00:08.15 | *** join/#utah acc_ (n=acc@hexadecagram.org) |
00:30.30 | *** join/#utah bmidgley2 (n=brad@32.130.144.124) |
01:00.43 | *** join/#utah Jayce^ (n=Jayce^@76.8.222.148) |
01:00.43 | *** mode/#utah [+o Jayce^] by ChanServ |
01:39.24 | *** join/#utah elg (n=fugalh@c-24-130-129-239.hsd1.ca.comcast.net) |
01:39.24 | *** mode/#utah [+v elg] by ChanServ |
02:09.18 | *** join/#utah bmidgley2 (n=brad@c-67-171-119-91.hsd1.ut.comcast.net) |
02:47.09 | *** join/#utah redbeard2 (n=jphall@166.70.191.252) |
02:52.45 | *** join/#utah elg (n=fugalh@c-24-130-129-239.hsd1.ca.comcast.net) |
02:52.46 | *** mode/#utah [+v elg] by ChanServ |
02:56.30 | *** join/#utah decriptor (n=decripto@160.7.250.53) |
02:56.58 | *** join/#utah Sargun (n=Sargun@atarack/Staff/Sargun) |
03:54.41 | Reilithion | Ha! I finally am able to write something in Scheme! |
04:26.42 | *** join/#utah carrus85 (n=carrus85@216.83.145.38) |
05:08.51 | Sargun | ugh, why am I sick? |
05:08.58 | Sargun | why don't I get better? |
05:31.28 | Reilithion | Sargun: It must be the time for us Linux users to get sick; I'm sick too. |
05:31.51 | Sargun | Reilithion, yeah, except I've never gotten sick like this before. |
05:32.08 | Reilithion | Have you been to a doctor? |
05:34.27 | Reilithion | Sargun: Doctors are good for this kind of stuff. |
05:34.36 | Reilithion | I've noticed |
05:34.37 | Sargun | my doctor sucks. |
05:34.46 | Sargun | Well, I have a mild fever, but its lasted 7 days now. |
05:34.51 | Sargun | and a nasty cough. |
05:36.49 | Reilithion | Sargun: You should probably stop in and at least ask about it. If it lasts that long it /could/ turn serious. Probably won't, but why chance it? |
05:37.40 | Sargun | I went in yesterday, he started me on some crappy antibiotics |
05:37.56 | Sargun | I'm afraid its not the flu/cold. |
05:38.21 | Reilithion | What do you think it is? |
05:53.28 | tensai | ooh, it's probably conficker |
05:53.40 | tensai | is glad his kernel upgrade went smoothly |
06:01.37 | Sargun | Reilithion, Not something normal... |
06:01.55 | Sargun | that just might be the hypochondriac in me speaking |
06:02.27 | Reilithion | Must be a space-virus. |
06:02.35 | Reilithion | Yup. Aliens have invaded your body. |
06:02.58 | Reilithion | Sargun: Give me a call when you start exhibiting uncanny powers. I want to be your sidekick. |
06:04.26 | Sargun | hahah |
06:06.44 | Reilithion | Also, all hypochondriacs think their doctors suck. How can a hypochondriac trust a doctor when they say "Nothing is wrong." or "You'll be right as rain in no time."? |
06:07.05 | Reilithion | It goes against their nature. |
06:07.11 | Reilithion | And with that, I'm off to sleep. |
06:07.43 | Reilithion | Goodnight Sargun, tensai, and whoever else is awake. |
06:07.51 | Sargun | good night sir. |
06:08.01 | Sargun | No, my doctor genuinely sucks. |
06:08.14 | Sargun | My old doctor would give me the right meds immediately |
07:23.47 | Sargun | hm |
07:36.34 | *** join/#utah Robdor (n=Robdor@97-117-71-42.slkc.qwest.net) |
07:38.17 | *** join/#utah Robdor (n=Robdor@97-117-71-42.slkc.qwest.net) |
12:13.09 | *** join/#utah brac (n=rbot@taran.fugal.net) |
12:43.29 | *** join/#utah emcnabb (n=emcnabb@cpe-071-070-229-150.nc.res.rr.com) |
12:43.29 | *** mode/#utah [+v emcnabb] by ChanServ |
13:06.49 | *** join/#utah harleypig (n=harleypi@harleypig.com) |
14:13.44 | *** join/#utah thaddeusq (n=thaddeus@216.49.181.128) |
14:34.34 | *** join/#utah wps (n=wps@208.53.47.251) |
14:44.41 | *** join/#utah sinuhe (n=user@97-117-62-135.slkc.qwest.net) |
14:49.24 | *** join/#utah freedeb (n=deborah@fsf/staff/deborah) |
15:00.31 | *** join/#utah fungus (n=olsonl@bromine.sosstaffing.com) |
15:02.08 | *** join/#utah bmidgley2 (n=brad@c-67-171-119-91.hsd1.ut.comcast.net) |
15:02.23 | *** join/#utah elg (n=fugalh@c-24-130-129-239.hsd1.ca.comcast.net) |
15:02.23 | *** mode/#utah [+v elg] by ChanServ |
15:11.15 | *** join/#utah tiwula (n=lane@75-148-99-197-Utah.hfc.comcastbusiness.net) |
15:12.52 | *** join/#utah bmidgley2 (n=brad@c-67-171-119-91.hsd1.ut.comcast.net) |
15:16.53 | *** join/#utah bmidgley2 (n=brad@c-67-171-119-91.hsd1.ut.comcast.net) |
15:28.43 | *** join/#utah sjansen (n=sjansen@97-117-62-135.slkc.qwest.net) |
15:35.58 | mulicheng | awoke this morning to find that a zen-cart store I help host (but didn't program) was compromised :( |
15:36.05 | goozbach | sad day |
15:36.07 | mulicheng | Server is CentOS 5.3 |
15:36.21 | mulicheng | don't know if it's php or zen-cart or apache or what. |
15:36.52 | *** join/#utah elg (n=fugalh@c-24-130-129-239.hsd1.ca.comcast.net) |
15:36.52 | *** mode/#utah [+v elg] by ChanServ |
15:38.24 | *** join/#utah neybar (n=jalance@204.228.142.225) |
15:38.56 | sjansen | http://consumerist.com/5360174/epic-kindle-2-fails-mans-drop-test-forces-amazon-to-pay-him-400 |
15:40.08 | sjansen | mulicheng: My money's on poorly written PHP, but don't forget the possibility of a compromised account. |
15:42.57 | mulicheng | There are only two accounts on the machine, root and one user account. |
15:43.07 | *** join/#utah Jayce^ (n=Jayce^@74-81-244-222.static.sdyl005.digis.net) |
15:43.07 | *** mode/#utah [+o Jayce^] by ChanServ |
15:43.07 | mulicheng | The compromised files were owned by apache:apache |
15:43.35 | mulicheng | And selinux seems pretty good at limiting any usage of the apache account to anything but running the httpd process |
15:43.44 | mulicheng | so I think that poorly written php is the culprit. |
15:44.23 | goozbach | yay selinux |
15:44.32 | sjansen | The vast wasteland of crappy PHP is why I refuse to run anything written in PHP. Just too risky. |
15:44.47 | mulicheng | I feel the same way actually. |
15:44.55 | mulicheng | I'm moving the php sites to virtual machines |
15:45.25 | mulicheng | I hope to isolate them a bit more and if a hack happens again, just restore a vm bacup. |
15:46.00 | mulicheng | then I can analyze the hack lazily and hopefully fix the issue. |
15:46.12 | mulicheng | Did I mention I really don't like sys-admin work. |
15:46.33 | mulicheng | My day job is writing low level C code for 8051/usb hardware. |
15:47.09 | sjansen | If you're running SELinux, you're already ahead of a lot of sysadmins who enjoy it. |
15:47.55 | JoshH | i would probably run selinux if i used rh |
15:48.05 | Zelut | I wish more distributions used SELinux. |
15:48.09 | JoshH | but i never feel like setting it up |
15:48.26 | mulicheng | I figure default CentOS install is easiest to be up and a little more secure since I don't do too much in the way of monitoring. |
15:48.37 | mulicheng | I just lock everything down and then let the server run. |
15:48.45 | mulicheng | like I say, it's not my passion. |
15:48.52 | mulicheng | I only do it on the side. |
15:50.48 | JoshH | with admin work, there are some enjoyable aspects and some that really suck |
15:51.11 | JoshH | like most things, i guess |
15:51.19 | tvc123_ | heh |
15:58.49 | *** join/#utah Tadaka (n=Tadaka@c-24-10-186-76.hsd1.ut.comcast.net) |
16:08.37 | *** join/#utah redbeard2 (n=jphall@208.110.152.42) |
16:18.03 | sjansen | can feel the gears slipping this morning |
16:18.14 | sjansen | wishes he could crawl back into bed |
16:18.30 | goozbach | sjansen: you need a can of coke |
16:20.30 | *** join/#utah elg (n=fugalh@c-24-130-129-239.hsd1.ca.comcast.net) |
16:20.33 | *** mode/#utah [+v elg] by ChanServ |
16:26.51 | sjansen | http://thereifixedit.com/2009/10/20/thats-not-traumatizing-or-anything/ |
16:37.05 | *** join/#utah elg (n=fugalh@c-24-130-129-239.hsd1.ca.comcast.net) |
16:37.05 | *** mode/#utah [+v elg] by ChanServ |
16:48.53 | harleypig | http://pictureisunrelated.com/2009/10/20/power-ranger-reunion-isnt-pretty/ |
16:53.58 | Zelut | *finally* got all my other projects done. I now have the rest of the week to setup puppet. |
16:57.42 | *** join/#utah elg (n=fugalh@c-24-130-129-239.hsd1.ca.comcast.net) |
16:57.42 | *** mode/#utah [+v elg] by ChanServ |
16:58.01 | tensai | ~curse sjansen |
16:58.02 | ibot | May you be reincarnated as a Windows XP administrator, sjansen ! |
16:58.12 | sjansen | Noooooooooooooooooooooo!!!!!!!!!!!!!!!!!!!!!!! |
17:02.06 | mulicheng | I'll take the Linux stuff on the side as well. |
17:22.35 | *** join/#utah thaddeusq (n=thaddeus@216.49.181.128) |
17:32.15 | mulicheng | Digis 7Mb plan any good? http://www.digis.net/services/hsinternet.html |
17:32.28 | mulicheng | It's $15 cheaper than my current similar plan. |
17:37.13 | *** join/#utah carrus85 (n=carrus85@64.0.193.15) |
17:45.43 | harleypig | http://www.thisistrue.com/saayairie.html |
17:45.45 | brac | [Saaya Irie Photos: Randy Cassingham's Weird News] |
17:45.59 | harleypig | Holy crap ... the Chinese are a bit weird |
17:46.04 | harleypig | Not to mention the Japanese |
18:11.40 | *** join/#utah tiwula (n=lane@75-148-99-197-Utah.hfc.comcastbusiness.net) |
18:40.33 | *** join/#utah decriptor (n=decripto@160.7.250.53) |
18:44.59 | Zelut | why do I feel like I'm automating my job away with puppet? |
18:45.23 | mulicheng | Automating your job is a good thing. |
18:45.32 | mulicheng | automating it away... hm |
18:45.49 | mulicheng | I get really sick of doing things again that could have been automated. |
18:46.54 | fugue88 | Zelut: Automate it away, but don't *tell* anyone that you did. |
18:46.55 | fugue88 | :D |
18:47.29 | Zelut | fugue88: on the upside, I'll be the puppet maintainer so if anyone gets automated away it'll be the jr admins I've replaced with a simple recipe :) |
18:47.39 | fugue88 | Ha! |
18:48.05 | goozbach | Zelut: that's a good way of looking at it |
18:48.08 | fugue88 | Zelut: How are Project Euler and Python coming? |
18:48.21 | Jayce^ | I've never found 'automating away' to ever actually happen |
18:48.24 | Jayce^ | there's always more |
18:49.16 | fugue88 | wonders how Perl would fair on Project Euler problems |
18:50.07 | *** join/#utah levi` (n=user@levi.dsl.xmission.com) |
18:51.53 | Zelut | fugue88: been on the back burner while I've been on a deadline at work. |
18:53.56 | fugue88 | Well, good luck automating then! |
18:55.27 | *** join/#utah neybar (n=jalance@204.228.142.225) |
19:04.26 | *** join/#utah Migs (i=Migs@205.122.50.38) |
19:11.50 | *** join/#utah TehLaser (n=andrew@emelia.prismation.com) |
19:18.58 | *** join/#utah Migs (i=Migs@205.122.50.38) |
19:54.05 | RyanE | Zelut: It sounds better if you say you're the 'Puppet Master', not the 'Puppet Maintainer', btw... |
19:54.17 | Zelut | RyanE: good point |
19:57.24 | tensai | Jayce^: agreed. puppet means I can do the projects I'd rather do, instead of baby sitting servers. |
19:59.18 | mulicheng | I'm planning on re-installing software on a server to host virtual machines this week. Is puppet something I should be looking at? |
20:08.12 | sjansen | Fedora 12 is gonna be _awesome_! |
20:09.56 | sjansen | mulicheng: Yes. I've tried to take notes as I configure systems in case I have to rebuild them. Using puppet instead works much better. |
20:11.00 | mulicheng | What if my servers aren't all the same though? You build a script for each type of server? |
20:11.40 | Zelut | sjansen: I installed the Beta and my machine b0rked :( |
20:12.03 | sjansen | Zelut: Well, it _is_ a Fedora Beta. |
20:12.23 | mulicheng | I'm also curious.. what about the custom data. I suppose puppet can install httpd+mod_ssl+whatever for instance, but then I need the application data, virtual host file, ssl certificate etc. Can it do that too? |
20:12.42 | mulicheng | Or what about a database.. can it install the most recent db backup after a db install for instance? |
20:13.16 | sjansen | mulicheng: You can define traits and assign those traits to different systems. |
20:13.48 | sjansen | Somewhat confusingly, Puppet calls them classes. |
20:14.35 | tensai | I define each service as a class and then include them, e.g. include app-apache; include app-slapd; |
20:14.55 | sjansen | So it's look something like: class webserver { require => Package[httpd] } class emailserver { require => Package[postfix] } node foo { include webserver } node bar { include webserver & emailserver } |
20:15.38 | stderr | https://session.wikispaces.com/session/auth?authToken=07b90e2a29af8d6c61c3cbf79897c868c |
20:15.38 | mulicheng | I'd like to take a deeper look at this over the weekend. |
20:15.38 | mulicheng | What about the app-specific data? |
20:15.48 | mulicheng | website files, ssl certificates, database files etc. |
20:16.29 | sjansen | Puppet can hash and compare files to discover if they need to be installed/replaced. |
20:17.17 | sjansen | stderr: Was that meant for us? All I get it a login screen. |
20:17.29 | tensai | I like to define a base node and then each other node inherits from that. node default { ... } node foo inherits default { include app-apache } |
20:18.35 | sjansen | Just watch out. If you go in expecting Puppet's definition of "object oriented" to be the same as Java or C++, you'll spend awhile confused and frustrated. |
20:18.36 | mulicheng | so basically, you create a puppet-server, create your classes, then run the puppet client on a newly installed machine right? |
20:18.56 | sjansen | The puppet server isn't absolutely required. |
20:19.35 | stderr | sjansen: oops, one sec |
20:19.46 | stderr | http://www.boingboing.net/2009/10/20/voting-machine-sourc.html |
20:19.50 | sjansen | While you're just getting started, might be easier to just write standalone recipes and run puppet by hand. |
20:22.38 | tensai | and if you're building a number of machines you may want to look at cobbler too. it will automate the install process. especially handy for virtual machines. |
20:22.52 | fungus | mulicheng: puppet works best for server config. Use some other system for app deployment. |
20:23.30 | mulicheng | fungus: that was the impression I got after a skim through the docs. |
20:24.50 | goozbach | and I heard talk that there's a couple of cobbler experts which frequent this channel |
20:25.38 | tensai | goozbach: do you think any of them have given any presentations recently? |
20:28.08 | sjansen | I know one of the visit Utah recently to do a little song and dance. |
20:28.20 | sjansen | s/the visit/them visisted |
20:28.24 | goozbach | tensai: something like that |
20:46.18 | Zelut | why do people insist on complicating things? erg. KISS is always best. |
20:49.20 | sjansen | Dunno. Depends on the relationship. Sometimes a HUG or a HANDSHAKE is better than a KISS. |
20:50.14 | sjansen | In fact, in American culture, a KISS is quite likely to complicate things. |
20:54.23 | Heartsbane | http://www.sltrib.com/news/ci_13609884 |
20:57.27 | unum | their article the other day read like the case was on going, not in appeal |
20:58.16 | unum | oh if I would read the whole article.... |
20:58.34 | unum | I haven't been keeping up and was a bit out of date myself |
21:08.03 | Heartsbane | I won't be happy until they are gone, then it will finally be over |
21:12.12 | sjansen | pities Heartsbane for his unhappiness |
21:12.30 | sjansen | You are doomed. DOOMED! |
21:12.53 | *** join/#utah bmidgley2 (n=brad@c-24-2-92-17.hsd1.ut.comcast.net) |
21:13.31 | sjansen | Strike SCO down and it will rise again, three times as greedy and stupid. |
21:13.31 | Heartsbane | sjansen: it is okay stu, I will just start top posting to make myself feel better |
21:13.32 | goozbach | doom de doomity doom doom domm |
21:14.17 | Jayce^ | THE. END> |
21:14.56 | goozbach | :D |
21:21.08 | sjansen | Yay! CentOS 5.4 is finally starting to show up on the mirrors. |
21:22.30 | goozbach | yay! |
21:22.54 | goozbach | waits with semi-baited breath for the equiv of RHEV |
21:24.43 | goozbach | wait, nothing announcing it on centos.org |
21:30.17 | sjansen | Dag Wieers announced about a week ago on his blog, but the mirrors weren't synced. |
21:30.37 | sjansen | Now some mirrors are, but others aren't. |
21:31.52 | sjansen | A week ago the packages couldn't be found on centos.org, but now they can be. |
21:31.54 | sjansen | http://mirror.centos.org/centos/5.4/os/i386/CentOS/ |
21:32.12 | sjansen | http://mirror.facebook.net/centos/5.4/os/i386/CentOS/ |
21:32.32 | sjansen | http://ftp.linux.ncsu.edu/pub/CentOS/5.4/os/i386/CentOS/ |
21:32.42 | Jayce^ | sjansen: maybe you can help make some rpms for it :) |
21:32.52 | Jayce^ | reminds sjansen about previous conversations |
21:41.08 | harleypig | Oh. I'm glad we caught you at home. |
21:41.13 | harleypig | Can we use your phone? |
21:41.21 | harleypig | We'll just have our say |
21:41.25 | harleypig | And be on our way |
22:03.16 | *** join/#utah bmidgley2 (n=brad@c-67-171-119-91.hsd1.ut.comcast.net) |
22:03.40 | *** join/#utah Sargun (n=Sargun@atarack/Staff/Sargun) |
23:03.14 | *** part/#utah bonez46 (n=scott@75-145-58-209-Utah.hfc.comcastbusiness.net) |
23:23.58 | *** join/#utah Reilithion (n=reilithi@75-162-117-55.slkc.qwest.net) |