Monthly Archives: May 2006

SysAdmin

A Productive Week – Cfengine and SSH-agent

Leave a comment

Now that lack-of-sleep madness has passed I’ve managed to actually get some work done. In particular I’ve been chipping away at some of the tedious manual labour that comes with administering multiple machines.

To start off with I finally knuckled down to working out how to use ssh-agent. This nice article from SecurityFocus helped me get started. The most difficult bit was getting ssh-agent to run from fluxbox on start up. To fix that I added the following lines into .fluxbox/apps

[startup] {eval `ssh-agent -s`}
[startup] {ssh-add < /dev/null}

which pops up a dialog box for my passphrase on login.

I also started to get down to sorting out configuration management using cfengine. One of things that I've never been able to work out was how to make rules depend on one another. So if you have a rule that adds a line into the iptables config how do you then tell cfengine that iptables needs to be restarted. After hunting around on the web I found an example that does almost exactly what I need. A hacked up a quick example that would sort my root alias and then run the sendmail newaliases command.

editfiles::
{ /etc/aliases
BeginGroupIfNoSuchLine "root:           wescroot@wesc.ac.uk"
DeleteLinesStarting "#root"
Append "root:           wescroot@wesc.ac.uk"
EndGroup
DefineClasses "aliaseschanged"
}

shellcommands:
aliaseschanged::
'/usr/bin/newaliases'
useshell=false

Basically aliaseschanged is only set if the editfiles rule needs to be executed. So newaliases is only run if we actually update the aliases file. I have a more complicated set of rules that does the same thing for iptables. Next week globus4.

Internet

Red Hat in Bad Mouthing Fedora Shock

Leave a comment

Read this unhappy tale.

If that really was a Red Hat sales person they need to be found a nd sacked. Also it would seem prudent to tone down the wording of this page about Fedora.

So the chap on the Fedora Forums has valiantly managed to get a Fedora-based project off the ground in what sounds like a fairly windows-centric enverionment only to have the wheels come off because one of his customers has read the Red Hat page about Fedora being “impractical for use in commercial environments…” And the n some “Red Hat Sales Rep” gives him a list of the usual canards about open-source software being unsafe because anyone can contribute.

News for Red Hat: This isn’t a win for RHEL it’s a loss for Linux.

And to think I was already in a bad mood. Heres hoping the sales rep turns out not to work for Red Hat.

Life

Weekend Stuff

Leave a comment

After spending Friday eveneing skating further and faster that I ever have before my knees now hate me. But I have the warm fuzzy feeling that in a couple of weeks I may no longer look like a complete gimp while I’m skating.

swskate are lovely people and are entirely to blame for my currently aching joints. And before anyone sends me any emails about the javascript on that website I’ve already talked to their web chap about the proper way to do things. In his defence he’s only just learning and appears amenable to clue.

Spent much of Sunday getting my head around generating and parsing XML in python. The upshot of this is that I can now import OPML feed lists straight into peapod. OPML export is next on the list, after which adding pcast support should be fairly straight-forward. Juri Pakaste’s OPML library made this all very easy. A little bit of XML knowledge should come in handy now that I am beginning to wade hip-deep into the new generation of grid toolkits.

Jonothan Coulton has done it again. Codemonkey should warm the cockles of all programmers’ hearts everywhere. Enjoy.

Internet

Grid Computing Talk For Gllug and LRL2006

Leave a comment

Coincidentally I’m attending an “Improve Your Presentations” course on Wednesday so I though I’d better put together a first attempt at my Grid Computing talk.

It’s fairly hand-wavy at the moment but contains the basic outline of my “Grid Computing as seen from the Stratosphere” talk. If you don’t mind it not being a surprise when I present at Gllug later in the year then you can read it here.