Google

using rsync with ssh keys via authorized_keys and command=”rsync …”

January 29th, 2010
We often need to keep two directories on different machines synchronised. We would like the rsync to be secure and to only allow the rsync, no shell access. This method uses ssh keys with commands in authorized_keys. Read the rest of this entry »

Posted in Linux | No Comments »

puppetserver certificates being signed in the future

January 29th, 2010
We had a problem where new clients couldn’t get their keys signed properly by the puppetmaster. Both the client and the server were in perfect sync with our ntp server. date on both machines returned the expected results. We are running mongrel so I went down the wrong path of thinking apache was to blame for the time problem. It wasn’t until I started going through the certificate_factory stuff that I found the problem. Read the rest of this entry »

Posted in Linux | No Comments »

extract private key and cert from pkcs12 (cert8.db/key3.db)

January 25th, 2010
using fedora-ds/redhat-ds it creates cert8.db and key3.db to store the certs. I wanted to extract the private key as PEM so I could import it elsewhere. Read the rest of this entry »

Posted in Linux | No Comments »

puppetmaster Error 400 on SERVER: Too many connections

January 15th, 2010
Was getting this error on our puppetmaster that only had a few clients. Read the rest of this entry »

Posted in Linux | No Comments »

weird device names like devXXXXX with ifconfig on Fedora/RHEL

January 13th, 2010
We had a machine that would keep coming up with devXXXXX where XXXXX is a seemingly random number. Read the rest of this entry »

Posted in Linux | No Comments »