Twitter Weekly Updates for 2012-01-15
- @marinakroeze hey zusje, zag je berichtje nu pas. Hier alles wel ok, bij jou? in reply to marinakroeze #
- Why does Windows shut down Skyrim at a random time to install updates? Is that Microsoft's new security policy? #
- Alone at the office, Jacques Brel playing loud. Enjoying myself. #
- Oh dear, next item in the playlist: "We are the knights who say… NI!" Nice transition :-) #
Powered by Twitter Tools
Twitter Weekly Updates for 2012-01-08
- I wish difficult decisions became easier after you've actioned them. Some seem to get harder. Bah. #
- Woke up an hour ago feeling feverish. Hasn't improved yet… :-\ #
- Flu, flu, go away and don't come back to haunt me another day. Bah. Three days of bedrest is boring. #
- @marinakroeze Niet echt vrees ik :-( in reply to marinakroeze #
- Me: "Hey body, less coughing, more sleeping!" Body: "F*** you." #nagnagnag #
Powered by Twitter Tools
Twitter Weekly Updates for 2012-01-01
- Waiting on the train again. #
- Nice read: "@threatpost: #Tpost 2011: Wait, What? http://t.co/mzsMvlwJ" #
- Happy new year everyone! #
Powered by Twitter Tools
Twitter Weekly Updates for 2011-12-25
- Op kantoor: "Computers werken op rook, want als die eruit is, doet ie het niet meer." #
Powered by Twitter Tools
Twitter Weekly Updates for 2011-12-18
- Htc desire update broke my desktop settings :-( #
Powered by Twitter Tools
Twitter Weekly Updates for 2011-12-11
- @woutlemmens Gefeliciteerd met jullie zoon! in reply to woutlemmens #
- Zei ik gister nog dat ik een foto van Aagje op canvas wil laten drukken, word ik op mijn wenken bediend door GroupOn: http://t.co/AVgQTeXB #
- Batman Live is nice. The fighting is a bit silly, but the show is good. Part 2 in 15 minutes I guess. #
- Ok, Batman Live was a lot of fun. On our way home now. #
Powered by Twitter Tools
9 Dec 2011, 16:43
Tags: activemq, puppet, puppetqd, python, queue, stomp, Uncategorized
leave a comment
Tags: activemq, puppet, puppetqd, python, queue, stomp, Uncategorized
leave a comment
Debugging puppet queueing
Today we ran into a problem where the data put in ActiveMQ by the puppetmaster seemed corrupted in some way. When running the puppet queue daemon on the foreground (with –debug –verbose –no-daemonize), we noticed messages like these:
info: Loaded queued catalog in 22.16 seconds debug: Searched for resources in 0.31 seconds err: Could not save queued catalog for web1.ourserver.com: syntax error on line 68, col 34: ` serverversion: 2.7.6 sshdsakey: [long string]' notice: Processing queued catalog for web1.ourserver.com in 0.41 seconds
It seemed like for some reason there’s a newline missing there, but what exactly is it trying to do? It would be helpful if we could check the message in total, to see which resource is doing this. Python to the rescue!
On the machine that’s running the ActiveMQ, install python-stompy (we’re on Debian Squeeze). Open a python interactive shell and do this:
>>> from stompy.simple import Client
>>> stomp = Client()
>>> stomp.connect()
>>> stomp.subscribe("/queue/catalog")
>>> message = stomp.get_nowait()
>>> f = open("message","w")
>>> f.write(message.body)
>>> f.close()
>>> stomp.unsubscribe("/queue/catalog")
>>> stomp.disconnect()
You know have a file called message that contains the message. You might want to make the file a little bit easier to read by executing the following: sed -i 's/{/\n{/g' message, which adds a newline in front of each opening accolade. Now to search for the problem and the resource that causes it.
I hope this helps someone!
Twitter Weekly Updates for 2011-12-04
- If the installed version is as polished as the installer, I'm sold to #linux #mint12! #
- @Dankjewelske nu wel! in reply to Dankjewelske #
- Piepte toen ze vanmorgen ging liggen en heeft een stevige knobbel op haar middenrif. Verliest ook controle achterkant. Niet goed. #
- Daag Aagje, bedankt voor de heerlijke jaren. Ik zal je missen, lieve meid. #
- Really enjoying #Skyrim but it does crash quite often! :( #
Powered by Twitter Tools
Twitter Weekly Updates for 2011-11-27
- Aagje heeft de meest agressieve vorm van kanker. Zoals het er nu naar uitziet gaat ze vrijdag voor de laatste keer naar de dierenarts :'( #
- @ripienaar quite :-( I sat next to her when she was born, eight years ago :-( in reply to ripienaar #
- @DetlefKroeze dankje in reply to DetlefKroeze #
- Goed nieuws, Aagje mag nog een paar weken blijven :-) Ze krijgt pijnstillers en zo en we gaan haar nog een paar fijne weken geven :-) #
Powered by Twitter Tools
Twitter Weekly Updates for 2011-11-20
- En toen had ik geen konijntje meer :'( #
- @marinakroeze ik wil jou wel in my life hoor! in reply to marinakroeze #
- En toen vonden we een gezwel bij Aagje. Volgens de dierenarts geen spoed, aangezien ze nog gewoon eet en drinkt. #
Powered by Twitter Tools
Twitter Weekly Updates for 2011-11-13
- Woohoo! Mijn eerste donatie op http://t.co/EOxhOGO7! Dankjewel @marinakroeze!! :) #movember #
- @davecoveney Same here, but I got my first sponsor yesterday! Good luck hiding ;-) in reply to davecoveney #
- Vanochtend met Muuz naar dierenarts geweest. Ze heeft een tumor in haar darmen en die is eigenlijk niet te behandelen bij een konijn :-( #
Powered by Twitter Tools
Twitter Weekly Updates for 2011-11-13
- Woohoo! Mijn eerste donatie op http://t.co/EOxhOGO7! Dankjewel @marinakroeze!! :) #movember #
- @davecoveney Same here, but I got my first sponsor yesterday! Good luck hiding ;-) in reply to davecoveney #
- Vanochtend met Muuz naar dierenarts geweest. Ze heeft een tumor in haar darmen en die is eigenlijk niet te behandelen bij een konijn :-( #
Powered by Twitter Tools
Twitter Weekly Updates for 2011-11-06
- "Franklyn" is a good movie. #
- Exam day today. Assuming I won't pass this first time to trick my nerves into stillness. Wish me luck! #
- Damn, need to get a new driver's license… :-) #
- @Dankjewelske juh :-) motormuis Tim :-) nu sparen voor zo'n fiets. in reply to Dankjewelske #
- @Dankjewelske dank :-) in reply to Dankjewelske #
- Getting annoyed by my HTC Desire, upgrading keeps going wrong. Need to uninstall and reinstall every time = loose my settings again. #
- My birthday is next week. Don't know what to get me? Sponsor my upper lip! http://t.co/Cr7pD5k0 #Movember #
- Interlinkreünie vandaag. Zit nu in de trein naar Eindhoven ervoor. Heb er zin in! #interlink #
- Ok, I'm apparently not really fit for a moustache. Gonna keep it till december anyway. #movember #
Powered by Twitter Tools
Twitter Weekly Updates for 2011-10-30
- @Dankjewelske Wat zijn je gelinkte foto's op twitter klein :-( in reply to Dankjewelske #
- "Ik ben niet zo goed in Python" "Ik dacht dat jij 'droomde in Python'?" "Dat wil niet zeggen dat mijn dromen compileren!" #
Powered by Twitter Tools
Twitter Weekly Updates for 2011-10-23
- @marinakroeze pfffff ik vind echt dat je onder de 180cm moet blijven, anders gelooft niemand meer dat je mijn zusje bent! in reply to marinakroeze #
- #Ubuntu 11.10 makes me sad. Lots of stuff broken or not working as you'd expect. Considering a switch to plain ol' Debian testing. #
- @pmjdebruijn Screen stays dark when I wake my laptop from sleeping screen, WiFi forgets passwords and disconnects without reason afaics,… in reply to pmjdebruijn #
- @pmjdebruijn Unity sidebar sometimes doesn't reappear when an app is fullscreen and can't get dual display to work as I want.Worked in natty in reply to pmjdebruijn #
- @pmjdebruijn Dual screen worked as expected in 11.04. in reply to pmjdebruijn #
Powered by Twitter Tools
19 Oct 2011, 11:43
Tags: cryptostick, gnupg, gpg, gpg-agent, manifest, puppet, ssh, ssh-agent, ubuntu
2 comments
Tags: cryptostick, gnupg, gpg, gpg-agent, manifest, puppet, ssh, ssh-agent, ubuntu
2 comments
Cryptostick on Ubuntu
We use the following puppet recipe to get our CryptoStick (v1.2) working on Ubuntu. This enables the gpg-agent to be used as ssh-agent as well. There might be unnecessary code in here, but I’m too lazy to remove that :) Do leave me a message if you find mistakes or just if it helped you! You need to run puppet as root (just sudo is enough) to deploy the modification the script makes. Reboot after it’s been applied.
## VARIABLES - CHANGE THESE
$user = "tim"
# You probably no longer need to change these, but check them just in case
$vendorId = "04e6"
$productId = "5115"
## DON'T CHANGE BELOW THIS LINE
define line (
$ensure = "present",
$file,
$content = false
) {
if ! $content {
$content = $name
}
case $ensure {
default: {
fail("Unknown ensure value: ${ensure}.")
}
present: {
exec { "line $name":
command => "/bin/echo '${content}' >> '${file}'",
unless => "/bin/grep -Fx '${content}' '${file}'";
}
}
absent: {
exec { "line $name":
command => "/usr/bin/perl -ni -e 'print unless /^\\Q${content}\\E\$/' '${file}'",
onlyif => "/bin/grep -Fx '${content}' '${file}'";
}
}
}
}
line {
"Start of default.desktop":
content => "[Desktop Entry]",
file => "/usr/share/xsessions/default.desktop";
"default.desktop, Encoding":
content => "Encoding=UTF-8",
require => Line["Start of default.desktop"],
file => "/usr/share/xsessions/default.desktop";
"default.desktop, Name":
content => "Name=default",
require => Line["Start of default.desktop"],
file => "/usr/share/xsessions/default.desktop";
"default.desktop, Comment":
content => "Comment=Default session",
require => Line["Start of default.desktop"],
file => "/usr/share/xsessions/default.desktop";
"default.desktop, Exec":
content => "Exec=default",
require => Line["Start of default.desktop"],
file => "/usr/share/xsessions/default.desktop";
"default.desktop, Type":
content => "Type=Application",
require => Line["Start of default.desktop"],
file => "/usr/share/xsessions/default.desktop";
}
# Not sure if this part is still needed, but does no harm.
line {
"Xsession: OPTIONFILE":
content => 'OPTIONFILE=${OPTIONFILE:-/etc/X11/Xsession.options}',
file => "/etc/X11/Xsession.d/01x11-common_setup-vars";
"Xsession: SYSRESOURCES":
content => 'SYSRESOURCES=${SYSRESOURCES:-/etc/X11/Xresources}',
file => "/etc/X11/Xsession.d/01x11-common_setup-vars";
"Xsession: USRRESOURCES":
content => 'USRRESOURCES=${USRRESOURCES:-$HOME/.Xresources}',
file => "/etc/X11/Xsession.d/01x11-common_setup-vars";
"Xsession: SYSSESSIONDIR":
content => 'SYSSESSIONDIR=${SYSSESSIONDIR:-/etc/X11/Xsession.d}',
file => "/etc/X11/Xsession.d/01x11-common_setup-vars";
"Xsession: USERXSESSION":
content => 'USERXSESSION=${USERXSESSION:-$HOME/.xsession}',
file => "/etc/X11/Xsession.d/01x11-common_setup-vars";
"Xsession: USERXSESSIONRC":
content => 'USERXSESSIONRC=${USERXSESSIONRC:-$HOME/.xsessionrc}',
file => "/etc/X11/Xsession.d/01x11-common_setup-vars";
"Xsession: ALTUSERXSESSION":
content => 'ALTUSERXSESSION=${ALTUSERXSESSION:-$HOME/.Xsession}',
file => "/etc/X11/Xsession.d/01x11-common_setup-vars";
"Xsession: ERRFILE":
content => 'ERRFILE=${ERRFILE:-$HOME/.xsession-errors}',
file => "/etc/X11/Xsession.d/01x11-common_setup-vars";
}
# We need these packages.
package { ["gnupg-agent","pinentry-gtk2","openssh-client","gpgsm","pcscd"]:
ensure => installed,
}
line {
"Disable use-ssh-agent in Xsession.options":
ensure => absent,
file => "/etc/X11/Xsession.options",
content => "use-ssh-agent";
"Personal xsession start":
ensure => present,
file => "/home/${user}/.xsession",
content => "#!/bin/bash";
"Start gpg-agent with the correct variables from .Xsession":
ensure => present,
file => "/home/${user}/.xsession",
content => "eval $(/usr/bin/gpg-agent --daemon --sh --write-env-file=/home/${user}/.gnupg/gpg-agent-info-$(hostname) --enable-ssh-support)",
require => Line["Personal xsession start"];
"Make sure X11 reads user options":
ensure => present,
file => "/etc/X11/Xsession.options",
content => "allow-user-xsession";
"Kill scdaemon when we insert a new card in the SCM reader":
ensure => present,
file => "/etc/udev/rules.d/smartcard.rules",
content => "ACTION==\"add\", SUBSYSTEM==\"usb\", SYSFS{idVendor}==\"${vendorId}\", SYSFS{idProduct}==\"${productId}\", PROGRAM==\"/usr/bin/killall -9 scdaemon\"";
"Kill scdaemon when we insert a cryptocard":
ensure => present,
file => "/etc/udev/rules.d/smartcard.rules",
content => 'ACTION=="add", SUBSYSTEM=="usb", ATTR{product}=="Crypto Stick v1.2", PROGRAM=="/usr/bin/killall -9 scdaemon"';
"Make gnupg use the agent":
ensure => present,
file => "/home/${user}/.gnupg/gpg.conf",
content => "use-agent";
}
file { "/home/${user}/.xsession":
ensure => file,
mode => 755,
owner => "${user}",
}
# Remove this file, please.
file {
"/etc/xdg/autostart/gnome-keyring-ssh.desktop":
ensure => absent;
"/etc/xdg/autostart/gnome-keyring-gpg.desktop":
ensure => absent;
}
# Change the gnome settings
exec { "/bin/su - ${user} -c '/usr/bin/gconftool-2 --set -t bool /apps/gnome-keyring/daemon-components/ssh false'":
unless => "/bin/su - ${user} -c '[ $(/usr/bin/gconftool-2 --get /apps/gnome-keyring/daemon-components/ssh) == \"false\" ]'",
}
Twitter Weekly Updates for 2011-10-16
- Lekker op de bank filmpjes aan het kijken :-) #
- What's up with people not closing the door behind them after they went to the toilet in the train? #notnice #yourparentsraisedyoubetter #
- "@davecoveney: Forgot that the digestive system of a newborn evidently operates at around 2 bar." I see a business opportunity here… #
- @ArjenNL oh dear, I hope they won't get any more bright ideas like that… #plaszak #nsfail in reply to ArjenNL #
- @marinakroeze beetje maar :-P in reply to marinakroeze #
- @marinakroeze zo zo, flinke plannen! En wanneer kom je eens hier op kantoor langs? in reply to marinakroeze #
- @marinakroeze neem je telefoon eens op :-P in reply to marinakroeze #
- Fixing problems at a customer's site, so still in the office :( #
- Finally on my way home. Now the train is delayed. Of course. #
- Wordt hier tegenover een raam ingeslagen. Bel je 112, duurt het bijna 5 minuten voordat je politie aan de lijn hebt.. (buren belden ook) #
- Blijkt een politie inval te zijn geweest. Voor niks 112 gebeld. En ik maar denken dat ik in een rustige buurt woon! #
- Nu heb ik in ieder geval geen excuus meer om te laat bij de tandarts te zijn. #goedemorgen #wakeupcall #policestyle #
- @marinakroeze Wanneer hebben ze die foto van mij dan genomen??? in reply to marinakroeze #
- @f3ew Yes you should :-) in reply to f3ew #
- @ipot stoer :-) commissie vragen! Of in ieder geval een redesign! ;-) in reply to ipot #
Powered by Twitter Tools
Twitter Weekly Updates for 2011-10-09
- "@marinakroeze: Fucking koudddd :(" <- is dat niet een beetje tegenstrijdig? :-) #
- @Dankjewelske nestosyl al geprobeerd? Waren wij erg blij mee op vakantie… Toen we nog hadden :-\ in reply to Dankjewelske #
Powered by Twitter Tools
Twitter Weekly Updates for 2011-10-02
- @marinakroeze zou jij geen muffins komen langsbrengen? :-) in reply to marinakroeze #
- @KrisBuytaert "Antwerp" always makes me remember the awesome Quest for Glory series. #totallyuselessmessage #kthxbye in reply to KrisBuytaert #
Powered by Twitter Tools
