Perl 6 - the future is here, just unevenly distributed

IRC log for #salt, 2018-01-06

| Channels | #salt index | Today | | Search | Google Search | Plain-Text | summary

All times shown according to UTC.

Time Nick Message
00:00 saltslackbridge joined #salt
00:13 mk-fg joined #salt
00:13 mk-fg joined #salt
00:31 SnakeEater97 joined #salt
00:43 sh123124213 joined #salt
01:16 sh123124213 joined #salt
01:17 icedev joined #salt
01:23 icedev joined #salt
01:29 justanotheruser joined #salt
01:49 Defsan joined #salt
01:58 Defsan_ joined #salt
01:58 pipps joined #salt
01:58 Defsan_ left #salt
01:58 Defsan_ joined #salt
02:01 bindhya joined #salt
02:19 doriftoshoes___ joined #salt
02:19 poige_ joined #salt
02:19 frdy_ joined #salt
02:19 linovia_ joined #salt
02:20 futuredale_ joined #salt
02:20 SteamWells_ joined #salt
02:20 kuromagi joined #salt
02:21 jrklein_ joined #salt
02:21 bigjazzsound_ joined #salt
02:22 SMuZZ_ joined #salt
02:22 darix- joined #salt
02:22 MajObvio1sman joined #salt
02:22 Antiarc_ joined #salt
02:22 lionel_ joined #salt
02:22 Laogeodritt| joined #salt
02:22 _puma_ joined #salt
02:22 magnus2 joined #salt
02:22 Micromus_ joined #salt
02:23 doglike joined #salt
02:23 doglike joined #salt
02:24 Xevian_ joined #salt
02:25 Neighb0ur joined #salt
02:25 winterblack joined #salt
02:25 gmacon_ joined #salt
02:25 rubenb_ joined #salt
02:25 coldbrew- joined #salt
02:25 MK_FG joined #salt
02:25 MK_FG joined #salt
02:25 rideh- joined #salt
02:25 whyzgeek_ joined #salt
02:25 swa_mobil joined #salt
02:25 shoogz- joined #salt
02:26 shortdudey123_ joined #salt
02:26 ujjain- joined #salt
02:26 Pomidora_ joined #salt
02:27 shoogz joined #salt
02:27 cmichel joined #salt
02:27 valkyr2e_ joined #salt
02:28 shoogz joined #salt
02:29 lastmikoi joined #salt
02:30 shoogz joined #salt
02:30 sh123124213 joined #salt
02:31 ahrs_ joined #salt
02:31 LordOfLA joined #salt
02:31 nledez joined #salt
02:31 nledez joined #salt
02:31 v12aml joined #salt
02:33 fleaz joined #salt
02:33 evilet joined #salt
02:33 hatifnatt joined #salt
02:33 andi- joined #salt
02:33 hammer065 joined #salt
02:34 peters-tx joined #salt
02:35 packeteer joined #salt
02:58 ilbot3 joined #salt
02:58 Topic for #salt is now Welcome to #salt! <+> Latest Versions: 2016.11.8, 2017.7.2 <+> Support: https://www.saltstack.com/support/ <+> Logs: http://irclog.perlgeek.de/salt/ <+> Paste: https://gist.github.com/ <+> See also: #salt-devel, #salt-offtopic, and https://saltstackcommunity.herokuapp.com (for slack) <+> We are volunteers and may not have immediate answers
03:26 saltslackbridge joined #salt
03:44 mosen joined #salt
04:14 jab416171 joined #salt
04:18 _JZ_ joined #salt
04:25 shiranaihito joined #salt
05:00 zerocoolback joined #salt
05:05 pryorda joined #salt
06:20 LocaMocha joined #salt
08:02 zerocoolback joined #salt
08:18 sh123124213 joined #salt
08:51 aldevar joined #salt
09:02 zerocoolback joined #salt
09:08 ipsecguy joined #salt
09:14 hammer065 joined #salt
09:20 notCalle joined #salt
09:20 ouemt joined #salt
09:21 aviau joined #salt
09:21 swa_work joined #salt
09:58 zerocoolback joined #salt
10:06 zerocoolback joined #salt
10:11 aldevar joined #salt
10:44 sh123124213 anybody has salt running with selinux ? what are the special permissions required to do so ?
10:46 sh123124213 https://docs.saltstack.com/en/latest/topics/troubleshooting/#salt-and-selinux
11:10 Guest17279 joined #salt
11:10 icedev joined #salt
11:30 mikecmpbll joined #salt
11:37 teslatekk joined #salt
11:38 mtwevilg1niuses joined #salt
11:40 XenophonF sh123124213: I run Salt minions and masters on CentOS 7 with SELinux enabled and haven't run into any issues.
11:40 XenophonF Are you having SELinux-related trouble?
11:41 sh123124213 XenophonF: not really, haven't tried it yet but I would imagine that because salt tries to access many parts of the system it would need a special selinux module for it
11:50 XenophonF oh
11:52 XenophonF well on CentOS at least the minion isn't confined and runs as root
11:52 XenophonF there is a module available to manipulate SELinux configs
11:52 XenophonF it requires installing policycoreutils-python
11:53 XenophonF https://docs.saltstack.com/en/latest/ref/modules/all/salt.modules.selinux.html
11:53 XenophonF https://docs.saltstack.com/en/latest/ref/states/all/salt.states.selinux.html
11:53 mtwevilg1niuses joined #salt
11:55 mtwevilgeniuses joined #salt
11:57 mtwevilgeniuses joined #salt
12:03 mtwevilgeniuses joined #salt
12:15 tracphil joined #salt
12:38 XenophonF well I've tried tweaking my 0mq config to fix these SaltReqTimeoutError, but it hasn't fixed the problem
12:38 XenophonF master->minion jobs still fail to run at all due to this error
12:39 XenophonF and jobs started on the minion still fail randomly due to this error
12:39 XenophonF next week I'm going to try setting up TCP and RAET on the master to see if different transports make a difference
12:40 XenophonF and if that doesn't work, I'm going to set up distributed masters or syndic or whatever that is
12:40 XenophonF which I probably need to do anyway since we're deploying stuff in multiple AWS regions now
12:46 mymtw joined #salt
12:52 mymtw joined #salt
12:54 mymtw joined #salt
12:56 mymtw_ joined #salt
13:01 bbbbibibib3434 joined #salt
13:03 mymtw joined #salt
13:09 jdipierro joined #salt
13:11 xet7 joined #salt
13:11 mymtw_ joined #salt
13:12 Neighb0ur left #salt
13:12 Neighb0ur joined #salt
13:12 Neighb0ur left #salt
13:13 mymtw_ joined #salt
13:13 Neighbour joined #salt
13:14 mymtw joined #salt
13:18 mymtw__ joined #salt
13:23 mymtw joined #salt
13:25 mymtw joined #salt
13:30 mymtw left #salt
13:30 mymtw joined #salt
13:30 mymtw left #salt
13:31 igors_ joined #salt
13:32 igors__ joined #salt
13:46 cyteen joined #salt
13:46 Nei joined #salt
13:52 apple_ joined #salt
13:56 apple_ joined #salt
14:08 mymtw joined #salt
14:10 Bacta joined #salt
14:10 Bacta Sex
14:14 mymtw s
14:14 mymtw WOW
14:14 mymtw haha
14:14 mymtw haha
14:26 mymtw joined #salt
14:26 mymtw hi all
14:37 Bacta Luke Skywalker Dies
14:48 aldevar joined #salt
15:00 mymtw :D
15:13 mymtw joined #salt
15:33 dober joined #salt
15:33 dober joined #salt
15:34 sjorge joined #salt
15:36 sjorge joined #salt
15:44 mk-fg joined #salt
15:44 mk-fg joined #salt
15:47 kettlewell joined #salt
15:54 relidy joined #salt
16:08 mk-fg joined #salt
16:08 mk-fg joined #salt
16:12 justanotheruser joined #salt
16:13 justanotheruser joined #salt
16:31 _JZ_ joined #salt
16:36 bildz joined #salt
16:44 kojiro joined #salt
16:55 daks joined #salt
17:00 _JZ_ joined #salt
17:14 rubenb joined #salt
17:17 aldevar joined #salt
17:20 Lionel_Debroux joined #salt
17:22 _JZ_ joined #salt
17:34 Lionel_Debroux_ joined #salt
17:41 tzero joined #salt
18:43 jcristau joined #salt
19:06 oida joined #salt
19:30 kojiro joined #salt
19:56 darix joined #salt
20:01 NeoXiD Is there any easy way to retrieve the UID+GID of a user/group in the same sls file, even when it was just created in the same run? E.g.: group.present, user.present, followed by docker_container.running which has to pass the UID+GID of the (potentially new) created user and group
20:04 yidhra joined #salt
20:08 JPT I'm not sure. Why do you need them? You could perhaps use the id command in case you really need a number
20:08 JPT But chown and chgrp will be fine using the names
20:12 justan0theruser joined #salt
20:12 NeoXiD You often need to pass an appropriate UID/GID into docker containers so that using bind mounts does not end up mapping the account within the docker container to completely unrelated accounts on the host
20:13 NeoXiD Executing "id" within the container would not work in this case (as the user/group name on the host does not exist within the container) and usage of modules within Jinja does not work either, as they're executed/evaluated before the user/group states run
20:13 justanotheruser joined #salt
20:20 Kelsar joined #salt
20:22 oida joined #salt
20:37 aldevar joined #salt
20:39 JPT Okay, so this is about transfering user/group info from the host into the container?
20:44 NeoXiD JPT: Exactly. The sls basically first creates user+group, then runs a docker container which should provide the UID/GID of that user to the container
20:44 JPT Is there maybe a way to get information into a docker container by ... mounting folders from the host?
20:44 JPT You could push such details in there
20:45 NeoXiD The container will then create an user/group with the same UID/GID and files created by the container within a bind mount will show up with the correct user/group on the host
20:46 NeoXiD Many containers support the environment variable PUID/PGID, I would have to keep forks of several Docker images to use any file within a bind mount instead
20:47 JPT :| I don't know enough about Docker apart from that there's Dockerfile and it can contain configuration.
20:48 NeoXiD No problem at all. The only way without having to maintain forks (and keeping them up2date) would be to get the UID/GID of the user/group that Salt manages
20:49 NeoXiD But I could not find any way to retrieve that information - except setting static IDs, but this can lead to conflicts which would then have to be manually resolved through pillar overrides
20:50 JPT If you provide static ids, you could start providing them through pillar, so the pillar is the single point of authority about these ids.
20:50 JPT That way, conflicts may become more obvious
20:52 NeoXiD Not a bad idea. Bit less comfortable, but I think I'll go that way. Thanks for your help, JPT
20:53 JPT Sure thing. Good luck :)
21:05 kojiro joined #salt
21:32 kojiro joined #salt
21:54 tdevil joined #salt
21:54 kojiro joined #salt
21:59 kojiro joined #salt
22:15 tiwula joined #salt
22:22 mk-fg joined #salt
22:22 mk-fg joined #salt
22:41 xet7 joined #salt
22:54 pipps joined #salt
22:57 pipps joined #salt
23:10 yuhl joined #salt
23:19 zer0def joined #salt
23:24 hammer065 joined #salt
23:26 yuhl joined #salt

| Channels | #salt index | Today | | Search | Google Search | Plain-Text | summary