Stephen Gran [Wed, 25 Nov 2009 21:18:21 +0000 (21:18 +0000)]
stop overriding cannot_route_message
Signed-off-by: Stephen Gran <steve@lobefin.net>
Stephen Gran [Wed, 25 Nov 2009 21:02:58 +0000 (21:02 +0000)]
stop using a verify and a real router that are different for virtual domain aliases
Signed-off-by: Stephen Gran <steve@lobefin.net>
Peter Palfrader [Mon, 23 Nov 2009 19:39:49 +0000 (20:39 +0100)]
Merge branch 'master' of ssh://handel.debian.org/srv/puppet.debian.org/git/dsa-puppet
* 'master' of ssh://handel.debian.org/srv/puppet.debian.org/git/dsa-puppet:
revert RLimitMem for merkel altogether
up the RLimitMem for hyperestraier
voltaire doesn't need special handling anymore
and the right path
and quotes
what could possibly go wrong
Peter Palfrader [Mon, 23 Nov 2009 19:39:29 +0000 (20:39 +0100)]
If ~buildd.bootscript is executeable, run it instead of running buildd-watcher on clean boot with delete-on-boot
Stephen Gran [Wed, 18 Nov 2009 00:41:10 +0000 (00:41 +0000)]
revert RLimitMem for merkel altogether
Signed-off-by: Stephen Gran <steve@lobefin.net>
Stephen Gran [Tue, 17 Nov 2009 22:33:52 +0000 (22:33 +0000)]
up the RLimitMem for hyperestraier
Signed-off-by: Stephen Gran <steve@lobefin.net>
Stephen Gran [Tue, 17 Nov 2009 22:05:42 +0000 (22:05 +0000)]
voltaire doesn't need special handling anymore
Signed-off-by: Stephen Gran <steve@lobefin.net>
Stephen Gran [Tue, 17 Nov 2009 17:56:06 +0000 (17:56 +0000)]
and the right path
Signed-off-by: Stephen Gran <steve@lobefin.net>
Stephen Gran [Tue, 17 Nov 2009 17:53:18 +0000 (17:53 +0000)]
and quotes
Signed-off-by: Stephen Gran <steve@lobefin.net>
Stephen Gran [Tue, 17 Nov 2009 17:52:21 +0000 (17:52 +0000)]
Merge branch 'master' of ssh://handel.debian.org/srv/puppet.debian.org/git/dsa-puppet
Stephen Gran [Tue, 17 Nov 2009 17:52:11 +0000 (17:52 +0000)]
what could possibly go wrong
Signed-off-by: Stephen Gran <steve@lobefin.net>
Peter Palfrader [Mon, 16 Nov 2009 17:56:44 +0000 (18:56 +0100)]
Merge branch 'master' of ssh://handel.debian.org/srv/puppet.debian.org/git/dsa-puppet
* 'master' of ssh://handel.debian.org/srv/puppet.debian.org/git/dsa-puppet:
Instead of accepting mail from all over the internet and queueing it
and now the empty file can go too
nothing uses rcpthosts any more
master also gets userdirs
Peter Palfrader [Mon, 16 Nov 2009 17:56:34 +0000 (18:56 +0100)]
Allow wbadm to dump their pg cluster completely
Stephen Gran [Mon, 16 Nov 2009 00:43:41 +0000 (00:43 +0000)]
Instead of accepting mail from all over the internet and queueing it
when the load is too high, back off and only accept mail from debian
hosts when the load hits a threshhold. At the next threshhold, slightly
higher, start also only queueing mail.
Signed-off-by: Stephen Gran <steve@lobefin.net>
Stephen Gran [Sun, 15 Nov 2009 18:57:23 +0000 (18:57 +0000)]
and now the empty file can go too
Signed-off-by: Stephen Gran <steve@lobefin.net>
Stephen Gran [Sun, 15 Nov 2009 18:56:35 +0000 (18:56 +0000)]
nothing uses rcpthosts any more
Signed-off-by: Stephen Gran <steve@lobefin.net>
Stephen Gran [Sun, 15 Nov 2009 17:42:32 +0000 (17:42 +0000)]
master also gets userdirs
Signed-off-by: Stephen Gran <steve@lobefin.net>
Stephen Gran [Sun, 15 Nov 2009 12:50:20 +0000 (12:50 +0000)]
attempt to work around puppets crazy scoping
Signed-off-by: Stephen Gran <steve@lobefin.net>
Stephen Gran [Sun, 15 Nov 2009 03:05:03 +0000 (03:05 +0000)]
nothing uses this file now
Signed-off-by: Stephen Gran <steve@lobefin.net>
Stephen Gran [Sun, 15 Nov 2009 03:02:20 +0000 (03:02 +0000)]
nothing uses this template now
Signed-off-by: Stephen Gran <steve@lobefin.net>
Stephen Gran [Sun, 15 Nov 2009 02:59:01 +0000 (02:59 +0000)]
no need for a per-host file now
Signed-off-by: Stephen Gran <steve@lobefin.net>
Stephen Gran [Sun, 15 Nov 2009 02:27:09 +0000 (02:27 +0000)]
and get quoting right for merkel
Signed-off-by: Stephen Gran <steve@lobefin.net>
Stephen Gran [Sun, 15 Nov 2009 02:26:04 +0000 (02:26 +0000)]
manifest error
Signed-off-by: Stephen Gran <steve@lobefin.net>
Stephen Gran [Sun, 15 Nov 2009 02:24:22 +0000 (02:24 +0000)]
piatti and spohr are different
Signed-off-by: Stephen Gran <steve@lobefin.net>
Stephen Gran [Sun, 15 Nov 2009 02:18:56 +0000 (02:18 +0000)]
now a template
Signed-off-by: Stephen Gran <steve@lobefin.net>
Stephen Gran [Sun, 15 Nov 2009 02:16:04 +0000 (02:16 +0000)]
merkel's default site is a little different
Signed-off-by: Stephen Gran <steve@lobefin.net>
Stephen Gran [Sun, 15 Nov 2009 00:37:13 +0000 (00:37 +0000)]
sigh, missing colon
Signed-off-by: Stephen Gran <steve@lobefin.net>
Stephen Gran [Sun, 15 Nov 2009 00:35:32 +0000 (00:35 +0000)]
make apache stuff a little more automatic
Signed-off-by: Stephen Gran <steve@lobefin.net>
Stephen Gran [Sat, 14 Nov 2009 21:30:59 +0000 (21:30 +0000)]
oops
Signed-off-by: Stephen Gran <steve@lobefin.net>
Stephen Gran [Sat, 14 Nov 2009 21:26:01 +0000 (21:26 +0000)]
make manualroutes dynamic based on mx record
Signed-off-by: Stephen Gran <steve@lobefin.net>
Stephen Gran [Sat, 14 Nov 2009 20:51:23 +0000 (20:51 +0000)]
Add a method to get all the yaml stored (local) info for all hosts
Signed-off-by: Stephen Gran <steve@lobefin.net>
Stephen Gran [Sat, 14 Nov 2009 19:38:36 +0000 (19:38 +0000)]
index into the array, silly
Signed-off-by: Stephen Gran <steve@lobefin.net>
Stephen Gran [Sat, 14 Nov 2009 19:32:30 +0000 (19:32 +0000)]
allnodeinfo, that is
Signed-off-by: Stephen Gran <steve@lobefin.net>
Stephen Gran [Sat, 14 Nov 2009 19:31:15 +0000 (19:31 +0000)]
treat it like the hash it is
Signed-off-by: Stephen Gran <steve@lobefin.net>
Stephen Gran [Sat, 14 Nov 2009 19:21:40 +0000 (19:21 +0000)]
deal with different data structure in authorized_keys template
Signed-off-by: Stephen Gran <steve@lobefin.net>
Stephen Gran [Sat, 14 Nov 2009 19:17:30 +0000 (19:17 +0000)]
Idiot. LDAP returns an array for all attributes, index into it for hash keys
Signed-off-by: Stephen Gran <steve@lobefin.net>
Stephen Gran [Sat, 14 Nov 2009 19:12:58 +0000 (19:12 +0000)]
Now that ldapinfo is returning an array, we don't need nodeinfo to make
an extra array around it
Signed-off-by: Stephen Gran <steve@lobefin.net>
Stephen Gran [Sat, 14 Nov 2009 19:09:47 +0000 (19:09 +0000)]
Some more fixes. Sigh, some day I'll learn ruby
Signed-off-by: Stephen Gran <steve@lobefin.net>
Stephen Gran [Sat, 14 Nov 2009 18:50:08 +0000 (18:50 +0000)]
And fixup the allnodeinfo usage
Signed-off-by: Stephen Gran <steve@lobefin.net>
Stephen Gran [Sat, 14 Nov 2009 18:43:33 +0000 (18:43 +0000)]
This should do it
Signed-off-by: Stephen Gran <steve@lobefin.net>
Stephen Gran [Sat, 14 Nov 2009 18:08:44 +0000 (18:08 +0000)]
syntax error
Signed-off-by: Stephen Gran <steve@lobefin.net>
Stephen Gran [Sat, 14 Nov 2009 18:03:22 +0000 (18:03 +0000)]
Oh, how silly
Signed-off-by: Stephen Gran <steve@lobefin.net>
Stephen Gran [Sat, 14 Nov 2009 17:59:39 +0000 (17:59 +0000)]
OK, so that method of addressing them didn't work
Signed-off-by: Stephen Gran <steve@lobefin.net>
Stephen Gran [Sat, 14 Nov 2009 17:57:20 +0000 (17:57 +0000)]
Try to generalize the ldap lookups into a single module
Signed-off-by: Stephen Gran <steve@lobefin.net>
Stephen Gran [Fri, 13 Nov 2009 15:01:02 +0000 (15:01 +0000)]
sibelius now smarthosts
Signed-off-by: Stephen Gran <steve@lobefin.net>
Martin Zobel-Helas [Fri, 13 Nov 2009 14:36:01 +0000 (15:36 +0100)]
add sibelius
Peter Palfrader [Tue, 10 Nov 2009 11:10:17 +0000 (12:10 +0100)]
Merge branch 'master' of ssh://handel.debian.org/srv/puppet.debian.org/git/dsa-puppet
* 'master' of ssh://handel.debian.org/srv/puppet.debian.org/git/dsa-puppet:
um, the point of splitting out reservedaddrs was for ball. Explicitly giving it the default list is probably not useful
klecker no longer handles security.d.o mail
this is a wierd one, but grep for the patten on powell
Peter Palfrader [Tue, 10 Nov 2009 11:10:06 +0000 (12:10 +0100)]
busoni
Stephen Gran [Mon, 9 Nov 2009 22:13:23 +0000 (22:13 +0000)]
um, the point of splitting out reservedaddrs was for ball. Explicitly giving it the default list is probably not useful
Signed-off-by: Stephen Gran <steve@lobefin.net>
Stephen Gran [Mon, 9 Nov 2009 20:18:00 +0000 (20:18 +0000)]
klecker no longer handles security.d.o mail
Signed-off-by: Stephen Gran <steve@lobefin.net>
Stephen Gran [Mon, 9 Nov 2009 00:17:42 +0000 (00:17 +0000)]
this is a wierd one, but grep for the patten on powell
Signed-off-by: Stephen Gran <steve@lobefin.net>
Stephen Gran [Sun, 8 Nov 2009 19:57:21 +0000 (19:57 +0000)]
use weaselism: it has the benefit of possibly working
Signed-off-by: Stephen Gran <steve@lobefin.net>
Stephen Gran [Sun, 8 Nov 2009 19:18:56 +0000 (19:18 +0000)]
a slightly more careful and tested version
Signed-off-by: Stephen Gran <steve@lobefin.net>
Stephen Gran [Sun, 8 Nov 2009 19:08:27 +0000 (19:08 +0000)]
hmm, I could have sworn this was working earlier ...
Signed-off-by: Stephen Gran <steve@lobefin.net>
Stephen Gran [Sun, 8 Nov 2009 19:01:11 +0000 (19:01 +0000)]
skip entries that don't have all the attributes we're searching for
Signed-off-by: Stephen Gran <steve@lobefin.net>
Stephen Gran [Sun, 8 Nov 2009 18:05:14 +0000 (18:05 +0000)]
82.195.66.249, not 82.195.66.239 (although the latter was still in a bunch of resolv.confs)
Signed-off-by: Stephen Gran <steve@lobefin.net>
Stephen Gran [Sun, 8 Nov 2009 17:04:12 +0000 (17:04 +0000)]
darmstadt also gets resolv.conf
Signed-off-by: Stephen Gran <steve@lobefin.net>
Stephen Gran [Sun, 8 Nov 2009 17:03:11 +0000 (17:03 +0000)]
we don't want to sort the search paths, we already put them in in order
Signed-off-by: Stephen Gran <steve@lobefin.net>
Stephen Gran [Sun, 8 Nov 2009 17:02:03 +0000 (17:02 +0000)]
slightly more useful resolv.conf template
Signed-off-by: Stephen Gran <steve@lobefin.net>
Stephen Gran [Sun, 8 Nov 2009 16:37:23 +0000 (16:37 +0000)]
obligatory header
Signed-off-by: Stephen Gran <steve@lobefin.net>
Stephen Gran [Sun, 8 Nov 2009 16:36:43 +0000 (16:36 +0000)]
that would have been intereting had the worked
Signed-off-by: Stephen Gran <steve@lobefin.net>
Stephen Gran [Sun, 8 Nov 2009 16:34:12 +0000 (16:34 +0000)]
this is not shell
Signed-off-by: Stephen Gran <steve@lobefin.net>
Stephen Gran [Sun, 8 Nov 2009 16:33:00 +0000 (16:33 +0000)]
add resolv.conf module
Signed-off-by: Stephen Gran <steve@lobefin.net>
Stephen Gran [Sun, 8 Nov 2009 16:31:07 +0000 (16:31 +0000)]
some manifest tidy up
Signed-off-by: Stephen Gran <steve@lobefin.net>
Stephen Gran [Sun, 8 Nov 2009 16:29:22 +0000 (16:29 +0000)]
some manifest tidy up
Signed-off-by: Stephen Gran <steve@lobefin.net>
Stephen Gran [Sun, 8 Nov 2009 16:17:44 +0000 (16:17 +0000)]
add some keys based on hoster
Signed-off-by: Stephen Gran <steve@lobefin.net>
Stephen Gran [Sun, 8 Nov 2009 14:51:34 +0000 (14:51 +0000)]
I think it's better to raise an exception and die rather than silently
continue on with no data. We'll do that by raising a puppet parse error
exception, which will make the client log the problem.
Signed-off-by: Stephen Gran <steve@lobefin.net>
Stephen Gran [Sun, 8 Nov 2009 13:25:11 +0000 (13:25 +0000)]
use ssl connections for ldap
Signed-off-by: Stephen Gran <steve@lobefin.net>
Stephen Gran [Sun, 8 Nov 2009 12:40:26 +0000 (12:40 +0000)]
Add allnodeinfo method to fetch attributes from ldap, and make bartok
use it for auth-keys generation
Signed-off-by: Stephen Gran <steve@lobefin.net>
Peter Palfrader [Sun, 8 Nov 2009 11:38:39 +0000 (12:38 +0100)]
chopin
Peter Palfrader [Sun, 8 Nov 2009 11:33:03 +0000 (12:33 +0100)]
Merge branch 'master' of ssh://handel.debian.org/srv/puppet.debian.org/git/dsa-puppet
* 'master' of ssh://handel.debian.org/srv/puppet.debian.org/git/dsa-puppet:
vsftpd plugin needs logtail
vsftpd probably needs this, sigh
add vsftpd stats pron
let's blow ries' apache up
more hosters
Some debug output to make sure this works as I expect
a few more hosters
Add a prototype whohosts function for grouping machines at a common
fix prototype deprecation warning
try an experiment
Peter Palfrader [Sun, 8 Nov 2009 11:32:52 +0000 (12:32 +0100)]
Add soler to backup authkeys - this should probably come out of ldap eventually
Stephen Gran [Sun, 8 Nov 2009 01:32:19 +0000 (01:32 +0000)]
vsftpd plugin needs logtail
Signed-off-by: Stephen Gran <steve@lobefin.net>
Stephen Gran [Sun, 8 Nov 2009 01:10:08 +0000 (01:10 +0000)]
vsftpd probably needs this, sigh
Signed-off-by: Stephen Gran <steve@lobefin.net>
Stephen Gran [Sat, 7 Nov 2009 17:54:07 +0000 (17:54 +0000)]
add vsftpd stats pron
Signed-off-by: Stephen Gran <steve@lobefin.net>
Stephen Gran [Sat, 7 Nov 2009 15:06:42 +0000 (15:06 +0000)]
let's blow ries' apache up
Signed-off-by: Stephen Gran <steve@lobefin.net>
Stephen Gran [Sat, 7 Nov 2009 13:46:52 +0000 (13:46 +0000)]
more hosters
Signed-off-by: Stephen Gran <steve@lobefin.net>
Stephen Gran [Fri, 6 Nov 2009 22:22:22 +0000 (22:22 +0000)]
Some debug output to make sure this works as I expect
Signed-off-by: Stephen Gran <steve@lobefin.net>
Stephen Gran [Fri, 6 Nov 2009 22:19:03 +0000 (22:19 +0000)]
a few more hosters
Signed-off-by: Stephen Gran <steve@lobefin.net>
Stephen Gran [Fri, 6 Nov 2009 22:06:20 +0000 (22:06 +0000)]
Add a prototype whohosts function for grouping machines at a common
hoster
Signed-off-by: Stephen Gran <steve@lobefin.net>
Stephen Gran [Fri, 6 Nov 2009 22:06:17 +0000 (22:06 +0000)]
fix prototype deprecation warning
Signed-off-by: Stephen Gran <steve@lobefin.net>
Stephen Gran [Fri, 6 Nov 2009 20:35:16 +0000 (20:35 +0000)]
try an experiment
Signed-off-by: Stephen Gran <steve@lobefin.net>
Peter Palfrader [Thu, 5 Nov 2009 18:36:37 +0000 (19:36 +0100)]
Get rid of www.geo
Stephen Gran [Mon, 2 Nov 2009 22:04:18 +0000 (22:04 +0000)]
and add virtualdomain to byrd
Signed-off-by: Stephen Gran <steve@lobefin.net>
Stephen Gran [Mon, 2 Nov 2009 22:03:37 +0000 (22:03 +0000)]
activate byrd as bugsmx to see what will happen
Signed-off-by: Stephen Gran <steve@lobefin.net>
Stephen Gran [Mon, 2 Nov 2009 21:53:50 +0000 (21:53 +0000)]
bugs mx also need a transport and a submission port
Signed-off-by: Stephen Gran <steve@lobefin.net>
Stephen Gran [Mon, 2 Nov 2009 21:51:02 +0000 (21:51 +0000)]
provisional idea for letting bugs mx'es route mail the same way as bugsmaster
Signed-off-by: Stephen Gran <steve@lobefin.net>
Stephen Gran [Sat, 31 Oct 2009 17:43:00 +0000 (17:43 +0000)]
fix path for chopin
Signed-off-by: Stephen Gran <steve@lobefin.net>
Stephen Gran [Sat, 31 Oct 2009 14:46:22 +0000 (14:46 +0000)]
chopin should know about security.d.o mail before we move the mx record
Signed-off-by: Stephen Gran <steve@lobefin.net>
Stephen Gran [Sat, 31 Oct 2009 10:59:27 +0000 (10:59 +0000)]
make chopin same as klecker for security team
Signed-off-by: Stephen Gran <steve@lobefin.net>
Stephen Gran [Fri, 30 Oct 2009 23:22:31 +0000 (23:22 +0000)]
kaufmann and strauss already have funny mx records - leave them be
Signed-off-by: Stephen Gran <steve@lobefin.net>
Stephen Gran [Fri, 30 Oct 2009 23:01:45 +0000 (23:01 +0000)]
a few more smarthosters
Signed-off-by: Stephen Gran <steve@lobefin.net>
Stephen Gran [Fri, 30 Oct 2009 22:40:43 +0000 (22:40 +0000)]
reject and reject message
Signed-off-by: Stephen Gran <steve@lobefin.net>
Stephen Gran [Fri, 30 Oct 2009 22:29:39 +0000 (22:29 +0000)]
kassia is smarthosted on the way in, let's mailhub on the way out
Signed-off-by: Stephen Gran <steve@lobefin.net>
Stephen Gran [Fri, 30 Oct 2009 22:28:26 +0000 (22:28 +0000)]
RIP, allegri
Signed-off-by: Stephen Gran <steve@lobefin.net>
Stephen Gran [Fri, 30 Oct 2009 22:22:57 +0000 (22:22 +0000)]
machines that smarthost in and out don't need to accept mail from the interwebs
Signed-off-by: Stephen Gran <steve@lobefin.net>
Peter Palfrader [Mon, 26 Oct 2009 18:13:49 +0000 (19:13 +0100)]
No need for manualroute on luchesi anymore
Peter Palfrader [Mon, 26 Oct 2009 18:04:41 +0000 (19:04 +0100)]
fano and finzi relay via mailout now
Peter Palfrader [Mon, 26 Oct 2009 17:55:50 +0000 (18:55 +0100)]
Add finzi and fano routes on spohr
Peter Palfrader [Mon, 26 Oct 2009 17:44:13 +0000 (18:44 +0100)]
Change manualroute for finzi and fano
projects / mirror / dsa-puppet.git / log