Wednesday, 2008-06-11

[2008/06/11 00:00:00] <fujin> yes - those
[2008/06/11 00:03:04] <fujin> jamesturnbull: how are you making branches like jamtur01/tickets/1349 d1cddc3 Typo fix for ticket #1349
[2008/06/11 00:03:06] <gepetto_> fujin: jamesturnbull: #1349 is http://reductivelabs.com/redmine/issues/show/1349
[2008/06/11 00:03:14] <fujin> whenever I try to create a branch with a / in it, it bails
[2008/06/11 00:03:53] <fujin> weird, it jus tworked
[2008/06/11 00:03:55] <fujin> must have had a typo
[2008/06/11 00:05:34] @ ricky joined channel #puppet
[2008/06/11 00:08:49] <jamesturnbull> fujin: works for me
[2008/06/11 00:10:52] <fujin> yeah, I just created a new one
[2008/06/11 00:11:06] <fujin> I'm doing tickets/<branch>/ticket#
[2008/06/11 00:11:19] <fujin> must have had a typo
[2008/06/11 00:16:15] <jamesturnbull> fujin: I am happy with <branch>/ticket# personally
[2008/06/11 00:16:32] <fujin> ah cool
[2008/06/11 00:16:49] <jamesturnbull> fujin: as long as I know what branch it's going to
[2008/06/11 00:17:03] <fujin> yeah, alright
[2008/06/11 00:17:21] <fujin> jamesturnbull: I triaged all of the unreviewed ones that I thought I could handle
[2008/06/11 00:24:50] @ Quit: nwp_: Remote closed the connection
[2008/06/11 00:39:43] @ Quit: thijso: Remote closed the connection
[2008/06/11 00:39:55] @ thijso joined channel #puppet
[2008/06/11 01:01:04] <jamesturnbull> fujin: thanks mate
[2008/06/11 01:01:09] <jamesturnbull> fujin: much appreciated
[2008/06/11 01:01:41] <fujin> ;]
[2008/06/11 01:14:46] <fujin> andrewcshafer: great stuff
[2008/06/11 01:15:25] <fujin> andrewcshafer: is this just the beginning? I noticed there arent' any accompanying patches to bin/puppetd
[2008/06/11 01:15:41] <andrewcshafer> fujin: hmm
[2008/06/11 01:15:48] <andrewcshafer> one sec
[2008/06/11 01:16:27] <andrewcshafer> I cut the whole block out of puppetd basically, but let me look at the patch
[2008/06/11 01:16:37] <fujin> patch doesn't mention it, that's all :)
[2008/06/11 01:16:46] <fujin> I posted to the list for clarification - heading home now
[2008/06/11 01:16:56] <fujin> afk.
[2008/06/11 01:17:17] <andrewcshafer> hmm, my git fu is not so strong ;)
[2008/06/11 01:20:13] <andrewcshafer> ok, new patch should have puppetd too
[2008/06/11 01:21:34] <lak> andrewcshafer in my code fixin my bugz
[2008/06/11 01:21:39] <lak> or something like that
[2008/06/11 01:27:13] <nevyn> so rst + docutils == win for a publishing model.
[2008/06/11 01:27:14] @ Quit: johnf: Read error: 104 (Connection reset by peer)
[2008/06/11 01:28:56] <lak> nevyn: i think so
[2008/06/11 01:29:05] @ johnf joined channel #puppet
[2008/06/11 01:29:26] <nevyn> however
[2008/06/11 01:29:47] <nevyn> and even for collaberative editing where people can use a vcs of some description
[2008/06/11 01:30:15] <nevyn> but management here.. are resisting learning enough vcs to work with documents this way
[2008/06/11 01:30:58] <nevyn> and where clients need to edit the canonical document it's unsuitible.
[2008/06/11 01:31:49] <lak> you could use something like ikiwiki to provide wiki access rather than vcs
[2008/06/11 01:32:09] <nevyn> ikiwiki's rst isn't so crash hot
[2008/06/11 01:32:22] <nevyn> we do have ikiwiki working with hg already.
[2008/06/11 01:32:30] <nevyn> but wiki docs must be rst
[2008/06/11 01:32:36] <nevyn> bleh s/rst/markdown/
[2008/06/11 01:33:02] <lak> ah, suck
[2008/06/11 01:33:40] <nevyn> I'd love a wiki that worked as well as ikiwiki with a vcs and supported rst as a firstclass citizen
[2008/06/11 01:35:07] <nevyn> the lack of tables and definition lists in markdown annoys me.
[2008/06/11 01:38:47] <lak> yeah
[2008/06/11 01:38:55] <lak> let us know when you have that worked out
[2008/06/11 01:42:42] @ Quit: lak:
[2008/06/11 01:48:08] @ ricky_ joined channel #puppet
[2008/06/11 01:48:24] @ Quit: ricky: Nick collision from services.
[2008/06/11 01:48:41] @ ricky_ is now known as ricky
[2008/06/11 01:54:15] @ Quit: dysinger:
[2008/06/11 01:57:02] @ jvanzyl joined channel #puppet
[2008/06/11 02:01:54] <jamesturnbull> andrewcshafer: it's the whole branch?
[2008/06/11 02:02:24] <andrewcshafer> it should be rebased with your 0.24.x
[2008/06/11 02:02:29] <jamesturnbull> k
[2008/06/11 02:02:38] <andrewcshafer> should just be the last 2 commits
[2008/06/11 02:03:07] <andrewcshafer> and the last one is just changing the wording in the spec
[2008/06/11 02:06:20] <jamesturnbull> andrewcshafer: okay pushed - looks good too - soon binaries will be mere shells of themselves
[2008/06/11 02:06:23] <jamesturnbull> :P
[2008/06/11 02:06:34] <andrewcshafer> god willing
[2008/06/11 02:07:07] <andrewcshafer> right now they are big procedural scripts :(
[2008/06/11 02:07:26] <andrewcshafer> We'll chop'em real nice
[2008/06/11 02:15:36] <fujin> andrewcshafer: cool you got it sorted
[2008/06/11 02:16:25] <fujin> deleting my fix1200 branch
[2008/06/11 02:17:04] <andrewcshafer> fujin: Yeah, I mangled it in the new branch rebase shuffle because those files were new and puppetd was modified and I forgot to add puppetd before I did git commit :(
[2008/06/11 02:17:26] <fujin> oh, doh!
[2008/06/11 02:17:34] * fujin pulls
[2008/06/11 02:17:38] <fujin> anyway, nice work
[2008/06/11 02:17:44] <fujin> you did what I couldn't be fucked doing! :)
[2008/06/11 02:18:11] <andrewcshafer> there's more to come
[2008/06/11 02:18:32] <andrewcshafer> I'm still ramping up
[2008/06/11 02:19:28] <andrewcshafer> Learning Ruby and Puppet is a little bit of a learning curve, but I'm starting to see it all more clearly
[2008/06/11 02:20:16] <fujin> aye, I can sympathise
[2008/06/11 02:20:23] <fujin> still not quite seeing it clearly >:)
[2008/06/11 02:20:33] <andrewcshafer> As long as I never have to use Java, I'm good :)
[2008/06/11 02:20:39] <fujin> LOL amen to that
[2008/06/11 02:21:29] <andrewcshafer> I have the advantage of calling Luke on speed dial to help me sort it out
[2008/06/11 02:21:47] <fujin> hehe.
[2008/06/11 02:24:30] <fujin> LOL @ commit log for 6764af3c196a526647eb4a270ec737e2b0f20d36
[2008/06/11 02:27:37] <jamesturnbull> andrewcshafer: yes the commit log was somewhat .. creative
[2008/06/11 02:28:22] <andrewcshafer> Luke didn't like me using 'fail' when there was no exception, because of the Ruby idiom
[2008/06/11 02:30:26] <fujin> ah. A method to the madness.
[2008/06/11 02:30:44] <andrewcshafer> . . .or somethign
[2008/06/11 02:31:13] @ _zsh joined channel #puppet
[2008/06/11 02:40:04] @ m1n3s6 joined channel #puppet
[2008/06/11 02:45:51] <m1n3s6> hello sparanjape
[2008/06/11 02:47:05] @ Quit: jvanzyl:
[2008/06/11 02:50:39] @ Quit: Ol_:
[2008/06/11 02:51:49] @ Innocenti joined channel #puppet
[2008/06/11 02:53:38] @ jvanzyl joined channel #puppet
[2008/06/11 03:00:59] @ Quit: m1n3s6: Read error: 104 (Connection reset by peer)
[2008/06/11 03:01:00] @ Quit: f3ew: Read error: 104 (Connection reset by peer)
[2008/06/11 03:01:03] @ Quit: sparanjape: Connection reset by peer
[2008/06/11 03:01:06] @ Quit: _zsh: Read error: 104 (Connection reset by peer)
[2008/06/11 03:01:35] @ m1n3s6 joined channel #puppet
[2008/06/11 03:01:45] @ f3ew joined channel #puppet
[2008/06/11 03:03:45] @ _zsh joined channel #puppet
[2008/06/11 03:11:06] @ Quit: m1n3s6: Read error: 104 (Connection reset by peer)
[2008/06/11 03:11:08] @ Quit: _zsh: Read error: 104 (Connection reset by peer)
[2008/06/11 03:11:10] @ Quit: f3ew: Read error: 104 (Connection reset by peer)
[2008/06/11 03:11:39] @ m1n3s6 joined channel #puppet
[2008/06/11 03:11:46] @ f3ew joined channel #puppet
[2008/06/11 03:13:47] @ _zsh joined channel #puppet
[2008/06/11 03:27:10] @ sparanjape joined channel #puppet
[2008/06/11 03:27:20] <sparanjape> hello m1n3s6
[2008/06/11 03:28:01] @ Quit: jvanzyl: Read error: 110 (Connection timed out)
[2008/06/11 03:28:16] <f3ew> uh?
[2008/06/11 03:28:22] <f3ew> Leaky password?
[2008/06/11 03:29:46] @ DerekW joined channel #puppet
[2008/06/11 03:37:47] @ dysinger joined channel #puppet
[2008/06/11 03:38:16] @ kolla joined channel #puppet
[2008/06/11 03:49:48] <msf> is there any way for me to have an exec run only if a certain command on the puppet client returns true ?
[2008/06/11 03:49:59] <msf> I guess probably with a custom fact ?
[2008/06/11 03:53:38] <Volcane> look at the exec documentation.
[2008/06/11 04:00:43] <fujin> msf: onlyf =>
[2008/06/11 04:00:48] <fujin> onlyif =>, even.
[2008/06/11 04:00:49] <fujin> fark.
[2008/06/11 04:01:05] <fujin> but yes, as my unhelpful friend pointed out, this is covered in the TypeReference
[2008/06/11 04:01:17] <fujin> and hopefully soon onlyif/unless will be turned into metaparameters
[2008/06/11 04:08:54] @ Quit: johnf: Read error: 110 (Connection timed out)
[2008/06/11 04:11:07] <fastjay> evening/morning/howdee
[2008/06/11 04:17:25] <f3ew> http://thedailywtf.com/Comments/A-Bit-More-Dire.aspx
[2008/06/11 04:17:31] <f3ew> oops ;)
[2008/06/11 04:49:52] @ jvanzyl joined channel #puppet
[2008/06/11 04:56:13] @ cabbiepete joined channel #puppet
[2008/06/11 05:00:16] @ marcoecc joined channel #puppet
[2008/06/11 05:01:22] @ Quit: cabbiepete: "Bye for now"
[2008/06/11 05:21:49] @ Quit: ricky: Read error: 110 (Connection timed out)
[2008/06/11 05:36:33] <duritong> I want to ensure that a service isn't running, but as there might be systems where the service isn't even installed, it is always ensured from running to stopped. any idea how to fix this?
[2008/06/11 05:38:49] @ thegcat joined channel #puppet
[2008/06/11 05:38:55] <thegcat> hello
[2008/06/11 05:40:01] <thegcat> can anyone tell off the top of his head (or whatever the correct english idiomatic is...) if puppet expands home dirs?
[2008/06/11 05:40:38] <thegcat> e.g. stuff like file { "~thegcat/.ssh/authorized_keys": } ?
[2008/06/11 05:42:59] <DerekW> thegcat: no chance :-(
[2008/06/11 05:43:24] <thegcat> ok, not that much of a biggie
[2008/06/11 05:43:53] <thegcat> any ruby command to expand ~$USER, so I can make it a fact?
[2008/06/11 05:44:17] <thegcat> (I only need a fixed set of users, so facts ist an option :-) )
[2008/06/11 05:44:33] <DerekW> The architecture means it needs to be a fact
[2008/06/11 05:48:36] @ Quit: jvanzyl:
[2008/06/11 05:56:19] @ Quit: rcoup:
[2008/06/11 05:59:56] @ keithlard joined channel #puppet
[2008/06/11 06:06:03] @ Quit: keithlard:
[2008/06/11 06:06:26] @ keithlard joined channel #puppet
[2008/06/11 06:07:52] @ Quit: dysinger: Remote closed the connection
[2008/06/11 06:11:21] @ Quit: wibbit: "Ex-Chat"
[2008/06/11 06:28:25] @ Quit: m1n3s6: "auf wiedersehen"
[2008/06/11 06:28:49] @ wibbit joined channel #puppet
[2008/06/11 06:39:03] @ Quit: _zsh: Read error: 104 (Connection reset by peer)
[2008/06/11 06:48:09] @ johnf joined channel #puppet
[2008/06/11 07:06:40] @ Quit: jason^_: Client Quit
[2008/06/11 07:07:17] @ jason^ joined channel #puppet
[2008/06/11 07:13:40] @ rcoup joined channel #puppet
[2008/06/11 07:19:12] @ Quit: sparanjape: "Some folks are wise, and some otherwise."
[2008/06/11 07:29:50] @ chillitom joined channel #puppet
[2008/06/11 07:37:42] @ greenmoss joined channel #puppet
[2008/06/11 07:49:23] @ silent-ion joined channel #puppet
[2008/06/11 07:55:38] @ kambiz joined channel #puppet
[2008/06/11 08:08:27] <silent-ion> hi
[2008/06/11 08:08:29] <silent-ion> i got: Could not retrieve catalog: Certificates were not trusted: hostname was not match with the server certificate
[2008/06/11 08:08:30] <silent-ion> I have already read: http://reductivelabs.com/trac/puppet/wiki/RubySSL-2007-006
[2008/06/11 08:08:32] <silent-ion> but i dont understand why i get this error.
[2008/06/11 08:08:42] <silent-ion> puppet 0.24.4
[2008/06/11 08:09:47] <Volcane> if your client tries to talk to 'puppet' as a server name
[2008/06/11 08:10:02] <Volcane> but your server made a certificate iwth name somebox.somecompany.com
[2008/06/11 08:10:08] <Volcane> then they dont match, and so you get the error
[2008/06/11 08:10:38] <Volcane> so you need to either get the clients to talk to the right name that the server used to make the cert
[2008/06/11 08:10:46] <Volcane> or get the server to make a cert on the name the clients expect
[2008/06/11 08:10:54] <Volcane> eitherway, they need to match now
[2008/06/11 08:11:32] <silent-ion> from client i do:
[2008/06/11 08:11:34] <silent-ion> openssl s_client -connect puppet:8140
[2008/06/11 08:11:35] <silent-ion> subject=/CN=puppet.domain.org
[2008/06/11 08:11:37] <silent-ion> issuer=/CN=ttt.domain.org
[2008/06/11 08:12:10] <silent-ion> on the client:
[2008/06/11 08:12:12] <silent-ion> server = puppet.domain.org
[2008/06/11 08:12:14] <Volcane> ok
[2008/06/11 08:12:20] <Volcane> so set your clients to talk to puppet.domain.org
[2008/06/11 08:12:32] <Volcane> i leave my clients on default (puppet)
[2008/06/11 08:12:37] <Volcane> and set my server to call itself puppet
[2008/06/11 08:12:38] <Volcane> subject=/CN=puppet
[2008/06/11 08:13:03] <Volcane> by setting ' certname = puppet' in the [puppetmasterd] section of the config file
[2008/06/11 08:13:15] <silent-ion> ok. i will try it now.
[2008/06/11 08:13:23] <Volcane> restart master after the change etc
[2008/06/11 08:16:03] <Volcane> ah sorry i only notice now you already had your client set to talk to puppet.domain.org that really should have sorted it i think, i just put everyting to talk to 'puppet' and add CNAMES in all my doains
[2008/06/11 08:16:22] <Volcane> that works a charm, am on centos 5.1 so defo affected by the bug
[2008/06/11 08:22:40] <silent-ion> it difficult to me but
[2008/06/11 08:22:42] <silent-ion> with subject=/CN=puppet , and server = puppet
[2008/06/11 08:22:43] <silent-ion> it works. :-)
[2008/06/11 08:24:06] <Volcane> that great
[2008/06/11 08:24:17] <Volcane> its a pain thats for sure
[2008/06/11 08:24:56] <silent-ion> but i don't understand why puppet decline to work with my previous configuration. :-)
[2008/06/11 08:25:23] <Volcane> yeah it did look good, but who knows, there might have been some stale ssl certs around or something
[2008/06/11 08:25:59] <silent-ion> ok. thanks
[2008/06/11 08:44:54] @ Quit: rcoup:
[2008/06/11 08:59:17] @ rcoup joined channel #puppet
[2008/06/11 09:02:39] @ Quit: kambiz: "Leaving"
[2008/06/11 09:36:22] @ DerekW_ joined channel #puppet
[2008/06/11 09:44:25] @ shenson_not_here is now known as shenson
[2008/06/11 09:46:24] @ lak joined channel #puppet
[2008/06/11 09:53:52] @ Quit: DerekW: Read error: 110 (Connection timed out)
[2008/06/11 09:53:57] @ flakrat joined channel #puppet
[2008/06/11 10:00:40] @ kambiz joined channel #puppet
[2008/06/11 10:01:09] @ DerekW__ joined channel #puppet
[2008/06/11 10:03:55] @ Quit: Demosthenes: Read error: 110 (Connection timed out)
[2008/06/11 10:05:43] @ AimanA joined channel #puppet
[2008/06/11 10:14:18] @ Quit: lak:
[2008/06/11 10:16:10] @ lak joined channel #puppet
[2008/06/11 10:17:11] @ Quit: thegcat:
[2008/06/11 10:17:15] @ Quit: DerekW_: Read error: 110 (Connection timed out)
[2008/06/11 10:28:06] @ Quit: rcoup:
[2008/06/11 10:30:40] @ lazzurs joined channel #puppet
[2008/06/11 10:40:37] @ Quit: kolla: Remote closed the connection
[2008/06/11 10:53:10] <ashp> It like it when I come back to a module and go 'wow, did I do that? that's clever'
[2008/06/11 10:53:20] <ashp> makes me feel like there's hope for me yet :)
[2008/06/11 10:56:13] @ falsch joined channel #puppet
[2008/06/11 10:58:21] <ashp> Argh the namespaces of puppet drive me insane.
[2008/06/11 10:58:34] <ashp> I can't do filemounts::nfsmount{} from inside another module, but I can from the node.
[2008/06/11 10:58:45] <ashp> If I do include filemounts or even include filemounts::nfsmount it doesn't help
[2008/06/11 10:59:46] <ashp> I thought it would be smart enough to check for that module existing, but no.
[2008/06/11 11:01:11] <ashp> Weirdly doing import "filemounts/nfsmount.pp" worked, but I don't like that. :/
[2008/06/11 11:04:31] <Volcane> you can do modulename::classname
[2008/06/11 11:04:36] <Volcane> if you have manifests/classnae.pp
[2008/06/11 11:04:40] <Volcane> inside the module
[2008/06/11 11:04:45] <Volcane> most other things dont work
[2008/06/11 11:04:59] <Volcane> like modulename::sub::classname doesnt map to manifests/sub/classname.pp
[2008/06/11 11:05:03] <Volcane> automatically
[2008/06/11 11:07:52] @ Quit: Innocenti: Client Quit
[2008/06/11 11:10:18] @ Zothar_Work joined channel #puppet
[2008/06/11 11:12:51] * duritong wonders if somebody is using the interface type on redhat-systems
[2008/06/11 11:15:20] <Volcane> doesnt work for bonds
[2008/06/11 11:15:25] <Volcane> but i have used it
[2008/06/11 11:20:08] @ martha joined channel #puppet
[2008/06/11 11:24:31] @ markl_ joined channel #puppet
[2008/06/11 11:32:02] @ Quit: kambiz: "Leaving"
[2008/06/11 11:37:52] @ hessml joined channel #puppet
[2008/06/11 11:38:45] @ teyo_ joined channel #puppet
[2008/06/11 11:45:31] @ oxtail joined channel #puppet
[2008/06/11 11:52:13] @ glaw joined channel #puppet
[2008/06/11 11:52:52] @ Londo_ joined channel #puppet
[2008/06/11 12:07:05] <ashp> Hey, how goes the work for swapping from webrick to mongrel
[2008/06/11 12:07:14] @ ricky joined channel #puppet
[2008/06/11 12:07:21] <ashp> Volcane: I have nfsmount.pp with the define in, lak showed me that trick
[2008/06/11 12:07:34] <ashp> Volcane: so I can just do filemounts::nfsmount{} normally to call the define which worked from the node def
[2008/06/11 12:07:38] <ashp> but I guess it gets confused further down
[2008/06/11 12:09:07] <Volcane> yeah i had issues getting it to work even with defines
[2008/06/11 12:09:19] <Volcane> so i either put them in init.pp or import them
[2008/06/11 12:11:48] @ Quit: DerekW__: "Leaving"
[2008/06/11 12:12:44] @ Quit: AimanA: Read error: 113 (No route to host)
[2008/06/11 12:12:47] @ cote joined channel #puppet
[2008/06/11 12:14:31] <ashp> i don't suppose anyone has ever bought a pragmaticprogrammers screencast?
[2008/06/11 12:14:35] <ashp> my boss said i could :)
[2008/06/11 12:14:36] <gileswork> hi peeps
[2008/06/11 12:14:42] <ashp> i figure maybe that's a better way to get to grips with some ruby stuff
[2008/06/11 12:14:49] <gileswork> is there an equivilent of the line define
[2008/06/11 12:15:02] <gileswork> but to make sure a line doesn't exist in a file
[2008/06/11 12:15:15] <gileswork> hrm mebe it takes a ensure absent
[2008/06/11 12:15:25] <gileswork> *checkski
[2008/06/11 12:16:09] <ashp> i wonder if there's other places that do screencasts or videos for learning ruby, hmm
[2008/06/11 12:16:11] <gileswork> oh well that answered my own question
[2008/06/11 12:16:44] <martha> ashp: http://www.youtube.com/watch?v=_w-AG_yF1Uw
[2008/06/11 12:16:57] <ashp> haha, that's not ruby screencasts, you tricked me
[2008/06/11 12:17:02] <martha> this is re our conversation yesterday
[2008/06/11 12:17:19] <duritong> Volcane: but you had to fix it not?
[2008/06/11 12:17:21] <martha> it is really funny
[2008/06/11 12:17:35] <ashp> i'll dig out my headphones :)
[2008/06/11 12:17:51] <ashp> Volcane: Yeah, I'll check with lak when I see him re the defines to see if that's expected behaviour
[2008/06/11 12:18:33] <Volcane> duritong: i worked where it was written.
[2008/06/11 12:19:15] <Volcane> duritong: though I'll happily say that i dont use it on my own redhat machines :)
[2008/06/11 12:19:17] <duritong> hmm it doesn't work for me I get errors :-/
[2008/06/11 12:19:35] <Volcane> duritong: we can only help if you show them to us :)
[2008/06/11 12:22:16] @ jvanzyl joined channel #puppet
[2008/06/11 12:25:34] <duritong> http://reductivelabs.com/redmine/issues/show/1152
[2008/06/11 12:26:43] <sigmonsays> anyone know how to program /proc/sys/net/ipv4/tcp_max_syn_backlog value?
[2008/06/11 12:26:45] <duritong> i added the last patch as well but now get that no method hwaddr is found, then I added a property hwaddr (as this was in my scripts file) to the type and now it complained again about an empty name or so
[2008/06/11 12:27:40] <Volcane> sigmonsays: either echo to that file, or use sysctl net.ipv4.tcp_max_syn_backlog=xxxx
[2008/06/11 12:28:21] <sigmonsays> ah ok. I didn't know it was a sysctl flag too
[2008/06/11 12:28:24] <sigmonsays> thx Volcane
[2008/06/11 12:28:27] <Volcane> sigmonsays: or add net.ipv4.tcp_max_syn_backlog=xxx to /etc/sysctl.conf and reboot, or run sysctl -p instead of reboot
[2008/06/11 12:28:39] <fsweetser> there's also a sysctl native type
[2008/06/11 12:28:44] <sigmonsays> yup
[2008/06/11 12:30:22] * Volcane wonders if he will completely break his xen machines with his new defines to create configs and logical volmes
[2008/06/11 12:38:05] @ kambiz joined channel #puppet
[2008/06/11 12:42:13] <Volcane> ah see, proper example of when more usable arrays are needed
[2008/06/11 12:42:27] <Volcane> i want to possibly mount more than 1 filesystem per virtual machine
[2008/06/11 12:42:42] <Volcane> so need an array of paths to devices (real) and also device name inside the vm
[2008/06/11 12:42:48] <Volcane> something along the lines of
[2008/06/11 12:43:15] <Volcane> $mount{'hda1'}{'/dev/dom0/test_vm'}
[2008/06/11 12:43:16] @ Quit: teyo_:
[2008/06/11 12:44:01] <Volcane> obviously thats perl, so consider it pseudo code :)
[2008/06/11 12:53:05] <martha> Volcane: write your define so that it takes arguments
[2008/06/11 12:53:32] <Volcane> martha: i want to pass it $volumes
[2008/06/11 12:53:51] @ Quit: johnf: Read error: 110 (Connection timed out)
[2008/06/11 12:53:54] <Volcane> martha: being an array of phyusical machine logical volumes which should each map to lets say hda or hdb
[2008/06/11 12:56:22] <Disconnect> ashp: got the iclassify recipe online anywhere?
[2008/06/11 12:57:47] @ Quit: oxtail: Read error: 110 (Connection timed out)
[2008/06/11 12:58:40] <martha> Volcane: I don't think you can do that
[2008/06/11 12:59:57] <Volcane> martha: i know, we were discussing the lack of multi dimensional arrays or hashes in puppet and no1 could coe up with a decent example of where it would be needed
[2008/06/11 13:00:07] <Volcane> some time ago, maybe last week
[2008/06/11 13:00:46] <martha> I did have problem where puppet was flattening arrays
[2008/06/11 13:01:21] @ teyo joined channel #puppet
[2008/06/11 13:01:30] <martha> I don't remember what I was originally trying to do, though :-(
[2008/06/11 13:02:02] <martha> I did open #1048 on it, though
[2008/06/11 13:02:03] <gepetto_> martha: #1048 is http://reductivelabs.com/redmine/issues/show/1048
[2008/06/11 13:02:28] <Volcane> yeah would love that
[2008/06/11 13:02:40] @ robin_ joined channel #puppet
[2008/06/11 13:02:42] @ Quit: hessml: "Leaving..."
[2008/06/11 13:03:11] <ashp> Disconnect: I do, hold on
[2008/06/11 13:03:26] <ashp> i wonder if i've made any changes since, I'm always eternally tweaking
[2008/06/11 13:03:28] <robin_> Hey everyone... I've been maintaining a mid-size (I don't know if that's an accurate description -- ~120 nodes) puppet install, and nodes.pp is getting out of hand.
[2008/06/11 13:03:31] <Volcane> cos now i am forced to do this: volumes => ["phy:/dev/xen2/test_root,xvda,w"],
[2008/06/11 13:03:35] <ashp> http://github.com/apenney/puppet/tree/master/iclassify
[2008/06/11 13:03:41] <Volcane> rather than something more clever
[2008/06/11 13:03:46] <robin_> I'm wondering if someone can hold my hand and walk me to the doorway of a better method to manage nodes
[2008/06/11 13:03:54] <ashp> A bunch of those packages/ can be replaced out of EPEL now if you use RHEL
[2008/06/11 13:03:54] <robin_> I'm kind of in the dark about it; I've been hand-editing files.
[2008/06/11 13:03:55] <ashp> or centos
[2008/06/11 13:05:49] @ Quit: marcoecc: "Quitting"
[2008/06/11 13:05:58] <Disconnect> cooool :)
[2008/06/11 13:06:44] <martha> robin_: I think the most popular thing is to use ldap
[2008/06/11 13:06:55] <martha> have you ever used ldap before?
[2008/06/11 13:07:11] <robin_> yeah, we have a working ldap authentication system for some apache instances and such
[2008/06/11 13:07:18] <robin_> so I've got some experience with ldap and pam_ldap
[2008/06/11 13:07:27] <martha> ok.
[2008/06/11 13:07:38] <martha> so, there is a puppet schema
[2008/06/11 13:07:44] <robin_> oh yeah?
[2008/06/11 13:08:00] <martha> you need to add that to your ldap server, set up a namespace, etc.
[2008/06/11 13:08:02] <robin_> so.... puppet has built-in support to go check an ldap database and query on a node name?
[2008/06/11 13:08:06] @ Quit: fsweetser: Remote closed the connection
[2008/06/11 13:08:09] <martha> yes
[2008/06/11 13:08:22] <robin_> is there a howto or an intro on the wiki?
[2008/06/11 13:09:19] <martha> robin_: wiki:LDAPNodes
[2008/06/11 13:09:21] <gepetto_> martha: robin_: wiki:LDAPNodes is http://reductivelabs.com/trac/puppet/wiki/LDAPNodes
[2008/06/11 13:10:02] <martha> hmm, I should clean up my ldap scripts for adding a puppet host and puppet class and put them on the wiki
[2008/06/11 13:10:08] <robin_> martha: thanks a lot
[2008/06/11 13:10:14] <robin_> martha: that would help a ton
[2008/06/11 13:11:19] @ fsweetser joined channel #puppet
[2008/06/11 13:12:37] <Volcane> hmm, theres something special about parameters with the name 'memory' or template vars with the name 'memory'
[2008/06/11 13:12:48] <Volcane> if i use it in a define and then try and template the result, i get 0 always
[2008/06/11 13:12:53] <Volcane> :%s/memory/ram/g
[2008/06/11 13:12:54] <Volcane> and it works
[2008/06/11 13:13:54] @ jshar1 joined channel #puppet
[2008/06/11 13:14:26] <martha> robin_: http://pastie.org/213070 to add a host
[2008/06/11 13:14:53] <ashp> Volcane: odd, it's not a ruby reserved word
[2008/06/11 13:15:14] <Volcane> martha: how do you assign classes etc to the node?
[2008/06/11 13:15:35] <robin_> martha: I'll copy and paste that mofo... I'm definitely not familiar with Net::LDAP
[2008/06/11 13:16:22] <martha> http://pastie.org/213072 to add a class to a host
[2008/06/11 13:16:33] @ Quit: nevyn: Remote closed the connection
[2008/06/11 13:16:37] <martha> or you can use a regular ldap client
[2008/06/11 13:17:09] <Volcane> ah
[2008/06/11 13:17:13] @ Quit: teyo:
[2008/06/11 13:17:25] <Volcane> is it really less work than maintaining text files? whats the big win?
[2008/06/11 13:17:33] @ Quit: jcastro: Remote closed the connection
[2008/06/11 13:17:35] @ jcastro joined channel #puppet
[2008/06/11 13:17:53] <martha> Volcane: well, for one, a lot of people already have an ldap infrastructure
[2008/06/11 13:17:58] @ Quit: blblack: Remote closed the connection
[2008/06/11 13:18:00] @ blblack joined channel #puppet
[2008/06/11 13:18:01] <martha> often with a lot of info in it
[2008/06/11 13:18:16] @ Quit: ska-fan: Remote closed the connection
[2008/06/11 13:18:18] @ ska-fan joined channel #puppet
[2008/06/11 13:18:27] @ Quit: choffee: Remote closed the connection
[2008/06/11 13:18:30] @ choffee joined channel #puppet
[2008/06/11 13:18:33] @ Quit: bartc: Remote closed the connection
[2008/06/11 13:18:34] <martha> you can also separate out the perm for adding a class to a host vs changing puppet config
[2008/06/11 13:18:35] @ bartc joined channel #puppet
[2008/06/11 13:18:47] <Volcane> yah, i guess having all the attributes of the host show up as $vars is good too
[2008/06/11 13:18:57] <Volcane> martha: oh yeah thats kewl
[2008/06/11 13:19:04] <martha> I wrote all of our puppet config, and most of the other sysadmins just add classes
[2008/06/11 13:20:07] <Volcane> great, can now make xen vm configs and logical volumes etc on my machines throug puppet
[2008/06/11 13:20:15] <Volcane> wont try and undo it via puppet, but it already helps a lot
[2008/06/11 13:22:24] @ nevyn joined channel #puppet
[2008/06/11 13:27:51] <robin_> martha: are you using the puppet schema on the wiki?
[2008/06/11 13:27:51] <robin_> http://reductivelabs.com/trac/puppet/browser/ext/ldap/puppet.schema
[2008/06/11 13:28:12] <martha> yes
[2008/06/11 13:28:23] <ashp> i ended up modifying the ldap.schema
[2008/06/11 13:28:27] <ashp> to add loads of additional variables
[2008/06/11 13:28:36] <ashp> I was in the process of ditching ldap for iclassify
[2008/06/11 13:28:40] <martha> ashp: what else did you add?
[2008/06/11 13:28:42] <ashp> until I found a way to make environments work with just nodes
[2008/06/11 13:28:47] <ashp> martha, let me go check quickly
[2008/06/11 13:28:56] <ashp> it was stuff like ip:, network:, netmask: gateway: etc
[2008/06/11 13:29:14] <ashp> location: (external/internal for some checks we do) and a couple of other minor bits like that
[2008/06/11 13:29:23] <ashp> it was mostly so I could put the ip info in there and build my network interfaces off it
[2008/06/11 13:29:28] <martha> oh, I'd totally like that
[2008/06/11 13:29:42] <martha> you should submit it as a patch
[2008/06/11 13:29:58] @ plathrop joined channel #puppet
[2008/06/11 13:29:59] <ashp> I can do, it was actually really useful, let me put up the define and the schema on pastebin real quick
[2008/06/11 13:30:07] * Volcane likes pushing that kind of stuff out to facts
[2008/06/11 13:30:11] <robin_> ashp: I would love to see that schema
[2008/06/11 13:30:16] <robin_> thanks
[2008/06/11 13:30:16] <Volcane> then its accessible to other stuff on the host too
[2008/06/11 13:30:34] <ashp> How do you handle the management of the facts.txt?
[2008/06/11 13:30:48] <ashp> i ditched the ldap method as it was awkward and clumsy so I'm curious how you do the facts.txt
[2008/06/11 13:30:52] <martha> although my problem is that I have hosts with lots of ips
[2008/06/11 13:31:04] <martha> I don't use facts.txt
[2008/06/11 13:31:13] <Volcane> # facter location
[2008/06/11 13:31:14] <Volcane> hetzner
[2008/06/11 13:31:16] <Volcane> stuff like that
[2008/06/11 13:31:18] @ Quit: magnachef: Read error: 110 (Connection timed out)
[2008/06/11 13:31:20] @ Quit: jshare: Read error: 110 (Connection timed out)
[2008/06/11 13:31:21] <Volcane> very useful
[2008/06/11 13:31:41] <Volcane> ashp: http://www.devco.net/pubwiki/Puppet/CustomFacts
[2008/06/11 13:31:44] <ashp> http://pastebin.com/d15605009
[2008/06/11 13:31:47] <Volcane> ashp: and put the facts.txt there with bootstrap
[2008/06/11 13:32:04] <ashp> oh, so you manually create the facts.txt for each build you mean?
[2008/06/11 13:32:17] <Volcane> yeah i dont mind that
[2008/06/11 13:32:20] <ashp> I mean at some point you have to manually insert the information anyway, so that's not an objection
[2008/06/11 13:32:24] @ hessml joined channel #puppet
[2008/06/11 13:32:27] <Volcane> you can ofcourse create them by other means
[2008/06/11 13:32:30] <ashp> right now I just manually put it into the nodes.pp file
[2008/06/11 13:32:49] <martha> I don't have any info except the hostname that I need to build the puppet config
[2008/06/11 13:32:56] <Volcane> ashp: nods, long term view is I'll build them out of something, figure it will be easier to build var=val pairs than something else
[2008/06/11 13:32:58] <ashp> I would probably modify kickstart to wget http://puppet/facts/facts.$hostname
[2008/06/11 13:33:03] <ashp> and then create and maintain those
[2008/06/11 13:33:18] <ashp> volcane: well one benefit is long term it's probably really easy to script the generation of those files from anything else
[2008/06/11 13:33:29] <Volcane> ashp: yip.
[2008/06/11 13:33:30] <ashp> even if you decided to use iclassify for a node database you could easily create facts.$hostname or whatever from that
[2008/06/11 13:33:58] <Volcane> ashp: and i put them there witht he bootstrap, and even set the environment the machine is in via facts
[2008/06/11 13:34:05] <ashp> the only benefit to my way is just that nodes.pp is the only place for node specific facts and that helps
[2008/06/11 13:34:14] <Volcane> ashp: so i dont maintain puppet.conf's just to put stuff in a new environment
[2008/06/11 13:34:18] <ashp> but it wouldn't be so hard to make people look in a facts/ directory for the hostname instead
[2008/06/11 13:34:27] @ Quit: plathrop: Remote closed the connection
[2008/06/11 13:34:43] @ plathrop joined channel #puppet
[2008/06/11 13:34:49] @ Quit: jvanzyl:
[2008/06/11 13:34:54] <Volcane> ashp: yeah at this point its all the same - except i can query via facter on the host
[2008/06/11 13:34:57] <ashp> I would wget it in the build, then use puppet to manage a hosts/ directory or something for adding and changing those fact.txt's
[2008/06/11 13:35:12] @ Quit: robin_: Read error: 104 (Connection reset by peer)
[2008/06/11 13:35:15] <ashp> volcane: that's true, it's nice to be able to add in custom bits of facter information
[2008/06/11 13:35:16] @ robin_ joined channel #puppet
[2008/06/11 13:35:26] <ashp> I mean, I only really query facter via puppet so there's no real difference for me besides facter and just setting a variable
[2008/06/11 13:35:31] <ashp> Do you use anything else that relies on facter?
[2008/06/11 13:35:39] <Volcane> not yet, but i have plans
[2008/06/11 13:35:44] <Volcane> just not tie :)
[2008/06/11 13:35:45] <Volcane> time
[2008/06/11 13:35:47] <ashp> :)
[2008/06/11 13:35:51] @ Quit: plathrop: Remote closed the connection
[2008/06/11 13:35:52] <ashp> i know the feeling on that
[2008/06/11 13:36:10] @ plathrop joined channel #puppet
[2008/06/11 13:36:13] @ jlord joined channel #puppet
[2008/06/11 13:36:20] <ashp> I like the ordering and structure of nodes.pp, but I like the flexiblity of something like iclassify
[2008/06/11 13:36:30] <ashp> I found it confusing in iclassify that you just add tags that are class names
[2008/06/11 13:36:33] <ashp> i didn't really like that
[2008/06/11 13:36:34] <martha> what do you put in facts.txt?
[2008/06/11 13:36:45] <ashp> because I still don't get how I'd do this in iclassify:
[2008/06/11 13:36:49] <ashp> filemounts::nfsmount { "/homes":
[2008/06/11 13:36:49] <ashp> location => "140.247.200.97:/vol/nfsmaster/home",
[2008/06/11 13:36:49] <ashp> }
[2008/06/11 13:36:55] <ashp> or even stuff like: defaultclass{$environment:}
[2008/06/11 13:37:04] <ashp> That's how I check if we're in bootstrap/baseclass
[2008/06/11 13:37:19] <Volcane> martha: atm, country the box is in, what isp its at, who to contact for nagios about the host etc, as soon as i use storeconfigs I'll use the nagios bits and i use the country/location stuff to do some logic on resolvers and so forth
[2008/06/11 13:37:43] <Volcane> martha: also environment
[2008/06/11 13:38:35] <Volcane> also sometimes monitoring overrides, like i have a baseline check on all machine to alert if ore than 5 mails in the queue, fine for normal servers, not for mail servers, so i can override those in facts.txt
[2008/06/11 13:39:23] <martha> ah, I just use ldap to set a location and have some logic in site.pp to set a bunch of variables based on the location and domain name of the machine
[2008/06/11 13:39:41] @ Quit: hessml: "Leaving..."
[2008/06/11 13:39:44] <Volcane> martha: yeah, ldap takes away the need
[2008/06/11 13:39:56] @ Quit: plathrop: Remote closed the connection
[2008/06/11 13:40:24] @ plathrop joined channel #puppet
[2008/06/11 13:41:32] <ashp> I did that for a bit, but gradually tried to reduce the logic and move more into ldap
[2008/06/11 13:41:32] <ashp> but it depends on scale I guess :)
[2008/06/11 13:42:04] <ashp> Volcane: when's that book arriving again?
[2008/06/11 13:42:08] @ Quit: plathrop: Remote closed the connection
[2008/06/11 13:42:15] <ashp> I was busy looking online for screencasts and lessons online I can spend all my jobs money on :)
[2008/06/11 13:42:25] <ashp> in the past I always found screencasts to be a good way to get to grips
[2008/06/11 13:42:38] <ashp> when I puzzle over a book myself I have trouble putting it into context, but if I see someone doing something it falls into place
[2008/06/11 13:43:08] <Volcane> ashp: should have been today! ight be at home waiting
[2008/06/11 13:43:35] @ magnachef joined channel #puppet
[2008/06/11 13:44:24] <ashp> I was thinking of watching these metaprogramming ones for $5 each as puppet loves stuff like that :)
[2008/06/11 13:44:27] <ashp> and leaves me baffled
[2008/06/11 13:44:29] @ Quit: glaw: "The world is like a ride in an amusement park and when you choose to go on it you think it’s real because that's how powerf
[2008/06/11 13:44:39] <Volcane> i was home till late though, usually they deliver before i left, but nothing so not hopeful
[2008/06/11 13:44:40] <benp-> Volcane: you know things start to get pretty slow w/ export/collect + nagios
[2008/06/11 13:44:53] <Volcane> benp-: yes, i am not a fan of it as it is now. not using it
[2008/06/11 13:45:08] <benp-> Volcane: ahh.. so you're planning to use it when it gets fast?
[2008/06/11 13:45:13] <benp-> will it get fast?
[2008/06/11 13:45:20] <Volcane> benp-: but cant harm collecting info onto my hosts now already for incase it gets better
[2008/06/11 13:45:33] <Volcane> benp-: donno, i just know as it is now i dont like it, didnt look at whats on the roadmap for it
[2008/06/11 13:46:11] <benp-> Volcane: if i hadn't already done the work i might consider holoway's approach
[2008/06/11 13:46:30] <Volcane> benp-: which is?
[2008/06/11 13:46:33] <Volcane> iclassify thing?
[2008/06/11 13:46:47] <benp-> yeah, it involves iclassify
[2008/06/11 13:46:55] * Volcane 's nagios is still a hand made mess, waiting for the right solution to present itself
[2008/06/11 13:47:27] <Volcane> well not really a mess, i have templates and just a few comand line tools to add hosts and services to hosts etc, but not done via puppet
[2008/06/11 13:47:55] <ashp> I sometimes log into the nagios box
[2008/06/11 13:47:59] <ashp> and then decide I'm just not ready for it yet
[2008/06/11 13:48:14] <ashp> post-baby i'm going to wade in and consider iclassify to handle the entire thing as I have it built and running
[2008/06/11 13:48:15] <Volcane> heh
[2008/06/11 13:48:42] <ashp> Originally I was going to use it as the actual node database but I think I might just deploy iclassify to all clients via puppet, carry on using nodes.pp and use iclassify for other thigns like nagios
[2008/06/11 13:48:56] <ashp> that way I can easily swap out if export/collect improves
[2008/06/11 13:49:30] <Volcane> i had issues exporting my own defines if i remembr correct now
[2008/06/11 13:49:39] <Volcane> and since the native nagios types arent that hot, i had to do my own
[2008/06/11 13:49:53] <Volcane> which i couldnt then reliabally get going with export/collect
[2008/06/11 13:50:42] <benp-> export/collect + native nagios types works well. i'm happy with the syntax and the way i have it organized. but, it takes 1900 seconds to do a run on my nagios box
[2008/06/11 13:50:58] <benp-> about 50 hosts and 200 services monitored
[2008/06/11 13:51:04] <Volcane> wow
[2008/06/11 13:51:10] <Volcane> i have way more services than that
[2008/06/11 13:51:18] @ jvanzyl joined channel #puppet
[2008/06/11 13:51:22] <Volcane> benp-: what gets me about them is that each service description has to be unique
[2008/06/11 13:51:31] <Volcane> benp-: you cant have 'host alive' on every box
[2008/06/11 13:51:33] <ashp> I think there is plans at least to improve the performance on the native store/export stuff
[2008/06/11 13:51:43] <benp-> im doing a bunch of other stuff on that node too, if it was just nagios it might take less time
[2008/06/11 13:51:44] <Volcane> benp-: or 'mailq' on 10 machines, needs to be unique
[2008/06/11 13:51:45] <ashp> Volcane: Did you publish your nagios ones?
[2008/06/11 13:51:51] @ plathrop joined channel #puppet
[2008/06/11 13:51:56] <ashp> I didn't find good documentation on the native types as I don't know nagios well, and I just put it off
[2008/06/11 13:51:59] @ plathrop left channel #puppet ("ERC Version 5.2 (IRC client for Emacs)")
[2008/06/11 13:52:03] <Volcane> ashp: no cos i had to abandon them cos of the export/collect define probles
[2008/06/11 13:52:20] <benp-> Volcane: yeah i didnt like that at first, but i just went with unique service names, eg check_http_$hostname
[2008/06/11 13:52:21] <Volcane> ashp: they dont add value at all, they just take line for a linux a nagios config and puts it ia new syntax
[2008/06/11 13:52:31] <benp-> benp-: just base 'em on the hostname..
[2008/06/11 13:52:33] <ashp> I should look at that god monitoring thing
[2008/06/11 13:53:03] <Volcane> benp-: i dont want my web interface to look like shyte cos of long service names :)
[2008/06/11 13:54:02] @ windowsrefund joined channel #puppet
[2008/06/11 13:54:06] <windowsrefund> hello
[2008/06/11 13:54:35] <windowsrefund> can anyone recommend a good free software tool that the PHBs can use for change management?
[2008/06/11 13:54:47] <benp-> Volcane: doesn't really bug me
[2008/06/11 13:55:24] <Disconnect> fyi i'm a much bigger fan of hobbit than nagios, but thats just me. someday i might implement an auto-hobbit for puppet
[2008/06/11 13:55:29] <benp-> the other thing is that i don't care that it takes 1900 seconds because i don't have to manually edit nagios config files anymore
[2008/06/11 13:55:36] <Volcane> never heard of hobbit even
[2008/06/11 13:55:44] <benp-> me either
[2008/06/11 13:55:49] <Disconnect> its a lookalike to big brother
[2008/06/11 13:55:56] <Disconnect> only expanded a lot since then.
[2008/06/11 13:55:59] <Volcane> lost interest already :P
[2008/06/11 13:56:04] <ashp> hahaha
[2008/06/11 13:56:18] <benp-> nagios sucks but its also the best
[2008/06/11 13:56:23] <Disconnect> ...hahahahahahaha
[2008/06/11 13:56:47] <Volcane> benp-: yeah i guess if i didnt already have my hand editing of nagios well sorted and well autoated with scripts I'd have settled for a ugly webinterface+puppet, so not drastice nough yet that I'd spoil my aesthetics
[2008/06/11 13:56:50] <Disconnect> nagios is the best the same way gentoo is - lots of people use it so they can run around saying they use it.. that doesn't make it the best. that just makes it loud.
[2008/06/11 13:57:13] <Volcane> benp-: hmmm, also lots of missing options in the nagios types, i had patches to fix that up but didnt bother finishing them once i decided to ditch it
[2008/06/11 13:57:46] <benp-> Volcane: <nod> i had to fix a bunch of that stuff
[2008/06/11 13:57:52] <Volcane> man this keyboard is driving me nuts
[2008/06/11 13:57:58] <ashp> well guys
[2008/06/11 13:57:58] <Volcane> 'm' and ' ' issues.
[2008/06/11 13:58:01] <ashp> at least it's not tivoli
[2008/06/11 13:58:05] <ashp> we can all feel better about that
[2008/06/11 13:58:19] * Disconnect once set a BB view up on a 32" display (crt, strangely enough, weighed a TON) where mgmt and user support staff could see it, so they could all tell at a glance if things were bad (and if so, what things).. 50 or so servers, 4500 pieces of cisco gear, all at a glance.
[2008/06/11 13:58:21] * Volcane goes to the datacenter then hoe, c'ya
[2008/06/11 13:58:31] <Volcane> Disconnect: nagvis :)
[2008/06/11 13:58:45] <Volcane> hoMe, no hoe :)
[2008/06/11 13:58:49] <benp-> laters Volcane
[2008/06/11 13:59:23] @ svend joined channel #puppet
[2008/06/11 13:59:35] <benp-> windowsrefund: change management?
[2008/06/11 13:59:51] <benp-> phb is some kind of dilbert reference?
[2008/06/11 14:00:00] <svend> I'm looking at the Puppet Best Practices page. nodes.pp mentions "basenode", but I can't find that defined anywhere on that page.
[2008/06/11 14:01:03] <ashp> svend: A lot of people make templates.pp
[2008/06/11 14:01:11] <benp-> basenode usually means a template node that you put stuff you want applied to all your hosts in
[2008/06/11 14:01:12] <ashp> and in there do class basenode { include class, include class2, include class3, }
[2008/06/11 14:02:07] <Disconnect> Volcane: thats for pretty pictures, which is all well and good (there's an old bb plugin for that too, comes from a world-map-display origin) but if there is anything for nagios that has a nice summary, i haven't seen it.
[2008/06/11 14:02:10] <svend> OK. On the page, templates.pp has "class baseclass", but no basenode, as far as I can tell.
[2008/06/11 14:02:24] @ Quit: flakrat: kornbluth.freenode.net irc.freenode.net
[2008/06/11 14:02:26] @ Quit: nwp: kornbluth.freenode.net irc.freenode.net
[2008/06/11 14:02:27] @ Quit: madduck: kornbluth.freenode.net irc.freenode.net
[2008/06/11 14:02:29] @ Quit: Mandus: kornbluth.freenode.net irc.freenode.net
[2008/06/11 14:02:30] @ Quit: jamesturnbull: kornbluth.freenode.net irc.freenode.net
[2008/06/11 14:02:32] @ Quit: waawaamilkvampyr: kornbluth.freenode.net irc.freenode.net
[2008/06/11 14:02:33] @ Quit: fux: kornbluth.freenode.net irc.freenode.net
[2008/06/11 14:02:35] @ Quit: euclid: kornbluth.freenode.net irc.freenode.net
[2008/06/11 14:02:36] @ Quit: bda: kornbluth.freenode.net irc.freenode.net
[2008/06/11 14:02:37] @ Quit: chesty: kornbluth.freenode.net irc.freenode.net
[2008/06/11 14:02:41] * Disconnect can't find a snapshot of bb2.html but it shows exactly whats wrong, and only whats wrong.. thats important to those of us not cut off by the netsplit :)
[2008/06/11 14:03:04] <benp-> Disconnect: theres tons of crap like that on the unfortunately named "nagiosexchange.org".. a lot of it is crap though
[2008/06/11 14:03:17] <Disconnect> http://www.hswn.dk/hobbit/bb2.html is out of the box
[2008/06/11 14:03:37] <Disconnect> but yah, i went through nagiosexchange. it was very depressing.
[2008/06/11 14:03:39] @ flakrat joined channel #puppet
[2008/06/11 14:03:41] @ nwp joined channel #puppet
[2008/06/11 14:03:43] @ madduck joined channel #puppet
[2008/06/11 14:03:44] @ Mandus joined channel #puppet
[2008/06/11 14:03:47] @ jamesturnbull joined channel #puppet
[2008/06/11 14:03:48] @ waawaamilkvampyr joined channel #puppet
[2008/06/11 14:03:49] @ fux joined channel #puppet
[2008/06/11 14:03:51] @ euclid joined channel #puppet
[2008/06/11 14:03:52] @ bda joined channel #puppet
[2008/06/11 14:03:53] @ chesty joined channel #puppet
[2008/06/11 14:03:54] <benp-> thats really awful looking
[2008/06/11 14:04:07] <benp-> and i have no idea what those icons mean
[2008/06/11 14:04:27] <benp-> nagios can show history, out of the box..
[2008/06/11 14:04:30] <Disconnect> compared to nagios its pretty. (and they turned off the legend but it should be pretty obvious green is good, yellow is warning adn red is bad :) ..)
[2008/06/11 14:05:03] <Disconnect> history is fine. nagios can't show graphs and trending out of the box (hit 'trends' or pick a specific test from the big page, almost all of them have graphing)
[2008/06/11 14:05:09] <benp-> whats with the paypal link? :)
[2008/06/11 14:05:18] @ Quit: euclid: Remote closed the connection
[2008/06/11 14:05:22] @ euclid joined channel #puppet
[2008/06/11 14:05:38] <Disconnect> no idea, thats not my site (my hobbit installs are all firewalled and locked away, found that one n google)
[2008/06/11 14:05:39] <benp-> theres graphs and trend reports in nagios but i never use them
[2008/06/11 14:06:33] @ dysinger joined channel #puppet
[2008/06/11 14:06:43] @ plathrop joined channel #puppet
[2008/06/11 14:06:44] <Disconnect> the trend reports are a joke, and the graphs have to be hacked into the 'info' button (old system here is nagios, i just did all this)
[2008/06/11 14:07:57] @ Quit: plathrop: Remote closed the connection
[2008/06/11 14:08:04] <Disconnect> we were looking for overall bandwidth use, overall hit rate, etc.. had to write a custom script to assemble all that into a separate rrd, then there was no good way to tell nagios "watch this rrd. if value X goes over 10, page someone"
[2008/06/11 14:08:24] @ plathrop joined channel #puppet
[2008/06/11 14:08:29] <ashp> I think everyone who designs monitoring systems
[2008/06/11 14:08:34] <ashp> has designer blindness or something
[2008/06/11 14:08:39] <ashp> as they all, in my experience, look terrible
[2008/06/11 14:08:41] <magnachef> Zenoss is nice
[2008/06/11 14:08:59] <ashp> i wanted to look into zenoss but someone told me it was horrible, and that was offputting
[2008/06/11 14:09:19] <magnachef> heh, probably the best of the free NMS products
[2008/06/11 14:09:26] <Disconnect> but at least i don't have to constantly click stuff to see whats broken with hobbit/bb. (and its simple html/css templates, so there's plenty of opportunity to make it pretty)
[2008/06/11 14:09:45] <magnachef> very quick to get started (and I've used BigBrother, MRTG, Cacti, Netcool, etc, in the past)
[2008/06/11 14:10:29] <ashp> i'll have to look harder
[2008/06/11 14:10:33] <ashp> i wonder how easy/hard it is to puppetize
[2008/06/11 14:10:34] <magnachef> I've been using Zenoss for a couple months now, and I've (along with my management) have been very happy with what it gives you out of the box
[2008/06/11 14:10:40] <ashp> 90% of my monitoring decisions are based on that, right now
[2008/06/11 14:10:48] <plathrop> magnachef: My experience was completely the opposite of yours
[2008/06/11 14:10:49] <magnachef> puppetize how?
[2008/06/11 14:11:02] <magnachef> plath: what version did you use?
[2008/06/11 14:11:09] <ashp> like with nagios, defining services to monitor by node
[2008/06/11 14:11:18] <ashp> and having it autobuild the conf on the zenoss box
[2008/06/11 14:11:25] <plathrop> magnachef: I don't remember, but it was early this year - Januaryish
[2008/06/11 14:12:08] <plathrop> magnachef: It looked good, made grand claims, and when I rolled it out it failed to actually run checks consistently, didn't detect problems, and reported problems that I could verify weren't actually occurring
[2008/06/11 14:12:11] <magnachef> ashp: well, most of it is setup through the interface, and it has such a architecture that you can define it for a class, and when any device is added, it'll take on those characteristics
[2008/06/11 14:12:17] @ josb joined channel #puppet
[2008/06/11 14:12:53] <magnachef> plath: I have seen some false alarm type situations, but I've attributed a good amount of that to SNMP issues, or too low of a timeout
[2008/06/11 14:13:10] <ashp> magnachef: for monitoring I want it so that in each module, say my openldap module
[2008/06/11 14:13:36] <ashp> i just add a monitoring{"openldap"} define and it updates zenoss
[2008/06/11 14:13:39] <ashp> so if i can't do that, it's out :)
[2008/06/11 14:14:05] <magnachef> plath: I'm not saying that it doesn't have it's issues, but I think all NMS products do, unfortunately. Gotta pick the lesser of the evils. What did you end up using?
[2008/06/11 14:14:34] <plathrop> magnachef: Nagios. I always come back to Nagios. It's ugly, it's a pain to configure, but it always works.
[2008/06/11 14:14:44] <benp-> exactly
[2008/06/11 14:14:57] <duritong> zenoss was the bigger pain for me to configure
[2008/06/11 14:14:59] <magnachef> well, you can have it run a REST command, which can add it to the system, so based on the module, it will add it to a different class/system in Zenoss
[2008/06/11 14:15:58] <magnachef> plath: did you try using the nagios plugins with Zenoss?
[2008/06/11 14:17:14] <magnachef> ashp: then based on the class you add it to, it will find specific metrics to monitor
[2008/06/11 14:17:36] <ashp> hmm, ok, guess I need to look more :)
[2008/06/11 14:17:50] <plathrop> magnachef: No. My problem was with the scheduler, not the plugins.
[2008/06/11 14:19:27] <magnachef> ashp: http://www.zenoss.com/community/docs/zenoss-dev-guide/2.1/ch03s01.html
[2008/06/11 14:19:38] @ nwp_ joined channel #puppet
[2008/06/11 14:19:47] @ Quit: plathrop: Remote closed the connection
[2008/06/11 14:21:13] @ plathrop joined channel #puppet
[2008/06/11 14:21:32] @ Quit: flakrat: kornbluth.freenode.net irc.freenode.net
[2008/06/11 14:21:35] @ Quit: madduck: kornbluth.freenode.net irc.freenode.net
[2008/06/11 14:21:36] @ Quit: nwp: kornbluth.freenode.net irc.freenode.net
[2008/06/11 14:21:38] @ Quit: fux: kornbluth.freenode.net irc.freenode.net
[2008/06/11 14:21:39] @ Quit: Mandus: kornbluth.freenode.net irc.freenode.net
[2008/06/11 14:21:41] @ Quit: chesty: kornbluth.freenode.net irc.freenode.net
[2008/06/11 14:21:42] @ Quit: bda: kornbluth.freenode.net irc.freenode.net
[2008/06/11 14:21:44] @ Quit: waawaamilkvampyr: kornbluth.freenode.net irc.freenode.net
[2008/06/11 14:21:44] @ Quit: jamesturnbull: kornbluth.freenode.net irc.freenode.net
[2008/06/11 14:22:29] @ Ol_ joined channel #puppet
[2008/06/11 14:24:32] @ Mandus joined channel #puppet
[2008/06/11 14:25:03] @ flakrat joined channel #puppet
[2008/06/11 14:25:06] @ nwp joined channel #puppet
[2008/06/11 14:25:11] @ madduck joined channel #puppet
[2008/06/11 14:25:16] @ jamesturnbull joined channel #puppet
[2008/06/11 14:25:21] @ waawaamilkvampyr joined channel #puppet
[2008/06/11 14:25:25] @ fux joined channel #puppet
[2008/06/11 14:25:28] @ bda joined channel #puppet
[2008/06/11 14:25:30] @ chesty joined channel #puppet
[2008/06/11 14:25:41] @ Quit: waawaamilkvampyr: Read error: 104 (Connection reset by peer)
[2008/06/11 14:25:58] @ waawaamilk joined channel #puppet
[2008/06/11 14:26:14] @ Quit: plathrop: Remote closed the connection
[2008/06/11 14:26:23] @ plathrop joined channel #puppet
[2008/06/11 14:27:26] <Disconnect> thats one nice thing about puppet.. if zenoss (or hobbit, or anything else) gets puppetized, trying it out should be as simple as installing the recipe :)
[2008/06/11 14:28:23] <magnachef> yeah, assuming all end nodes are setup correctly, etc...but I guess you could ensure that with puppet :-)
[2008/06/11 14:28:46] <magnachef> that is a good idea though
[2008/06/11 14:28:58] @ Quit: nwp: Read error: 110 (Connection timed out)
[2008/06/11 14:30:43] <ashp> the only danger is the more complex the module, the more bits from other modules you call in
[2008/06/11 14:30:57] <Disconnect> ..if only it wasn't done in ruby :) but yeah, the easier it is to do stuff like that the more likely it'll help drive adoption
[2008/06/11 14:30:58] <ashp> if I need apache, I don't define it all in my monitoring/ module but rely on that module being available
[2008/06/11 14:31:05] <ashp> so you start having to distribute bigger and bigger chunks
[2008/06/11 14:31:59] <Disconnect> maybe its time for some user-driven standards. so you can say "requires a webserver with php" and then have variables like webroot and cgibin and such appear like magic for the local environment.
[2008/06/11 14:32:21] <Disconnect> -really- drive adoption that way, in some mixed/evolved environments
[2008/06/11 14:33:18] <Disconnect> cuz "put this in the webroot" and "add this alias" should be generics, doesn't matter if its lighttpd on centos or apache on windows..
[2008/06/11 14:33:45] <ashp> sadly it gets more and more complex to support on the backend
[2008/06/11 14:33:51] <ashp> as you have to start making a lot more native types
[2008/06/11 14:34:14] <holoway> ashp: well, you more have to start targeting the least common denominator
[2008/06/11 14:34:38] <holoway> at least, if you want swtiching to be as easy as "provider => apache" to "provider => nginx"
[2008/06/11 14:34:54] <Disconnect> maybe i'm misunderstanding, but couldn't it be modularized? import http::apache and it goes "oooh, debian" and populates accordingly
[2008/06/11 14:34:59] <ashp> holoway: I mean, ideally we'd be able to do what he said, but there's so much complexity in there
[2008/06/11 14:35:50] <Disconnect> i'm not talking about the admins abusing..er, using that system. but putting it into the core framework and letting other modules use it
[2008/06/11 14:37:11] <lak> http://www.redmonk.com/cote/2008/06/11/puppet-at-google-redmonk-radio-episode-48/
[2008/06/11 14:37:29] <holoway> lak: I saw that in the RSS reader this morning
[2008/06/11 14:37:46] <holoway> very cool
[2008/06/11 14:38:04] <holoway> you can an O'Reilly tweet about it
[2008/06/11 14:38:09] <Disconnect> so the monitoring plugin knows (randomly) add host, remove host, disable host, enable host, add service, remove service, add service to host, remove service from host, add host to group, remove from group.. with that, you can write a nagios config-builder to do the actual actions. so you just set provider => nagios. and apache sets "add service http/80 to monitoring"
[2008/06/11 14:39:17] <holoway> lak: the guys at BitPusher are just finishing a 7500 system deployment for the same thing (mac laptops/desktops) in a school district
[2008/06/11 14:39:21] <Disconnect> so instead of reinventing the wheel to get zenoss support, you just need a core "install base zenoss" function and a series of smaller "modify the config thusly" bits
[2008/06/11 14:39:26] <lak> nice
[2008/06/11 14:39:51] @ AimanA joined channel #puppet
[2008/06/11 14:41:19] <fsweetser> lak: got a minute for a provider development question?
[2008/06/11 14:41:56] <lak> sure
[2008/06/11 14:42:31] <magnachef> disconnect: not a bad idea. They do currently have VM images that you can test with
[2008/06/11 14:43:15] <fsweetser> essentially, my question is, is it possible for a single property accessor method to effectively return values for multiple properties?
[2008/06/11 14:43:59] <lak> probably not in the sense you're thinking
[2008/06/11 14:44:28] <Disconnect> yah but thats hardly the new improved super-dooper automated way, now is it? :) some ruby type would have to create the framework for it (I'd say "classes" but thats already been used) but I wouldn't have any issues contributing a bunch of the configuration scripts (and once some examples exist, i'd do up framework entries for things like java appservers and email)
[2008/06/11 14:44:30] <lak> i mean, you can have a single method that returns multiple values, and then have multipe accessors that retrieve one value each from the method
[2008/06/11 14:45:07] <fsweetser> but then that single method would have to be called once from each accessor?
[2008/06/11 14:45:36] <lak> if you're trying to save effort, cache the values in the method that returns multiple values, and then remove the cache in the flush() method
[2008/06/11 14:45:42] <lak> yeah, so you probably want to use caching
[2008/06/11 14:45:53] <fsweetser> good, that was going to be my next question =)
[2008/06/11 14:46:01] <lak> this is why package providers have a query() method -- collect the info once, cache it, and flush the cache at the end
[2008/06/11 14:46:11] <fsweetser> is there a pre-existing place to cache stuff, or should I just use a class variable?
[2008/06/11 14:46:40] <lak> all other providers, so far, use @property_hash, which is kinda stupid, but it's the convention i've been using
[2008/06/11 14:46:58] <fsweetser> sounds pretty reasonable
[2008/06/11 14:47:49] <fsweetser> this should make the selinux provider stuff I've been doing at least a little more efficient
[2008/06/11 14:47:49] <lak> cool
[2008/06/11 14:47:52] <fsweetser> thanks!
[2008/06/11 14:47:54] <lak> np
[2008/06/11 14:47:55] <lak> bbiab
[2008/06/11 14:49:26] @ Quit: keithlard:
[2008/06/11 14:49:28] @ Quit: gileswork: "ChatZilla 0.9.82.1 [Firefox 2.0.0.14/2008040413]"
[2008/06/11 14:52:20] <robin_> all right -- ldap or iclassify for external node classification?
[2008/06/11 14:52:41] <robin_> I don't know if this will spark a holy war. I'm just looking to get my feet wet with external node classification.
[2008/06/11 14:54:48] <Disconnect> iclassify is awesome
[2008/06/11 14:54:58] <Disconnect> but if you already have stuff in ldap just use that
[2008/06/11 14:55:03] <robin_> I have neither
[2008/06/11 14:55:13] @ Quit: waawaamilk: kornbluth.freenode.net irc.freenode.net
[2008/06/11 14:55:17] @ Quit: flakrat: kornbluth.freenode.net irc.freenode.net
[2008/06/11 14:55:21] @ Quit: madduck: kornbluth.freenode.net irc.freenode.net
[2008/06/11 14:55:24] @ Quit: fux: kornbluth.freenode.net irc.freenode.net
[2008/06/11 14:55:27] @ Quit: chesty: kornbluth.freenode.net irc.freenode.net
[2008/06/11 14:55:29] @ Quit: bda: kornbluth.freenode.net irc.freenode.net
[2008/06/11 14:55:31] @ Quit: jamesturnbull: kornbluth.freenode.net irc.freenode.net
[2008/06/11 14:55:32] <Disconnect> then you can use ldap by hand or iclassify by magic
[2008/06/11 14:55:32] <robin_> I'm looking to move from a giant nodes.pp to some external tool
[2008/06/11 14:55:32] <robin_> iclassify by magic? sounds enticing
[2008/06/11 14:55:58] <robin_> does iclassify require something to run on all the nodes?
[2008/06/11 14:56:10] <robin_> some daemon or something like that?
[2008/06/11 14:56:11] <Disconnect> sorta magic at least. nodes register with a bunch of info (basically everything from 'facter' plus hostname and a UUID) and you can add tags and such to further group them
[2008/06/11 14:56:36] @ waawaamilk joined channel #puppet
[2008/06/11 14:56:37] @ flakrat joined channel #puppet
[2008/06/11 14:56:38] @ madduck joined channel #puppet
[2008/06/11 14:56:39] @ jamesturnbull joined channel #puppet
[2008/06/11 14:56:40] @ fux joined channel #puppet
[2008/06/11 14:56:41] @ bda joined channel #puppet
[2008/06/11 14:56:42] @ chesty joined channel #puppet
[2008/06/11 14:56:43] <robin_> nodes actively register?
[2008/06/11 14:56:49] <Disconnect> no daemon, you can run it as a one-off if you want. (most people seem to use every 10-30 minutes but that is if you are interested in things like free ram or uptime being updated)
[2008/06/11 14:56:51] <Disconnect> ya
[2008/06/11 14:56:59] <Disconnect> rather than you entering them all by hand
[2008/06/11 14:57:14] <Disconnect> (someone really needs to put an iclassify demo online)
[2008/06/11 14:57:16] <robin_> okay.... but some iclassify
[2008/06/11 14:57:34] <robin_> oops... some "iclassify --server=my.host.com" binary has to be run on each host
[2008/06/11 14:57:36] @ Quit: jamesturnbull: Read error: 104 (Connection reset by peer)
[2008/06/11 14:57:42] @ jamesturnbull joined channel #puppet
[2008/06/11 14:57:50] <robin_> I either have to install and run it by hand or else have puppet do so.
[2008/06/11 14:57:51] <holoway> Disconnect: liek http://www.hjksolutions.com:5004/session/new
[2008/06/11 14:58:21] <holoway> robin_: normally, you make it part of your base OS install
[2008/06/11 14:58:24] <Disconnect> if you want magic, yah. although i don't see why the icagent couldn't use ssh to be magical, but you still need facter and - recommended - dmidecode on the local host
[2008/06/11 14:58:29] <Disconnect> yah like that :)
[2008/06/11 14:59:01] <robin_> Disconnect: well, let's just imagine I have 150 hosts that don't have icagent installed yet :)
[2008/06/11 14:59:22] <holoway> robin_: using puppet to do that is a great idea
[2008/06/11 14:59:33] <Disconnect> robin_: ...ok. me too, it takes me about 5-10 minutes per host and i can comfortably run 3 at a time (manual, puppet isn't going yet)
[2008/06/11 14:59:35] <holoway> if you already have a working puppet infrastructure
[2008/06/11 14:59:40] <robin_> sure. that's what I was thinking.
[2008/06/11 14:59:54] @ Quit: svend: Read error: 110 (Connection timed out)
[2008/06/11 14:59:55] <robin_> what language is iclassify written in? ruby?
[2008/06/11 14:59:59] <holoway> yep
[2008/06/11 15:00:07] <holoway> it's a rails app and a small ruby client
[2008/06/11 15:00:13] <Disconnect> (i'm ignoring our antique redhat and gentoo boxes and just concentrating on the antique dapper/edgy ubuntu boxes, but still)
[2008/06/11 15:00:20] <robin_> oh. so I need a db backend
[2008/06/11 15:00:23] <robin_> that ... makes sense
[2008/06/11 15:00:27] <robin_> since it's storing data
[2008/06/11 15:00:56] <robin_> kewl.... let me take a look.
[2008/06/11 15:01:23] <Disconnect> holoway: poke #iclassify
[2008/06/11 15:02:01] <Disconnect> mostly the note about dave's repo
[2008/06/11 15:02:31] * Disconnect is off, doc appt, bbl
[2008/06/11 15:03:02] @ Quit: flakrat: kornbluth.freenode.net irc.freenode.net
[2008/06/11 15:03:04] @ Quit: madduck: kornbluth.freenode.net irc.freenode.net
[2008/06/11 15:03:05] @ Quit: fux: kornbluth.freenode.net irc.freenode.net
[2008/06/11 15:03:07] @ Quit: chesty: kornbluth.freenode.net irc.freenode.net
[2008/06/11 15:03:09] @ Quit: bda: kornbluth.freenode.net irc.freenode.net
[2008/06/11 15:03:11] @ Quit: waawaamilk: kornbluth.freenode.net irc.freenode.net
[2008/06/11 15:03:20] @ Quit: Zothar_Work: "ChatZilla 0.9.82.1 [Firefox 2.0.0.14/2008040414]"
[2008/06/11 15:06:10] @ waawaamilk joined channel #puppet
[2008/06/11 15:06:11] @ flakrat joined channel #puppet
[2008/06/11 15:06:12] @ madduck joined channel #puppet
[2008/06/11 15:06:13] @ fux joined channel #puppet
[2008/06/11 15:06:14] @ bda joined channel #puppet
[2008/06/11 15:06:15] @ chesty joined channel #puppet
[2008/06/11 15:08:20] <ashp> holoway: Did you ever document your nagios/iclassify stuff fully anywhere?
[2008/06/11 15:09:58] <jcastro> lak: this podcast is sweet
[2008/06/11 15:10:00] @ pleemans joined channel #puppet
[2008/06/11 15:10:10] <lak> cool
[2008/06/11 15:10:14] <lak> i saw you shared it
[2008/06/11 15:10:24] <lak> need to make sure shuttleworth hears it :)
[2008/06/11 15:10:38] <jcastro> :D
[2008/06/11 15:14:10] @ waawaami1k joined channel #puppet
[2008/06/11 15:14:42] <holoway> ashp: no -- we should put it on the iclassify wiki and link to it from the puppet wiki
[2008/06/11 15:19:55] <ashp> it came up in conversation earlier, iclassify for nagios, so I wondered if it was up anywhere :)
[2008/06/11 15:20:11] <holoway> I'll put it up today
[2008/06/11 15:20:11] <robin_> yeah... we want this too
[2008/06/11 15:20:13] <holoway> thanks for the prob
[2008/06/11 15:20:15] <holoway> er prod
[2008/06/11 15:20:20] @ holoway is now known as holaway
[2008/06/11 15:20:58] <robin_> holaway: you have an iclassify nagios setup?
[2008/06/11 15:24:00] @ Quit: waawaamilk: Read error: 111 (Connection refused)
[2008/06/11 15:25:44] @ sazma joined channel #puppet
[2008/06/11 15:33:30] @ brscott joined channel #puppet
[2008/06/11 15:33:46] @ brscott left channel #puppet ()
[2008/06/11 15:33:56] @ andrewcshafer left channel #puppet ()
[2008/06/11 15:36:29] @ keithlard joined channel #puppet
[2008/06/11 15:36:37] @ Quit: keithlard: Remote closed the connection
[2008/06/11 15:39:52] @ spheromak joined channel #puppet
[2008/06/11 15:42:33] @ Quit: lak:
[2008/06/11 15:44:50] <sazma> hi guys, anyone using 'logoutput' for exec successfully?
[2008/06/11 15:45:23] @ shadoi joined channel #puppet
[2008/06/11 15:48:51] @ Quit: dysinger: Read error: 110 (Connection timed out)
[2008/06/11 15:49:03] @ Quit: jshar1: Read error: 104 (Connection reset by peer)
[2008/06/11 15:50:39] <sazma> for me it does nothing regardless of logoutput => true, logoutput => on_failure, logoutput => false
[2008/06/11 15:52:27] @ waawaami1k is now known as waawaamilk
[2008/06/11 15:52:52] <martha> logoutput => on_failure works for me
[2008/06/11 15:52:56] @ rcoup joined channel #puppet
[2008/06/11 15:55:21] <plathrop> sazma: Are you looking in the right place?
[2008/06/11 15:56:56] <sazma> I'm running puppetd from the command line and checking the logs...?
[2008/06/11 15:57:24] <sazma> where should I look?
[2008/06/11 15:58:02] @ brscott joined channel #puppet
[2008/06/11 15:59:02] <Volcane> ashp: book came, its a big one, looks good, will prolly only get a start on it next week though
[2008/06/11 15:59:12] @ jshare joined channel #puppet
[2008/06/11 16:04:02] @ Quit: cote:
[2008/06/11 16:04:25] @ Quit: waawaamilk: kornbluth.freenode.net irc.freenode.net
[2008/06/11 16:04:26] @ Quit: flakrat: kornbluth.freenode.net irc.freenode.net
[2008/06/11 16:04:28] @ Quit: madduck: kornbluth.freenode.net irc.freenode.net
[2008/06/11 16:04:30] @ Quit: fux: kornbluth.freenode.net irc.freenode.net
[2008/06/11 16:04:31] @ Quit: chesty: kornbluth.freenode.net irc.freenode.net
[2008/06/11 16:04:33] @ Quit: bda: kornbluth.freenode.net irc.freenode.net
[2008/06/11 16:04:35] @ Quit: tim\|imac: kornbluth.freenode.net irc.freenode.net
[2008/06/11 16:04:37] @ Quit: plathrop: kornbluth.freenode.net irc.freenode.net
[2008/06/11 16:04:38] @ Quit: Ol_: kornbluth.freenode.net irc.freenode.net
[2008/06/11 16:04:40] @ Quit: ricky: kornbluth.freenode.net irc.freenode.net
[2008/06/11 16:04:41] @ Quit: Hunnur: kornbluth.freenode.net irc.freenode.net
[2008/06/11 16:04:43] @ Quit: Disconnect: kornbluth.freenode.net irc.freenode.net
[2008/06/11 16:06:33] @ plathrop joined channel #puppet
[2008/06/11 16:06:34] @ Ol_ joined channel #puppet
[2008/06/11 16:06:35] @ ricky joined channel #puppet
[2008/06/11 16:06:36] @ tim\|imac joined channel #puppet
[2008/06/11 16:06:37] @ Disconnect joined channel #puppet
[2008/06/11 16:06:38] @ Hunnur joined channel #puppet
[2008/06/11 16:07:15] @ svend joined channel #puppet
[2008/06/11 16:08:42] <ashp> Volcane: :)
[2008/06/11 16:08:47] <ashp> volcane: I wish I had a better bookstore locally
[2008/06/11 16:08:54] <ashp> Being right near MIT I should look harder, I guess
[2008/06/11 16:08:59] <ashp> because if anywhere sells computer books..
[2008/06/11 16:10:05] @ waawaamilk joined channel #puppet
[2008/06/11 16:10:08] @ flakrat joined channel #puppet
[2008/06/11 16:10:10] @ madduck joined channel #puppet
[2008/06/11 16:10:13] @ fux joined channel #puppet
[2008/06/11 16:10:16] @ bda joined channel #puppet
[2008/06/11 16:10:20] @ chesty joined channel #puppet
[2008/06/11 16:10:22] @ brscott left channel #puppet ()
[2008/06/11 16:10:34] <martha> asph: quantum books used to be the place near mit to get books, but they moved out
[2008/06/11 16:10:54] <fsweetser> someone looked at 'em too closely?
[2008/06/11 16:11:42] @ muerr joined channel #puppet
[2008/06/11 16:11:59] <muerr> Anyone using the tag function within their manifests?
[2008/06/11 16:12:16] <muerr> Unless there's an example on the wiki that i'm missing.
[2008/06/11 16:16:24] @ Quit: pleemans: "Ex-Chat"
[2008/06/11 16:17:22] @ Quit: svend: "leaving"
[2008/06/11 16:17:47] <Volcane> ashp: amazon is close :P
[2008/06/11 16:17:57] <Volcane> fsweetser: lol
[2008/06/11 16:18:20] <plathrop> So, I know this isn't #ldap but I know you guys are smart and some of you are using it...
[2008/06/11 16:18:28] <holaway> shoot
[2008/06/11 16:18:31] <plathrop> What do people use to manage their users in LDAP?
[2008/06/11 16:18:42] <holaway> I know lots of people who are using php LDAP admin
[2008/06/11 16:18:59] <holaway> I have a command line based ldap-adduser
[2008/06/11 16:19:01] <plathrop> holaway: Yeah, know of anything command-line?
[2008/06/11 16:19:03] <plathrop> lol
[2008/06/11 16:19:07] <holaway> want a copy?
[2008/06/11 16:19:19] <plathrop> holaway: Sure. At the least I can scavenge ideas :-)
[2008/06/11 16:19:21] <holaway> I got all kinds of secret shit laying around
[2008/06/11 16:19:36] <muerr> holaway: i'm going to pick your pockets.
[2008/06/11 16:19:40] <muerr> find your stash.
[2008/06/11 16:19:41] @ holaway is now known as holoway
[2008/06/11 16:19:46] <ashp> I ran puppet on my host and it didn't change anything and i immediately assumed it was broken
[2008/06/11 16:19:47] <holoway> plathrop: lemme push it to github
[2008/06/11 16:19:48] <holoway> one sec
[2008/06/11 16:19:49] <ashp> but for a change everything works..
[2008/06/11 16:20:10] <ashp> maybe if I never do or change anything everything will work forever
[2008/06/11 16:20:33] <plathrop> ashp: 'fraid not. There's this annoying thing called entropy...
[2008/06/11 16:20:44] @ rottle joined channel #puppet
[2008/06/11 16:20:49] <martha> bitrot
[2008/06/11 16:21:02] @ lak joined channel #puppet
[2008/06/11 16:21:35] <ashp> Oh god, what the hell:
[2008/06/11 16:21:36] <ashp> -sh-3.2# ls -latr
[2008/06/11 16:21:36] <ashp> total 16
[2008/06/11 16:21:36] <ashp> ?--------- ? ? ? ? ? www
[2008/06/11 16:21:45] <muerr> nice
[2008/06/11 16:21:47] <plathrop> Hey lak. (Just saying hey. Don't need anything)
[2008/06/11 16:21:49] <Volcane> hehe
[2008/06/11 16:22:07] <ashp> hey lak :)
[2008/06/11 16:22:30] <lak> heh
[2008/06/11 16:22:43] <robin_> ashp: chgrp ? ?
[2008/06/11 16:22:56] <ashp> robin: some weird.. nfs thing
[2008/06/11 16:23:07] <robin_> no I mean it belongs to the wrong group
[2008/06/11 16:25:01] <sazma> we netsplit, so if anyone told me where to look for Exec logs, I missed it :)
[2008/06/11 16:25:04] <muerr> to use the tag function, do i just put 'tag("tag1", "tag2", "etc")' at the top of the define or class i want to tag?
[2008/06/11 16:27:55] @ hessml joined channel #puppet
[2008/06/11 16:28:28] <rottle> i am trying to add a function to strip slashes from a string, and i created a module 'common', and placed it under the module plugin path as recommended. but when i started puppetmastetrd, it complained about not finding it. does anyone know what can be wrong?
[2008/06/11 16:28:30] @ flakrat_ joined channel #puppet
[2008/06/11 16:30:08] <benp-> rottle: did you import it?
[2008/06/11 16:30:41] <rottle> benp-: i imported the module (named 'common')
[2008/06/11 16:30:44] <rottle> from site.pp
[2008/06/11 16:30:53] <rottle> well modules.pp from site.pp and common from modules.pp
[2008/06/11 16:30:59] <rottle> i made sure it was on top also
[2008/06/11 16:33:49] @ Quit: jlord:
[2008/06/11 16:34:21] @ Quit: hessml: "Leaving..."
[2008/06/11 16:36:38] <holoway> if anyone else cares, http://is.gd/vno is the command line LDAP adduser
[2008/06/11 16:38:12] @ hessml joined channel #puppet
[2008/06/11 16:43:17] <docta_v> i'm trying to create a subclass of my web server class that does not run the memcached service
[2008/06/11 16:43:31] <docta_v> so i created a memcached-disabled subclass of the memcached class
[2008/06/11 16:43:41] <docta_v> and included memcached-disabled in my web server subclass
[2008/06/11 16:43:55] <docta_v> but i think it is still inheriting the memcached class
[2008/06/11 16:44:01] <Ned> is there some really simple way of creating a fact for a machine (like just drop a file in a directory or something?)
[2008/06/11 16:44:35] @ Quit: kambiz: "Leaving"
[2008/06/11 16:46:47] <docta_v> trying to find the easiest way to override the service definition
[2008/06/11 16:48:07] <ashp> can't you just do Service{"service": whatever you want different}
[2008/06/11 16:49:05] * Volcane is trying to figure out some module autoloading issues...inside xen::blah I am tyring to use a define in apache::vhost its not autoloading i have to 'import apache/vhost.pp' first, thats not right is it?
[2008/06/11 16:49:57] <docta_v> hmm doesn't seem to work
[2008/06/11 16:51:26] <plathrop> Volcane: There's a bug
[2008/06/11 16:51:36] <plathrop> Volcane: For now, you do have to load defines
[2008/06/11 16:51:50] <plathrop> docta_v: If I were you I'd do this the other way around.
[2008/06/11 16:51:51] <muerr> docta_v: iirc, the syntax would be, Service["servicename"] { param1=>difval }
[2008/06/11 16:52:10] <plathrop> docta_v: Define the webserver class, then define one that adds in memcache.
[2008/06/11 16:52:15] <Volcane> plathrop: ah, thanks.
[2008/06/11 16:52:44] <Volcane> i had the define in init.pp as well, no joy
[2008/06/11 16:52:46] <docta_v> plathrop: so i have a memcached class
[2008/06/11 16:52:55] <docta_v> that class is included in the web server class
[2008/06/11 16:52:58] <docta_v> is that what you mean?
[2008/06/11 16:53:38] <docta_v> i want all web servers to run memcached except for a small subclass
[2008/06/11 16:53:49] <plathrop> docta_v: What I mean is, have a webserver class that doesn't include memcache. Then maybe a memcache_webserver that does. Better yet, just keep them separate and have the nodes include one or both as needed.
[2008/06/11 16:54:47] <ashp> volcane: That's the trouble I'm having!
[2008/06/11 16:54:52] <docta_v> ok that makes sense
[2008/06/11 16:54:58] <ashp> I'm glad it's a bug and I'm not nuts
[2008/06/11 16:55:08] @ Quit: hessml: "Leaving..."
[2008/06/11 16:56:24] @ shenson is now known as shenson_not_here
[2008/06/11 16:59:55] @ Quit: sazma: "Ex-Chat"
[2008/06/11 17:03:44] @ Quit: lak:
[2008/06/11 17:04:45] @ shenson_not_here is now known as shenson
[2008/06/11 17:05:08] @ shenson is now known as shenson_not_here
[2008/06/11 17:07:48] <e^ipi> ashp, could be both?
[2008/06/11 17:10:42] @ TheBOFH joined channel #puppet
[2008/06/11 17:12:52] <fujin> ugh, I didn't mean to reject #1353
[2008/06/11 17:12:54] <gepetto_> fujin: ugh: #1353 is http://reductivelabs.com/redmine/issues/show/1353
[2008/06/11 17:12:57] <fujin> that's annoying
[2008/06/11 17:14:10] @ Quit: AimanA: Read error: 113 (No route to host)
[2008/06/11 17:14:40] @ AimanA joined channel #puppet
[2008/06/11 17:14:47] <fujin> jamesturnbull: sorry :(
[2008/06/11 17:23:13] <plathrop> Are puppet variables like ssldir available to your manifests?
[2008/06/11 17:25:32] @ Quit: f3ew: Read error: 104 (Connection reset by peer)
[2008/06/11 17:25:47] <fujin> good question - don't think so though
[2008/06/11 17:26:03] @ f3ew joined channel #puppet
[2008/06/11 17:26:05] <fujin> they're not really variables inside the language; they turn into Puppet[:ssldir] etc
[2008/06/11 17:26:15] <plathrop> Crap.
[2008/06/11 17:26:44] <fujin> ;(
[2008/06/11 17:26:54] @ Quit: TheBOFH: Read error: 113 (No route to host)
[2008/06/11 17:33:05] @ hessml joined channel #puppet
[2008/06/11 17:33:11] <jamesturnbull> fujin: that's okay - all sorted - my approach is is someone wants to submit a patch then fine - we just to make sure we make clear wht the patch needs to cater for
[2008/06/11 17:37:12] <fujin> yeah, I must have hit reject by accident or somethign stupid like that
[2008/06/11 17:37:24] <fujin> just meant to make it painfully clear that the provider is doing exactly what it is currently designed to do
[2008/06/11 17:39:06] @ andrewcshafer joined channel #puppet
[2008/06/11 17:40:12] @ andrewcshafer left channel #puppet ()
[2008/06/11 17:40:32] @ andrewcshafer joined channel #puppet
[2008/06/11 17:45:41] <jamesturnbull> fujin: updated the ticket title and the like
[2008/06/11 17:47:15] <plathrop> Can anyone think of a reliable way to use Puppet's ca.pem as the source for other certificates?
[2008/06/11 17:47:32] <jamesturnbull> define reliable
[2008/06/11 17:47:32] <plathrop> I can't seem to find a consistent way of locating ca.pem
[2008/06/11 17:47:59] <jamesturnbull> shouldn't it always be in the same place?
[2008/06/11 17:48:02] * jamesturnbull looks confused
[2008/06/11 17:48:05] <plathrop> jamesturnbull: Well, optimally $ssldir would be something I could get at from within a manifest
[2008/06/11 17:48:13] <jamesturnbull> plathrop: ah
[2008/06/11 17:48:22] <jamesturnbull> plathrop: no it isn't but there is a ticket for that functionality somewhere
[2008/06/11 17:48:34] <plathrop> jamesturnbull: In the meantime, any suggestions?
[2008/06/11 17:49:10] <plathrop> I thought "I know, I'll use generate!" but I can't seem to get it to work.
[2008/06/11 17:49:12] <jamesturnbull> plathrop: fact or function that returns $ssldir
[2008/06/11 17:51:24] @ jvanzyl_ joined channel #puppet
[2008/06/11 17:52:14] <plathrop> This is frickin' weird.
[2008/06/11 17:52:27] <plathrop> Jun 11 14:50:35 admin puppetd[30583]: (//Node[admin.digg.internal]/openldap::common/File[/etc/ldap/ssl/ca.crt.pem]/ensure) No specified sources exist
[2008/06/11 17:52:27] <plathrop>
[2008/06/11 17:52:36] <plathrop> But! source is set to:
[2008/06/11 17:52:47] <plathrop> source => "${ssldir}/certs/ca.pem";
[2008/06/11 17:52:47] <plathrop>
[2008/06/11 17:52:47] @ lak joined channel #puppet
[2008/06/11 17:53:08] <plathrop> And warning($ssldir) says: Jun 11 14:50:35 admin puppetmasterd[29005]: (Scope(Class[openldap::common])) /var/lib/puppet/ssl
[2008/06/11 17:53:08] <plathrop>
[2008/06/11 17:53:47] <plathrop> And sure enough, that file exists!
[2008/06/11 17:53:51] <plathrop> confused
[2008/06/11 17:55:57] <plathrop> sigh I'll hardcode it.
[2008/06/11 17:56:08] * plathrop doesn't have the patience to debug this today
[2008/06/11 17:56:47] <jamesturnbull> lak: there was a ticket for supporting using configurations options in manifests wasn't there
[2008/06/11 17:56:50] <jamesturnbull> ?
[2008/06/11 17:57:39] <jamesturnbull> lak: or perhaps we discussed that iwth someone on channel and they never lodged the ticket - as I can't find it
[2008/06/11 17:59:11] <lak> i thought a ticket was lodged, but i don't remember
[2008/06/11 17:59:52] @ Quit: jvanzyl_:
[2008/06/11 18:00:16] <robin_> does anyone have experience with iclassify?
[2008/06/11 18:00:48] <holoway> robin_: sure, I wrote it
[2008/06/11 18:00:49] <holoway> whats up
[2008/06/11 18:01:01] <robin_> holoway: fair enough.
[2008/06/11 18:01:20] <robin_> I'm a sysadmin with lots of apache experience but little to no ruby on rail experience
[2008/06/11 18:01:31] <robin_> so the fact that it's so abstracted is difficult for me
[2008/06/11 18:01:56] <robin_> I followed the howto for a debian box, and I get "We're sorry, but something went wrong." when I try to hit the iclassify server
[2008/06/11 18:02:01] <Disconnect> robin_: welcome to the club :)
[2008/06/11 18:02:10] <Disconnect> i can prolly give some help. does :5000 work?
[2008/06/11 18:02:15] <robin_> let's see
[2008/06/11 18:02:31] <Disconnect> and fyi if you followed the runit howto, my recommendation is to throw that away and burn any boxes that might have touched it. fire is the cleanser.
[2008/06/11 18:03:07] <holoway&g