ Quit: Psi-Jack: Ping timeout: 258 seconds
[2011/10/24 11:41:38] <dan__t_> hrm
[2011/10/24 11:41:48] <dan__t_> i can use puppet's tls certs for ldap tls too, can't I.
[2011/10/24 11:42:21] <torrancew> yep
[2011/10/24 11:44:33] @ eshamow__ joined channel #puppet
[2011/10/24 11:45:27] @ Quit: Razique: Quit: Razique
[2011/10/24 11:45:29] <dan__t_> mmm, not out of the box due to perms on the ssl/private_keys/ dir
[2011/10/24 11:45:38] <torrancew> right
[2011/10/24 11:45:40] @ toi joined channel #puppet
[2011/10/24 11:46:14] @ Quit: lkoranda: Quit: Ex-Chat
[2011/10/24 11:46:20] <dan__t_> puppet is going to redo those perms, isn't it.
[2011/10/24 11:46:37] @ Psi-Jack joined channel #puppet
[2011/10/24 11:46:59] @ Quit: eshamow: Ping timeout: 256 seconds
[2011/10/24 11:47:02] @ eshamow__ is now known as eshamow
[2011/10/24 11:47:07] @ nfagerlund joined channel #puppet
[2011/10/24 11:47:10] <dan__t_> yep.
[2011/10/24 11:47:30] <torrancew> quite possibly, but alot of daemons start as root specifically for opening certs, so you may be able to either redeploy the certs, or carefully configure the daemon
[2011/10/24 11:47:59] @ csanchez joined channel #puppet
[2011/10/24 11:48:01] <dan__t_> i know
[2011/10/24 11:48:04] <dan__t_> chicken/egg
[2011/10/24 11:49:50] @ Quit: kaptk2: Quit: Leaving.
[2011/10/24 11:51:33] <dan__t_> that ldap sysv script is atrocious
[2011/10/24 11:51:47] <torrancew> s/ldap //
[2011/10/24 11:51:57] <torrancew> dan__t_: when's the last time you saw a sysv script that wasn't?
[2011/10/24 11:52:17] <dan__t_> true
[2011/10/24 11:52:32] <nigelk> dan__t_: you may also be able to adjust the perms in the config file to stop puppet changing them
[2011/10/24 11:52:45] @ eshamow_ joined channel #puppet
[2011/10/24 11:52:59] <nigelk> hostcert = /path/to/cert { owner = newoner, group = newgroup, mode = 777 }
[2011/10/24 11:53:28] <dan__t_> which config file?
[2011/10/24 11:53:35] <nigelk> puppet.conf
[2011/10/24 11:53:39] * nigelk digs up docs
[2011/10/24 11:53:41] <dan__t_> I... did not know that.
[2011/10/24 11:53:52] <nigelk> however, be very careful when relaxing perms
[2011/10/24 11:53:57] <nigelk> I'd tend to copy the files instead
[2011/10/24 11:53:59] <torrancew> dan__t_: however, please don't set your certs to 777 ;)
[2011/10/24 11:54:09] <dan__t_> no.
[2011/10/24 11:54:16] <dan__t_> 640, puppet:ldap
[2011/10/24 11:54:16] <nfagerlund> nigelk: dan__t_: http://docs.puppetlabs.com/references/latest/configuration.html
[2011/10/24 11:54:23] <nigelk> dan__t_: http://docs.puppetlabs.com/guides/configuring.html#file-format
[2011/10/24 11:54:25] <nigelk> heh
[2011/10/24 11:54:39] <dan__t_> well right, i knew that was there
[2011/10/24 11:54:44] <dan__t_> i didn't know i could set perms on those files.
[2011/10/24 11:54:50] <nigelk> it wasn't well publicized
[2011/10/24 11:54:56] <nigelk> and to be honest, I don't like the syntax
[2011/10/24 11:55:00] @ eshamow____ joined channel #puppet
[2011/10/24 11:55:02] <dan__t_> that. is. awesome.
[2011/10/24 11:55:05] <nfagerlund> yeah. But at least now we mention the perms in both places to read about the config file.
[2011/10/24 11:55:30] @ Quit: toi: Read error: Operation timed out
[2011/10/24 11:57:00] @ Quit: eshamow: Ping timeout: 276 seconds
[2011/10/24 11:57:00] @ eshamow____ is now known as eshamow
[2011/10/24 11:57:01] <dan__t_> hehe
[2011/10/24 11:57:02] <dan__t_> thanks.
[2011/10/24 11:57:13] @ Quit: eshamow_: Ping timeout: 252 seconds
[2011/10/24 12:01:15] @ negronjl joined channel #puppet
[2011/10/24 12:06:01] @ Quit: ryancoleman1: Quit: Leaving.
[2011/10/24 12:07:19] @ jbraeuer joined channel #puppet
[2011/10/24 12:13:24] <clustermagnet> guys, i am cleaning my system and reinstlaling ruby
[2011/10/24 12:13:30] <clustermagnet> which package am i missing?
[2011/10/24 12:13:35] <clustermagnet> Starting puppetmaster: /usr/sbin/puppetmasterd:3:in `require': no such file to load -- puppet/application/master (LoadError)
[2011/10/24 12:13:41] <clustermagnet> i ran the gem install require....
[2011/10/24 12:14:34] <torrancew> clustermagnet: installed puppet from a gem?
[2011/10/24 12:14:42] <clustermagnet> torrancew: source
[2011/10/24 12:15:09] <torrancew> clustermagnet: ruby cannot find your puppet install
[2011/10/24 12:15:30] <torrancew> try setting RUBYLIB=/path/to/puppet/install
[2011/10/24 12:15:30] @ lisa joined channel #puppet
[2011/10/24 12:16:43] @ HostingNerd5000 joined channel #puppet
[2011/10/24 12:16:46] <HostingNerd5000> Hey all
[2011/10/24 12:17:03] @ Quit: brandon_dacrib: Read error: Connection reset by peer
[2011/10/24 12:17:08] @ brandon_dacrib joined channel #puppet
[2011/10/24 12:17:34] @ AphisOne joined channel #puppet
[2011/10/24 12:17:53] @ Quit: brandon_dacrib: Read error: Connection reset by peer
[2011/10/24 12:17:59] @ brandon_dacrib joined channel #puppet
[2011/10/24 12:18:09] <HostingNerd5000> Anyone out there?
[2011/10/24 12:18:26] <dpittman> HostingNerd5000: Sure. ~ 500 people. You should ask your actual question.
[2011/10/24 12:18:31] <HostingNerd5000> LOL
[2011/10/24 12:18:46] <torrancew> dpittman: closer to 600 ;)
[2011/10/24 12:18:48] <HostingNerd5000> Anyone stumbled upon a _good_ repo of modules for CIS benchmarks
[2011/10/24 12:18:58] <clustermagnet> torrancew: since i had to reinstall ruby, i had to re-install puppet, no biggie, configs stayed the same
[2011/10/24 12:19:06] <clustermagnet> torrancew: thanks :) fixed
[2011/10/24 12:19:19] <clustermagnet> for some reason i cant start the dashboard… (
[2011/10/24 12:19:20] @ sumsuch joined channel #puppet
[2011/10/24 12:19:23] <HostingNerd5000> I picked up a puppet book and have few lab systems up but I am wondering if it is worth writing tons of modules to get our servers closer to the CIS reccomentations.
[2011/10/24 12:19:31] @ AphisOne left channel #puppet ()
[2011/10/24 12:20:07] @ jamesturnbull joined channel #puppet
[2011/10/24 12:20:10] <clustermagnet> torrancew: i've downloaded the source for dashboard, extraceted it
[2011/10/24 12:20:16] <clustermagnet> created the database, and am stuck at:
[2011/10/24 12:20:28] <clustermagnet> rake RAILS_ENV=production db:migrate
[2011/10/24 12:20:41] <clustermagnet> gives me : /usr/local/ruby-1.8.7/lib/ruby/site_ruby/1.8/rubygems/custom_require.rb:36:in `gem_original_require': no such file to load -- rake (LoadError)
[2011/10/24 12:21:01] <jamesturnbull> clustermagnet: gem install rake
[2011/10/24 12:21:25] <dpittman> HostingNerd5000: Not that I know of.
[2011/10/24 12:21:29] @ FlexGuy joined channel #puppet
[2011/10/24 12:21:42] <clustermagnet> jamesturnbull: thanks man! i was misreading rack and rake :)
[2011/10/24 12:21:57] <jamesturnbull> clustermagnet: nwm
[2011/10/24 12:22:10] <clustermagnet> jamesturnbull: :) http://pastie.org/2752244
[2011/10/24 12:22:47] <jamesturnbull> clustermagnet: you got you need rdoc installed - what platform is this?
[2011/10/24 12:23:11] <clustermagnet> jamesturnbull: clean building linux from scratch
[2011/10/24 12:23:26] <jamesturnbull> clustermagnet: ubuntu? red hat? fedora? gentoo
[2011/10/24 12:23:27] <jamesturnbull> ?
[2011/10/24 12:23:53] <dpittman> jamesturnbull: Linux From Scratch, http://www.linuxfromscratch.org/
[2011/10/24 12:23:59] <dpittman> jamesturnbull: Like Gentoo, but without the hand-holding.
[2011/10/24 12:24:06] <jamesturnbull> dpittman: oh wow
[2011/10/24 12:24:14] <dpittman> jamesturnbull: I would guess. :)
[2011/10/24 12:24:17] <jamesturnbull> dpittman: I am tempted to NOT help now :)
[2011/10/24 12:24:24] <torrancew> clustermagnet: as you (likely) continue to see errors involving "require" in some capacity, it will almost always be either a missing gem, or ruby not knowing where to find the app you installed
[2011/10/24 12:24:26] <jamesturnbull> clustermagnet: how did you install ruby?
[2011/10/24 12:25:47] @ Quit: negronjl: Ping timeout: 260 seconds
[2011/10/24 12:26:18] <jamesturnbull> clustermagnet: use your package manager - whatever that is to install - a package probably called ruby-rdoc
[2011/10/24 12:26:46] <jamesturnbull> clustermagnet: or possibly just rdoc
[2011/10/24 12:26:53] @ devdas joined channel #puppet
[2011/10/24 12:27:00] <walkeran> Hah! Package manager :P
[2011/10/24 12:28:24] @ Quit: olibuijr: Ping timeout: 240 seconds
[2011/10/24 12:28:41] <walkeran> I've never been able to fathom how LFS would be a good choice for production servers... or... any kind of server for that matter
[2011/10/24 12:29:13] <justintime> The whole point of LFS directly contradicts the whole point of Puppet IMO
[2011/10/24 12:29:26] <torrancew> jamesturnbull: IIRC, LFS doesn't provide a package manager, you have to pick one, compile it, etc
[2011/10/24 12:29:40] <torrancew> LFS was meant as a learning excercise IIRC
[2011/10/24 12:29:41] <jamesturnbull> bloody oath
[2011/10/24 12:29:44] <Volcane> LFS + a minimal package manager would be awesome for puppet
[2011/10/24 12:30:01] <Volcane> or something minimalist like LFS
[2011/10/24 12:30:09] <torrancew> Indeed, Volcane!
[2011/10/24 12:30:17] <jamesturnbull> Volcane: appliance style?
[2011/10/24 12:30:18] * torrancew still hasn't gone through a LFS install.... one day.
[2011/10/24 12:30:20] <Volcane> JeOS like thing that doesnt get in your way with missguided attempts at post/pre install scripts to make things easier
[2011/10/24 12:30:20] <thedonvaughn> ack LFS for a production server?
[2011/10/24 12:30:25] <sumsuch> hey all, I have been running a 2.6.11 server for a while now and everything was working great. then last night the server got upgraded to 2.7.5 and now a few things are breaking. All of my clients are still 2.6.11. Are there any common issues going from 2.6.X to 2.7.X that I should be aware of before I try toubleshooting?
[2011/10/24 12:30:42] * dpittman can see the attraction. :)
[2011/10/24 12:30:56] <justintime> Arch + Puppet would be a little more production-friendly
[2011/10/24 12:31:11] <justintime> Still minimalist, but not quite so extreme
[2011/10/24 12:31:19] <thedonvaughn> I'd still not use arch for production server either - ew
[2011/10/24 12:31:26] <thedonvaughn> rolling release? no thanks
[2011/10/24 12:31:34] <maxb> Various puppet nodes in my organization seem to occasionally be reporting run failures with the log "Caught TERM; calling stop" -- anything obvious I should be looking for?
[2011/10/24 12:32:04] @ Quit: jamison: Excess Flood
[2011/10/24 12:32:05] <walkeran> maxb: A nefarious co-worker running "killall puppet"? </sarcasm>
[2011/10/24 12:32:05] <dpittman> thedonvaughn: The *BSD people will not be impressed by your comments. ;)
[2011/10/24 12:32:07] <torrancew> maxb: is there a rogue admin sending "kill"s to your puppet agents?
[2011/10/24 12:32:19] <maxb> It seems unlikely :-)
[2011/10/24 12:32:32] <thedonvaughn> when *BSD people learn to scale to more than 2 CPUS properly - I'll pay attention to the m:)
[2011/10/24 12:32:44] <Volcane> maxb: no notifies to Service["puppet"] anywhere?
[2011/10/24 12:33:03] <thedonvaughn> ok yes freebsd has made a lot of improvement in SMP.. but still
[2011/10/24 12:33:29] <Volcane> need a packaged OS
[2011/10/24 12:33:41] <Volcane> where 'packaged' isnt 'recompile the whole thing'
[2011/10/24 12:33:43] @ jamison joined channel #puppet
[2011/10/24 12:34:17] <nfagerlund> sumsuch: a few, dunno if there's a canonical list. The one springing to mind immediately is that we now assume hasstatus => true for all service resources.
[2011/10/24 12:34:18] <maxb> blink
[2011/10/24 12:34:44] <maxb> service { "puppet": ensure => stopped, ....} ?!
[2011/10/24 12:34:51] * maxb goes to hunt down the author
[2011/10/24 12:34:55] <Volcane> maxb: well then ... :)
[2011/10/24 12:35:12] <Volcane> really, the rc scripts should suck less
[2011/10/24 12:35:20] <nfagerlund> sumsuch: also, running mismatched agents and masters isn't really recommended... 2.7 x 2.6 SHOULD be okay, but I'm not sure?
[2011/10/24 12:35:26] @ Quit: rgsteele: Quit: ChatZilla 0.9.86.1 [Firefox 3.0.7/2009030423]
[2011/10/24 12:35:48] <dpittman> sumsuch, nfagerlund: we officially support that pairing, but yeah, it is more likely to hit trouble.
[2011/10/24 12:36:04] <jamesturnbull> nfagerlund: it's cool running that pairing - I have a bunch of them
[2011/10/24 12:36:42] <sumsuch> cool, my goal would be to upgrade the clients once everything is working
[2011/10/24 12:37:13] @ Quit: shug: Quit: Leaving
[2011/10/24 12:37:17] @ Quit: craftytech: Ping timeout: 265 seconds
[2011/10/24 12:37:45] @ Quit: littleidea: Ping timeout: 252 seconds
[2011/10/24 12:39:50] <clustermagnet> guys, so puppet dashboard is up and running… and i haz 24 pending tasks
[2011/10/24 12:39:56] <clustermagnet> nothing is showing in the live dashboard....
[2011/10/24 12:39:59] <clustermagnet> anything i should do?
[2011/10/24 12:40:43] <dpittman> clustermagnet: Run the background workers. There are sample init scripts bundled in the source.
[2011/10/24 12:41:30] <dan__t_> Hey nigelk, where does 'hostcert' reside? /var/lib/puppet/ssl/certs/?
[2011/10/24 12:42:23] <clustermagnet> dpittman: like so: rake RAILS_ENV=production reports:import ?
[2011/10/24 12:42:48] <dpittman> clustermagnet: No, the background task workers. 'rake jobs:work' (IIRC) or so,
[2011/10/24 12:42:55] <dpittman> clustermagnet: IIRC, the readme covers them.
[2011/10/24 12:43:17] <clustermagnet> dpittman: thanks!
[2011/10/24 12:43:31] <clustermagnet> so i have to run the jobs:work through cron?
[2011/10/24 12:43:51] <dpittman> clustermagnet: shrug You need to run the workers for the queued tasks to get processed. How you do that is up to you. :)
[2011/10/24 12:44:03] <clustermagnet> cool, thanks !
[2011/10/24 12:44:46] <nigelk> dan__t_: it depends a lot on your local setup/distro
[2011/10/24 12:45:00] @ Quit: mauve_: Read error: Connection timed out
[2011/10/24 12:45:12] <nigelk> you can always get the correct location with "puppet agent --configprint hostcert"
[2011/10/24 12:45:19] <nigelk> and that will be what Puppet is using
[2011/10/24 12:45:59] @ ohookins joined channel #puppet
[2011/10/24 12:46:25] <ohookins> hi, anyone know where the 2.6.12 tag is in git?
[2011/10/24 12:47:24] @ littleidea joined channel #puppet
[2011/10/24 12:47:25] @ mauve_ joined channel #puppet
[2011/10/24 12:47:36] @ Quit: littleidea: Client Quit
[2011/10/24 12:47:58] <nigelk> stahnma: ^^
[2011/10/24 12:48:04] @ littleidea joined channel #puppet
[2011/10/24 12:48:34] <stahnma> ohookins: hasn't been pushed yet
[2011/10/24 12:48:40] <stahnma> will be in about 12 minutes or so ;)
[2011/10/24 12:48:46] <ohookins> cool :)
[2011/10/24 12:49:16] <ohookins> as sad as it is, the powers that be are asking me if i can backport the 2.6.12 fix to our current version :(
[2011/10/24 12:51:11] <dpittman> ohookins: What version do you have?
[2011/10/24 12:51:28] <dpittman> ohookins: Also, do you need subjectAltNames at all?
[2011/10/24 12:51:31] <ohookins> 2.6.7
[2011/10/24 12:51:43] <ohookins> we have multiple puppetmasters
[2011/10/24 12:52:00] @ Quit: brandon_dacrib: Ping timeout: 240 seconds
[2011/10/24 12:52:05] <ohookins> and some unfortunate legacy naming schemes still partially in place
[2011/10/24 12:52:07] @ kontinuity joined channel #puppet
[2011/10/24 12:52:12] <kontinuity> hi all
[2011/10/24 12:52:22] <dpittman> ohookins: Worst case, doing `git format-patch` on the series, and hand-applying them from the latest version is not that aweful.
[2011/10/24 12:52:29] @ Jake-USPS joined channel #puppet
[2011/10/24 12:52:29] <kontinuity> I am looking for a way to get a list of all nodes that are configured
[2011/10/24 12:52:38] <dpittman> ohookins: About 30 patches worth.
[2011/10/24 12:52:40] <ohookins> yeah, that's what i was thinking of... so started hunting the tag ;)
[2011/10/24 12:52:43] <kontinuity> basically to build a upstream list for nginx
[2011/10/24 12:52:46] <kontinuity> any ideas?
[2011/10/24 12:52:58] <dpittman> ohookins: nod I guess I am just confirming your guess here. :)
[2011/10/24 12:53:06] @ fredden joined channel #puppet
[2011/10/24 12:54:59] @ Quit: mauve_: Ping timeout: 252 seconds
[2011/10/24 12:55:24] @ ghg joined channel #puppet
[2011/10/24 12:55:56] @ mauve_ joined channel #puppet
[2011/10/24 12:58:13] @ Quit: jsurfer: Remote host closed the connection
[2011/10/24 12:58:30] @ jsurfer joined channel #puppet
[2011/10/24 12:59:56] @ sp33t joined channel #puppet
[2011/10/24 13:00:06] <walkeran> Someone mentioned in here, the other day, how to refer to fact names in templates without using scope.lookupvar(). Anyone? I am thinking it was something like just appending a single character to the beginning of the fact name.
[2011/10/24 13:00:18] <Volcane> walkeran: @factname
[2011/10/24 13:00:29] <walkeran> That's the one! Thanks a bunch Volcane :)
[2011/10/24 13:00:36] * Volcane isnt sure how 'supported' that is
[2011/10/24 13:00:42] <Volcane> I'd trust it once its in the docs :)
[2011/10/24 13:01:09] <walkeran> Hehe :P True... maybe I should stick to the good ol' trusty dusty for now
[2011/10/24 13:02:12] @ Quit: gaveen: Remote host closed the connection
[2011/10/24 13:04:13] @ stahnma set topic "Important Security Announcement: http://bit.ly/AltNames \| Thanks for coming to PuppetConf! Videos available http://www.youtube.com/user/puppetlabsinc \| Puppet 2.7.6 and 2.6.12 available at downloads.puppetlabs.com \| http://docs.puppetlabs.com \| Bugs & Feature Requests http://bit.ly/dKVa0A."
[2011/10/24 13:04:29] @ Quit: fredden: Remote host closed the connection
[2011/10/24 13:04:47] @ fredden joined channel #puppet
[2011/10/24 13:05:12] @ Quit: Jake-USPS: Quit: Ex-Chat
[2011/10/24 13:05:57] <nigelk> Volcane: bug report it and assign to NickF
[2011/10/24 13:06:13] @ shadoi joined channel #puppet
[2011/10/24 13:06:16] <nigelk> (add me as a watcher) I want something not fugly like lookup crap ::blahblah
[2011/10/24 13:06:32] @ ohookins left channel #puppet ("Leaving.")
[2011/10/24 13:06:36] @ brandon_dacrib joined channel #puppet
[2011/10/24 13:06:49] @ jhelwig joined channel #puppet
[2011/10/24 13:07:34] <torrancew> stahnma: what is the PL security announcement mailing list (if one exists)?
[2011/10/24 13:07:50] @ ryancoleman joined channel #puppet
[2011/10/24 13:07:52] <stahnma> torrancew: I don't think there is one
[2011/10/24 13:08:52] <torrancew> How might I go about trying to foster interest for one? It would be great to get these kinds of updates (though I know we all hope the number of such updates is tiny) delivered, rather than have to go looking
[2011/10/24 13:09:04] @ Jake-USPS joined channel #puppet
[2011/10/24 13:09:13] @ Quit: Jake-USPS: Client Quit
[2011/10/24 13:09:15] @ Quit: trek1s: Quit: Lost terminal
[2011/10/24 13:09:52] <MrHeavy> kontinuity: You want to look into the inventory service if you're running 2.7
[2011/10/24 13:10:15] <MrHeavy> 2.6.7+*
[2011/10/24 13:11:37] @ _UsUrPeR_ joined channel #puppet
[2011/10/24 13:12:58] <gepetto> ::redmine:: Wiki edit: Release_Notes (#137) @ http://projects.puppetlabs.com/projects/puppet/wiki/Release_Notes?version=137 (by Michael Stahnke)
[2011/10/24 13:13:15] @ jedi4ever_ joined channel #puppet
[2011/10/24 13:13:21] <jmslagle> Woah
[2011/10/24 13:13:23] @ Quit: jedi4ever: Remote host closed the connection
[2011/10/24 13:13:23] @ jedi4ever_ is now known as jedi4ever
[2011/10/24 13:13:26] <jmslagle> Puppet Labs is representing today
[2011/10/24 13:14:17] <jhelwig> torrancew: Pretty sure we've been sending the security announcements out on the "normal" announce list, in addition to -users, and -dev.
[2011/10/24 13:14:35] <stahnma> torrancew: they were just sent
[2011/10/24 13:14:36] <stahnma> :)
[2011/10/24 13:15:02] <jhelwig> stahnma: Were the previous ones sent out to -announce, too?
[2011/10/24 13:15:03] <torrancew> Might I ask which of those would be the most low-volume? looking for something that will punish my work inbox the least
[2011/10/24 13:15:10] <jhelwig> torrancew: -announce
[2011/10/24 13:15:13] <torrancew> tks
[2011/10/24 13:15:28] <stahnma> jhelwig: yes
[2011/10/24 13:15:53] @ tilgovi joined channel #puppet
[2011/10/24 13:16:14] @ jcustenborder joined channel #puppet
[2011/10/24 13:16:51] @ Jake-USPS joined channel #puppet
[2011/10/24 13:17:04] <jcustenborder> hey all
[2011/10/24 13:17:13] @ cyflea joined channel #puppet
[2011/10/24 13:17:18] <Volcane> nigelk: done
[2011/10/24 13:17:37] <jcustenborder> is there a problem with using more than one @@nagios_hostextinfo entries per server?
[2011/10/24 13:17:42] @ the_raminkk_ joined channel #puppet
[2011/10/24 13:18:25] @ jongrocho joined channel #puppet
[2011/10/24 13:18:45] @ Quit: the_raminkk: Ping timeout: 260 seconds
[2011/10/24 13:19:09] <Jake-USPS> is there a better way to check if you are vunerable to CVE-2011-3872 then remembering if you ever had certdnsnames in puppet.conf? Like examining certs somehow looking for something specific?
[2011/10/24 13:19:16] <jcustenborder> I'm running into this error when I try to apply 2 different hostextinfo's to one host err: Failed to apply catalog: Cannot alias Nagios_hostextinfo[puppet-testing.wsm.local_hosticon] to ["puppet-testing.wsm.local"] at /home/jeremy/source/whaleshark/puppet/modules/wsmnagios/manifests/defaultchecks.pp:18; resource ["Nagios_hostextinfo", "puppet-testing.wsm.local"] already defined at /home/jeremy/source/whaleshark/puppet/modules/wsmnagios/manifests/de
[2011/10/24 13:19:51] @ the_raminkk_ is now known as the_ramink
[2011/10/24 13:20:24] @ Quit: cyflea: Remote host closed the connection
[2011/10/24 13:20:34] <barn> Jake-USPS: there's a scan_certs tool in the toolkit/module
[2011/10/24 13:20:56] @ sihil joined channel #puppet
[2011/10/24 13:21:18] <jhelwig> Jake-USPS: Link to the toolkit is on this page: http://puppetlabs.com/security/cve/cve-2011-3872/
[2011/10/24 13:21:39] <Jake-USPS> barn: thanks, thats what I needed to know
[2011/10/24 13:21:55] <Jake-USPS> jhelwig: Thanks, got the toolkit.
[2011/10/24 13:22:00] <nlew> jcustenborder: It looks like your resources aren't unique? Both the names and titles need to be unique, with respect to each other.
[2011/10/24 13:22:44] <jcustenborder> I believe they are
[2011/10/24 13:22:46] <jcustenborder> http://pastebin.com/nh8DYu3T
[2011/10/24 13:22:49] @ Quit: mauve_: Ping timeout: 258 seconds
[2011/10/24 13:22:52] @ Quit: mhiggs: Quit: Leaving.
[2011/10/24 13:22:59] <jcustenborder> the only thing that is the same is host_name
[2011/10/24 13:23:16] <jcustenborder> if I fudge the hostname on the second one it will work
[2011/10/24 13:24:07] <jmslagle> Gah
[2011/10/24 13:24:10] <jmslagle> New CA?
[2011/10/24 13:24:21] <jcustenborder> am I missing something or did I stumble on a bug in 2.7.5
[2011/10/24 13:24:34] @ key joined channel #puppet
[2011/10/24 13:24:50] <stahnma> In case anybody isn't on the puppet-user, puppet-dev or puppet-announce list: http://puppetlabs.com/blog/important-security-announcement-altnames-vulnerability/
[2011/10/24 13:25:09] <nlew> jcustenborder: I believe host_name is the namevar for nagios_hostextinfo, which means it has to be unique.
[2011/10/24 13:25:28] @ bretm joined channel #puppet
[2011/10/24 13:25:48] <jmslagle> I understand why everyone is here now
[2011/10/24 13:25:50] @ johnmorr joined channel #puppet
[2011/10/24 13:26:07] <jcustenborder> hmmm then it wouldn't be possible to apply 2 hostextinfo's to a single host
[2011/10/24 13:26:08] <nlew> jcustenborder: I don't actually know anything about nagios or the nagios types, though, so beyond that I'm afraid I can't help much.
[2011/10/24 13:26:21] <jcustenborder> no that's been quite helpful
[2011/10/24 13:26:38] <jcustenborder> I'm thinking this is a bug given the way the other types work.
[2011/10/24 13:26:45] @ Quit: lwhalen42: Quit: Computer has gone to sleep
[2011/10/24 13:27:02] <johnmorr> is there any special escaping i need to do in erb templates? for example, i've got an apache vhost and the parser is complaining about 'bad URI(is not URI?)' on a few of the lines, such as '<VirtualHost *:80>'
[2011/10/24 13:27:10] <jcustenborder> the other types that require a unique name write a comment marker to keep track of them
[2011/10/24 13:27:54] @ lwhalen joined channel #puppet
[2011/10/24 13:28:00] <Jake-USPS> I got that there are potentially vunerable certs. They are puppetmasters thats I generated certs manually for load balancing.
[2011/10/24 13:28:02] <Jake-USPS> I generated the cert for those masters on the 'primary master' (CA) with 'puppet cert -g ${CERT_HOSTNAME}.usps.gov --certdnsnames=puppet:puppetmaster.usps.gov:${CERT_HOSTNAME}:${CERT_HOSTNAME}.usps.gov' where CERT_HOSTNAME is hostname of system I'm generating for. Are they vulnerable?
[2011/10/24 13:28:10] @ negronjl joined channel #puppet
[2011/10/24 13:28:25] @ Quit: key__: Ping timeout: 256 seconds
[2011/10/24 13:28:26] <nlew> Jake-USPS: In this case, "potentially vulnerable" means "can be used to impersonate a puppetmaster".
[2011/10/24 13:28:39] <nlew> Jake-USPS: If the only such certs actually do belong to puppetmasters, you're okay.
[2011/10/24 13:28:51] <Jake-USPS> nlew: OK, so since they are puppetmasters its OK?
[2011/10/24 13:28:55] <Jake-USPS> nlew: perfect :)
[2011/10/24 13:28:58] <nfagerlund> Jake-USPS: exactly.
[2011/10/24 13:29:03] @ blkwolf joined channel #puppet
[2011/10/24 13:30:15] @ Quit: ryancoleman: Quit: Leaving.
[2011/10/24 13:30:55] @ ryancoleman joined channel #puppet
[2011/10/24 13:31:59] @ Quit: lak: Quit: Leaving.
[2011/10/24 13:32:35] @ Quit: cliff-hm: Ping timeout: 258 seconds
[2011/10/24 13:33:19] @ Quit: blkwolf: Client Quit
[2011/10/24 13:33:51] @ Quit: bretm: Ping timeout: 252 seconds
[2011/10/24 13:35:09] @ Quit: sdog: Quit: Leaving.
[2011/10/24 13:35:30] @ cyflea joined channel #puppet
[2011/10/24 13:35:31] @ asteve joined channel #puppet
[2011/10/24 13:35:44] @ Quit: cyflea: Remote host closed the connection
[2011/10/24 13:36:49] <asteve> does anyone know if the puppet patch has been sent to ubuntu 10.04 yet?
[2011/10/24 13:37:01] <FlexGuy> anybody wanna discuss cfengine/puppet?
[2011/10/24 13:37:05] @ eshamow_ joined channel #puppet
[2011/10/24 13:37:51] <dpittman> nigelk: facts as instance variables is really unlikely to be a long term win for us. :(
[2011/10/24 13:38:13] @ cosman joined channel #puppet
[2011/10/24 13:38:19] <stahnma> asteve: canonical has been notified
[2011/10/24 13:38:43] <stahnma> and they have packages at least in testing
[2011/10/24 13:38:52] <stahnma> they've told us anyway
[2011/10/24 13:39:12] <dpittman> Jake-USPS: Mostly, the risk is if you ever put certdnsnames in the configuration file, not just on the command line.
[2011/10/24 13:39:23] @ Quit: lborda: Quit: Ex-Chat
[2011/10/24 13:39:23] @ sduchesneau left channel #puppet ("Leaving")
[2011/10/24 13:39:23] @ cyflea joined channel #puppet
[2011/10/24 13:39:36] @ eshamow__ joined channel #puppet
[2011/10/24 13:40:00] @ Quit: eshamow: Ping timeout: 240 seconds
[2011/10/24 13:40:01] @ eshamow__ is now known as eshamow
[2011/10/24 13:40:13] <Volcane> dpittman: I'd say the current design in total re ::vars etc is unlikely to be a long term win :)
[2011/10/24 13:40:47] @ jodok joined channel #puppet
[2011/10/24 13:40:47] @ Quit: jodok: Changing host
[2011/10/24 13:40:47] @ jodok joined channel #puppet
[2011/10/24 13:40:47] <dpittman> Volcane: I don't disagree there. :)
[2011/10/24 13:40:56] <Volcane> to the point where I consider 2.7 to be unusable.
[2011/10/24 13:42:05] @ Quit: eshamow_: Ping timeout: 260 seconds
[2011/10/24 13:43:32] <ohadlevy> kontinuity: many ways to achieve that
[2011/10/24 13:43:40] @ nul0op joined channel #puppet
[2011/10/24 13:43:42] @ Quit: jetole: Read error: Operation timed out
[2011/10/24 13:44:49] @ jetole joined channel #puppet
[2011/10/24 13:45:06] @ Quit: brandon_dacrib: Quit: brandon_dacrib
[2011/10/24 13:46:15] @ bretm joined channel #puppet
[2011/10/24 13:46:41] <asteve> dpittman: certname?
[2011/10/24 13:47:08] <dpittman> asteve: Sorry, don't quite follow you; can I buy a line of context?
[2011/10/24 13:47:58] <asteve> dpittman: "if you ever put certdnsnames in the configuration file" - are you referring to "certname=puppet.domain.com" or something else?
[2011/10/24 13:48:18] <dpittman> asteve: No, specifically certDNSnames, which is what adds the subjectAltName attribute to the certificate.
[2011/10/24 13:48:23] @ brandon_dacrib joined channel #puppet
[2011/10/24 13:48:30] <asteve> ah, ok; thanks
[2011/10/24 13:48:55] <dpittman> asteve: certname is just the subject of the certificate, and not a problem. We incorrectly put `certdnsname` into any certificate, if it was set, which meant that if you had it in the config of your CA, it would get into all the agent certs.
[2011/10/24 13:49:08] <Dominic> heh, I've got it commented out in our puppet.conf with a note saying that this adds "puppet" to the client's names for some reason and to get back to it later
[2011/10/24 13:50:31] @ Quit: jbraeuer: Quit: jbraeuer
[2011/10/24 13:51:49] @ ba6 joined channel #puppet
[2011/10/24 13:51:49] <jmslagle> Dominic: So you may have discovered that long ago :P
[2011/10/24 13:52:05] @ helindbe joined channel #puppet
[2011/10/24 13:52:11] <dpittman> Dominic: You should have called us. We would have given you a free t-shirt. ;)
[2011/10/24 13:52:36] <Dominic> if only I'd twigged the security impact ;)
[2011/10/24 13:53:02] @ Quit: mykhyggz_: Quit: leaving
[2011/10/24 13:53:28] @ mykhyggz joined channel #puppet
[2011/10/24 13:54:18] @ lborda joined channel #puppet
[2011/10/24 13:58:16] @ nimrod10 joined channel #puppet
[2011/10/24 13:58:39] <kontinuity> ohadlevy: can you please point to some?
[2011/10/24 14:00:25] @ Quit: soh: Quit: Textual IRC Client: http://www.textualapp.com/
[2011/10/24 14:01:01] @ soh joined channel #puppet
[2011/10/24 14:01:09] @ Quit: nimrod10`: Ping timeout: 258 seconds
[2011/10/24 14:01:40] <nate_h> grrr damnit
[2011/10/24 14:01:48] <nate_h> puppet 2.6 doesn't support two layer hashes
[2011/10/24 14:02:02] <nate_h> trying to backport modules to current prod :P
[2011/10/24 14:02:02] <nate_h> doh
[2011/10/24 14:02:07] <nate_h> 2.6.4 that is
[2011/10/24 14:02:20] @ ronan92 joined channel #puppet
[2011/10/24 14:02:50] @ Quit: uphillian: Quit: Leaving.
[2011/10/24 14:03:05] <bsg_kwolf> Is there a trick to getting the puppetstoredconfigclean script to work with puppet 2.7.3? No matter what I try I get an invalid adapter error, even though stored configs are working fine.
[2011/10/24 14:03:44] <jamesturnbull> Dominic: you weren't the only one - I did a worse one and actually worked on that code and noted the same behaviour and I am allegedly a security guy... :P
[2011/10/24 14:03:53] <semaphore> hi; a ensure => directory, recurse=> true do i need to manually ste the recurse limit? it's not getting created because its parent doesn't exist
[2011/10/24 14:04:32] <Dominic> jamesturnbull: hehe, phew
[2011/10/24 14:05:54] <clustermagnet> guys, whats the best way to have a background puppet dashboard worker running?
[2011/10/24 14:06:05] <clustermagnet> trying to get my head around it
[2011/10/24 14:06:13] @ Quit: devdas: Ping timeout: 240 seconds
[2011/10/24 14:06:25] <dan__t_> hrm
[2011/10/24 14:06:30] <dan__t_> i can't override permissions on hostprivkey
[2011/10/24 14:06:32] @ Quit: ckauhaus: Quit: Leaving.
[2011/10/24 14:06:32] @ ronan_1 joined channel #puppet
[2011/10/24 14:06:46] <dan__t_> trying for: { owner = root, group = service, mode = 640 }
[2011/10/24 14:06:54] @ Quit: ronan92: Client Quit
[2011/10/24 14:06:57] <dan__t_> It just won't stick. Puppet keeps reverting it to 600.
[2011/10/24 14:07:14] <dan__t_> (yeah i know what's smart, and I know why this is happening, and I know I probably shouldn't be doing this, but this is how it needs to work)
[2011/10/24 14:07:31] @ Inigoesdr joined channel #puppet
[2011/10/24 14:08:20] <clustermagnet> ah, nvm script/delayed_job :)
[2011/10/24 14:09:01] <clustermagnet> guys… how do i get rid of the NOTE: Gem::Specification#installation_path is deprecated, use base_dir. It will be removed on or after 2011-10-01.
[2011/10/24 14:09:02] <clustermagnet> ?
[2011/10/24 14:09:18] <rodjek> clustermagnet: downgrade rubygems :)
[2011/10/24 14:12:11] <clustermagnet> rodjek: or wait ? :)
[2011/10/24 14:13:13] <rodjek> probably, i just went with the stay-the-fuck-away-from-new-rubygems option
[2011/10/24 14:13:40] <sumsuch> hey all, so after a server upgrade from 2.6.11 to 2.7.5 last night, I am having some issues figuring out what is wrong here http://pastebin.com/EG9LvtyS . It was working fine on 2.6.11, but is now erroring. My clients are still 2.6.11.
[2011/10/24 14:14:02] @ Quit: gniks: Quit: Leaving.
[2011/10/24 14:14:34] <dan__t_> hostprivkey = $ssldir/private_keys/<%= fqdn %>.pem { owner = root, group = service, mode = 777 }
[2011/10/24 14:14:37] <dan__t_> see, even that's sad.
[2011/10/24 14:15:00] <rodjek> sumsuch: need to scope those variables
[2011/10/24 14:15:35] <dan__t_> Is there a way to run an external command after Puppet restarts due to config changes?
[2011/10/24 14:15:42] <rodjek> sumsuch: actually, disregard
[2011/10/24 14:15:54] <sumsuch> k
[2011/10/24 14:16:00] @ Quit: kontinuity: Ping timeout: 240 seconds
[2011/10/24 14:16:02] <rodjek> you've been hit be the hyphens allowed in variables issue
[2011/10/24 14:16:12] <dan__t_> it's an issue.
[2011/10/24 14:16:19] <rodjek> "${nukever}-rsync-1"
[2011/10/24 14:16:22] @ Quit: mcarpent: Quit: Thanks for the fish.
[2011/10/24 14:16:35] <dan__t_> sadface
[2011/10/24 14:16:54] <rodjek> need to put the braces around the variables in strings, otherwise it's looking for $nukever-rsync-1 variable instead of $nukever
[2011/10/24 14:20:17] @ Quit: salajander: Read error: Connection reset by peer
[2011/10/24 14:20:24] @ salajander joined channel #puppet
[2011/10/24 14:21:28] @ Quit: soh: Quit: Computer has gone to sleep.
[2011/10/24 14:22:05] @ sirdopes joined channel #puppet
[2011/10/24 14:22:12] @ kontinuity joined channel #puppet
[2011/10/24 14:25:31] * Volcane really wish we just went with documented behavior and not support -'s in variables
[2011/10/24 14:25:43] <Volcane> its a pile of fail, makes templates even more tedious
[2011/10/24 14:26:12] <jmslagle> That's how it worked until recently it seems
[2011/10/24 14:26:18] <asteve> you want only letters and numbers?
[2011/10/24 14:27:02] <Volcane> yes, this used to be the documented behavior and -'s sometimes worked
[2011/10/24 14:27:05] @ Inigoesdr left channel #puppet ()
[2011/10/24 14:27:09] <sumsuch> is this a change from 2.6.X to 2.7.X?
[2011/10/24 14:27:27] <Volcane> instead of making -'s never worked and keep the docs acurate they've been trying since 0.25 to make -'s work sanely in all cases
[2011/10/24 14:27:43] <gepetto> ::redmine:: Wiki edit: Release_Notes (#138) @ http://projects.puppetlabs.com/projects/puppet/wiki/Release_Notes?version=138 (by Nick Fagerlund)
[2011/10/24 14:28:33] @ dji joined channel #puppet
[2011/10/24 14:29:20] @ Quit: dji: Client Quit
[2011/10/24 14:30:17] @ Quit: shadoi: Quit: Leaving.
[2011/10/24 14:31:29] @ kontinuity1 joined channel #puppet
[2011/10/24 14:31:52] <rodjek> sumsuch: yeah
[2011/10/24 14:32:00] @ Holocaine joined channel #puppet
[2011/10/24 14:32:26] <rodjek> though surrounding your variables in strings with braces has been recommended practice for a while
[2011/10/24 14:32:41] @ Quit: labrown: Quit: Leaving
[2011/10/24 14:33:13] <kontinuity1> how do I do rolling deployments with puppet?
[2011/10/24 14:33:15] @ lwhalen42 joined channel #puppet
[2011/10/24 14:33:28] @ dgillies joined channel #puppet
[2011/10/24 14:33:28] @ Quit: jbstlmo: Quit: Page closed
[2011/10/24 14:33:28] <rodjek> Volcane: yeah, i'm with you on disallowing -'s
[2011/10/24 14:33:32] <kontinuity1> want to ensure one server gets recycled and then moves to other
[2011/10/24 14:33:39] <kontinuity1> cant take all servers down at once
[2011/10/24 14:33:41] <rodjek> don't need them and it just confuses people
[2011/10/24 14:33:53] <Volcane> and forces lookupvar
[2011/10/24 14:33:58] <agaffney> kontinuity1: set splay properly
[2011/10/24 14:34:00] @ Quit: lwhalen: Ping timeout: 240 seconds
[2011/10/24 14:34:01] @ Quit: kontinuity: Ping timeout: 260 seconds
[2011/10/24 14:34:01] <sumsuch> cool, I will try that
[2011/10/24 14:34:04] <rodjek> kontinuity1: use something like mcollective to schedule runs
[2011/10/24 14:35:05] <kontinuity1> agaffney: splay looks like a more guesstimated way of doing things
[2011/10/24 14:35:13] <kontinuity1> agaffney: not very well orchestrated
[2011/10/24 14:35:21] <kontinuity1> agaffney: and it wont stop on errors
[2011/10/24 14:35:33] <aranc23> kontinuity1: schedule can control when resources are applied
[2011/10/24 14:36:07] @ Quit: Jake-USPS: Quit: Ex-Chat
[2011/10/24 14:36:07] @ Quit: csanchez: Quit: csanchez
[2011/10/24 14:36:22] @ Quit: cosman: Quit: Colloquy for iPhone - http://colloquy.mobi
[2011/10/24 14:36:27] <agaffney> kontinuity1: if you want rolling changes, you need to trigger the puppet run "manually"
[2011/10/24 14:36:32] <agaffney> and can't have it run automatically
[2011/10/24 14:37:03] <aranc23> agaffney: he can if he uses schedules
[2011/10/24 14:38:41] @ Quit: brandon_dacrib: Quit: brandon_dacrib
[2011/10/24 14:39:13] <nigelk> dpittman: I'm not going to mandate that, we just need something that doesn't suck.
[2011/10/24 14:39:13] <aranc23> actually the combination of the two would be useful, I think you can get kick to ignore schedules
[2011/10/24 14:39:21] <kontinuity1> aranc23: the cluster needs to have at least one server running so I was looking for a solution that ensures that no errors occur before moving onto the next
[2011/10/24 14:41:36] @ Quit: marczak: Ping timeout: 260 seconds
[2011/10/24 14:42:08] @ Quit: amoe: Ping timeout: 248 seconds
[2011/10/24 14:43:06] @ Quit: freezey: Quit: freezey
[2011/10/24 14:43:52] @ amoe joined channel #puppet
[2011/10/24 14:43:55] <nate_h> is there a way to pass --tags to the mc-puppetd mcollective agent?
[2011/10/24 14:44:15] <Volcane> nate_h: nope
[2011/10/24 14:44:41] <nate_h> fark
[2011/10/24 14:44:49] <nate_h> good thing I fucked up the syntax
[2011/10/24 14:44:53] <nate_h> i almost farked a production box :P
[2011/10/24 14:44:58] <Volcane> heh
[2011/10/24 14:45:09] <nate_h> ssh in a forloop time :P
[2011/10/24 14:45:20] <rodjek> sometimes you can't beat it
[2011/10/24 14:45:55] <nate_h> or add that to the agent :P
[2011/10/24 14:46:55] @ jkoppe joined channel #puppet
[2011/10/24 14:48:01] @ Quit: bretm: Ping timeout: 260 seconds
[2011/10/24 14:48:34] @ Quit: ldlework: Read error: Operation timed out
[2011/10/24 14:51:07] <gepetto> ::redmine:: Wiki edit: Release_Notes (#139) @ http://projects.puppetlabs.com/projects/puppet/wiki/Release_Notes?version=139 (by Nick Fagerlund)
[2011/10/24 14:51:07] <gepetto> ::redmine:: Wiki edit: Release_Notes (#140) @ http://projects.puppetlabs.com/projects/puppet/wiki/Release_Notes?version=140 (by Nick Fagerlund)
[2011/10/24 14:53:57] @ Quit: cyflea: Ping timeout: 265 seconds
[2011/10/24 14:54:01] @ Quit: asteve: Quit: asteve
[2011/10/24 14:54:43] @ Quit: benkevan: Quit: leaving
[2011/10/24 14:55:12] @ benkevan joined channel #puppet
[2011/10/24 14:55:27] @ asteve joined channel #puppet
[2011/10/24 14:55:31] @ Quit: asteve: Changing host
[2011/10/24 14:55:31] @ asteve joined channel #puppet
[2011/10/24 14:55:57] @ Quit: asteve: Client Quit
[2011/10/24 14:58:11] @ Quit: blentz: Ping timeout: 252 seconds
[2011/10/24 15:00:10] @ cosman joined channel #puppet
[2011/10/24 15:02:02] @ bman1 joined channel #puppet
[2011/10/24 15:03:49] @ kaptk2 joined channel #puppet
[2011/10/24 15:05:02] @ gniks joined channel #puppet
[2011/10/24 15:07:12] @ Quit: themadcanudist: Ping timeout: 240 seconds
[2011/10/24 15:08:27] <clustermagnet> guys… how do i get rid of the '427 new failed tasks' in the dashboard? its a new install, and those reports are quite old
[2011/10/24 15:08:28] <clustermagnet> thanks!
[2011/10/24 15:08:56] <dpittman> clustermagnet: view the logs, or delete the rows from the database.
[2011/10/24 15:10:02] @ marczak joined channel #puppet
[2011/10/24 15:10:28] @ Quit: sihil: Quit: Leaving...
[2011/10/24 15:13:09] @ Quit: nfagerlund: Remote host closed the connection
[2011/10/24 15:15:48] @ Quit: marczak: Ping timeout: 245 seconds
[2011/10/24 15:16:03] <nate_h> anyone got links to docs on load balancing puppetmasters?
[2011/10/24 15:16:11] <nate_h> like round robin or something and how that works with certs
[2011/10/24 15:16:35] @ marczak joined channel #puppet
[2011/10/24 15:18:30] @ Quit: negronjl: Ping timeout: 276 seconds
[2011/10/24 15:18:34] @ kontinuity1 left channel #puppet ()
[2011/10/24 15:20:04] <bman1> hey if i add a custom fact and push that out with puppet will it take effect in next run or does it require the systems to reload?
[2011/10/24 15:20:09] <bman1> i.e. reboot
[2011/10/24 15:20:38] <jhelwig> bman1: If you are pushing it via pluginsync it should be available for that run.
[2011/10/24 15:20:58] <jhelwig> Pluginsync happens before fact uploading or catalog retrieval.
[2011/10/24 15:23:13] @ Quit: doo: Remote host closed the connection
[2011/10/24 15:23:26] @ Quit: n8: Quit: n8
[2011/10/24 15:23:50] @ Quit: Stenbryggen: Quit: Leaving.
[2011/10/24 15:23:52] @ doo joined channel #puppet
[2011/10/24 15:23:53] @ Stenbryggen1 joined channel #puppet
[2011/10/24 15:24:48] @ Quit: tnguyen: Ping timeout: 240 seconds
[2011/10/24 15:25:54] @ Quit: lborda: Quit: Ex-Chat
[2011/10/24 15:26:59] @ laen_ joined channel #puppet
[2011/10/24 15:27:11] @ Quit: ksheurs: Quit: ksheurs
[2011/10/24 15:28:38] @ soh joined channel #puppet
[2011/10/24 15:29:04] @ Quit: geekbri: Remote host closed the connection
[2011/10/24 15:31:15] @ shadoi joined channel #puppet
[2011/10/24 15:33:42] @ danny_ joined channel #puppet
[2011/10/24 15:35:02] @ Quit: kaptk2: Quit: Leaving.
[2011/10/24 15:36:26] @ Kazuhiro joined channel #puppet
[2011/10/24 15:36:53] @ Quit: jodok: Quit: jodok
[2011/10/24 15:37:06] @ Quit: zwi: Quit: Leaving.
[2011/10/24 15:38:17] @ Quit: kermit: Quit: Leaving.
[2011/10/24 15:38:32] @ kermit joined channel #puppet
[2011/10/24 15:38:35] @ Quit: lwhalen42: Quit: Computer has gone to sleep
[2011/10/24 15:38:45] @ jon_____ joined channel #puppet
[2011/10/24 15:39:34] @ Quit: jon_____: Client Quit
[2011/10/24 15:40:01] @ mauve_ joined channel #puppet
[2011/10/24 15:43:16] @ skm joined channel #puppet
[2011/10/24 15:44:22] @ Quit: rsnhyperion: Quit: rsnhyperion
[2011/10/24 15:45:36] @ Quit: marczak: Ping timeout: 258 seconds
[2011/10/24 15:46:12] @ mosen joined channel #puppet
[2011/10/24 15:46:24] @ silentg joined channel #puppet
[2011/10/24 15:47:25] @ Quit: skm: Client Quit
[2011/10/24 15:47:27] @ maxmartin joined channel #puppet
[2011/10/24 15:48:11] @ nated joined channel #puppet
[2011/10/24 15:48:11] @ Quit: nated: Changing host
[2011/10/24 15:48:11] @ nated joined channel #puppet
[2011/10/24 15:49:42] @ cyflea joined channel #puppet
[2011/10/24 15:50:12] @ JohnGalt joined channel #puppet
[2011/10/24 15:52:27] @ Quit: ryancoleman: Quit: Leaving.
[2011/10/24 15:52:27] @ Quit: Wolfspyre: Quit: Leaving.
[2011/10/24 15:54:52] @ Ryan_Lane joined channel #puppet
[2011/10/24 15:55:26] <Ryan_Lane> anyone know why I'd pass a syntax check on this: $lvs_services["text"] but not this: $lvs_services['text']['ip']['wiktionarylb'] ?
[2011/10/24 15:55:49] <Ryan_Lane> documentation says I should be able to do that
[2011/10/24 15:55:52] <nlew> Ryan_Lane: Which version of Puppet?
[2011/10/24 15:56:13] <Ryan_Lane> 2.6.1
[2011/10/24 15:56:34] <Ryan_Lane> Syntax error at '['; expected ']
[2011/10/24 15:57:04] <nlew> Ah, that looks like it may have been fixed in 2.6.7.
[2011/10/24 15:57:11] <Ryan_Lane> -_-
[2011/10/24 15:58:11] <nlew> Nope, never mind, looks like it's still broken..
[2011/10/24 15:58:23] <Ryan_Lane> really?
[2011/10/24 15:58:30] <Ryan_Lane> the documentation suggests it should work
[2011/10/24 15:58:54] <nlew> hmm, which page?
[2011/10/24 15:59:04] <Ryan_Lane> the language guide?
[2011/10/24 15:59:05] <Ryan_Lane> http://docs.puppetlabs.com/guides/language_guide.html#hashes
[2011/10/24 15:59:27] <Ryan_Lane> funny enough I'm using it other places in the docs
[2011/10/24 15:59:34] <Ryan_Lane> err
[2011/10/24 15:59:39] <Ryan_Lane> other places in my manifests
[2011/10/24 15:59:54] <nlew> heh yeah I just realized that, it works if I pass it to a function
[2011/10/24 15:59:59] <nlew> but not if I have it on a line by itself
[2011/10/24 16:00:55] <nlew> Ahh, and that is what was fixed in 2.6.7. "include $foo[a][b][c]" works in 2.6.7, not earlier
[2011/10/24 16:01:14] <Ryan_Lane> so I can only use two levels of indirection?
[2011/10/24 16:01:26] * Ryan_Lane groans
[2011/10/24 16:02:14] <nlew> looks like it :(
[2011/10/24 16:02:16] @ Quit: cruzfox: Quit: cruzfox
[2011/10/24 16:02:22] <nlew> without using intermediate variables or inline_template anyway
[2011/10/24 16:02:37] <Ryan_Lane> we'll find out in a second :)
[2011/10/24 16:03:33] @ Quit: JohnGalt: Max SendQ exceeded
[2011/10/24 16:03:48] @ JamesTaggart joined channel #puppet
[2011/10/24 16:03:49] @ Quit: JamesTaggart: Max SendQ exceeded
[2011/10/24 16:03:52] <Ryan_Lane> yep. that's indeed the case
[2011/10/24 16:04:00] @ Quit: littleidea: Read error: No route to host
[2011/10/24 16:04:18] @ JamesTaggart joined channel #puppet
[2011/10/24 16:04:19] @ Quit: JamesTaggart: Max SendQ exceeded
[2011/10/24 16:04:48] @ JamesTaggart joined channel #puppet
[2011/10/24 16:05:07] <Ryan_Lane> thanks for the help :)
[2011/10/24 16:07:21] @ Quit: benkevan: Ping timeout: 260 seconds
[2011/10/24 16:07:54] @ Quit: alfism: Quit: alfism
[2011/10/24 16:13:22] @ cruzfox joined channel #puppet
[2011/10/24 16:13:28] @ Quit: cosman: Quit: Colloquy for iPhone - http://colloquy.mobi
[2011/10/24 16:13:39] @ Quit: CAMIR: Quit: Who would want to rape Mary Coughlan?
[2011/10/24 16:13:41] @ blentz joined channel #puppet
[2011/10/24 16:14:04] @ marczak joined channel #puppet
[2011/10/24 16:16:10] @ jimi_c joined channel #puppet
[2011/10/24 16:16:54] @ Quit: DJClean: Read error: Operation timed out
[2011/10/24 16:21:16] @ Quit: alanevans: Remote host closed the connection
[2011/10/24 16:22:35] @ sihil joined channel #puppet
[2011/10/24 16:22:38] @ negronjl joined channel #puppet
[2011/10/24 16:23:08] @ Quit: soh: Quit: Textual IRC Client: http://www.textualapp.com/
[2011/10/24 16:25:22] @ Quit: benjiedmund: Remote host closed the connection
[2011/10/24 16:26:24] @ Gwayne joined channel #puppet
[2011/10/24 16:26:24] @ Quit: Gwayne: Changing host
[2011/10/24 16:26:24] @ Gwayne joined channel #puppet
[2011/10/24 16:27:56] @ oatsport1_ joined channel #puppet
[2011/10/24 16:28:06] @ Quit: oatsport1: Read error: Connection reset by peer
[2011/10/24 16:30:02] @ benkevan joined channel #puppet
[2011/10/24 16:30:05] @ Quit: ghg: Quit: Computer has gone to sleep.
[2011/10/24 16:31:30] @ zoredache joined channel #puppet
[2011/10/24 16:32:33] @ Quit: benkevan: Client Quit
[2011/10/24 16:35:32] @ Quit: sirdopes: Remote host closed the connection
[2011/10/24 16:35:55] @ Quit: sihil: Quit: Leaving...
[2011/10/24 16:37:55] @ erodriguez joined channel #puppet
[2011/10/24 16:40:10] @ Quit: BManojlovic: Remote host closed the connection
[2011/10/24 16:40:22] @ Quit: Gwayne: Remote host closed the connection
[2011/10/24 16:41:28] @ Quit: eshamow: Quit: eshamow
[2011/10/24 16:41:29] @ devzero\|afk is now known as devzero
[2011/10/24 16:43:51] @ scsinutz joined channel #puppet
[2011/10/24 16:44:16] @ Quit: scsinutz: Client Quit
[2011/10/24 16:47:54] @ Quit: duerF: Quit: Leaving
[2011/10/24 16:49:40] @ ghg joined channel #puppet
[2011/10/24 16:51:12] @ Quit: nul0op: Ping timeout: 240 seconds
[2011/10/24 16:52:09] <sumsuch> thanks for the help either guys, braces around variables worked for me, and I am back up and running. I hit all the current problem spots, but still have to hit the tons of variables that were not having issues, but need to be switched over also. FUN!
[2011/10/24 16:52:17] <sumsuch> either = earlier
[2011/10/24 16:53:18] @ Quit: neonflux: Quit: Leaving.
[2011/10/24 16:53:40] @ cliff-hm joined channel #puppet
[2011/10/24 16:54:51] @ twan_ joined channel #puppet
[2011/10/24 16:56:35] @ Quit: twan_: Client Quit
[2011/10/24 17:01:25] @ Quit: p3rror: Ping timeout: 240 seconds
[2011/10/24 17:01:40] <peridot> Is it just port 8140 that needs to be opened to puppet clients?
[2011/10/24 17:02:36] <jhelwig> peridot: Opened on the master for traffic coming in from the clients? Should be.
[2011/10/24 17:04:39] @ zul joined channel #puppet
[2011/10/24 17:04:48] @ methods1 joined channel #puppet
[2011/10/24 17:04:58] <methods1> for some reason i have multiple master processes respawning
[2011/10/24 17:05:03] <methods1> is that normal for there to be multiple ones ?
[2011/10/24 17:05:36] @ Quit: newtMcKerr: Quit: Leaving.
[2011/10/24 17:06:05] <jhelwig> methods1: Depends on how you're running it? You using the 'built-in' webserver? Passenger? Mongrel?
[2011/10/24 17:06:48] <peridot> jhelwig: Thanks :)
[2011/10/24 17:06:53] <methods1> sorry I'm new to this existing setup too
[2011/10/24 17:06:58] <methods1> it's using webrick from the logs
[2011/10/24 17:07:14] <methods1> i can even see some of them complaining that the socket is already in use
[2011/10/24 17:07:34] <jhelwig> Then that's not normal. ;-)
[2011/10/24 17:07:51] <methods1> yea i don't think so either
[2011/10/24 17:08:12] <methods1> i stopped it then started to manually kill the others and they would start to appear again with parent id of 1
[2011/10/24 17:08:20] <methods1> so I'm trying to see if there iss something in the system configured to restart them
[2011/10/24 17:08:24] @ Quit: blentz: Ping timeout: 240 seconds
[2011/10/24 17:08:25] <peridot> I had to change where my pidfile was being kept in /etc/init.d/puppetmaster, but I built my rpm from source, so expected a bit of tinkering. Otherwise it wouldn't stop correctly and I wound up with multiple processes.
[2011/10/24 17:10:27] @ ghg27 joined channel #puppet
[2011/10/24 17:10:52] <gepetto> ::redmine:: Wiki edit: Puppet_Windows (#53) @ http://projects.puppetlabs.com/projects/puppet/wiki/Puppet_Windows?version=53 (by Corey Osman)
[2011/10/24 17:10:56] @ Quit: ghg: Ping timeout: 260 seconds
[2011/10/24 17:10:56] @ ghg27 is now known as ghg
[2011/10/24 17:17:55] @ jrickman joined channel #puppet
[2011/10/24 17:19:06] @ Quit: cruzfox: Quit: cruzfox
[2011/10/24 17:19:45] @ the_ramink_ joined channel #puppet
[2011/10/24 17:21:33] @ Quit: the_ramink: Ping timeout: 252 seconds
[2011/10/24 17:22:23] <methods1> could it be this puppetqd thing ?
[2011/10/24 17:26:54] @ Quit: Ryan_Lane: Quit: Leaving.
[2011/10/24 17:29:33] @ Quit: peridot: Read error: Connection reset by peer
[2011/10/24 17:30:49] @ Quit: thisKat: Quit: Computer has gone to sleep.
[2011/10/24 17:31:21] <torrancew> methods1: any chance someone is running via a watchdog?
[2011/10/24 17:32:00] <methods1> you know what i think
[2011/10/24 17:32:11] <methods1> i think master is invoked via apache passenger
[2011/10/24 17:33:45] @ Quit: danikov: Read error: Connection timed out
[2011/10/24 17:34:42] @ Quit: gregp76: Quit: gregp76
[2011/10/24 17:36:58] <gepetto> ::redmine:: Wiki edit: Puppet_Windows (#54) @ http://projects.puppetlabs.com/projects/puppet/wiki/Puppet_Windows?version=54 (by Josh Cooper)
[2011/10/24 17:37:07] @ Quit: djm68: Quit: leaving
[2011/10/24 17:37:16] @ rsnhyperion joined channel #puppet
[2011/10/24 17:37:34] @ Quit: bmahe: Quit: Leaving
[2011/10/24 17:37:52] @ rsnhyperion_ joined channel #puppet
[2011/10/24 17:37:54] @ Quit: rsnhyperion: Read error: Connection reset by peer
[2011/10/24 17:37:54] @ rsnhyperion_ is now known as rsnhyperion
[2011/10/24 17:39:07] @ Log started by gepetto
[2011/10/24 17:39:07] @ Joined channel #puppet
[2011/10/24 17:39:07] @ Topic is "Important Security Announcement: http://bit.ly/AltNames \| Thanks for coming to PuppetConf! Videos available http://www.youtube.com/user/puppetlabsinc \| Puppet 2.7.6 and 2.6.12 available at downloads.puppetlabs.com \| http://docs.puppetlabs.com \| Bugs & Feature Requests http://bit.ly/dKVa0A."
[2011/10/24 17:39:07] @ Topic set by stahnma!~stahnma@fedora/stahnma on Mon Oct 24 13:04:13 -0700 2011
[2011/10/24 17:39:19] @ Mode +Ccnt by zelazny.freenode.net
[2011/10/24 17:39:57] @ cosman2001 joined channel #puppet
[2011/10/24 17:40:05] @ Quit: zoredache: Quit: leaving
[2011/10/24 17:40:16] <cosman2001> how do we run puppet on windows (what options do we use?)
[2011/10/24 17:43:38] @ kolla joined channel #puppet
[2011/10/24 17:43:51] @ quit (seeya)
[2011/10/24 17:44:44] @ Log started by gepetto
[2011/10/24 17:44:44] @ Joined channel #puppet
[2011/10/24 17:44:44] @ Topic is "Important Security Announcement: http://bit.ly/AltNames \| Thanks for coming to PuppetConf! Videos available http://www.youtube.com/user/puppetlabsinc \| Puppet 2.7.6 and 2.6.12 available at downloads.puppetlabs.com \| http://docs.puppetlabs.com \| Bugs & Feature Requests http://bit.ly/dKVa0A."
[2011/10/24 17:44:44] @ Topic set by stahnma!~stahnma@fedora/stahnma on Mon Oct 24 13:04:13 -0700 2011
[2011/10/24 17:44:55] @ Mode +Ccnt by zelazny.freenode.net
[2011/10/24 17:46:45] @ quit (okay bye)
[2011/10/24 17:47:16] @ Log started by gepetto
[2011/10/24 17:47:16] @ Joined channel #puppet
[2011/10/24 17:47:16] @ Topic is "Important Security Announcement: http://bit.ly/AltNames \| Thanks for coming to PuppetConf! Videos available http://www.youtube.com/user/puppetlabsinc \| Puppet 2.7.6 and 2.6.12 available at downloads.puppetlabs.com \| http://docs.puppetlabs.com \| Bugs & Feature Requests http://bit.ly/dKVa0A."
[2011/10/24 17:47:16] @ Topic set by stahnma!~stahnma@fedora/stahnma on Mon Oct 24 13:03:53 -0700 2011
[2011/10/24 17:47:27] @ Mode +Ccnt by holmes.freenode.net
[2011/10/24 17:48:07] <jamesturnbull> cosman2001: currently gem install puppet
[2011/10/24 17:48:14] <jamesturnbull> cosman2001: it's 2.7.6 onwards
[2011/10/24 17:48:20] @ Quit: ghanima: Ping timeout: 252 seconds
[2011/10/24 17:48:41] <cosman2001> jamesturnbull, yes I mean how do I get puppet to run as a service using nssm
[2011/10/24 17:48:49] <cosman2001> what path / options do I tell nssm to use?
[2011/10/24 17:49:03] <cosman2001> the puppet.bat or puppet
[2011/10/24 17:49:13] @ Quit: williemach: Quit: Leaving.
[2011/10/24 17:49:18] <jamesturnbull> cosman2001: ah ha - jhelwig should know or if he doesn't he can tell you who does :)
[2011/10/24 17:50:20] <cosman2001> also, facter is telling me my 64 bit windows system is 32 bit. Is this a bug I need to file?
[2011/10/24 17:50:24] @ Quit: kenperkins: Quit: Computer has gone to sleep.
[2011/10/24 17:52:32] <jamesturnbull> cosman2001: I'd say so
[2011/10/24 17:54:49] @ Quit: hobbeswalsh: Quit: hobbeswalsh
[2011/10/24 17:55:10] @ Quit: mosen: Quit: Leaving
[2011/10/24 17:57:19] @ devzero is now known as devzero\|afk
[2011/10/24 17:57:29] @ Quit: jsurfer: Quit: jsurfer
[2011/10/24 17:59:44] @ Quit: jongrocho: Remote host closed the connection
[2011/10/24 18:00:32] @ jsurfer joined channel #puppet
[2011/10/24 18:01:44] <HostingNerd5000> PUPPET
[2011/10/24 18:02:13] @ methods1 left channel #puppet ()
[2011/10/24 18:02:24] <semaphore> MASTER
[2011/10/24 18:03:29] <bman1> i know this is the wrong place to ask but anyone know a good channel for filesystem benchmarking, not sure about results im having with some benchmarking tools
[2011/10/24 18:04:45] @ Quit: londo_: Remote host closed the connection
[2011/10/24 18:06:46] <dan__t_> maybe ##infra-talk
[2011/10/24 18:06:55] @ Quit: hooper: Ping timeout: 260 seconds
[2011/10/24 18:06:56] <dan__t_> or just ask semaphore
[2011/10/24 18:07:00] <dan__t_> rumor has it, he's a nice chap.
[2011/10/24 18:07:18] @ maxmartin joined channel #puppet
[2011/10/24 18:08:32] @ yingcai joined channel #puppet
[2011/10/24 18:10:46] @ bettydre1mit joined channel #puppet
[2011/10/24 18:11:05] @ lak joined channel #puppet
[2011/10/24 18:11:05] @ Quit: lak: Changing host
[2011/10/24 18:11:05] @ lak joined channel #puppet
[2011/10/24 18:15:40] @ Quit: ghg: Quit: Computer has gone to sleep.
[2011/10/24 18:17:48] @ Quit: lak: Quit: Leaving.
[2011/10/24 18:21:45] @ Nostalgeek joined channel #puppet
[2011/10/24 18:24:34] @ Quit: iw_work: Quit: Leaving
[2011/10/24 18:25:17] @ Quit: danny_: Ping timeout: 265 seconds
[2011/10/24 18:26:09] @ eshamow_ joined channel #puppet
[2011/10/24 18:29:24] <Nostalgeek> Hello all. I'm using wildcards for dynamicly including files found in a directory (Ex. import '/some/dir/.pp' in site.pp). When /some/dir doesn't contain any files, I'm getting a " No file(s) found for import of /some/dir/.pp" error message on my clients. Is it possible to silently ignore this on my clients?
[2011/10/24 18:33:33] @ Quit: eshamow_: Quit: eshamow_
[2011/10/24 18:35:55] @ Quit: johnston: Ping timeout: 265 seconds
[2011/10/24 18:39:11] <mrwacky42> Nostalgeek: Unfortunately, you should probably not use globs like that
[2011/10/24 18:40:43] <Nostalgeek> mrwacky42: An external program is dynamically generating the .pp files, and then I have an ENC that dynamically tell what node to load which classes
[2011/10/24 18:41:14] <Nostalgeek> I haven't found any other way of doing this
[2011/10/24 18:42:46] @ bmahe joined channel #puppet
[2011/10/24 18:42:46] @ Quit: bmahe: Changing host
[2011/10/24 18:42:46] @ bmahe joined channel #puppet
[2011/10/24 18:44:08] <mrwacky42> And the external program can't interface with ENC to tell it exactly what to load ?
[2011/10/24 18:44:22] <mrwacky42> Or the external program can't generate classes that include all the generated 'foo.pp' ?
[2011/10/24 18:44:33] <mrwacky42> Then ENC could just include the one.
[2011/10/24 18:44:40] <mrwacky42> not sure how to help you otherwise.
[2011/10/24 18:45:41] @ johnston joined channel #puppet
[2011/10/24 18:45:43] @ Quit: mrwacky42: Quit: Leaving.
[2011/10/24 18:46:02] @ Enf joined channel #puppet
[2011/10/24 18:48:02] @ Quit: _miche_: Quit: Page closed
[2011/10/24 18:49:52] @ KaiserBeto1 left channel #puppet ()
[2011/10/24 18:53:12] @ Quit: teatimer: Read error: Connection reset by peer
[2011/10/24 18:55:04] @ Quit: Kazuhiro: Quit: Leaving.
[2011/10/24 18:55:46] @ freezey joined channel #puppet
[2011/10/24 18:55:47] @ Quit: dan__t_: Read error: Operation timed out
[2011/10/24 18:56:19] @ Quit: ryanspaulding: Quit: Leaving.
[2011/10/24 18:59:00] @ Quit: cyflea: Ping timeout: 265 seconds
[2011/10/24 19:00:25] @ Transformer joined channel #puppet
[2011/10/24 19:02:03] @ Quit: freezey: Quit: freezey
[2011/10/24 19:02:50] @ Quit: Transformer: Excess Flood
[2011/10/24 19:03:19] <gepetto> ::redmine:: Wiki edit: Puppet_Windows (#55) @ http://projects.puppetlabs.com/projects/puppet/wiki/Puppet_Windows?version=55 (by Corey Osman)
[2011/10/24 19:04:52] @ Quit: sumsuch: Quit: sumsuch
[2011/10/24 19:05:17] @ newtMcKerr joined channel #puppet
[2011/10/24 19:05:36] @ Quit: tilgovi: Ping timeout: 240 seconds
[2011/10/24 19:09:43] @ Quit: bman1: Quit: Leaving.
[2011/10/24 19:10:36] @ Quit: jamison: Excess Flood
[2011/10/24 19:11:15] @ jamison joined channel #puppet
[2011/10/24 19:13:49] @ Transformer joined channel #puppet
[2011/10/24 19:15:55] @ Quit: Transformer: Excess Flood
[2011/10/24 19:19:25] @ Kazuhiro joined channel #puppet
[2011/10/24 19:19:26] @ mrwacky42 joined channel #puppet
[2011/10/24 19:28:46] @ alanevans joined channel #puppet
[2011/10/24 19:29:04] @ Quit: mrwacky42: Quit: Leaving.
[2011/10/24 19:33:35] @ diq joined channel #puppet
[2011/10/24 19:34:24] @ dissipate joined channel #puppet
[2011/10/24 19:34:24] @ Quit: dissipate: Changing host
[2011/10/24 19:34:24] @ dissipate joined channel #puppet
[2011/10/24 19:35:24] <dissipate> does anyone know of a comprehensive tutorial for using puppet with AWS cloud formation
[2011/10/24 19:37:32] <dissipate> i'm willing to pay $$$ too
[2011/10/24 19:39:41] @ Quit: rsnhyperion: Quit: rsnhyperion
[2011/10/24 19:39:43] @ Quit: johnston: Ping timeout: 265 seconds
[2011/10/24 19:46:48] @ Quit: choonming: Ping timeout: 240 seconds
[2011/10/24 19:47:53] @ Quit: Nostalgeek:
[2011/10/24 19:51:16] @ cyflea joined channel #puppet
[2011/10/24 19:51:28] @ Quit: marrusl: Ping timeout: 256 seconds
[2011/10/24 19:52:22] @ cruzfox joined channel #puppet
[2011/10/24 19:53:37] @ sydw joined channel #puppet
[2011/10/24 19:53:54] @ Quit: negronjl: Quit: Bye
[2011/10/24 19:54:30] @ Quit: sydw: Client Quit
[2011/10/24 19:55:28] @ devzero\|afk is now known as devzero
[2011/10/24 19:56:29] @ Quit: yingcai: Quit: Page closed
[2011/10/24 19:56:58] @ Quit: cruzfox: Client Quit
[2011/10/24 19:57:46] @ sumsuch joined channel #puppet
[2011/10/24 20:08:23] @ Quit: hggh: Ping timeout: 276 seconds
[2011/10/24 20:10:10] @ mrwacky42 joined channel #puppet
[2011/10/24 20:13:54] @ Moe__ joined channel #puppet
[2011/10/24 20:15:30] @ rsnhyperion joined channel #puppet
[2011/10/24 20:18:32] @ hggh joined channel #puppet
[2011/10/24 20:19:28] @ Quit: maxmartin: Quit: Computer has gone to sleep.
[2011/10/24 20:19:48] @ kenperkins joined channel #puppet
[2011/10/24 20:21:10] @ Quit: Kazuhiro: Quit: Leaving.
[2011/10/24 20:25:16] @ mosen joined channel #puppet
[2011/10/24 20:25:33] @ Kazuhiro joined channel #puppet
[2011/10/24 20:28:30] @ Quit: JamesTaggart: K-Lined
[2011/10/24 20:28:40] @ themadcanudist joined channel #puppet
[2011/10/24 20:29:19] @ Transformer joined channel #puppet
[2011/10/24 20:29:28] @ Quit: cliff-hm: Ping timeout: 258 seconds
[2011/10/24 20:30:46] @ Quit: mrwacky42: Quit: Leaving.
[2011/10/24 20:30:55] @ Quit: Transformer: Excess Flood
[2011/10/24 20:31:22] @ los324 joined channel #puppet
[2011/10/24 20:32:59] @ ilmenite joined channel #puppet
[2011/10/24 20:33:39] @ Quit: the_ramink_: Ping timeout: 260 seconds
[2011/10/24 20:34:27] @ AshishH joined channel #puppet
[2011/10/24 20:35:07] @ Quit: newtMcKerr: Quit: Leaving.
[2011/10/24 20:35:26] @ Quit: dissipate: Remote host closed the connection
[2011/10/24 20:39:01] @ Quit: Moe__: Remote host closed the connection
[2011/10/24 20:40:19] @ Quit: jovy: Ping timeout: 260 seconds
[2011/10/24 20:41:58] @ Quit: gniks: Quit: Leaving.
[2011/10/24 20:43:08] @ gniks joined channel #puppet
[2011/10/24 20:43:33] @ benjiedmund joined channel #puppet
[2011/10/24 20:44:29] @ devzero is now known as devzero\|afk
[2011/10/24 20:45:36] @ Quit: jaymurtii: Ping timeout: 260 seconds
[2011/10/24 20:51:43] @ benkevan joined channel #puppet
[2011/10/24 20:54:18] @ Quit: rsnhyperion: Quit: rsnhyperion
[2011/10/24 20:56:45] @ devzero\|afk is now known as devzero
[2011/10/24 21:01:58] @ mitchellh joined channel #puppet
[2011/10/24 21:10:07] @ tilgovi joined channel #puppet
[2011/10/24 21:10:07] @ Quit: tilgovi: Changing host
[2011/10/24 21:10:07] @ tilgovi joined channel #puppet
[2011/10/24 21:12:56] @ Quit: edward_: Quit: leaving
[2011/10/24 21:16:48] @ Quit: mitchellh: Quit: Computer has gone to sleep
[2011/10/24 21:23:13] @ Quit: benjiedmund: Remote host closed the connection
[2011/10/24 21:24:12] @ choonming joined channel #puppet
[2011/10/24 21:27:59] @ Quit: fredden: Quit: Leaving
[2011/10/24 21:34:42] @ mitchellh joined channel #puppet
[2011/10/24 21:36:03] @ hooper joined channel #puppet
[2011/10/24 21:37:31] @ the_ramink joined channel #puppet
[2011/10/24 21:37:37] @ los324 left channel #puppet ()
[2011/10/24 21:44:10] @ Quit: tilgovi: Ping timeout: 252 seconds
[2011/10/24 21:44:44] <bettydre1mit> hi all
[2011/10/24 21:44:47] @ meth joined channel #puppet
[2011/10/24 21:45:25] <meth> if i have all puppet configs and fact data form a host then i should be able to run puppet apply locally with noop to test everything right ?
[2011/10/24 21:46:08] @ Quit: pugnacity: Ping timeout: 244 seconds
[2011/10/24 21:46:17] @ devzero is now known as devzero\|afk
[2011/10/24 21:48:32] @ Quit: shadoi: Quit: Leaving.
[2011/10/24 21:48:50] @ Quit: benkevan: Quit: leaving
[2011/10/24 21:49:53] @ tilgovi joined channel #puppet
[2011/10/24 21:51:56] @ Ryan_Lane joined channel #puppet
[2011/10/24 21:52:21] @ lak joined channel #puppet
[2011/10/24 21:52:21] @ Quit: lak: Changing host
[2011/10/24 21:52:21] @ lak joined channel #puppet
[2011/10/24 21:54:11] @ Quit: lak: Client Quit
[2011/10/24 21:57:46] @ csanchez joined channel #puppet
[2011/10/24 22:03:29] @ Quit: sumsuch: Quit: sumsuch
[2011/10/24 22:11:40] @ benkevan joined channel #puppet
[2011/10/24 22:11:40] @ Quit: benkevan: Changing host
[2011/10/24 22:11:40] @ benkevan joined channel #puppet
[2011/10/24 22:11:44] @ Quit: rocket: Ping timeout: 248 seconds
[2011/10/24 22:12:02] @ sumsuch joined channel #puppet
[2011/10/24 22:12:15] @ Kazuhiro left channel #puppet ()
[2011/10/24 22:12:23] @ Quit: fenrus02: Ping timeout: 258 seconds
[2011/10/24 22:13:33] @ pugnacity joined channel #puppet
[2011/10/24 22:13:46] @ rocket joined channel #puppet
[2011/10/24 22:14:02] @ Quit: hooper: Ping timeout: 244 seconds
[2011/10/24 22:18:08] @ Quit: rocket: Ping timeout: 248 seconds
[2011/10/24 22:18:55] @ Quit: benkevan: Quit: leaving
[2011/10/24 22:21:53] @ Quit: rcrowley: Quit: Computer has gone to sleep.
[2011/10/24 22:23:44] @ jaydg joined channel #puppet
[2011/10/24 22:26:26] @ mfladischer joined channel #puppet
[2011/10/24 22:26:59] @ mpdude joined channel #puppet
[2011/10/24 22:28:58] <mpdude> hi all
[2011/10/24 22:29:28] <mpdude> i'd like to use the pluginsnyc mechanism to distribute an updated version of a fact
[2011/10/24 22:29:37] <mpdude> a bugfix not available yet in the client's distro
[2011/10/24 22:29:53] <mpdude> the thing is it requires to update a file in lib/facter/util as well
[2011/10/24 22:30:27] <mpdude> i tried to put that in <module>/lib/facter/util/, and it gets downloaded
[2011/10/24 22:30:45] <mpdude> however, it seems as if facter would not use the update in util (the update in the fact works)
[2011/10/24 22:31:04] <mpdude> is that expected behaviour?
[2011/10/24 22:39:52] @ Quit: nokia3510: Ping timeout: 244 seconds
[2011/10/24 22:41:58] @ riha joined channel #puppet
[2011/10/24 22:43:10] @ cosman2001_ joined channel #puppet
[2011/10/24 22:44:32] @ shug joined channel #puppet
[2011/10/24 22:45:07] @ maxmartin joined channel #puppet
[2011/10/24 22:46:25] @ Quit: cosman2001: Ping timeout: 252 seconds
[2011/10/24 22:46:25] @ cosman2001_ is now known as cosman2001
[2011/10/24 22:47:01] @ Vulcan[OMNI] joined channel #puppet
[2011/10/24 22:54:24] @ newtMcKerr joined channel #puppet
[2011/10/24 22:55:44] @ Quit: newtMcKerr: Client Quit
[2011/10/24 23:01:04] @ saiju joined channel #puppet
[2011/10/24 23:02:47] <saiju> hi all
[2011/10/24 23:06:59] @ toi joined channel #puppet
[2011/10/24 23:09:15] @ EL84 joined channel #puppet
[2011/10/24 23:09:17] @ artkrz joined channel #puppet
[2011/10/24 23:09:25] @ Quit: Vulcan[OMNI]: Quit: Vulcan[OMNI]
[2011/10/24 23:13:04] @ jodok joined channel #puppet
[2011/10/24 23:13:05] @ Quit: jodok: Changing host
[2011/10/24 23:13:05] @ jodok joined channel #puppet
[2011/10/24 23:16:01] <jamesturnbull> mpdude: yeah unfortunately that's a known bug - it;s high on the list of the items to be fixed by the open source team
[2011/10/24 23:16:12] @ Quit: maxmartin: Quit: Computer has gone to sleep.
[2011/10/24 23:16:22] <jamesturnbull> mpdude: chekc their status list in the puppet-dev list
[2011/10/24 23:16:58] <nevyn> hrm I'm having odd problems with a custom provider...
[2011/10/24 23:17:18] <nevyn> it works the first run then it seems to forget about the downloaded provider for subsequent runs.
[2011/10/24 23:19:25] @ elementai joined channel #puppet
[2011/10/24 23:27:09] @ hi2u joined channel #puppet
[2011/10/24 23:28:32] @ Quit: sumsuch: Quit: sumsuch
[2011/10/24 23:30:03] @ Quit: tvsutton: Ping timeout: 252 seconds
[2011/10/24 23:31:17] @ tvsutton joined channel #puppet
[2011/10/24 23:31:37] @ DJClean joined channel #puppet
[2011/10/24 23:34:28] @ lkoranda joined channel #puppet
[2011/10/24 23:35:30] @ sdog joined channel #puppet
[2011/10/24 23:35:45] @ Quit: dgillies: Remote host closed the connection
[2011/10/24 23:35:58] @ Meier joined channel #puppet
[2011/10/24 23:36:18] @ lkoranda is now known as lkoranda\|trainin
[2011/10/24 23:36:41] @ lkoranda\|trainin is now known as lkoranda_trainin
[2011/10/24 23:36:50] @ lkoranda_trainin is now known as lkoranda
[2011/10/24 23:37:41] @ Quit: mauve_: Ping timeout: 260 seconds
[2011/10/24 23:39:57] @ Quit: Holocaine:
[2011/10/24 23:42:12] @ skm joined channel #puppet
[2011/10/24 23:42:31] @ Quit: sdog: Changing host
[2011/10/24 23:42:32] @ sdog joined channel #puppet
[2011/10/24 23:43:04] @ Quit: mitchellh: Quit: Computer has gone to sleep
[2011/10/24 23:46:55] @ gebi joined channel #puppet
[2011/10/24 23:47:32] <jamesturnbull> nevyn: best place is puppet-dev list probably -post code and behaviour and we'll see what we can?
[2011/10/24 23:47:38] @ bronto joined channel #puppet
[2011/10/24 23:48:03] <nevyn> jamesturnbull: sigh. I think I'll upgrade from 0.25.4 first
[2011/10/24 23:48:05] <nevyn> ;)
[2011/10/24 23:49:28] @ Quit: gniks: Quit: Leaving.
[2011/10/24 23:56:12] @ pieter_ joined channel #puppet

Generated by irclog2html.py 2.9.2 by Marius Gedminas - find it at mg.pov.lt!