Monday, 2009-12-21

[2009/12/21 00:22:42] @ Log started by gepetto_
[2009/12/21 00:22:42] @ Quit: yan_:
[2009/12/21 00:28:51] @ Quit: jellis-real_: Client Quit
[2009/12/21 00:29:04] @ ghg joined channel #puppet
[2009/12/21 00:37:12] @ Quit: cshields: Read error: 110 (Connection timed out)
[2009/12/21 00:40:42] @ bug joined channel #puppet
[2009/12/21 00:50:31] @ Quit: gaveen: Remote closed the connection
[2009/12/21 00:56:26] @ Arvind joined channel #puppet
[2009/12/21 00:56:30] @ Arvind left channel #puppet ()
[2009/12/21 01:08:53] @ Quit: Djelibeybi: "Leaving"
[2009/12/21 01:25:10] @ Quit: Bass10: Connection timed out
[2009/12/21 01:42:27] @ suchu joined channel #puppet
[2009/12/21 01:43:23] @ Quit: hamish_: "leaving"
[2009/12/21 01:44:21] @ hamish joined channel #puppet
[2009/12/21 02:06:47] @ Quit: jusfreeman: Remote closed the connection
[2009/12/21 02:15:20] @ Quit: nmi: "Leaving"
[2009/12/21 02:30:15] @ Ramonster joined channel #puppet
[2009/12/21 02:40:03] @ Djelibeybi joined channel #puppet
[2009/12/21 02:43:48] @ Quit: angrox: "leaving"
[2009/12/21 02:44:11] @ francois joined channel #puppet
[2009/12/21 02:46:19] @ Djeli joined channel #puppet
[2009/12/21 02:46:24] @ PsychoSid joined channel #puppet
[2009/12/21 02:47:05] @ Quit: giskard_: Remote closed the connection
[2009/12/21 02:58:34] @ Quit: Djelibeybi: Nick collision from services.
[2009/12/21 02:58:37] @ Djeli is now known as Djelibeybi
[2009/12/21 03:05:35] @ Quit: Djelibeybi: "Leaving"
[2009/12/21 03:06:24] @ Quit: suchu: Read error: 110 (Connection timed out)
[2009/12/21 03:15:51] @ giskard joined channel #puppet
[2009/12/21 03:28:35] @ pinoyskull joined channel #puppet
[2009/12/21 03:32:19] @ Welsh_Dwarf joined channel #puppet
[2009/12/21 03:42:42] @ suchu joined channel #puppet
[2009/12/21 03:48:57] @ jab_doa joined channel #puppet
[2009/12/21 03:49:04] @ Quit: ghg:
[2009/12/21 03:56:41] @ danielbln joined channel #puppet
[2009/12/21 04:07:20] @ raphink joined channel #puppet
[2009/12/21 04:12:08] @ poison joined channel #puppet
[2009/12/21 04:13:51] @ erlingre joined channel #puppet
[2009/12/21 04:19:11] @ Robbie_ joined channel #puppet
[2009/12/21 04:22:16] @ omry_\|work is now known as omry\|work
[2009/12/21 04:28:07] <duritong> jamesturnbull: what is the ETA for 0.25.2rc1?
[2009/12/21 04:28:50] @ verwilst joined channel #puppet
[2009/12/21 04:32:02] @ yarihm joined channel #puppet
[2009/12/21 04:32:18] <jamesturnbull> duritong: should know tomorrow
[2009/12/21 04:32:37] <jamesturnbull> duritong: team doing soem triage tomorrow to select final tickets to be done
[2009/12/21 04:32:46] <jamesturnbull> duritong: LOT of fixes - over 100 tickets
[2009/12/21 04:33:01] <duritong> jamesturnbull: simply because I tested yesterday 0.25.x HEAD and it's not useable currently
[2009/12/21 04:33:19] <jamesturnbull> duritong: how so?
[2009/12/21 04:35:24] <duritong> #2967
[2009/12/21 04:35:24] <gepetto_> duritong: #2967 is http://projects.reductivelabs.com/issues/show/2967 "Puppet - Bug #2967: clients are unable to retrieve file metadata - ReductiveLabs.com"
[2009/12/21 04:35:33] <duritong> oh but I see somebody have looked at it :)
[2009/12/21 04:36:17] <duritong> jamesturnbull: so I think it should be fine
[2009/12/21 04:36:28] <duritong> I just missed that somebody actually looked at it
[2009/12/21 04:37:25] <duritong> as it's pretty a showstopper, I didn't want that it's missed before any rc is out
[2009/12/21 04:53:01] @ Quit: pinoyskull: "Leaving"
[2009/12/21 05:00:37] @ alban3 is now known as alban2
[2009/12/21 05:04:15] @ Robbie___ joined channel #puppet
[2009/12/21 05:07:13] @ Djelibeybi joined channel #puppet
[2009/12/21 05:11:13] <duritong> jamesturnbull: about over 100 tickets: yeah it looks like for 0.25.2 an awesome job have been done! I'm really happy about current development!
[2009/12/21 05:11:38] @ tripoux joined channel #puppet
[2009/12/21 05:16:58] <masterzen> duritong: it helps to have in-house developpers :-)
[2009/12/21 05:17:42] <nico> masterzen: \o/
[2009/12/21 05:17:48] <masterzen> nico: yooo
[2009/12/21 05:17:52] <jamesturnbull> duritong: yeah
[2009/12/21 05:17:59] * nico just bought smallworld for christmas
[2009/12/21 05:18:04] <jamesturnbull> masterzen: yeah and a shit hot release manager - someone should buy that guy a drink
[2009/12/21 05:18:21] <masterzen> jamesturnbull: if you come to Paris, I sure will do :-)
[2009/12/21 05:18:30] <jamesturnbull> masterzen: expensive drink
[2009/12/21 05:18:47] <nico> all drinks are expensive in Paris
[2009/12/21 05:19:12] <masterzen> jamesturnbull: ok, let's rephrase: if we meet again for an upcoming event, I sure will pay you some drinks !
[2009/12/21 05:19:25] <masterzen> nico: everything is expensive in Paris :-)
[2009/12/21 05:19:33] <nico> masterzen: indeed
[2009/12/21 05:19:40] @ Quit: Robbie_: Read error: 113 (No route to host)
[2009/12/21 05:19:50] <duritong> jamesturnbull: I'll buy you the second one and maybe even the third one ;)
[2009/12/21 05:20:04] <masterzen> BTW, is there any news from an EU puppetcamp?
[2009/12/21 05:21:06] <duritong> any possible dates would be cool, so planning 2010 isn't missing that event :)
[2009/12/21 05:21:37] <monachus> from kraków i second that request
[2009/12/21 05:22:25] @ Quit: tripoux_: Read error: 110 (Connection timed out)
[2009/12/21 05:22:35] @ Quit: Whoop: Read error: 60 (Operation timed out)
[2009/12/21 05:23:40] <Volcane> masterzen: not much only that it's probably going to be in AMS
[2009/12/21 05:24:04] <duritong> oh and just to note: there will some puppeteers attend @ 26C3 and we will try to organize some official gathering. But we'll announce it to the list
[2009/12/21 05:24:10] <Djelibeybi> jamesturnbull: I'd buy you a drink but you keep teetotalling when you're at home.
[2009/12/21 05:25:56] <masterzen> Volcane: tx, I was already aware of this.
[2009/12/21 05:27:10] @ rickbradley is now known as rickbradley\|away
[2009/12/21 05:27:22] @ marcoecc joined channel #puppet
[2009/12/21 05:27:28] <Volcane> heh
[2009/12/21 05:27:40] @ Quit: Djelibeybi: "Leaving"
[2009/12/21 05:30:02] <Volcane> wtf its like xmas and everyone decides its best time to start spamming
[2009/12/21 05:30:10] <Volcane> twitter, email, sms and web log spam
[2009/12/21 05:30:39] <duritong> Volcane: they have time
[2009/12/21 05:32:21] @ Whoop joined channel #puppet
[2009/12/21 05:33:03] @ Quit: nexx: "Lost terminal"
[2009/12/21 05:36:28] @ MattyM joined channel #puppet
[2009/12/21 05:36:51] <Volcane> http://pastie.org/751605 grim
[2009/12/21 05:37:20] <Volcane> need to write something to parse that into sensible data structure
[2009/12/21 05:39:49] @ gebi joined channel #puppet
[2009/12/21 05:41:47] @ artista_frustrad joined channel #puppet
[2009/12/21 05:48:10] @ Quit: giskard: Remote closed the connection
[2009/12/21 05:48:49] @ giskard joined channel #puppet
[2009/12/21 05:50:14] @ Quit: artista_frustrad: "Leaving"
[2009/12/21 05:51:13] <Volcane> everything is {"datatype"=>value, "string"=> description} thats ok, but look at strings
[2009/12/21 05:51:23] @ Robbie_ joined channel #puppet
[2009/12/21 05:51:36] <Volcane> wtf is up with that? {"string"=>["destinationName", "queue://statresults"]} should surely be {"string"=>"queue://....", "string"=>"destinationName"}
[2009/12/21 05:53:32] <Volcane> still, at least its not xstream based xml junk
[2009/12/21 05:53:56] @ chandrakanth joined channel #puppet
[2009/12/21 05:54:57] <chandrakanth> HI all, i have a question regarding , where to specify the module in the server and how would the agent know that there is a module existing in the server
[2009/12/21 05:57:22] <Volcane> if you set it up like in wiki:ModuleOrganisation then you can just do "include modulename" in your manifest
[2009/12/21 05:57:22] <gepetto_> Volcane: wiki:ModuleOrganisation is http://reductivelabs.com/trac/puppet/wiki/ModuleOrganisation
[2009/12/21 05:57:26] @ Quit: poison: Read error: 104 (Connection reset by peer)
[2009/12/21 05:58:20] <chandrakanth> but there is some configration file where we need to let the Agent know about the module path right
[2009/12/21 05:58:42] <Volcane> its on the master only
[2009/12/21 05:58:51] @ poison joined channel #puppet
[2009/12/21 05:58:57] <danielbln> puppet.conf on the master
[2009/12/21 06:00:20] <Volcane> yes, the wiki page explains how, though the wiki seems broken
[2009/12/21 06:01:36] <chandrakanth> oh let me check this
[2009/12/21 06:02:05] <danielbln> once I define a virtual resource, is there a way to access a parameter of said resource to use it as a variable in another place? for instance, I have virtual user called @user { "foo": uid => 123 }, I would like to access the virtual resource's uid and use it as a variable, i.e. file { "bar": content => [UID of virtual resource User "foo" here] }
[2009/12/21 06:02:26] <danielbln> hope that's somewhat clear
[2009/12/21 06:03:08] <Volcane> nope
[2009/12/21 06:03:16] <Volcane> cant access resource properties as variables
[2009/12/21 06:04:16] <danielbln> too bad, thanks though
[2009/12/21 06:06:27] @ Quit: Robbie___: Read error: 110 (Connection timed out)
[2009/12/21 06:17:10] @ Quit: giskard: Read error: 104 (Connection reset by peer)
[2009/12/21 06:17:24] @ giskard joined channel #puppet
[2009/12/21 06:21:48] <masterzen> Volcane: danielbln: this will maybe change in Rowlf :-)
[2009/12/21 06:22:38] <danielbln> the more data I can centralize into virtual resources files, the happier I'll be, so great news here :)
[2009/12/21 06:24:29] @ Quit: crdant: "Leaving."
[2009/12/21 06:36:03] @ Quit: scylla: "Connection timed out"
[2009/12/21 06:42:12] @ Quit: sebas891: "Leaving."
[2009/12/21 06:48:52] @ Quit: Cyis: "Leaving"
[2009/12/21 07:04:16] @ rickbradley\|away is now known as rickbradley
[2009/12/21 07:07:33] <Volcane> ah parser for shitty json wasnt too hard
[2009/12/21 07:20:49] @ Quit: giskard: Remote closed the connection
[2009/12/21 07:23:44] @ Arvind joined channel #puppet
[2009/12/21 07:23:51] <Arvind> Hi
[2009/12/21 07:24:07] <Arvind> Does puppet packages supported on ESX 3 and ESX 4 platforms ?
[2009/12/21 07:25:30] <Arvind> I have puppet pacakges including the dependencies working for RHEL4 and 5 32/64bit as of now
[2009/12/21 07:25:52] @ PsychoSid1 joined channel #puppet
[2009/12/21 07:26:47] <Arvind> i want to add the puppet support on ESX 3/4 platform . does anyone have idea of what puppet packages would work on RHEL4 or 5 platforms
[2009/12/21 07:28:41] <jamesturnbull> Volcane: wiki is broken?
[2009/12/21 07:28:59] <jamesturnbull> Volcane: looks okay to me
[2009/12/21 07:29:24] @ giskard joined channel #puppet
[2009/12/21 07:29:51] @ Quit: giskard: Remote closed the connection
[2009/12/21 07:33:25] @ crdant joined channel #puppet
[2009/12/21 07:38:08] @ Quit: crdant: "Leaving."
[2009/12/21 07:42:10] @ cynicismic joined channel #puppet
[2009/12/21 07:43:00] @ Quit: PsychoSid: Read error: 110 (Connection timed out)
[2009/12/21 07:46:34] @ jab_doa_ joined channel #puppet
[2009/12/21 07:47:44] @ Quit: jab_doa_: Client Quit
[2009/12/21 07:52:23] @ otto left channel #puppet ()
[2009/12/21 07:54:36] <hggh> It is correct, that I could not use tidy {} for deleting an file only if it is an symlink?
[2009/12/21 07:59:03] @ lilmatt joined channel #puppet
[2009/12/21 08:11:17] @ qwebirc73375 joined channel #puppet
[2009/12/21 08:11:20] @ Quit: qwebirc73375: Client Quit
[2009/12/21 08:11:24] @ Quit: pheezy: Remote closed the connection
[2009/12/21 08:11:33] @ Quit: gebi: Read error: 110 (Connection timed out)
[2009/12/21 08:14:23] @ rackerhacker joined channel #puppet
[2009/12/21 08:16:20] @ jab_doa_ joined channel #puppet
[2009/12/21 08:18:44] <masterzen> hggh: I think this is a known issue.
[2009/12/21 08:20:14] @ rackerhacker left channel #puppet ()
[2009/12/21 08:32:31] @ Quit: jab_doa: Read error: 110 (Connection timed out)
[2009/12/21 08:34:16] @ giskard joined channel #puppet
[2009/12/21 08:35:51] <Volcane> jamesturnbull: its intermittant, like one worker is screwed
[2009/12/21 08:40:55] @ Quit: hggh: Remote closed the connection
[2009/12/21 08:41:12] @ hggh joined channel #puppet
[2009/12/21 08:41:16] @ rsquared joined channel #puppet
[2009/12/21 08:46:47] @ Quit: rsquared: "Leaving"
[2009/12/21 08:48:07] @ Quit: jmeeuwen: Remote closed the connection
[2009/12/21 08:52:48] @ Quit: bug:
[2009/12/21 08:54:16] @ rsquared joined channel #puppet
[2009/12/21 08:55:01] @ bug joined channel #puppet
[2009/12/21 09:00:42] @ Cyis joined channel #puppet
[2009/12/21 09:01:33] @ Quit: erlingre: Remote closed the connection
[2009/12/21 09:06:20] @ rickbradley is now known as rickbradley\|away
[2009/12/21 09:08:34] @ nakano_ is now known as nakano
[2009/12/21 09:09:51] @ PsychoSid joined channel #puppet
[2009/12/21 09:10:42] @ nexx joined channel #puppet
[2009/12/21 09:11:56] @ Quit: jab_doa_: "Verlassend"
[2009/12/21 09:13:15] @ MattyM_ joined channel #puppet
[2009/12/21 09:19:44] @ Bass10 joined channel #puppet
[2009/12/21 09:20:01] <Volcane> shocking, the XML representation of that json stuff isnt broken in the same way and much easier to use
[2009/12/21 09:20:09] <Volcane> who'd have thought, xml useful
[2009/12/21 09:20:45] <fsweetser> I've had XML be useful before, just not easy to use at the same time =)
[2009/12/21 09:23:11] @ kaptk2 joined channel #puppet
[2009/12/21 09:23:21] * tim\|imac considers xml a computer-to-computer language, for which it is okay
[2009/12/21 09:23:40] <tim\|imac> but that's probably just me... the java people tend to think it's a human-to-computer interface
[2009/12/21 09:24:07] <Volcane> http://pastie.org/751786
[2009/12/21 09:24:16] @ malraid joined channel #puppet
[2009/12/21 09:24:21] <Volcane> the json serialization is clearly buggy there
[2009/12/21 09:24:28] <Volcane> no reason at all for that to be an array
[2009/12/21 09:24:34] <Volcane> and so makes it a pain to parse
[2009/12/21 09:26:10] @ Quit: PsychoSid1: Read error: 110 (Connection timed out)
[2009/12/21 09:27:34] @ Quit: MattyM: Read error: 110 (Connection timed out)
[2009/12/21 09:30:22] <fsweetser> tim\|imac: thoroughly agreed - I personally consider any case where and end user has to deal with XML a UI failure
[2009/12/21 09:30:40] <Volcane> fsweetser: yup
[2009/12/21 09:31:10] <Volcane> this stuff at least is stats out of activemq, not designed for human usage, but unfort i need to get it from the activemq java into ruby via stmop
[2009/12/21 09:31:13] @ JM joined channel #puppet
[2009/12/21 09:31:14] <Volcane> so need to write parser
[2009/12/21 09:31:34] @ Quit: Bass10: SendQ exceeded
[2009/12/21 09:32:13] @ Quit: lilmatt: Client Quit
[2009/12/21 09:34:59] @ crdant joined channel #puppet
[2009/12/21 09:39:54] @ Quit: rsquared: Read error: 60 (Operation timed out)
[2009/12/21 09:39:56] @ Quit: giskard: Remote closed the connection
[2009/12/21 09:41:11] @ pheezy joined channel #puppet
[2009/12/21 09:41:20] @ Cuchulai1 joined channel #puppet
[2009/12/21 09:41:21] @ Quit: Cuchulain: Read error: 104 (Connection reset by peer)
[2009/12/21 09:41:32] @ rsquared joined channel #puppet
[2009/12/21 09:44:54] @ Quit: Cuchulai1: kubrick.freenode.net irc.freenode.net
[2009/12/21 09:44:54] @ Quit: pheezy: kubrick.freenode.net irc.freenode.net
[2009/12/21 09:44:55] @ Quit: bug: kubrick.freenode.net irc.freenode.net
[2009/12/21 09:44:55] @ Quit: cynicismic: kubrick.freenode.net irc.freenode.net
[2009/12/21 09:44:56] @ Quit: Whoop: kubrick.freenode.net irc.freenode.net
[2009/12/21 09:44:57] @ Quit: erm_: kubrick.freenode.net irc.freenode.net
[2009/12/21 09:44:58] @ Quit: dsch04: kubrick.freenode.net irc.freenode.net
[2009/12/21 09:44:59] @ Quit: DracoWork: kubrick.freenode.net irc.freenode.net
[2009/12/21 09:44:59] @ Quit: freiheit_: kubrick.freenode.net irc.freenode.net
[2009/12/21 09:45:00] @ Quit: shine_: kubrick.freenode.net irc.freenode.net
[2009/12/21 09:45:00] @ Quit: RomainK: kubrick.freenode.net irc.freenode.net
[2009/12/21 09:45:01] @ Quit: mgisbers: kubrick.freenode.net irc.freenode.net
[2009/12/21 09:45:03] @ Quit: telmich_: kubrick.freenode.net irc.freenode.net
[2009/12/21 09:45:03] @ Quit: cm1: kubrick.freenode.net irc.freenode.net
[2009/12/21 09:45:04] @ Quit: Risar`: kubrick.freenode.net irc.freenode.net
[2009/12/21 09:45:05] @ Quit: ptman: kubrick.freenode.net irc.freenode.net
[2009/12/21 09:49:47] @ Cuchulai1 joined channel #puppet
[2009/12/21 09:49:48] @ pheezy joined channel #puppet
[2009/12/21 09:49:48] @ bug joined channel #puppet
[2009/12/21 09:49:48] @ cynicismic joined channel #puppet
[2009/12/21 09:49:48] @ Whoop joined channel #puppet
[2009/12/21 09:49:48] @ erm_ joined channel #puppet
[2009/12/21 09:49:48] @ dsch04 joined channel #puppet
[2009/12/21 09:49:48] @ DracoWork joined channel #puppet
[2009/12/21 09:49:48] @ freiheit_ joined channel #puppet
[2009/12/21 09:49:48] @ mgisbers joined channel #puppet
[2009/12/21 09:49:49] @ shine_ joined channel #puppet
[2009/12/21 09:49:49] @ RomainK joined channel #puppet
[2009/12/21 09:49:49] @ telmich_ joined channel #puppet
[2009/12/21 09:49:49] @ cm1 joined channel #puppet
[2009/12/21 09:49:49] @ Risar` joined channel #puppet
[2009/12/21 09:49:49] @ ptman joined channel #puppet
[2009/12/21 09:57:01] @ Arvind left channel #puppet ()
[2009/12/21 09:58:47] @ Quit: vzctl_: Read error: 110 (Connection timed out)
[2009/12/21 10:00:12] @ themurph joined channel #puppet
[2009/12/21 10:01:55] @ vzctl_ joined channel #puppet
[2009/12/21 10:04:19] @ MattyM_ is now known as MattyM
[2009/12/21 10:04:56] @ windowsrefund joined channel #puppet
[2009/12/21 10:04:59] <windowsrefund> hello
[2009/12/21 10:06:44] <windowsrefund> I've got a class named puppet::class that calls a define I've named 'account'. This definition sets up the account and their home directory. I'm trying to use an override to control one of those files.
[2009/12/21 10:06:56] <windowsrefund> make that puppet::client
[2009/12/21 10:08:39] @ crdant1 joined channel #puppet
[2009/12/21 10:10:17] <windowsrefund> http://pastebin.com/m2e881427
[2009/12/21 10:12:59] @ giskard joined channel #puppet
[2009/12/21 10:15:35] @ rmiller4pi8 joined channel #puppet
[2009/12/21 10:16:00] @ Quit: crdant: Read error: 110 (Connection timed out)
[2009/12/21 10:17:38] @ Quit: yarihm: "This computer has gone to sleep"
[2009/12/21 10:18:12] <kjetilho> windowsrefund: good grief, check your brackets
[2009/12/21 10:18:27] @ jellis-real_ joined channel #puppet
[2009/12/21 10:21:45] @ Quit: Ramonster: Client Quit
[2009/12/21 10:27:36] <windowsrefund> kjetilho: forgive the typo
[2009/12/21 10:27:47] <windowsrefund> I'm just trying to communicate a concept
[2009/12/21 10:28:21] <windowsrefund> can a subclass override something that is created via a define like that?
[2009/12/21 10:28:33] <kjetilho> without the error message or a manifest we can trust to be typed in correctly, it's hard to help...
[2009/12/21 10:28:38] <kjetilho> sure
[2009/12/21 10:28:56] @ lilmatt joined channel #puppet
[2009/12/21 10:29:13] <kjetilho> although I think it's prettier to make the override on the Account itself
[2009/12/21 10:29:31] <kjetilho> which means you may need to add a (optional) parameter
[2009/12/21 10:29:53] @ Quit: suchu: "ChatZilla 0.9.86 [Firefox 3.0.16/2009120208]"
[2009/12/21 10:29:54] @ alfism joined channel #puppet
[2009/12/21 10:30:20] <windowsrefund> not sure I follow
[2009/12/21 10:30:28] <windowsrefund> account is a definition, not a class
[2009/12/21 10:30:40] <windowsrefund> overrides only work on classes
[2009/12/21 10:31:33] <kjetilho> no, it's a resource
[2009/12/21 10:32:16] <Volcane> you override a property of a resource that is contained in a class
[2009/12/21 10:32:28] <Volcane> to override a resource u have to inherit from th class the resource is in
[2009/12/21 10:32:37] <windowsrefund> yes, file is a resource but it is being created via the account define
[2009/12/21 10:32:43] <Volcane> a resource is an instance of a type
[2009/12/21 10:32:48] <kjetilho> the Account is a resource in itself
[2009/12/21 10:32:52] <Volcane> and a define is a defined type - so instances of those are resources
[2009/12/21 10:33:07] <windowsrefund> ok but the code I showed doesn't work
[2009/12/21 10:33:25] <windowsrefund> let me fix that typo though so that clears up any confusion
[2009/12/21 10:33:50] <kjetilho> hmm, ok. I thought it would. but use the Account override, then
[2009/12/21 10:33:52] @ Quit: rmiller4pi8: Read error: 104 (Connection reset by peer)
[2009/12/21 10:33:56] <kjetilho> it's a cleaner interface anyway
[2009/12/21 10:34:09] <windowsrefund> http://pastebin.com/m32366819
[2009/12/21 10:34:11] @ ghg joined channel #puppet
[2009/12/21 10:34:25] <windowsrefund> how would I use Account in the override?
[2009/12/21 10:34:31] * windowsrefund must be missing something obvious
[2009/12/21 10:35:04] <kjetilho> define account($blah=somethingdefault) { file { .... } }; Account["puppet"] { blah => "othervalue" }
[2009/12/21 10:35:26] * kjetilho goes Yuletide shopping
[2009/12/21 10:35:58] <windowsrefund> strange
[2009/12/21 10:36:04] <windowsrefund> I almost agree with that
[2009/12/21 10:36:16] <windowsrefund> but I'm trying to change that file
[2009/12/21 10:36:22] <Volcane> you cant ovverride a resource thats inside a defined type
[2009/12/21 10:36:26] @ chrisg joined channel #puppet
[2009/12/21 10:36:32] <windowsrefund> ahhhhhhhhhh
[2009/12/21 10:36:33] <Volcane> you can only override the instance of the define
[2009/12/21 10:36:39] <windowsrefund> that's what I was looking for
[2009/12/21 10:37:08] <windowsrefund> ok, I've got a backup plan
[2009/12/21 10:37:23] <windowsrefund> just going to change my account module to use a template
[2009/12/21 10:37:51] @ Mick27 joined channel #puppet
[2009/12/21 10:38:49] @ brothers joined channel #puppet
[2009/12/21 10:39:46] <windowsrefund> thanks
[2009/12/21 10:45:20] @ rmiller4pi8 joined channel #puppet
[2009/12/21 10:45:39] @ Quit: rmiller4pi8: Client Quit
[2009/12/21 10:46:20] @ rmiller4pi8 joined channel #puppet
[2009/12/21 10:52:32] @ rickbradley\|away is now known as rickbradley
[2009/12/21 10:53:57] @ Quit: PsychoSid: "Leaving."
[2009/12/21 10:55:16] <nexx> is it hard to get foreman working under mongrel?
[2009/12/21 11:00:39] @ ghg_ joined channel #puppet
[2009/12/21 11:04:42] @ pjsz joined channel #puppet
[2009/12/21 11:06:00] @ ghg__ joined channel #puppet
[2009/12/21 11:06:03] @ Quit: ghg__: Remote closed the connection
[2009/12/21 11:06:17] @ ghg__ joined channel #puppet
[2009/12/21 11:07:40] @ Quit: ghg_: Read error: 60 (Operation timed out)
[2009/12/21 11:09:29] @ Quit: int: Read error: 104 (Connection reset by peer)
[2009/12/21 11:11:02] @ bodepd joined channel #puppet
[2009/12/21 11:15:15] @ francois left channel #puppet ()
[2009/12/21 11:15:55] @ Quit: ghg: Read error: 110 (Connection timed out)
[2009/12/21 11:15:55] @ ghg__ is now known as ghg
[2009/12/21 11:21:33] @ pOrk joined channel #puppet
[2009/12/21 11:21:50] @ Quit: pOrk: Client Quit
[2009/12/21 11:22:29] @ pOrk joined channel #puppet
[2009/12/21 11:24:20] <pOrk> for foreman email reports (and kinda in general), how do I tell foreman that my puppet clients only run every 60 minutes?
[2009/12/21 11:26:13] <fsweetser> pOrk: there's currently an open ticket on that: http://theforeman.org/issues/show/124
[2009/12/21 11:26:52] <pOrk> ahh, okay, thx!
[2009/12/21 11:27:06] @ gebi joined channel #puppet
[2009/12/21 11:39:14] @ RageLink joined channel #puppet
[2009/12/21 11:43:35] @ Quit: Robbie_: Remote closed the connection
[2009/12/21 11:54:09] @ Quit: verwilst: "Ex-Chat"
[2009/12/21 12:01:13] @ Quit: brothers: Read error: 104 (Connection reset by peer)
[2009/12/21 12:01:17] @ brothers joined channel #puppet
[2009/12/21 12:11:19] @ Quit: brothers: Read error: 104 (Connection reset by peer)
[2009/12/21 12:11:31] @ Quit: lilmatt: Client Quit
[2009/12/21 12:12:51] <danielbln> is there a random variable for puppet?
[2009/12/21 12:13:07] <danielbln> or do I have to do some bash $RAND workaround?
[2009/12/21 12:13:21] <danielbln> *$RANDOM
[2009/12/21 12:13:49] @ toi joined channel #puppet
[2009/12/21 12:14:18] <Volcane> there's fqdn_rand that gives u a random number but always the same random for each fqdn
[2009/12/21 12:14:45] <Volcane> else just do $rand = inline_template("<%= rand(10) %>")
[2009/12/21 12:15:02] <Volcane> but often the first fqdn_rand is what u really want
[2009/12/21 12:15:10] <Volcane> else files with the random in it will change each time puppet runs
[2009/12/21 12:18:53] @ Quit: DracoWork: Read error: 104 (Connection reset by peer)
[2009/12/21 12:19:03] @ DracoWork joined channel #puppet
[2009/12/21 12:26:38] @ brothers joined channel #puppet
[2009/12/21 12:29:39] @ Quit: poison: Remote closed the connection
[2009/12/21 12:29:50] @ Quit: pOrk: Read error: 110 (Connection timed out)
[2009/12/21 12:34:11] @ lak joined channel #puppet
[2009/12/21 12:34:49] <danielbln> I think fqdn_rand is perfect, I just need some offsetting for cronjob execution times and this will suffice, ty
[2009/12/21 12:35:35] <danielbln> there isn't a modulo operation available by any chance?
[2009/12/21 12:35:43] <Volcane> hmm, not sure
[2009/12/21 12:36:12] <Volcane> nope
[2009/12/21 12:38:05] <kjetilho> danielbln: it's built-in to fqdn_rand, though?
[2009/12/21 12:38:26] <danielbln> haven't tried the variable, how big is the output?
[2009/12/21 12:38:27] <kjetilho> except setting an offset it eats into your modulo
[2009/12/21 12:39:23] <danielbln> $ facter fqdn_rand returns nothing :/
[2009/12/21 12:39:34] <danielbln> oh, nm, it's a puppet variable, not a facter one
[2009/12/21 12:40:08] <danielbln> I'll figure it out, built-in cronjob randomization would be kind of cool though
[2009/12/21 12:40:09] <kjetilho> it's a function
[2009/12/21 12:40:14] <Volcane> its a function, $rand = fqdn_rand(10)
[2009/12/21 12:40:24] <danielbln> nothing worse than 400 servers running their backups script at the same time and hammering the storage
[2009/12/21 12:40:29] <kjetilho> the 10 is range, with optional offset
[2009/12/21 12:40:33] <danielbln> oh, now I get it
[2009/12/21 12:40:59] <Volcane> i find if its a script - like your back up one - its less hassle to just build in the sleep into the script
[2009/12/21 12:41:13] <Volcane> sleep $(($RANDOM % 900))
[2009/12/21 12:41:20] <danielbln> true
[2009/12/21 12:41:30] <kjetilho> well, I like it to start at a fixed time
[2009/12/21 12:41:40] <kjetilho> so logs/monitoring is easier to read
[2009/12/21 12:41:43] <Volcane> nods
[2009/12/21 12:42:01] <kjetilho> and you don't get unlucky with hammering once in a blue moon
[2009/12/21 12:42:27] <Volcane> well, with fqdn_rand you can get unlucky and always get hammered :P
[2009/12/21 12:42:36] <kjetilho> yeah, but then you can fix it :)
[2009/12/21 12:42:37] <Volcane> at least with a random it will only happen now and then
[2009/12/21 12:42:43] <Volcane> how would you fix it?
[2009/12/21 12:42:59] <kjetilho> increase the modulo, I guess
[2009/12/21 12:43:04] <kjetilho> *range
[2009/12/21 12:43:09] <Volcane> chance is always there
[2009/12/21 12:43:14] <kjetilho> sure
[2009/12/21 12:43:23] <kjetilho> but it's predictable after one night's run
[2009/12/21 12:43:42] <Volcane> nods, but you're stuck for solutions then if it turns out it overlaps
[2009/12/21 12:43:50] @ Quit: jaredrhine: Read error: 110 (Connection timed out)
[2009/12/21 12:44:05] <Volcane> only option is to increase range - not always an option - or to fiddle the seed
[2009/12/21 12:44:14] @ whaley joined channel #puppet
[2009/12/21 12:44:15] <Volcane> you'd probably just shift the problem around to other machines
[2009/12/21 12:44:24] <kjetilho> you could do a combination, random sleep for max 60 seconds
[2009/12/21 12:44:32] @ Quit: danielbln: "Leaving."
[2009/12/21 12:44:49] <Volcane> yeah, its a crappy thing, used to worry about it before i had a puppetmaster for each country
[2009/12/21 12:45:03] <Volcane> and saw similar screw up - and helplessness - with --splay
[2009/12/21 12:47:25] <Volcane> i got a big pool of vanity names
[2009/12/21 12:47:32] <Volcane> each server picks one by fqdn_random
[2009/12/21 12:47:36] <Volcane> and pops it into its motd
[2009/12/21 12:47:46] <Volcane> surprising how often multiples get the same name
[2009/12/21 12:48:32] @ fluxdude joined channel #puppet
[2009/12/21 12:48:35] <Volcane> like almost a 4:1 ratio of names vs machines
[2009/12/21 12:48:39] <kjetilho> Volcane: Birthday paradox at work
[2009/12/21 12:48:44] @ Quit: Welsh_Dwarf: Remote closed the connection
[2009/12/21 12:48:46] <Volcane> yup
[2009/12/21 12:49:14] <fluxdude> Volcane: just caught the tail end of that, was that a 4 to 1 ratio of cnames or people to machines?
[2009/12/21 12:50:00] <Volcane> fluxdude: heh heh, i dont use vanity hostnames rather have like web1, web2, etc but i still like themes for machines. so i have a pool of names and each machine picks one by fqdn_rand which gets displayed in motd
[2009/12/21 12:50:18] <Volcane> fluxdude: 4:1 names:machines ratio and still i get dupes
[2009/12/21 12:50:22] @ BarnacleBob joined channel #puppet
[2009/12/21 12:50:32] <Volcane> fluxdude: we were just talking about cron random sleeps and such
[2009/12/21 12:51:40] <Volcane> using motd for the theme means i can use longer names too :)
[2009/12/21 12:52:03] <fluxdude> Volcane: lol. I've never heard of anyone automating funny name asignments to hots
[2009/12/21 12:52:05] <fluxdude> :-)
[2009/12/21 12:52:19] <Volcane> heh
[2009/12/21 12:52:30] <fluxdude> I used to assign cool names as the base hostnames and then cname functions like dns, www1, www2 etc
[2009/12/21 12:52:36] <fluxdude> doesn't scale well though
[2009/12/21 12:52:43] <Volcane> yup, pita
[2009/12/21 12:52:47] <Volcane> automation so much kewler
[2009/12/21 12:52:51] <fluxdude> indeed
[2009/12/21 12:52:59] <Volcane> i just grabbed shedloads of ship names from sci fi books off wiki pedia
[2009/12/21 12:53:02] <Volcane> and now machines choose
[2009/12/21 12:53:06] <fluxdude> <company-TLA>NN is much better I think
[2009/12/21 12:53:16] <fluxdude> lol, that's a great idea!
[2009/12/21 12:53:32] <Volcane> my VM says:
[2009/12/21 12:53:32] <Volcane> Welcome to Frank Exchange Of Views
[2009/12/21 12:53:36] <fluxdude> Volcane: how can I get such a list!
[2009/12/21 12:53:50] <Volcane> which is fitting given that i dont shut up about my views :P
[2009/12/21 12:53:55] <Volcane> randomness ftw
[2009/12/21 12:54:17] <fluxdude> you need a way to making the names registered or something to not end up with dups
[2009/12/21 12:54:20] <Volcane> fluxdude: http://en.wikipedia.org/wiki/Culture_ship_names there's one for example
[2009/12/21 12:55:15] <fluxdude> I would like a wiki page with tonnes of sci-fi names...
[2009/12/21 12:55:30] <Volcane> nods, i find them as i read series with good names
[2009/12/21 12:55:31] <fluxdude> londo, zathras, icarus etc
[2009/12/21 12:55:35] <Volcane> ian m banks is great for names
[2009/12/21 12:57:08] <fluxdude> gotta run, tomorrow dude... :-)
[2009/12/21 12:57:33] @ Quit: toi: Read error: 113 (No route to host)
[2009/12/21 12:57:53] <Volcane> :)
[2009/12/21 12:58:11] @ yarihm joined channel #puppet
[2009/12/21 13:03:03] @ Quit: MattyM: "ta ta"
[2009/12/21 13:06:13] @ Quit: bodepd:
[2009/12/21 13:07:13] @ mindless joined channel #puppet
[2009/12/21 13:07:27] @ Quit: marcoecc: Remote closed the connection
[2009/12/21 13:07:42] <ashp> I really need to find a better way to handle having 7 or 8 different kinds of ldap server than having 8 different openldap-$name/ directories under files/
[2009/12/21 13:07:54] <ashp> along with a nicer way than to end up with conffile.$hostname for like 15 hostnames :(
[2009/12/21 13:08:00] @ chadh joined channel #puppet
[2009/12/21 13:11:18] <Volcane> if its too complex to template the changes
[2009/12/21 13:11:23] <Volcane> and if those servers are all different
[2009/12/21 13:11:25] <Volcane> u have few options
[2009/12/21 13:11:52] <Volcane> building them up with snippets also fit in there before u need all those files
[2009/12/21 13:12:56] @ telmich_ is now known as telmich
[2009/12/21 13:13:05] <mindless> Markus Roberts: ping
[2009/12/21 13:13:19] @ Quit: windowsrefund: "leaving"
[2009/12/21 13:14:10] @ lilmatt joined channel #puppet
[2009/12/21 13:16:10] <Volcane> mindless: dout he hangs out here
[2009/12/21 13:16:35] <mindless> ok, thx.. didn't know if he used a handle here
[2009/12/21 13:17:49] @ jaredrhine joined channel #puppet
[2009/12/21 13:18:40] @ jaredrhine left channel #puppet ()
[2009/12/21 13:25:29] @ re_ joined channel #puppet
[2009/12/21 13:26:07] @ Quit: crdant1: "Leaving."
[2009/12/21 13:26:48] @ jaredrhine joined channel #puppet
[2009/12/21 13:27:12] @ crdant joined channel #puppet
[2009/12/21 13:29:02] @ joe-mac left channel #puppet ()
[2009/12/21 13:33:14] <lak> mindless: mqr == markus roberts
[2009/12/21 13:34:10] <mindless> lak: kthx
[2009/12/21 13:34:42] @ bodepd joined channel #puppet
[2009/12/21 13:36:42] <beelzebo1> anyone know of/use any useful iptables modules?
[2009/12/21 13:37:09] <beelzebo1> I'm planning on using exported resources to configure iptables
[2009/12/21 13:37:43] <beelzebo1> so say, a syslog server can know what ips to allow based on what servers are using syslog::client
[2009/12/21 13:41:01] <Volcane> few discussed here, the one on the wiki might work too
[2009/12/21 13:41:04] <Volcane> if u modify it a bit
[2009/12/21 13:41:23] @ beelzebo1 is now known as beelzebob
[2009/12/21 13:43:42] @ _dan__t is now known as dan__t
[2009/12/21 13:57:37] <mindless> mqr: more info provided in issue 2940.. I'm around if you need any more info
[2009/12/21 13:59:35] @ diranged joined channel #puppet
[2009/12/21 14:00:07] @ Quit: bodepd:
[2009/12/21 14:00:50] @ rsquared_ joined channel #puppet
[2009/12/21 14:01:57] <diranged> whats the syntax to say 'make sure this package is installed, and is XX version."
[2009/12/21 14:02:14] <ghg> ensure => 'version'
[2009/12/21 14:02:19] <diranged> heh thats easy
[2009/12/21 14:02:48] @ Quit: rsquared: Read error: 110 (Connection timed out)
[2009/12/21 14:05:24] @ Quit: whaley: "Leaving..."
[2009/12/21 14:06:48] @ Quit: giskard: Remote closed the connection
[2009/12/21 14:07:11] @ mikerowehl joined channel #puppet
[2009/12/21 14:07:25] @ nakano is now known as nakano_
[2009/12/21 14:07:53] @ giskard joined channel #puppet
[2009/12/21 14:08:04] @ Quit: crdant: "Leaving."
[2009/12/21 14:08:37] @ joe-mac joined channel #puppet
[2009/12/21 14:09:50] @ toi joined channel #puppet
[2009/12/21 14:11:41] @ Overflow joined channel #puppet
[2009/12/21 14:11:46] @ Overflow is now known as overflow_pt
[2009/12/21 14:12:18] <overflow_pt> hi... does anyone know if i can use puppet to send a specific file from the node to puppetmaster filesystem?
[2009/12/21 14:13:34] @ crdant joined channel #puppet
[2009/12/21 14:13:49] <BarnacleBob> there are a bunch of different ways of doing that
[2009/12/21 14:14:34] <Volcane> BarnacleBob: from the node to the master?
[2009/12/21 14:14:39] <Volcane> BarnacleBob: lots?
[2009/12/21 14:14:57] <Volcane> s/lots/bunch/ :)
[2009/12/21 14:15:13] <overflow_pt> can you please elaborate on that?
[2009/12/21 14:15:56] @ bodepd joined channel #puppet
[2009/12/21 14:15:59] <BarnacleBob> well i can think of 2 off the top of my head
[2009/12/21 14:16:10] <BarnacleBob> + all the ways to properly do what ever it is that needs being done
[2009/12/21 14:16:21] <BarnacleBob> overflow_pt, what is the thing you are trying to solve?
[2009/12/21 14:16:27] <BarnacleBob> can you describe your problem more
[2009/12/21 14:16:52] <overflow_pt> [BarnacleBob] i have a script that creates a report of the server instalation... but it creates it in /tmp/file.html..
[2009/12/21 14:17:13] <overflow_pt> i want to exec the script and then copy the file back to puppetmaster
[2009/12/21 14:17:28] <explody> I'm drawing a blank, how do you tell a service to be reload/refresh (not restart) only? Do i just need to specify a custom restart command?
[2009/12/21 14:17:40] <BarnacleBob> explody, yeah
[2009/12/21 14:18:09] <explody> cool, that's what I was thinking but my caffeine hasn't really kicked in yet so I can't be trusted
[2009/12/21 14:18:11] <BarnacleBob> overflow_pt, what are you reporting? from the facts list you can build a nice report directly on the master
[2009/12/21 14:18:47] <overflow_pt> [BarnacleBob] where can i find any good rtfm about that?
[2009/12/21 14:19:06] <BarnacleBob> overflow_pt, well on the puppetmaster check in /var/lib/puppet/yaml/facts/
[2009/12/21 14:19:18] <overflow_pt> i can write a few custom facter rules so i don't need the report generated by my script..
[2009/12/21 14:19:25] <BarnacleBob> yeah
[2009/12/21 14:20:20] <overflow_pt> [BarnacleBob] yea.. i already saw that dir.. by i would need to build another script to read the yaml files and generate the html/pdf reports.. do you know anything like that?
[2009/12/21 14:21:13] <BarnacleBob> well there is software like puppetdash and theforman that can show you stuff. but if you want something custom its pretty easy
[2009/12/21 14:22:00] <BarnacleBob> ruby/perl/python etc all have modules that can read yaml simply and others to help write html/pdf
[2009/12/21 14:22:10] <overflow_pt> yep.. i've checked the dashboard.. but i don't know theforman.. where can i find it?
[2009/12/21 14:22:22] <BarnacleBob> theforeman.org
[2009/12/21 14:22:52] <BarnacleBob> if you already have a script for outputing the html, its probably pretty easy to source all your info from the yaml instead of the system
[2009/12/21 14:23:33] <overflow_pt> [BarnacleBob] thanks.. i'll check it
[2009/12/21 14:25:42] @ Quit: overflow_pt: "overflow_pt has no reason"
[2009/12/21 14:26:30] @ mvn071 joined channel #puppet
[2009/12/21 14:29:24] @ Cuchulai1 is now known as Cuchulain
[2009/12/21 14:29:51] @ future-dead joined channel #puppet
[2009/12/21 14:30:21] @ Quit: alban2: Read error: 60 (Operation timed out)
[2009/12/21 14:32:54] @ WALoeIII joined channel #puppet
[2009/12/21 14:34:50] @ jfreeman joined channel #puppet
[2009/12/21 14:36:41] <diranged> when using macports + puppet, i get this error: err: Could not run Puppet configuration client: Parameter ensure failed: Provider must have features 'versionable' to set 'ensure' to '0.25.1'
[2009/12/21 14:36:53] <diranged> im trying to do a simple 'ensure => '0.25.1' for the puppet package itself
[2009/12/21 14:37:15] @ jes5 joined channel #puppet
[2009/12/21 14:38:02] <Volcane> thats the darwinport thing?
[2009/12/21 14:38:22] <diranged> darwin ports is like maacports... behave the same i think
[2009/12/21 14:38:56] <Volcane> see http://reductivelabs.com/trac/puppet/wiki/TypeReference#id70
[2009/12/21 14:39:06] <Volcane> not all of them have the 'versionable' feature
[2009/12/21 14:39:11] <Volcane> ie. you cant say ensure =>1.2.3
[2009/12/21 14:39:24] <diranged> ahh cool thanks
[2009/12/21 14:41:55] @ Quit: jes5: Remote closed the connection
[2009/12/21 14:44:20] @ Quit: kaos01: "Lost terminal"
[2009/12/21 14:45:35] @ alban2 joined channel #puppet
[2009/12/21 14:51:43] @ eric0 joined channel #puppet
[2009/12/21 14:52:45] @ jes5 joined channel #puppet
[2009/12/21 14:54:05] <diranged> hmm fink doesnt have a puppet package?
[2009/12/21 14:55:10] @ Quit: lak:
[2009/12/21 14:55:47] <joe-mac> what is fink
[2009/12/21 14:56:18] <ricky> I think it's a mac package manager-type thing.
[2009/12/21 14:56:55] <joe-mac> oh, i think you get the puppet packages from macports iirc? idk don't use mac atm
[2009/12/21 14:59:40] @ whaley joined channel #puppet
[2009/12/21 15:05:09] @ Quit: pjsz:
[2009/12/21 15:07:43] @ rsquared_ is now known as rsquared
[2009/12/21 15:15:48] @ Quit: tmz: "leaving"
[2009/12/21 15:16:50] @ tmz joined channel #puppet
[2009/12/21 15:21:06] @ Quit: malraid: "ChatZilla 0.9.86 [Firefox 3.0.14/2009090216]"
[2009/12/21 15:38:07] @ Quit: tyler79: Read error: 104 (Connection reset by peer)
[2009/12/21 15:40:59] @ lak joined channel #puppet
[2009/12/21 15:41:13] @ LinuxCode joined channel #puppet
[2009/12/21 15:41:41] @ tyler79 joined channel #puppet
[2009/12/21 15:46:43] <ashp> Volcane: I'm tempted to try putting together all confs with snippits
[2009/12/21 15:46:56] <ashp> Volcane: because what I end up with are 15 copies of a conf that are ALMOST the same with just small changes
[2009/12/21 15:47:01] <ashp> few extra lines or tweaks
[2009/12/21 15:47:33] <ashp> I could look at that augeas thing
[2009/12/21 15:47:35] @ Quit: jfreeman: Read error: 110 (Connection timed out)
[2009/12/21 15:47:36] @ ezmobius joined channel #puppet
[2009/12/21 15:48:12] <ashp> post xmas when I'm unleashed I have to go through and redo all my service defines so that they have a base define and then extra stuff is layered on top properly
[2009/12/21 15:48:33] <ashp> right now I have defines that just get littered with if $hostname {} and so forth to add in extra bits
[2009/12/21 15:48:52] <ashp> I build /etc/hosts and they've started requesting I add some host{}'s only to certain nodes and it's getting really messy :/
[2009/12/21 15:48:54] <Volcane> ashp: yeah, snippets are wicked, like all my named.conf's - eventhough there are many different types of name server - they all have the same ACLs for example
[2009/12/21 15:49:18] <ashp> do you have any public modules available that use it so I can have a peek to see how you're putting it together
[2009/12/21 15:49:23] <Volcane> ashp: and i can parameterize each snippet with defines to end up with one wickedly configurable whole
[2009/12/21 15:49:37] <ashp> when I started we just envisioned a couple of types of each service but it's just turned into this awful sprawl of types, all with extra bits shovelled in
[2009/12/21 15:49:45] <Volcane> ashp: google for motd::register
[2009/12/21 15:49:53] <Volcane> ashp: shold find a pastie
[2009/12/21 15:49:55] <ashp> so we're going to take about two weeks and go back to basics and look at how we do things
[2009/12/21 15:50:27] <Volcane> ashp: it builds things like http://pastie.org/752325
[2009/12/21 15:50:33] <ashp> I also want to get some static DHCP in place, once I decide how to handle that within puppet, so that I can remove all the network kludges and base classes just to spit together the networking conf :)
[2009/12/21 15:51:30] <ashp> I should post about how people handle machine interfaces currently, ideally I would tie together the dhcp setup with an external node database and start moving towards that
[2009/12/21 15:52:20] <ashp> ah i found the pastie with class motd and the common::concat_file stuff
[2009/12/21 15:52:42] <ashp> Volcane: do you use external node database yet? I think if I remember you had to use classes rather than defines which is why I hadn't gone further with it. Is it still like that?
[2009/12/21 15:52:50] <Volcane> i dont
[2009/12/21 15:52:57] <Volcane> my machines are all very different
[2009/12/21 15:53:14] <Volcane> would need to be a highly awesome ajaxy UI to make it easier/better to use than node files
[2009/12/21 15:53:26] <Volcane> at $client where i have many of the same we do have external nodes though
[2009/12/21 15:53:31] <ashp> yeah, I stuck with nodes.pp just because I end up with all kinds of awful hand hacks for nodes
[2009/12/21 15:54:01] <Volcane> i just have a file per node
[2009/12/21 15:54:13] <ashp> I also have filemounts::nfsmount {} where I list the various nfs mounts required and that was difficult to organise in any other way I found
[2009/12/21 15:54:21] <ashp> I will probably think about breaking up nodes.pp as it got large
[2009/12/21 15:54:48] <ashp> http://pastebin.com/d4534cbf here's a typical ugly node
[2009/12/21 15:55:08] <Volcane> oh i never put any resources in node blocks
[2009/12/21 15:55:30] <ashp> I didn't want to end up with a hosts.pp that is full of if $hostname == "hlslinprod1" { host{} }
[2009/12/21 15:55:31] <Volcane> just includes
[2009/12/21 15:55:34] <ashp> that was my concern :(
[2009/12/21 15:56:05] <ashp> if we had 100% successfully puppetised everything then it would be easier but we have legacy things that are 'going away' that didn't get made into a module
[2009/12/21 15:56:09] <ashp> so there's nowhere sensible to attach it
[2009/12/21 15:56:17] <Volcane> nods
[2009/12/21 15:56:52] <ashp> We have a lot of custom stuff like that to try and refactor out :/
[2009/12/21 15:57:10] <ashp> i even have one node with a nagios::service {} in it
[2009/12/21 15:57:16] <ashp> tagged with this comment: ## THIS MUST GO AWAY I HATE YOU FOR MAKING ME DO THIS
[2009/12/21 15:57:42] <ashp> because he built the entire goddamn wiki replacement without using puppet at all
[2009/12/21 15:57:49] <ashp> my coworker is very resistant to change
[2009/12/21 15:57:55] <ashp> he constantly does a bunch of stuff by hand and then puppet overwrites it
[2009/12/21 15:58:00] <ashp> and he NEVER LEARNS to stop doing it
[2009/12/21 16:00:41] <Volcane> heh
[2009/12/21 16:00:56] <Volcane> moving towards automation always start with people and not tools
[2009/12/21 16:01:15] <Volcane> people ~3 months bfore u even think of tools in an established team
[2009/12/21 16:02:01] @ Djelibeybi joined channel #puppet
[2009/12/21 16:02:03] <Volcane> but when u start roling out, doing that should be a legit all out offence
[2009/12/21 16:02:04] <ashp> we only have a team fo two
[2009/12/21 16:02:07] <ashp> it shouldn't be so hard!
[2009/12/21 16:02:15] <ashp> my boss even told him flat out he's gotta get on board with this
[2009/12/21 16:02:24] <ashp> but he gets rushed by the boss to get something done, hassled endlessly
[2009/12/21 16:02:28] <ashp> and reverts to by hand to get it done
[2009/12/21 16:02:33] <ashp> with the intent of 'puppetizing it after'
[2009/12/21 16:02:40] <Volcane> heh
[2009/12/21 16:02:49] <Volcane> introducea policy of regular rebuilds
[2009/12/21 16:03:09] <ashp> well, we've been driven so hard for the last six months on a single project that it's just been hack after hack
[2009/12/21 16:03:26] <ashp> i'm trying to clear about a month or so, post this project, to go back and revisit infrastructure things
[2009/12/21 16:03:49] <ashp> we haven't even patched a server in six months, yet alone kept up with RHEL 5.4, i even have a 5.2 box kickin around
[2009/12/21 16:03:56] <ashp> so we need to go back and take care of all the housekeeping :)
[2009/12/21 16:04:47] <Volcane> i have 2 x 5.2's as well, arse
[2009/12/21 16:05:28] <Volcane> and 1 4.x
[2009/12/21 16:05:54] <Volcane> the 4.x being unpuppeted
[2009/12/21 16:06:57] <ashp> It's just frustrating how quickly things spiral out of puppet!
[2009/12/21 16:07:15] <ashp> with the endless hacks to skip doing real work and the lack of snippits so massive duplication
[2009/12/21 16:07:27] <ashp> i can't wait to get working on fixing things up
[2009/12/21 16:07:36] * Volcane debugs servers by rebuilding them
[2009/12/21 16:07:43] <Volcane> if one doesnt work, and 19 other do work
[2009/12/21 16:07:46] <Volcane> just rebuild it
[2009/12/21 16:07:50] @ giskard_ joined channel #puppet
[2009/12/21 16:07:55] <ashp> I'd absolutely love to get to the point of doing upgrades by rebuilds
[2009/12/21 16:08:01] <Volcane> ppl know that, if they fuck about with boxes their stuff just goes missing
[2009/12/21 16:08:04] <Volcane> cos i dont back them up either
[2009/12/21 16:08:13] <ashp> but unfortunately we don't tend to put actual data into puppet, things like say, the contents of ldap
[2009/12/21 16:08:21] <ashp> and fetching it from backups means waiting for tapes to arrive
[2009/12/21 16:08:38] <ashp> i try to keep all 'data' on the netapp
[2009/12/21 16:08:45] <ashp> so that i can rebuild things without a problem but it doesn't always work
[2009/12/21 16:08:55] <ashp> it's generally the larger commerical software as well as java that's a pain
[2009/12/21 16:09:14] <Volcane> data i do obviously backup and have quick restore options etc
[2009/12/21 16:09:16] <Volcane> but no config
[2009/12/21 16:09:17] <ashp> i mean our process for updates to our new idm product is to go onto the box and run a bunch of manual steps
[2009/12/21 16:09:20] <Volcane> if its not in puppet its gone
[2009/12/21 16:09:25] <ashp> which is why i want to move towards the whole cucumber thing
[2009/12/21 16:12:09] <Volcane> not sure cucumber is the answer for that
[2009/12/21 16:12:24] @ Quit: giskard: Read error: 60 (Operation timed out)
[2009/12/21 16:13:31] <ashp> well, didn't your uh, mcollective example use cucumber
[2009/12/21 16:13:37] <ashp> the thing that would disable loadbalancers
[2009/12/21 16:13:42] <ashp> do updates and then turn it back on
[2009/12/21 16:13:50] <monachus> contents of LDAP, eh? if you have multiple ldap servers, you should have all the contents _somewhere_ - distributed data storage is a good intermediate point between data and the tapes
[2009/12/21 16:14:12] <monachus> not just for LDAP - at the very least dump stuff once an hour/day and put it somewhere near
[2009/12/21 16:14:19] <ashp> monachus: Yeah, part of the work I want to do with this is to identify any sources of data that are being stored locally and try to keep them remotely
[2009/12/21 16:14:26] <Volcane> ashp: yeah, i am not quite sold on that approach just yet :) its a bit of a hackjob as a general scripting framework
[2009/12/21 16:14:33] <ashp> monachus: we have backups but what we DON'T have
[2009/12/21 16:14:48] <ashp> is a framework in puppet to specify 'netapp backups' and 'restores' from there
[2009/12/21 16:14:53] <KarlHungus> ashp: i've taken to holding a lot of the data on NFS and having puppet sync it to the nodes
[2009/12/21 16:15:09] <KarlHungus> ashp: like all of my bind9 zones
[2009/12/21 16:15:22] <ashp> I eventually some defines that handle things like say 'if you're installing ldap and the database doesn't exist, 'restore' from the last backup on the netapp automatically to the node
[2009/12/21 16:15:28] <monachus> ah - i would advise against that, unless you're building out a production environment from scratch. i still enforce that some things be done by hand, like restoring databases, etc. it's best to have eyes on that while it happens
[2009/12/21 16:15:33] <KarlHungus> i havent don't ldap that way yet because of bdb
[2009/12/21 16:15:34] <ashp> KarlHungus: Ah, how are you handling the syncing, just rsync from it?
[2009/12/21 16:15:38] <Volcane> ashp: that sounds like the wrong approach to me
[2009/12/21 16:16:00] <Volcane> ashp: restoring data automagically is a screwup waiting to happen :)
[2009/12/21 16:16:02] <monachus> at least for the primary db/ldap/whatever
[2009/12/21 16:16:05] <KarlHungus> ashp: well, i mount the export on the node, then tell puppet to source things i define in the service definitions from the nfs mount
[2009/12/21 16:16:12] <monachus> secondaries we just pop up w/ puppet
[2009/12/21 16:16:21] <ashp> Volcane: i know, but it would be so nice to just update the ldap box by formatting it and letting it rebuild from scratch without me doing stuff :)
[2009/12/21 16:16:35] <ashp> KarlHungus: oh, hmm, that makes sense, rather than using source => "puppet"
[2009/12/21 16:16:38] <ashp> for some reason that never occured to me
[2009/12/21 16:16:42] <ashp> is it faster for large data?
[2009/12/21 16:16:55] <KarlHungus> ashp: dns is the most complete example i have. i specify the zone's to load in puppet, as well as the services to notify, etc.
[2009/12/21 16:17:03] @ Abatto_ joined channel #puppet
[2009/12/21 16:17:32] @ Abatto_ left channel #puppet ()
[2009/12/21 16:17:36] <Volcane> KarlHungus: how many zones do you do that with? was the amount of files part of why you use the nfs approach and not copying zones out with puppet?
[2009/12/21 16:17:44] <KarlHungus> then that copies the data from the mountpoint and set things up. failing gracefully if the zone doesnt exist
[2009/12/21 16:17:55] <KarlHungus> Volcane: i think i'm at or just under 2k zones
[2009/12/21 16:18:01] <Volcane> KarlHungus: ah
[2009/12/21 16:18:20] <KarlHungus> but puppet isn't the best fileserver =)
[2009/12/21 16:18:28] <Volcane> yup
[2009/12/21 16:18:40] <Volcane> how do you build named.conf? (assuming bind)
[2009/12/21 16:19:30] @ mindless left channel #puppet ()
[2009/12/21 16:20:02] <Volcane> wish bind could just include dir/*
[2009/12/21 16:20:53] <KarlHungus> Volcane: i write the zone definitions out using @@ then concat them
[2009/12/21 16:21:00] @ pjsz joined channel #puppet
[2009/12/21 16:21:13] @ Quit: bug:
[2009/12/21 16:21:15] <Volcane> nods, ditto, feckloads of resources, nameservers takes yonks to run
[2009/12/21 16:21:47] @ Ramonster joined channel #puppet
[2009/12/21 16:22:11] <KarlHungus> yup
[2009/12/21 16:22:22] <Volcane> 0.25 made such a huge diff on those boxes though
[2009/12/21 16:22:28] <Volcane> 100s of seconds down to 10s
[2009/12/21 16:23:19] <Volcane> except on the craptaclar vmware junk
[2009/12/21 16:26:13] <KarlHungus> yeah. same thing here. keeping all of the zone files and records as @@ resources and building them from puppet was not an option for me ;)
[2009/12/21 16:26:38] <Volcane> i dont export them (exported resources just doesnt work for me)
[2009/12/21 16:26:58] <monachus> after my work w/ nagios over the last several days i'm not sold on @@ either
[2009/12/21 16:27:01] <Volcane> i have a define like bind::zone which based on it being a master/slave server does the right ting
[2009/12/21 16:27:25] <Volcane> adds named.conf master/slave stuff depending on that and also copies out the zone file
[2009/12/21 16:27:28] <Volcane> else a default one
[2009/12/21 16:27:37] <monachus> i'm rewriting it all now to dump files from templates into /etc/nagios/conf.d and source them into nagios
[2009/12/21 16:27:55] <Volcane> monachus: i have many masters far from each other, so cant really do stored confs
[2009/12/21 16:28:03] <monachus> makes sense
[2009/12/21 16:29:16] @ Quit: Djelibeybi: "Leaving"
[2009/12/21 16:29:23] @ Quit: whaley: Remote closed the connection
[2009/12/21 16:30:09] <KarlHungus> Volcane: yeah. this is the second iteration of my bind module, and its still a far cry what what i hope it will beocme
[2009/12/21 16:31:10] @ Quit: bodepd:
[2009/12/21 16:31:32] <Volcane> i also dont copy out the zone files to slaves, just set them up properly to do zone transfers from the master
[2009/12/21 16:31:42] <Volcane> saves on the slow puppeting all the time
[2009/12/21 16:31:43] <LinuxCode> same here
[2009/12/21 16:31:50] <LinuxCode> also you can keep a hidden master
[2009/12/21 16:31:51] @ bug joined channel #puppet
[2009/12/21 16:32:00] <Volcane> yup, zactly the same
[2009/12/21 16:32:23] * LinuxCode locked his puppetmaster out that way though
[2009/12/21 16:32:24] <monachus> i use djbdns and nictool for all our servers
[2009/12/21 16:32:25] <LinuxCode> rofl
[2009/12/21 16:32:32] <ashp> i use powerdns just to be difficult
[2009/12/21 16:32:33] <LinuxCode> slaves needed to killa zone
[2009/12/21 16:32:39] <LinuxCode> to renable
[2009/12/21 16:32:50] <KarlHungus> yeah, djbdns makes slave configurations MUCH simpler
[2009/12/21 16:32:52] <LinuxCode> but non could get back to the puppetmaster rofl
[2009/12/21 16:32:56] <Volcane> ashp: i use powerdns just for my dynamic stff
[2009/12/21 16:33:01] @ Quit: Mick27: "Leaving"
[2009/12/21 16:33:12] <LinuxCode> KarlHungus, how so ?
[2009/12/21 16:33:14] <KarlHungus> no need to define the zone on the slave. just do it on the master and make the slave server replicate * from the master
[2009/12/21 16:33:20] <LinuxCode> beause you have to rsync ?
[2009/12/21 16:33:25] <LinuxCode> ohh ok
[2009/12/21 16:33:43] * LinuxCode never used djbdns
[2009/12/21 16:33:49] <KarlHungus> but the internet runs on bind ;)
[2009/12/21 16:33:53] <KarlHungus> because its fast
[2009/12/21 16:34:15] <LinuxCode> I recall some issue with compliance with djbdns
[2009/12/21 16:34:22] <LinuxCode> cant recall what it was now though
[2009/12/21 16:34:25] <joe-mac> i like dnsmasq :-P
[2009/12/21 16:34:31] <LinuxCode> I think something ipv6 related
[2009/12/21 16:34:36] <LinuxCode> some time ago
[2009/12/21 16:34:48] <Volcane> hate how powerdns does NXDOMAIN if you CNAME to a external domain and recursion is disabled
[2009/12/21 16:34:49] <KarlHungus> joe-mac: that can't be configured as an authority though, afaik
[2009/12/21 16:37:18] <joe-mac> yea i know, it's great on small networks thiogh, like installer networks
[2009/12/21 16:38:25] @ docelic_ joined channel #puppet
[2009/12/21 16:38:32] <LinuxCode> [21:34] <Volcane> hate how powerdns does NXDOMAIN if you CNAME to a external domain and recursion is disabled
[2009/12/21 16:38:37] <LinuxCode> happens in bind too mate
[2009/12/21 16:38:52] <LinuxCode> unless you got internal views
[2009/12/21 16:39:06] <LinuxCode> or allowed local query
[2009/12/21 16:39:11] <Volcane> LinuxCode: doesnt.
[2009/12/21 16:39:25] <Volcane> LinuxCode: it returns the cname, but doesnt also set NXDOMAIN
[2009/12/21 16:39:35] <LinuxCode> ohhh
[2009/12/21 16:39:36] @ Quit: giskard_: Remote closed the connection
[2009/12/21 16:39:36] <Volcane> LinuxCode: powerdns returns the cname, and a NXDOMAIN
[2009/12/21 16:39:41] <LinuxCode> i get you
[2009/12/21 16:39:49] <LinuxCode> I thought going down the line
[2009/12/21 16:39:52] <LinuxCode> nvm
[2009/12/21 16:40:00] <LinuxCode> ignore me...
[2009/12/21 16:40:23] <Volcane> LinuxCode: powerdns - and i can kind of see where they come from - say thats the right behaviour, it's a cname for a remote host, its not a recurser so it has to say nxdomain
[2009/12/21 16:40:47] <Volcane> LinuxCode: except no1 else has historically interpreted it that way, so when pdns says CNAME foo, NXDOMAIN, all they see is NXDOMAIN and says fail
[2009/12/21 16:41:02] <LinuxCode> yeh
[2009/12/21 16:41:03] <Volcane> LinuxCode: instead of asking their local resolver for the cname
[2009/12/21 16:41:09] <LinuxCode> sounds a bit weird
[2009/12/21 16:41:22] <LinuxCode> as it should only report for whatit has been delegated
[2009/12/21 16:41:23] <Volcane> is very irritating
[2009/12/21 16:43:31] <Volcane> anyway pdns is pretty neat i like the pipe backend
[2009/12/21 16:44:44] @ Quit: toi: Read error: 113 (No route to host)
[2009/12/21 16:46:05] @ Quit: themurph: Success
[2009/12/21 16:47:02] <KarlHungus> Volcane: do you use the opensource version?
[2009/12/21 16:47:26] <Volcane> yes
[2009/12/21 16:47:30] <KarlHungus> hrm, is it only opensource now?
[2009/12/21 16:47:35] <Volcane> think so
[2009/12/21 16:47:37] <Volcane> not sure
[2009/12/21 16:47:40] @ Quit: diranged: "Leaving"
[2009/12/21 16:47:40] <KarlHungus> interesting
[2009/12/21 16:47:43] <Volcane> i just use it for my ruby-pdns thing
[2009/12/21 16:47:54] <ashp> i never did anything fancy with it, just mysql-pdns
[2009/12/21 16:47:57] <KarlHungus> we had it in place a few years ago because we had ultradns
[2009/12/21 16:48:07] <KarlHungus> and for some reason they wanted us to use pdns
[2009/12/21 16:49:48] <LinuxCode> Volcane, btw, thanks again for the help the other week
[2009/12/21 16:50:00] <LinuxCode> I was able to reuse some of the stuff I learned
[2009/12/21 16:50:06] <Volcane> LinuxCode: sweet
[2009/12/21 16:50:10] <LinuxCode> very useful indeed!
[2009/12/21 16:50:24] <Volcane> what was it i helped u with again? :)
[2009/12/21 16:50:32] @ Quit: Cyis: "Ex-Chat"
[2009/12/21 16:50:35] <LinuxCode> hehe
[2009/12/21 16:50:42] <LinuxCode> that is what a good helper should ask...
[2009/12/21 16:51:01] <LinuxCode> I needed to go through each if and get each ifs ip
[2009/12/21 16:51:10] <LinuxCode> reuased that in my iptables module now
[2009/12/21 16:51:11] <Volcane> oh right yeah
[2009/12/21 16:51:18] <Volcane> all coming back to me now :)
[2009/12/21 16:51:23] <LinuxCode> to allow each ip on the system into the iptables door
[2009/12/21 16:51:31] <LinuxCode> so to speak...
[2009/12/21 16:52:01] <LinuxCode> prevent anything from traversing a chain...
[2009/12/21 16:52:04] <ashp> our security guy wants me to do local iptables for all boxes :/
[2009/12/21 16:52:08] <LinuxCode> unless it is meant for us
[2009/12/21 16:52:25] <LinuxCode> ashp, define local
[2009/12/21 16:52:32] <LinuxCode> as in..... by hand ?
[2009/12/21 16:52:34] <LinuxCode> lol
[2009/12/21 16:52:57] <bda> ashp: Scripting iptables for per-host rules isn't hard.
[2009/12/21 16:53:05] <bda> And defense in depth is good stuff.
[2009/12/21 16:53:14] <bda> Though it can also lead to major headaches. :)
[2009/12/21 16:53:27] <ashp> no, he doesn't care how it happens, it's just currently we rely exclusively on external firewalls
[2009/12/21 16:53:35] <LinuxCode> ashp, ohhh
[2009/12/21 16:53:37] <ashp> so i'll have to steal volcanes work again and layer all the rules into modules
[2009/12/21 16:53:42] <ashp> it's just a lot of effort :)
[2009/12/21 16:53:43] <LinuxCode> ashp, well, either od it in puppet then
[2009/12/21 16:53:55] <LinuxCode> or write a script and ssh stuff to each box
[2009/12/21 16:54:05] <LinuxCode> f he is really paranoid
[2009/12/21 16:54:07] <LinuxCode> i
[2009/12/21 16:54:14] <ashp> yeah, it'll be all puppetized, forget doing it any other way
[2009/12/21 16:54:32] <bda> I'd like to be able to do that, but ipf is garbage.
[2009/12/21 16:54:34] <bda> (Solaris)
[2009/12/21 16:54:49] <ashp> use ipfilter?
[2009/12/21 16:54:53] @ Quit: docelic: Read error: 110 (Connection timed out)
[2009/12/21 16:54:58] <bda> ipf is ipfilter.
[2009/12/21 16:55:01] <bda> It's crap.
[2009/12/21 16:55:07] <bda> Falls down under moderate load.
[2009/12/21 16:55:12] <bda> Ridiculous to configure.
[2009/12/21 16:55:25] <bda> I don't think it's just that I'm spoiled by pf... :)
[2009/12/21 16:55:38] <bda> (I like Solaris a lot, but some things still annoy the crap out of me)
[2009/12/21 16:56:02] <bda> I wonder how much beer I'd have to feed dlg to port pf to Solaris.
[2009/12/21 16:56:49] @ Quit: mvn071: "Leaving"
[2009/12/21 16:57:10] <LinuxCode> bda, there isa snag in your equation
[2009/12/21 16:57:17] <LinuxCode> its called the beer factor
[2009/12/21 16:57:26] <LinuxCode> more beer = less work
[2009/12/21 16:57:34] <bda> LinuxCode: No, he's an OpenBSD hacker. More beer is like adding more awesome.
[2009/12/21 16:57:34] <LinuxCode> lol
[2009/12/21 16:57:43] <LinuxCode> bda, haha ok
[2009/12/21 16:58:08] <LinuxCode> bda, I saw a pic of a number of openbsd folks, with two hooter chicks
[2009/12/21 16:58:21] <LinuxCode> maybe that would be even more encouragement ;-p
[2009/12/21 16:58:29] <bda> Haven't seen that one.
[2009/12/21 16:58:43] <LinuxCode> hold
[2009/12/21 17:00:11] <LinuxCode> hmm cant find it now
[2009/12/21 17:00:34] @ nakano_ is now known as nakano
[2009/12/21 17:00:52] @ Quit: lilmatt: Client Quit
[2009/12/21 17:00:53] @ giskard joined channel #puppet
[2009/12/21 17:02:42] <LinuxCode> typical. I looked at it the other day and now cant find it
[2009/12/21 17:02:44] <LinuxCode> ;-\|
[2009/12/21 17:04:24] <LinuxCode> http://img6.imageshack.us/img6/2230/hootersi.jpg
[2009/12/21 17:04:32] <LinuxCode> this pic is safe for work!
[2009/12/21 17:04:37] <bda> huh.
[2009/12/21 17:04:40] <LinuxCode> just to clarify
[2009/12/21 17:04:55] <LinuxCode> girl on the left doesnt look to happy lol
[2009/12/21 17:05:08] <bda> The girl on the left looks rather concerned.
[2009/12/21 17:05:09] <bda> Yeah.
[2009/12/21 17:05:38] @ poison joined channel #puppet
[2009/12/21 17:05:43] <BarnacleBob> lol
[2009/12/21 17:05:50] <kjetilho> hahaha
[2009/12/21 17:06:54] <kjetilho> are the guys names I might have heard of?
[2009/12/21 17:11:40] @ jfreeman joined channel #puppet
[2009/12/21 17:12:17] @ jab_doa joined channel #puppet
[2009/12/21 17:14:00] @ Quit: gebi: Read error: 110 (Connection timed out)
[2009/12/21 17:17:09] @ Quit: poison: Remote closed the connection
[2009/12/21 17:21:42] <BarnacleBob> blargh. wasn't there a script somewhere to remove a node from storeconfigs?
[2009/12/21 17:25:28] @ pinko_ joined channel #puppet
[2009/12/21 17:25:37] @ pinko_ left channel #puppet ()
[2009/12/21 17:26:42] <BarnacleBob> so
[2009/12/21 17:26:57] <BarnacleBob> i'm getting a err: undefined method `each' for nil:NilClass on some of my nodes
[2009/12/21 17:27:04] <BarnacleBob> but i have no idea from what or where or even how to find out
[2009/12/21 17:27:13] <BarnacleBob> --debug on both the puppetmaster and client show nothing but the error
[2009/12/21 17:27:19] <BarnacleBob> can i make it give me a stack trace or something?
[2009/12/21 17:27:23] <whack> BarnacleBob: make any template changes recently?
[2009/12/21 17:27:30] <kjetilho> BarnacleBob: --trace
[2009/12/21 17:27:50] <BarnacleBob> well i recently discovered the problem but i bet its a template change i made a while ago
[2009/12/21 17:28:57] <BarnacleBob> blargh i wonder whats causing it
[2009/12/21 17:29:28] @ Quit: giskard: Remote closed the connection
[2009/12/21 17:35:18] <BarnacleBob> i'm about to break into it with gdb
[2009/12/21 17:35:56] <BarnacleBob> its failing in merging tags
[2009/12/21 17:37:43] @ whaley joined channel #puppet
[2009/12/21 17:42:23] <BarnacleBob> when you do --tags does it still compile the full manifest and only apply part of it?
[2009/12/21 17:42:52] <kjetilho> the whole manifest is compiled, but templates aren't evaluated, I think
[2009/12/21 17:43:39] <BarnacleBob> well if thats the case then my error is not in a template
[2009/12/21 17:43:53] <BarnacleBob> cause i tried to do a tag for just one class and i get it for everything i've tried
[2009/12/21 17:44:05] <BarnacleBob> i need to find that script to delete a node from storeconfigs
[2009/12/21 17:44:10] <BarnacleBob> i think thats the problem
[2009/12/21 17:53:01] @ Quit: Ramonster: Client Quit
[2009/12/21 17:54:20] <BarnacleBob> sweet
[2009/12/21 17:54:22] <BarnacleBob> that fixed it
[2009/12/21 17:55:08] @ lilmatt joined channel #puppet
[2009/12/21 17:56:50] @ Quit: jab_doa: "Verlassend"
[2009/12/21 18:00:24] @ lero joined channel #puppet
[2009/12/21 18:01:26] <lero> hi. i'm using puppet 2.5.1 in both servers and have a class like this: http://dpaste.com/136343/
[2009/12/21 18:01:47] <lero> but it's not working as supposed to, there's something i'm doing wrong?
[2009/12/21 18:02:04] @ Djelibeybi joined channel #puppet
[2009/12/21 18:02:10] <lero> for example, i have haldaemon to stop and ensure that's not enabled. it disables it, but don't stop it.
[2009/12/21 18:02:41] <lero> even doing --test, i just see about 5-8 services being checked
[2009/12/21 18:03:23] <BarnacleBob> by default the service type just looks for the service name in the process table
[2009/12/21 18:03:30] <BarnacleBob> if that doesn't match it wouldn't know that its running
[2009/12/21 18:03:34] <BarnacleBob> and so wouldn't stop it
[2009/12/21 18:04:03] <lero> hmmm
[2009/12/21 18:04:18] <lero> it doesn't try to service haldaemon stop ?
[2009/12/21 18:04:21] <lero> it's a redhat server
[2009/12/21 18:04:33] @ Quit: jhulten: "Lost terminal"
[2009/12/21 18:04:41] <kjetilho> it uses the stop function, but not the status
[2009/12/21 18:04:45] <BarnacleBob> essentially if it goes ps axuw \| grep -i haldaemon and doesn't see anything it wont try to stop it
[2009/12/21 18:04:48] <kjetilho> add hasstatus => true
[2009/12/21 18:07:28] <lero> according to the website, if operatingsystem == redhatfedorasusecentosslesoelovm it uses chkconfig and service binaries, so it would stop it using 'service haldaemon stop' right?
[2009/12/21 18:07:54] <whack> many init.d status scripts aren't written the same way and puppet doesn't handle the output correctly.
[2009/12/21 18:08:10] <lero> hmm
[2009/12/21 18:08:24] <lero> let me try
[2009/12/21 18:09:18] <lero> kjetilho, hasstatus does the trick :D
[2009/12/21 18:09:32] <lero> so it first tries 'status' them stop
[2009/12/21 18:09:47] <kjetilho> btw, it will use stop; start rather than restart too, without hasrestart => true
[2009/12/21 18:10:20] <lero> yeah, i got it
[2009/12/21 18:10:57] <lero> but still, i need to put hasstatus = true even if i just need the daemon to be off?
[2009/12/21 18:17:52] @ Ramonster joined channel #puppet
[2009/12/21 18:20:29] <lero> kjetilho, so, for every service that has 'status' i need to specify 'hasstatus => true', even if i just need to disable the service?
[2009/12/21 18:20:43] <BarnacleBob> lero, no you don't. like i said in some cases puppet can't divine if the services is running or not proplery
[2009/12/21 18:21:01] <BarnacleBob> in which case you need to tell it how (either hasstatus,pattern,or status command)
[2009/12/21 18:24:13] @ pting joined channel #puppet
[2009/12/21 18:25:44] <kjetilho> lero: I suggest you put a Service { hasstatus => true } in a suitable location
[2009/12/21 18:26:17] <kjetilho> saves you the bother when the service name doesn't match the process
[2009/12/21 18:27:15] @ Quit: jes5: "Leaving."
[2009/12/21 18:28:01] <BarnacleBob> not all services have a status check
[2009/12/21 18:28:05] <BarnacleBob> not even on redhat
[2009/12/21 18:32:17] @ diranged joined channel #puppet
[2009/12/21 18:33:06] <diranged> if i do... $var=foo, define test ( $a, $b ) { $newvar = "$a $b $var" } ... will that work?
[2009/12/21 18:33:40] @ Quit: kaptk2: "Leaving."
[2009/12/21 18:34:12] <BarnacleBob> yes
[2009/12/21 18:34:30] <diranged> thought so.. ok cant figure out why im getting this ccould not find relatinoship target '' message
[2009/12/21 18:35:30] <lero> how about 'network' script, the status says how much configured devides it has and who is active... puppet can read it? or in this case i don't need to put 'hasstatus => true'?
[2009/12/21 18:35:54] <BarnacleBob> i would have the network be an exec
[2009/12/21 18:36:24] <BarnacleBob> make changes to interfaces and then do notify=>Exec["network_restart"] or something
[2009/12/21 18:36:35] <BarnacleBob> otherwise you can end up with puppet stopping your network and breaking things
[2009/12/21 18:37:27] <BarnacleBob> lero, puppet only looks as the exit status of the command
[2009/12/21 18:37:31] <BarnacleBob> the exit code
[2009/12/21 18:37:34] <BarnacleBob> it doesn't read any output
[2009/12/21 18:37:37] <BarnacleBob> for services
[2009/12/21 18:38:56] @ Quit: pjsz:
[2009/12/21 18:41:40] <lero> ok
[2009/12/21 18:41:57] <lero> one more thing
[2009/12/21 18:42:43] <lero> i've put hasstatus => true in the messagebus (dbus) and it doesn't stop it too. it's because the daemon itself runs as 'dbus-daemon' ?
[2009/12/21 18:43:47] <BarnacleBob> no
[2009/12/21 18:44:02] <BarnacleBob> it calls /etc/init.d/dbus stop
[2009/12/21 18:44:06] <BarnacleBob> or whatever
[2009/12/21 18:44:15] <diranged> whats the command again to output to the log file? (usually for debugging)P
[2009/12/21 18:44:17] <BarnacleBob> its likely because the messagebus init.d script doesn't have a status command
[2009/12/21 18:44:25] <lero> it has :~
[2009/12/21 18:44:31] <BarnacleBob> diranged, err notice etc etc
[2009/12/21 18:44:39] @ Quit: ashp: "leaving"
[2009/12/21 18:44:43] @ ashp joined channel #puppet
[2009/12/21 18:44:47] <BarnacleBob> lero, it does? run it then and then do a echo $?
[2009/12/21 18:44:54] <BarnacleBob> and see if it returns 0 or 1
[2009/12/21 18:45:09] <lero> 0
[2009/12/21 18:45:19] <BarnacleBob> puppet should try to stop it
[2009/12/21 18:45:21] <kjetilho> so does the stop action work?
[2009/12/21 18:45:34] <lero> [root@plesk ~]# /etc/init.d/messagebus stop
[2009/12/21 18:45:34] <lero> Stopping system message bus: [ OK ]
[2009/12/21 18:45:34] <lero> [root@plesk ~]# pgrep dbus
[2009/12/21 18:45:36] @ M- joined channel #puppet
[2009/12/21 18:45:43] <lero> yeah it does the job
[2009/12/21 18:45:48] <BarnacleBob> lero, run puppetd --test --debug \| grep -i messagebus
[2009/12/21 18:45:50] <kjetilho> so? :-)
[2009/12/21 18:45:52] <BarnacleBob> you can see the commands it runs
[2009/12/21 18:46:06] <lero> hmmm
[2009/12/21 18:46:09] <lero> debug :D
[2009/12/21 18:46:22] <BarnacleBob> debug is your friend
[2009/12/21 18:46:27] <kjetilho> might want to add --color=false
[2009/12/21 18:46:36] <BarnacleBob> if you pass it through grep its not colorized
[2009/12/21 18:46:41] <BarnacleBob> as the output is not the terminal
[2009/12/21 18:46:42] <lero> i thought that --test was the 'debug' heheh
[2009/12/21 18:46:50] <BarnacleBob> heh
[2009/12/21 18:46:50] <BarnacleBob> kinda
[2009/12/21 18:46:58] <BarnacleBob> its verbose + one run + no cache
[2009/12/21 18:47:00] <kjetilho> BarnacleBob: hmm, did for me last I checked?
[2009/12/21 18:47:05] <kjetilho> perhaps fixed in 0.25?
[2009/12/21 18:47:31] <BarnacleBob> kjetilho, i bet its very environment dependent. on all my machines and oses its "done the right thing" by itself
[2009/12/21 18:47:35] <lero> ah nice
[2009/12/21 18:47:45] <lero> with debug i can play and check one by one ;)
[2009/12/21 18:48:06] <lero> btw, it's ok to run puppet with ruby-enterprise?
[2009/12/21 18:48:35] <BarnacleBob> lero, if you can figure out what they are taged with you can do --tags <thing> also to speed up your runs
[2009/12/21 18:49:00] <BarnacleBob> this ginger ale is totally not hitting the spot
[2009/12/21 18:52:40] @ Robbie_ joined channel #puppet
[2009/12/21 18:52:43] @ Quit: future-dead:
[2009/12/21 18:54:41] @ future-dead joined channel #puppet
[2009/12/21 18:57:37] @ lilmatt_ joined channel #puppet
[2009/12/21 18:58:41] @ Quit: lilmatt: Read error: 104 (Connection reset by peer)
[2009/12/21 19:04:14] @ Quit: LinuxCode: "Connection Closed"
[2009/12/21 19:07:46] @ Quit: Robbie_: Remote closed the connection
[2009/12/21 19:12:16] @ rickbradley is now known as rickbradley\|away
[2009/12/21 19:15:14] @ Quit: re_:
[2009/12/21 19:16:19] @ Quit: pheezy: Remote closed the connection
[2009/12/21 19:17:08] @ Quit: ghg:
[2009/12/21 19:19:19] @ re_ joined channel #puppet
[2009/12/21 19:20:30] @ Quit: jellis-real_: Client Quit
[2009/12/21 19:24:27] @ Quit: diranged: Read error: 60 (Operation timed out)
[2009/12/21 19:28:34] @ Quit: alban2: Read error: 113 (No route to host)
[2009/12/21 19:30:24] <explody> is there some trick to getting "force => true" in a file definition? I'm replacing 2 directories with links, and neither is succeeding with "Could not back up; will not replace"
[2009/12/21 19:30:40] <explody> getting it to work, I mean
[2009/12/21 19:31:47] <BarnacleBob> turn backup off?
[2009/12/21 19:32:04] <explody> just noticed that
[2009/12/21 19:32:08] @ Quit: yarihm: "This computer has gone to sleep"
[2009/12/21 19:32:16] <explody> I figured force would take precedence, but I guess not
[2009/12/21 19:32:29] @ Quit: WALoeIII: "Bai."
[2009/12/21 19:33:25] <explody> yeah that did it
[2009/12/21 19:36:42] <eric0> i'm generating puppet CA certs out of band sort of following PuppetScalability -- am i right in thinking that each of the subordinate CA certs need to have their CN be the real hostname and a subjectAltName=DNS:puppet,DNS:puppet.me.com ...?
[2009/12/21 20:02:39] @ ghg joined channel #puppet
[2009/12/21 20:02:57] @ Quit: crdant: Read error: 110 (Connection timed out)
[2009/12/21 20:03:16] @ Quit: rsquared: Read error: 104 (Connection reset by peer)
[2009/12/21 20:05:47] @ Quit: brothers: Read error: 110 (Connection timed out)
[2009/12/21 20:08:39] <ashp> I don't get the closing of: http://projects.reductivelabs.com/issues/2949
[2009/12/21 20:09:03] <ashp> It breaks my entire puppet setup and leaves me unable to run any nodes
[2009/12/21 20:09:10] <ashp> and yet it just got closed without any followup.
[2009/12/21 20:09:16] <ashp> I even have a real support case open on it. :/
[2009/12/21 20:13:19] <BarnacleBob> he totally didn't even understand what you were talking about
[2009/12/21 20:18:09] <z00dax> anyone done conditional manifests ? eg. I want file{'/home/z00dax/.ssh/authorized_keys': source => '<blah>' };
[2009/12/21 20:18:19] <z00dax> but only if <blah> exists on the fileserver
[2009/12/21 20:19:01] <BarnacleBob> i've done something similar in a template
[2009/12/21 20:19:08] <whack> I don't think you can conditionalize on whether the filesserver has your file
[2009/12/21 20:19:15] <whack> you can, though, give it multiple options for sources
[2009/12/21 20:19:18] <BarnacleBob> you can do
[2009/12/21 20:19:19] <whack> and it'll pick the first one that exists
[2009/12/21 20:19:27] <z00dax> whack: thats not the same thing
[2009/12/21 20:19:36] <z00dax> BarnacleBob: share ?
[2009/12/21 20:20:58] <z00dax> I dont really want to go down the route of doing a recursive manage for every users homedir
[2009/12/21 20:21:54] <BarnacleBob> content=>inline_template('<% if File.exists?("/path/to/file") then -%><% File.open("/path/to/file","r") { \|l\| puts l } %->')
[2009/12/21 20:22:23] <BarnacleBob> z00dax, you can easily just manage it with the ssh_authorized_keys type
[2009/12/21 20:22:32] <BarnacleBob> and put the key contents in the manifest
[2009/12/21 20:22:39] <z00dax> BarnacleBob: that doesnt work for .vimrc
[2009/12/21 20:22:45] <BarnacleBob> true
[2009/12/21 20:22:48] <BarnacleBob> so
[2009/12/21 20:22:52] <z00dax> or .screenrc
[2009/12/21 20:22:53] <BarnacleBob> that snippet will work ish
[2009/12/21 20:22:55] <whack> z00dax: managing user directories with recurse and stuff == sad panda
[2009/12/21 20:23:00] <BarnacleBob> its a total hack tho
[2009/12/21 20:23:09] <BarnacleBob> and it will only work if the puppetmaster has the file
[2009/12/21 20:23:27] <whack> z00dax: the puppet client (as of 0.25.1) isn't really smart about how it searches things. People with big directories (where big == lots of files, even outside those managed by puppet) will cause puppetd to scan the entire directory
[2009/12/21 20:23:28] <BarnacleBob> oh
[2009/12/21 20:23:37] <whack> I use rsync + cron to push home directory files
[2009/12/21 20:23:42] <z00dax> BarnacleBob: humm. thats not really much better than what whack said, have a failback default and set something for every user that does not have have <resouce>.username set
[2009/12/21 20:23:44] <BarnacleBob> z00dax, you need an end in there. too. i suck at ruby
[2009/12/21 20:24:21] <BarnacleBob> yeah just depends on what your trying to do
[2009/12/21 20:24:56] <z00dax> aim: have puppet not look at specific files, unless there is a need to. And the 'need' being that look at those if the user has specific content there.
[2009/12/21 20:25:07] <whack> you could also maybe make a parser function that lets you conditionally add resources if a file exists on the fileserver
[2009/12/21 20:25:21] <eric0> z00dax: we dont recursively manage everyones homedir, but we do have a puppet filserver mountpoint /puppet/users/<everybody>/dotfiles that we recursively copy into each $HOME
[2009/12/21 20:25:26] @ crdant joined channel #puppet
[2009/12/21 20:26:10] <eric0> so we neither have to individually specify .kshrc vs .zshrc , nor get screwed when someone puts a giant corefile in their homedir on puppet server.
[2009/12/21 20:26:14] @ Quit: hggh: Remote closed the connection
[2009/12/21 20:26:16] <BarnacleBob> z00dax, yeah thats tricky
[2009/12/21 20:26:23] @ hggh joined channel #puppet
[2009/12/21 20:27:19] <BarnacleBob> i just made everyone check there files into svn and put a resource for it :)
[2009/12/21 20:27:25] <z00dax> eric0: how are you doing that ? with a File or an Exec ?
[2009/12/21 20:28:02] <z00dax> BarnacleBob: that would work sometimes, but i dont want puppet to crap on a dotfile the user sets up himself on the machine, and isnt in puppet
[2009/12/21 20:28:16] <whack> I used to do homedir publishing with file and recurse => true, but as I said earlier, puppetd will locally crawl everyone's homedirectories (even files outside the things to be copied down) which takes ages when folks have lots of files
[2009/12/21 20:28:48] <whack> z00dax: you can do that, doing file { "/home/foo": recurse => true, source => "..." } will only copy files that exist on the fileserver and not modify things that don't
[2009/12/21 20:28:57] <z00dax> which is another reason why I want to get to a state where, if its not in puppet, puppet should not do anything with it ( and yes, I guess the complexity comes from the fact that I dont want to lose my setup-user routine either :) )
[2009/12/21 20:29:03] <whack> but I still recommend cron+rsync, or perhaps exec+rsync if you really need to.
[2009/12/21 20:29:24] <z00dax> whack: puppet's recurse checking is pretty much fail, for anything
[2009/12/21 20:30:05] <z00dax> whack: not very keen on sending people's config foo in cleartext over the net
[2009/12/21 20:30:07] <eric0> z00dax: exactly as whack says, wrapped in a define
[2009/12/21 20:30:31] <z00dax> guess I could do a ssl rsync
[2009/12/21 20:30:39] <whack> z00dax: rsync over ssh, then?
[2009/12/21 20:31:03] <z00dax> erm, opening up production machines to acces config content, password less ?
[2009/12/21 20:31:25] <whack> you are aware there is access control on computers, right? :)
[2009/12/21 20:31:44] <z00dax> sure
[2009/12/21 20:31:54] <z00dax> but then there is also this config management tool, why not use it
[2009/12/21 20:32:04] <whack> you can do it
[2009/12/21 20:32:06] <whack> with recurse => true
[2009/12/21 20:32:12] <whack> or specifying every file you want to copy in the manifest
[2009/12/21 20:32:37] <BarnacleBob> z00dax, they are all ugly. just pick one and roll with it :)
[2009/12/21 20:33:15] <z00dax> yes, I have specified every file - thats ok. I have a policy in place that lets people drop one ( or more ) of the 42 different files into a specific place as <dotfilename>.<username>
[2009/12/21 20:33:32] <whack> do you manage users with puppet?
[2009/12/21 20:33:51] <z00dax> I just dont want puppet to stamp over local machine content, if they dont have that in the right place on the puppetmaster
[2009/12/21 20:34:03] <z00dax> yes, users are managed with puppet
[2009/12/21 20:34:19] <z00dax> well, not them per se, but their accounts on machines.
[2009/12/21 20:34:34] <BarnacleBob> whats wrong with just letting the resource type fail?
[2009/12/21 20:34:35] <whack> you can do this with a custom resource define and something that checks for a file on the server
[2009/12/21 20:34:43] <z00dax> People might get upset, if I were to go around putting ropes around their limbs and trying to make them do stuff
[2009/12/21 20:34:43] <whack> if you really don't want failures
[2009/12/21 20:34:43] <BarnacleBob> when there is no file to copy
[2009/12/21 20:35:07] @ Quit: lak:
[2009/12/21 20:35:12] <whack> if (inline_template("<%= File.exists?(....) %>") ... ) { file { .... } }
[2009/12/21 20:35:19] <whack> or something silly
[2009/12/21 20:35:23] <BarnacleBob> not gonna work
[2009/12/21 20:35:34] <z00dax> BarnacleBob: cost mostly. with a few dozen users, and upto 42 files to check, puppet's taking a fair bit of time to get through the lot, even when it only needs to check an average of 2 files per useraccount
[2009/12/21 20:35:36] <whack> BarnacleBob: should, given inline_template is executed on the puppetmaster?
[2009/12/21 20:36:15] <BarnacleBob> whack, whats it returning. that wouldn't make the erb template return 0
[2009/12/21 20:36:20] <BarnacleBob> i doubt it would work but it might
[2009/12/21 20:36:30] <whack> you check the string
[2009/12/21 20:36:39] <BarnacleBob> oh
[2009/12/21 20:36:40] <BarnacleBob> yeah
[2009/12/21 20:36:42] <whack> <%= File.exists?("foo") %> == "true"
[2009/12/21 20:36:43] <BarnacleBob> that could work
[2009/12/21 20:37:07] <BarnacleBob> z00dax, try doing that. thats probably your best bet
[2009/12/21 20:37:53] * z00dax tries that
[2009/12/21 20:37:59] <BarnacleBob> if inline_template('<%= File.exists?("foo") %> ')=="true" { file{....} }
[2009/12/21 20:38:11] <z00dax> ok, failed
[2009/12/21 20:38:22] <BarnacleBob> parse errors?
[2009/12/21 20:38:25] <z00dax> is the filepath being checked relative to something or is that really from / ?
[2009/12/21 20:38:31] <whack> http://pastebin.com/m4abb0ff9
[2009/12/21 20:38:33] <whack> something like that
[2009/12/21 20:38:37] <BarnacleBob> its not relative if you specify a / first
[2009/12/21 20:38:56] <whack> and then have homefile { "foo": user => "baz" }
[2009/12/21 20:39:00] <z00dax> well, File.exists("/etc/passwd") just failed.
[2009/12/21 20:39:05] <BarnacleBob> forgot the file
[2009/12/21 20:39:14] <whack> exists? not exists
[2009/12/21 20:39:46] <z00dax> yes, I've got the conditional in
[2009/12/21 20:40:03] <z00dax> let me isolate this.
[2009/12/21 20:40:09] * z00dax sets up another puppetmaster
[2009/12/21 20:41:06] <BarnacleBob> lak should just add in a way to run ruby in the manifests
[2009/12/21 20:43:31] <z00dax> so, while my vm builds - another thing is what do you guys do with all the define'd routines ?
[2009/12/21 20:43:41] <whack> put them in modules
[2009/12/21 20:43:53] <z00dax> how do you then call it from outide that module ?
[2009/12/21 20:44:03] <whack> my cronjob define is in modules/cron/manifests/init.pp and is called cron::job
[2009/12/21 20:44:26] <z00dax> humm
[2009/12/21 20:44:38] <whack> same for daemontools, goes in daemontools/manifests/init.pp as daemontools::service
[2009/12/21 20:44:38] <z00dax> so how do you call cron::job with parameters ?
[2009/12/21 20:44:51] <whack> cron::job { "thing": param1 => value, ...; }
[2009/12/21 20:45:05] @ Quit: cynicismic: ""puppetted out""
[2009/12/21 20:45:06] <whack> and you can do require => Cron::Job["thing"] later, etc
[2009/12/21 20:45:22] <z00dax> not sure why, but that didnt work for me when I tried it last
[2009/12/21 20:46:10] <z00dax> I've got lib/ policies/ nodes/ and modules/ ; should refactor some of that stuff into a more regular / mainstream layout
[2009/12/21 20:47:07] * z00dax tests the erb stuff
[2009/12/21 20:47:13] <whack> I have it working, btw
[2009/12/21 20:47:27] <whack> http://pastebin.com/d7cfd3873
[2009/12/21 20:47:59] <BarnacleBob> that rules
[2009/12/21 20:48:01] <whack> I didn't show the case in the pastebin where the file on the fileserver doesn't exist, though
[2009/12/21 20:48:04] <BarnacleBob> i think i'm gonna use it for mine too
[2009/12/21 20:48:04] <whack> but that part works too
[2009/12/21 20:48:14] <whack> I'm sticking with rsync
[2009/12/21 20:48:43] <whack> too many dotfiles and I don't have restrictions on 'only dotfiles' either. I encourage folks to checkin their helper scripts and other tools unique to them
[2009/12/21 20:49:31] @ Quit: ghg:
[2009/12/21 20:49:55] <whack> so really you'd want a custom define to manage your users that calls the homefile define for all dotfiles you wanted to push
[2009/12/21 20:50:16] <whack> so your user management would just become something like customuser { "user1": ...; "user2": ...; }
[2009/12/21 20:52:11] <z00dax> yeah, that works for me as well
[2009/12/21 20:52:30] <whack> cool :)
[2009/12/21 20:52:34] <z00dax> thanks
[2009/12/21 20:52:56] <z00dax> what doesnt work is the calling a defined routine in a module from outside that module
[2009/12/21 20:52:59] @ Quit: BarnacleBob: "This computer has gone to sleep"
[2009/12/21 20:53:10] <z00dax> I wonder if my 0.23 has something to do with it
[2009/12/21 20:53:42] <whack> possibly. the 'best practices' for module layout has changed over time, and the code probably changed with it
[2009/12/21 20:53:55] <whack> so accessing 'foo::bar' may not automatically search the 'foo' module
[2009/12/21 20:54:19] <whack> I dont' remember trying that in my past job, but it does work in 0.24.8 and above
[2009/12/21 20:54:25] <whack> worst case, put it in site.pp
[2009/12/21 20:54:38] <whack> if you need it everywhere
[2009/12/21 21:03:42] <z00dax> naw, I've got to get all the clients updated to 0.24.8 anyway, once thats done, I'll revisit
[2009/12/21 21:04:43] <z00dax> btw, now with the only-check-if-user-specified snippet in there, puppet run time for just the user management has gone from 6 min 21 sec to 0 min 27 sec
[2009/12/21 21:05:05] @ scylla joined channel #puppet
[2009/12/21 21:05:54] <whack> sweet :)
[2009/12/21 21:06:00] <z00dax> thanks for your help on that
[2009/12/21 21:06:31] @ Quit: ezmobius: "Leaving..."
[2009/12/21 21:10:58] @ lak joined channel #puppet
[2009/12/21 21:11:25] @ alexine_dsouza joined channel #puppet
[2009/12/21 21:22:58] @ Quit: alfism: "http://opensolaris.com/"
[2009/12/21 21:28:54] @ Quit: rmiller4pi8: Read error: 110 (Connection timed out)
[2009/12/21 21:44:01] @ rickbradley\|away is now known as rickbradley
[2009/12/21 21:44:58] @ Cyis joined channel #puppet
[2009/12/21 21:50:24] @ Quit: lak:
[2009/12/21 21:57:55] @ Quit: mikerowehl:
[2009/12/21 22:06:07] @ rmiller4pi8 joined channel #puppet
[2009/12/21 22:09:13] @ Quit: crdant: "Leaving."
[2009/12/21 22:16:18] @ Quit: pting: "Ex-Chat"
[2009/12/21 22:23:39] @ pinoyskull joined channel #puppet
[2009/12/21 22:25:17] @ ezmobius joined channel #puppet
[2009/12/21 22:25:43] @ Quit: jaredrhine: Read error: 113 (No route to host)
[2009/12/21 22:28:59] @ Quit: pinoyskull: "Leaving"
[2009/12/21 22:33:11] @ Quit: lero: "Leaving"
[2009/12/21 22:43:50] @ Quit: ezmobius: Remote closed the connection
[2009/12/21 22:56:41] @ Quit: whaley: Remote closed the connection
[2009/12/21 23:08:03] @ lak joined channel #puppet
[2009/12/21 23:08:54] @ happymcplaksin joined channel #puppet
[2009/12/21 23:10:23] @ Quit: lak: Client Quit
[2009/12/21 23:17:47] @ Quit: erm_: Read error: 104 (Connection reset by peer)
[2009/12/21 23:31:00] @ jaredrhine joined channel #puppet
[2009/12/21 23:36:19] @ Quit: bug:
[2009/12/21 23:41:53] @ bug joined channel #puppet
[2009/12/21 23:43:48] @ lak joined channel #puppet
[2009/12/21 23:48:20] @ Quit: lilmatt_: Client Quit
[2009/12/21 23:49:54] @ Quit: joe-mac1: Client Quit

Generated by irclog2html.py 2.6 by Marius Gedminas - find it at mg.pov.lt!