help-cfengine
[Top][All Lists]
Advanced

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Copy between the machine using public-private keys


From: Harish Chauhan
Subject: Copy between the machine using public-private keys
Date: Thu, 13 Nov 2003 18:57:45 -0500


Hi,

I am trying to setup a demo envrionment where I want to copy the files between the two machines without exporting any file system rather I would like to use the public/private key encyption method for security reasons.

The setup goes like this :

We have two machines. Machine A and  Machine B

1. Machine A with cfengine code (Installed using the original files)
2. Machine B with only "cfengine binaries" dumped in /opt/cfegnine  folder and Machine A's public key in /opt/cfengine/ppkeys folder

"cfservd.conf" is defined on Machine A and "cfexecd.conf" is running on Machine B

How "cfservd.conf" should look like in order to copy all other remaining files from Machine A to machine B.


Looking forward to your reply.....

Thanks in advance.
Regards, Harish Chauhan





skaar <address@hidden>

11/11/2003 03:58 PM

       
        To:        Harish Chauhan/Watson/address@hidden
        cc:        
        Subject:        Re: a new requirement

       


* Harish Chauhan (address@hidden) [031111 15:01]:
>
> This is good for general updates but what about if you want to check for the
> existing rpm level using " packages: " section in your " update.conf " fine
>
> Example :
> Machine running RedHat 9 needs to check the rpm database before upgrading it to
> the newer level.

I'm not 100% sure if I understand what you want to do. packages will
return classes indicating the state. I'm not sure if you will benefit
much from moving this into update.conf, but you could do the entire
update operation there instead of the files imported by cfagent.conf

/skaar

>
> Looking forward to your reply...
>
> Thanks
>
>
>
>
> skaar <address@hidden>                 To Harish Chauhan/Watson/address@hidden      
>                                       cc "Phil D'Amore" <address@hidden>  
> 11/11/2003 02:03 PM              Subject Re: a new requirement                
>                                                                                
>                                                                                
>                                                                                
>                                                                                
>                                                                                
>
>
>
>
> * Harish Chauhan (address@hidden) [031111 13:00]:
> >
> > Hi Skaar,
> >
> > In continutaion to my previous request, here is an another requirement, it
> goes
> > like this.
> >
> > 1. We have different folders for  RedHat linux        e..g  /common/rh7.3 ,  
> /
> > common/rh8.0,  /common / rh9.0
> >
> > 2. We keep RPMS / updates pertaining to each version in respective folders
> >
> > 3. Now how can we define the configuration file so that each machines gets
> the
> > rpm updates as per the OS Version installed   e.g. Machines having RedHat 7.3
> > only gets rpm updates from /common/rh7.3 and machine with RedHat 9 gets rpm
> > updates fron  /common/rh9.0
> >
> > Looking forward to your reply....
>
> I would probably do variables:
>
> control:
>  redhat_7_2::
>    rpm_common = (  /common/rh7.3 )
>  redhat_9_0::
>    rpm_common = (  /common/rh9.0 )
>
> shellcommands:
>  true_class:
>    "/bin/rpm -Uvh $(rpm_common)/package.rpm"
>
> look at the output of:
>
>  cfagent -v -n
>
> At the start you will see a number of defined classes that cfengine
> figures out automatically:
>
>  Defined Classes = ( any cfengine_2_0_8 redhat redhat_7 redhat_7_2
> opt_dry_run Tuesday Hr13 Min57 Min55_00 Q4 Hr13_Q4 Day11 November Yr2003
> linux 32_bit linux_2_4_7_10 i686 linux_i686 linux_i686_2_4_7_10
> linux_i686_2_4_7_10__1_Thu_Sep_6_17_27_27_EDT_2001 compiled_on_linux_gnu
> ... )
>
>
>
> >
> >
> > Thanks in advance....
> >
> > Regards
>
> --
> /skaar
>
> +-------------------------------------------------------------------+
> +----- address@hidden                   kent skaar   ----------------+
> +----- internet services: infrastructure security   ----------------+
> +-------------------------------------------------------------------+
>

--
/skaar

+-------------------------------------------------------------------+
+----- address@hidden                   kent skaar   ----------------+
+----- internet services: infrastructure security   ----------------+
+-------------------------------------------------------------------+


reply via email to

[Prev in Thread] Current Thread [Next in Thread]