# voxpupuli
- v
VoxBot
04/17/2023, 3:40 PMi guess i'll just disable puppet on this node and assume that the server side is safe when it's safe :) - v
VoxBot
04/17/2023, 3:41 PMhow does the saying go? a secure computer is one that is turned off and all cables are unplugged - v
VoxBot
04/17/2023, 3:41 PMyeah well - v
VoxBot
04/17/2023, 3:41 PMthere's a range of stuff between that and "oh all my servers are all on the internet and here's my telnet root account" - v
VoxBot
04/17/2023, 3:42 PMI wonder if in your case a purely local "puppet apply" from a control repo would work, as there you can at least review the diff that is to be executed etc - v
VoxBot
04/17/2023, 3:43 PMbut your losing a central place for data and exported resources and everything - v
VoxBot
04/17/2023, 3:48 PMyeah that's the thing - v
VoxBot
04/17/2023, 3:48 PMi kind of like exported resources, in particular :p - v
VoxBot
04/17/2023, 3:48 PMI kinda expected that :/ - v
VoxBot
04/17/2023, 3:50 PMand honestly, puppet apply is kind of a hack - v
VoxBot
04/17/2023, 3:50 PMyou need the entire git repo copied over, then hack around modules path, you don't get hiera... - v
vchepkov
04/17/2023, 3:51 PMwhy a hack? you have to start somewhere. I recall time when PE was bunch of bash scripts instead of puppet - v
vchepkov
04/17/2023, 3:51 PMthat was a hack - v
VoxBot
04/17/2023, 3:51 PMyou can have hiera (that's how the foreman installer works), but yeah you need to do more than just "agent bootstrap" - y
Yury Bushmelev
04/17/2023, 4:22 PMPuppet bolt is kind of “remote puppet apply”. So no need to copy your git repo around, just push from your laptop :)💯 1 - y
Yury Bushmelev
04/17/2023, 4:23 PMI have a control-repo-like setup for my homelab which is driven by Bolt - y
Yury Bushmelev
04/17/2023, 4:24 PMThough I believe if I put it into an environment then puppetserver would be able to use it as is - y
Yury Bushmelev
04/17/2023, 4:24 PMHiera included :) - c
Clément LE ROUX
04/18/2023, 8:46 AMHi there, I want to use puppet-vault_lookup plugin to read from Hashicorp Vault. But I also would like to be able to write from Puppet to vault. (Say I create a user, i want puppet to store its password to vault) I may have missed something, but I can't find a module to write to vault 😕 Could you help me with this ? Thanks - d
Dr Bunsen Honeydew
04/18/2023, 8:46 AMSee the
module at https://forge.puppet.com/puppet/vault_lookup?src=slack&channel=voxpupulipuppet-vault_lookup - b
bastelfreak
04/18/2023, 10:37 AM@Clément LE ROUX the SIMP people have modules to interact with a K/V store and I think they support vault - b
bastelfreak
04/18/2023, 10:37 AM - b
bastelfreak
04/18/2023, 10:38 AMwhere are the github docs that lists the installes software and running services in their ubuntu runners - b
bastelfreak
04/18/2023, 10:39 AM - v
VoxBot
04/18/2023, 11:48 AMYury: https://github.com/hercules-team/augeas/pull/691#issuecomment-1512927107 has the reproducer using plain augtool - b
bastelfreak
04/18/2023, 11:49 AMuh nice - y
Yury Bushmelev
04/18/2023, 11:58 AMwow! - y
Yury Bushmelev
04/18/2023, 11:59 AMty for reporting upstream.. I’m a bit busy with my job these days 😞 k8s and helm are my daily tools now.. - y
Yury Bushmelev
04/18/2023, 12:00 PMI saw some 💩 .. like 15k-lines-long YAML - y
Yury Bushmelev
04/18/2023, 12:01 PMand my personal favourite is thisrequiredDuringSchedulingIgnoredDuringExecution😅 1