Project

General

Profile

Actions

Bug #5723

closed

Rsyslog configuration lacks postgresql password on relay-top

Added by Benoît PECCATTE over 9 years ago. Updated over 4 years ago.

Status:
Rejected
Priority:
2
Assignee:
-
Category:
Documentation
Target version:
Severity:
Major - prevents use of part of Rudder | no simple workaround
UX impact:
User visibility:
Operational - other Techniques | Technique editor | Rudder settings
Effort required:
Priority:
0
Name check:
Fix check:
Regression:

Description

On relay-top, the system technique file distributePolicy/1.0/rsyslogConf.st generates /etc/rsyslog.d/rudder.conf without postgresql password.
This is a problem since multiserver setup will fail to transmit reports.

First the file containing the password is not copied from the webapp server. ( /opt/rudder/etc/rudder-passwords.conf )
Then the server-roles/1.0/password-check.cf use the class root_server instead of a class that includes the relay-top role.


Related issues 1 (0 open1 closed)

Related to Rudder - Bug #6226: Document migration from manually installed relaysReleasedBenoît PECCATTE2015-02-04Actions
Actions #1

Updated by Jonathan CLARKE over 9 years ago

  • Target version changed from 3.0.0~beta1 to 3.0.0~beta2
Actions #2

Updated by François ARMAND over 9 years ago

  • Target version changed from 3.0.0~beta2 to 3.0.0~rc1
Actions #3

Updated by Vincent MEMBRÉ about 9 years ago

  • Target version changed from 3.0.0~rc1 to 3.0.0
Actions #4

Updated by Matthieu CERDA about 9 years ago

  • Status changed from New to Discussion
  • Assignee set to François ARMAND
  • Priority changed from N/A to 2

First issue to address is: how do we distribute the passwords. We would need to build an acl for cf-serverd with the root server + relays ip addresses.

Maybe we need a system variable for this ?

Once it is done, the remaining part will be piece of cake :)

Anyone could suggest an approach here ? fanf of ncharles maybe ?

Actions #5

Updated by Nicolas CHARLES about 9 years ago

Passwords are stored in a specific files, with other password (ldap and webdav)
Since all passwords are stored in a file, it sounds dangerous to share this file on too more machine than necessary

We could use a system variable, but we'd have a nasty issue when changing the passwords: the promises would use old password (from promises), and webapp would be unable to regenerate new promises, as database would be unavailable - wrong password

This sounds like a complex problem, and the solution probably is "user must manage himself its password in distributed installation, with the help of easy to use documentation/scripts that explain what to do"

Actions #6

Updated by François ARMAND about 9 years ago

I agree with you comment Nicolas.

Benoit, could you document what is needed to do to make it works ?

I think the documentation must appear at the end of the package installation, so that the user is notified that he has something left to do. And the same documentation must be added in relay server installation http://www.rudder-project.org/rudder-doc-3.0/rudder-doc.html#relay-servers

Actually, the documentation for relay server is not up-to-date (see #6226)

Actions #7

Updated by François ARMAND about 9 years ago

  • Project changed from 24 to Rudder
  • Category changed from Techniques to Documentation
Actions #8

Updated by François ARMAND about 9 years ago

  • Target version changed from 3.0.0 to 3.1.0~beta1

So, to be more precise, that ticket will be studied in 3.1, and for 3.0 we are going to address #6226.

Actions #9

Updated by Vincent MEMBRÉ almost 9 years ago

  • Target version changed from 3.1.0~beta1 to 3.1.0~rc1
Actions #10

Updated by Vincent MEMBRÉ almost 9 years ago

  • Target version changed from 3.1.0~rc1 to 3.1.0
Actions #11

Updated by Vincent MEMBRÉ over 8 years ago

  • Target version changed from 3.1.0 to 3.1.1
Actions #12

Updated by Vincent MEMBRÉ over 8 years ago

  • Target version changed from 3.1.1 to 3.1.2
Actions #13

Updated by Vincent MEMBRÉ over 8 years ago

  • Target version changed from 3.1.2 to 3.1.3
Actions #14

Updated by Vincent MEMBRÉ over 8 years ago

  • Target version changed from 3.1.3 to 3.1.4
Actions #15

Updated by Vincent MEMBRÉ over 8 years ago

  • Target version changed from 3.1.4 to 3.1.5
Actions #16

Updated by Vincent MEMBRÉ over 8 years ago

  • Target version changed from 3.1.5 to 3.1.6
Actions #17

Updated by Vincent MEMBRÉ about 8 years ago

  • Target version changed from 3.1.6 to 3.1.7
Actions #18

Updated by Vincent MEMBRÉ about 8 years ago

  • Target version changed from 3.1.7 to 3.1.8
Actions #19

Updated by Vincent MEMBRÉ about 8 years ago

  • Target version changed from 3.1.8 to 3.1.9
Actions #20

Updated by Vincent MEMBRÉ almost 8 years ago

  • Target version changed from 3.1.9 to 3.1.10
Actions #21

Updated by Vincent MEMBRÉ almost 8 years ago

  • Target version changed from 3.1.10 to 3.1.11
Actions #22

Updated by Vincent MEMBRÉ almost 8 years ago

  • Target version changed from 3.1.11 to 3.1.12
Actions #23

Updated by Vincent MEMBRÉ over 7 years ago

  • Target version changed from 3.1.12 to 3.1.13
Actions #24

Updated by Vincent MEMBRÉ over 7 years ago

  • Target version changed from 3.1.13 to 3.1.14
Actions #25

Updated by Vincent MEMBRÉ over 7 years ago

  • Target version changed from 3.1.14 to 3.1.15
Actions #26

Updated by Vincent MEMBRÉ over 7 years ago

  • Target version changed from 3.1.15 to 3.1.16
Actions #27

Updated by Vincent MEMBRÉ over 7 years ago

  • Target version changed from 3.1.16 to 3.1.17
Actions #28

Updated by Vincent MEMBRÉ over 7 years ago

  • Target version changed from 3.1.17 to 3.1.18
Actions #29

Updated by Vincent MEMBRÉ about 7 years ago

  • Target version changed from 3.1.18 to 3.1.19
Actions #30

Updated by François ARMAND almost 7 years ago

  • Severity set to Major - prevents use of part of Rudder | no simple workaround
  • User visibility set to Infrequent - complex configurations | third party integrations
  • Priority set to 0
Actions #31

Updated by Vincent MEMBRÉ almost 7 years ago

  • Target version changed from 3.1.19 to 3.1.20
Actions #32

Updated by Jonathan CLARKE almost 7 years ago

  • Status changed from Discussion to New
Actions #33

Updated by Jonathan CLARKE almost 7 years ago

  • Assignee deleted (François ARMAND)
Actions #34

Updated by Vincent MEMBRÉ almost 7 years ago

  • Target version changed from 3.1.20 to 3.1.21
Actions #35

Updated by Vincent MEMBRÉ almost 7 years ago

  • Target version changed from 3.1.21 to 3.1.22
Actions #36

Updated by Benoît PECCATTE almost 7 years ago

  • User visibility changed from Infrequent - complex configurations | third party integrations to Operational - other Techniques | Technique editor | Rudder settings
  • Priority changed from 0 to 30
Actions #37

Updated by Benoît PECCATTE almost 7 years ago

  • Priority changed from 30 to 43
Actions #38

Updated by Vincent MEMBRÉ over 6 years ago

  • Target version changed from 3.1.22 to 3.1.23
Actions #39

Updated by Vincent MEMBRÉ over 6 years ago

  • Target version changed from 3.1.23 to 3.1.24
Actions #40

Updated by Vincent MEMBRÉ over 6 years ago

  • Target version changed from 3.1.24 to 3.1.25
Actions #41

Updated by Vincent MEMBRÉ over 6 years ago

  • Target version changed from 3.1.25 to 387
  • Priority changed from 43 to 44
Actions #42

Updated by Vincent MEMBRÉ over 6 years ago

  • Target version changed from 387 to 4.1.10
Actions #43

Updated by Vincent MEMBRÉ about 6 years ago

  • Target version changed from 4.1.10 to 4.1.11
Actions #44

Updated by Vincent MEMBRÉ almost 6 years ago

  • Target version changed from 4.1.11 to 4.1.12
  • Priority changed from 44 to 45
Actions #45

Updated by Vincent MEMBRÉ almost 6 years ago

  • Target version changed from 4.1.12 to 4.1.13
  • Priority changed from 45 to 46
Actions #46

Updated by Vincent MEMBRÉ over 5 years ago

  • Target version changed from 4.1.13 to 4.1.14
Actions #47

Updated by Benoît PECCATTE over 5 years ago

  • Target version changed from 4.1.14 to 4.1.15
Actions #48

Updated by Vincent MEMBRÉ over 5 years ago

  • Target version changed from 4.1.15 to 4.1.16
  • Priority changed from 46 to 47
Actions #49

Updated by Vincent MEMBRÉ over 5 years ago

  • Target version changed from 4.1.16 to 4.1.17
  • Priority changed from 47 to 48
Actions #50

Updated by Vincent MEMBRÉ over 5 years ago

  • Target version changed from 4.1.17 to 4.1.18
  • Priority changed from 48 to 0
Actions #51

Updated by Vincent MEMBRÉ about 5 years ago

  • Target version changed from 4.1.18 to 4.1.19
Actions #52

Updated by Alexis Mousset about 5 years ago

  • Target version changed from 4.1.19 to 4.1.20
Actions #53

Updated by Alexis Mousset over 4 years ago

  • Target version changed from 4.1.20 to 588
Actions #54

Updated by Alexis Mousset over 4 years ago

  • Status changed from New to Rejected

relay-top are not supported any more, closing.

Actions #55

Updated by Alexis Mousset over 4 years ago

  • Target version changed from 588 to 4.1.24
Actions

Also available in: Atom PDF