Thomas Mueller vinzent
vinzent
/ local_puppet_passenger.te
Last active
August 29, 2015 14:08
SELinux, Puppet (PupetLabs Open-Source) and Passenger (EPEL) on RHEL6
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # Environment: RHEL6 with Passenger from EPEL and Puppet Open-source from yum.puppetlabs.com | |
| # Howto compile: | |
| # yum install checkpolicy | |
| # checkmodule -M -m -o local_puppet_passenger.mod local_puppet_passenger.te && | |
| # semodule_package -o local_puppet_passenger.pp -m local_puppet_passenger.mod && | |
| # semodule --install local_puppet_passenger.pp | |
| module local_puppet_passenger 2.17; |
vinzent
/ puppet-agent-create-gem-rpm
Created
June 5, 2015 07:18
Howto: easily create rpms from ruby gems for use with puppet-agent AIO
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/bin/bash | |
| # Author: Thomas Mueller <thomas@chaschperli.ch> | |
| # Date: 2015-06-05 | |
| # enable to exit on first error | |
| # set -e | |
| # list gem's to create rpm's seperated by space | |
| # example for 2 gems: gem_list="r10k trocla" |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/bin/bash | |
| # Author: Thomas Mueller <thomas@chaschperli.ch> | |
| # Date: 2015-06-10 | |
| # enable to exit on first error | |
| # set -e | |
| # list gem's to create rpm's seperated by space | |
| # example for 2 gems: gem_list="r10k trocla" |
vinzent
/ test_spec.rb
Last active
September 21, 2015 07:38
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # all checks will "fail", but check date output | |
| # | |
| # fails with: rspec test_spec.rb </dev/null | |
| # works with: rspec test_spec.rb | |
| require 'serverspec' | |
| set :backend, :exec | |
| describe 'test' do |
vinzent
/ nvidia_driver_install.pp
Last active
January 22, 2016 09:12
Referencing hash values within module
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # https://groups.google.com/forum/#!topic/puppet-users/1ol4b1euTiE | |
| class nvidia::driver_install ( | |
| include stdlib | |
| $model_hash = { | |
| 009d => "$::nvidia::params::quadro_fx_4500_driver", | |
| 06dc => "$::nvidia::params::quadro_6000_driver", | |
| 06d9 => "$::nvidia::params::quadro_5000_driver", | |
| 11ba => "$::nvidia::params::quadro_K5000_driver", | |
| 17c2 => "$::nvidia::params::gtx_titanx_driver", |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # Simple demo-install of rundeck on EL7 (CentOS, RHEL) | |
| # | |
| # Pre-requisites: | |
| # - Installed modules | |
| # puppet module install puppetlabs-java | |
| # puppet module install puppet-rundeck | |
| # puppet module install crayfishx-firewalld | |
| # - $::fqdn fact needs to be working | |
| # | |
| # Install: puppet apply rundeck.pp |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| policy_module(openvpn_allow_all_ports, 0.1.0) | |
| gen_require(` | |
| attribute port_type; | |
| type openvpn_t; | |
| ') | |
| allow openvpn_t port_type:tcp_socket { name_bind }; |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| $ /opt/puppetlabs/bin/puppet apply --strict_variables /tmp/test.pp | |
| Error: Evaluation Error: Error while evaluating a Function Call, 'defined' parameter 'vals' expects a value of type String or Type, got Integer at /tmp/test.pp:4:5 on node tmueller-notebook.local |
vinzent
/ gist:ec269970142a723bd6a184707ade66b2
Created
August 20, 2016 06:24
SELinux Java App system service type transition
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Am 19.08.2016 um 17:53 schrieb Dominick Grift: | |
| > On 08/19/2016 03:54 PM, Fakim, Walid wrote: | |
| >> The init script launches a shell script which further down calls java - so will init_daemon_domain suffice? It's similar to a tomcat startup script. | |
| >> | |
| >> | |
| > | |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| neutron net-create --port_security_enabled=False --router:external=False NetA | |
| neutron subnet-create --name NetA_Sub1 --no-gateway --disable-dhcp NetA 192.168.0.0/24 | |
| neutron net-create --port_security_enabled=False --router:external=False NetB | |
| neutron subnet-create --name NetB_Sub1 --no-gateway --disable-dhcp NetB 192.168.1.0/24 | |
| neutron net-create --port_security_enabled=False --router:external=False NetC | |
| neutron subnet-create --name NetC_Sub1 --no-gateway --disable-dhcp NetC 192.168.2.0/24 | |
| neutron net-create --port_security_enabled=False --router:external=False NetD |
OlderNewer