Where communities thrive


  • Join over 1.5M+ people
  • Join over 100K+ communities
  • Free without limits
  • Create your own community
People
Repo info
Activity
    Alexis Mousset
    @amousset
    but in general it is better so split you configuration in different rules for different concerns/axis
    Maxime
    @Abolah
    Okay, so there is no way to first check if a users exists and if true to add a SSH Key to this user ?
    Alexis Mousset
    @amousset

    :warning: We identified several vulnerabilities in Rudder's web application, affecting all maintained branches. If not already done, you should upgrade your server to the latest patch releases, 7.1.3 or 7.0.5 (or 6.2.16 for extended support with subscriptions) which contain fixes.

    Note: These vulnerabilities only affect the Rudder root server, and simple nodes and relays are not affected, so only the server needs to be upgraded to remediate them.

    Alexis Mousset
    @amousset
    @Abolah not with the build-in techniques, you would need to create one in the technique editor
    Stephen Horvath
    @sh-inevitech_gitlab
    Can anyone update me on the status of rudder-relay docker containers.
    The instructions point to an empty dockerhub repo
    When cloning the rudder repo and trying to build I get:
    Error: Failed to download metadata for repo 'appstream': Cannot prepare internal mirrorlist: No URLs in mirrorlist
    Tanguy PELADO
    @tpelado

    Good Day All,

    I'm facing an issue with Jinja and Rudder 7.1 with an Ubuntu 22.04. I'm using Jinja to deploy Nftables firewall rules. However, there's a deprecation warning in Jinja that seems to break the rudder directives :

    image.png
    Tanguy PELADO
    @tpelado
    Alright, I've fixed it.
    1 reply
    Tanguy PELADO
    @tpelado
    This seems to be fixed on the NCF rudder 7.1 branch, but it hasn't hit the ubuntu reppos apparently?
    Tanguy PELADO
    @tpelado
    still broken in 7.2 exp afaik
    Tanguy PELADO
    @tpelado
    https://github.com/Normation/ncf/blob/master/tree/10_ncf_internals/modules/templates/jinja2-templating.py This file still has a distutils dependency and is causing jinja templating to fail in Rudder 7.X
    Tanguy PELADO
    @tpelado

    This can be fixed temporarily by installing the "packaging" pip package and changing
    "from distutils.version import StrictVersion"
    to this :
    "from packaging.version import Version as StrictVersion"

    in the jinja2-templating.py files (which one to modify, I do not know, I've changed them all on the root server, and it seems to distribute them to the nodes)

    You can also change the 2 references to StrictVersion to Version to not import Version as StrickVersion.

    Maxime
    @Abolah

    Heyo, I'm having an issue with setting up OpenSSH Server
    I can apply a policy but the rudder service seems to be unable to restart the OpenSSH Server causing this issue

    [Unexpected] Could not restart the OpenSSH server
    [Unexpected] The OpenSSH server service is running
    error OpenSSH server SSH process Could not restart the OpenSSH server

    Any idea how to solve this issue ?

    2 replies
    Maxime
    @Abolah
    I'm pretty sure the SSH conf i'm trying to create using Rudder is wrong but it does not tell me how
    eewasme
    @eewasme:matrix.org
    [m]
    Hello everyone, we got some issues setting up rudder on CentOS 7 as a main server.
    It seems like the report rpm needed from the script install is missing on the repository
    Indeed:
    it is completely missing and because of that, i cant move on.
    Anyone having this issue about the repository?? Any help is appreciated
    2 replies
    Hiba Awad
    @hiba.awad1_gitlab
    Hello everyone I am trying to install rudder but I got errors
    Capture d’écran du 2022-08-11 10-58-31.png
    Any help please?
    2 replies
    Elenui
    @Elenui
    @tpelado Thanks A LOT. Having this issue with ubuntu 22 it's fix. Thanks mate.
    Alexis Mousset
    @amousset
    @tpelado @Elenui Thanks for the feedback, the analysis and the workaround, we'll provide a fix in the next patch releases
    5 replies
    Elenui
    @Elenui
    I use the fix with ubun 22 I can try with another one if u need to
    Alexis Mousset
    @amousset
    @Elenui you can test this change https://github.com/Normation/ncf/pull/1364/files (on /usr/share/ncf/tree/10_ncf_internals/modules/templates/jinja2-templating.py) on your Rudder server, this should completely remove the need for the dependency.
    13 replies
    Elenui
    @Elenui
    Ok
    i'll test it on my preprod env this afternoon
    which OS @amousset ?
    U22 ? or anything else will owrk
    work *
    Alexis Mousset
    @amousset
    ubuntu 22.04, the problem only occurs with recent python
    Elenui
    @Elenui
    ok
    gentoomain
    @gentoomain:matrix.org
    [m]
    Hello guys, I am currently trying to set up rudder in vagrant, and it seems to be running, and I see that there is a node deployed too. Is there any chance to add a physical machine too ?
    Alexis Mousset
    @amousset
    @gentoomain:matrix.org yes you should be able to do that, the only thing you may need to to is modify the network configuration of the VMs to allow communication with the machine.
    1 reply
    Tanguy PELADO
    @tpelado
    image.png
    I liked my version more :D
    Alexis Mousset
    @amousset
    me too, we'd love to be able to use packages from pip but deploying python on heterogeneous environments is a pain
    Tanguy PELADO
    @tpelado
    >>> int(jinja2.__version__.replace(".","")) >= 270 True
    this could work as well

    or this :

    >>> jinja2.__version__ > "2.7"
    True
    >>> jinja2.__version__ > "3.7"
    False
    >>> jinja2.__version__ > "2.7"
    True

    (I have jinja3.1)

    then again I'm no python dev :D
    Alexis Mousset
    @amousset
    with this comparison "2.10" < "2.7"
    Tanguy PELADO
    @tpelado
    that's true
    see this is why I'm not a python dev
    Alexis Mousset
    @amousset
    :smile: (I'm a python dev out of necessity, the less python I write the better I feel)
    Tanguy PELADO
    @tpelado
    I mean, there I am, in the network engineering dept, making jinja templated firewall rules for our machines :D