Forgot to copy the list originally: sysspoof <sysspoof@ng-lab.org>: > -----BEGIN PGP SIGNED MESSAGE----- > Hash: SHA1 > > Hi Brian > > Your work sounds interesting to me. > 2 questions so far: > - - Is it also possible to "download" the portage tree and pre-compiled > packages, perhaps with modified mirror url in make.conf? I use different > networks for the servers, so sharing is not an option. man make.conf, PORTAGE_BINHOST is what you want. In the tar below there's a script, emerge-binpkg, that makes downloading those packages a little quicker than emerge -g, which tries to maintain a cache. > - - You wrote other features are planned, will you work them out? At some point, when I have time. The database schema should show you what I have planned. Everything is just a name value pair for the post part. > Unfortunately I have no perl experience and I haven't got time to > contribute with perl. But I would appreciate to see your work. Why not make > it public? If I am possible to use your scripts I'd like to give you report > and constructive input based on practical experience. Well, this is my second or third perl project as well. Don't learn unless you try, right? I think all the relevant scripts should be in there. Probably need to emerge/cpan some perl modules. https://mywebspace.wisc.edu/bpkroth/web/update-summary-scripts/update-summary-scripts.tar.bz2 Anyone else out there do something similar? Brian > Brian Kroth wrote: > | I imagine you're looking for something along the lines of WSUS. There > are > | lots of ways to organize a set of (gentoo) servers, so I don't know if > | there's one common tool out there to accomplish this just yet. However, > | since it can be a chore to manage many of them individually, I've been > | working on something kinda like this in my spare time. The current model > | is as follows: > | > | - A build server for each class of servers. They build updates for their > | clients nightly. > | > | - "Client" servers (auto) nfs mount the portage tree and packages dir for > | their build server. Each client runs some reports each night that are > | emailed to a common account. The reports include the output from the > | following: emerge -NDu world, glsa-check -p affected, revdep-rebuild -p > | > | - Some procmail filters/perl scripts take each of those emails and dump > | them into a database for web viewing. Various other features are > | planned for the web end, like inventory information, diffs of these > | reports, etc. Logwatch data is also split up by type and dumped in > | here. > | > | - Another cron script sifts through the reports in the database from that > | day and compiles a summary report. > | > | Originally there were only a few servers, so a few emails to check a day > | was no biggie, but eventually I needed a way to summarize it. I admit > | this is isn't the most efficient way of getting that, but its been > | evolving rather slowly. > | > | Anyways, if anyone's interested I can post the procmailrc, scripts, and > db > | schema somewhere. > | > | Here's an example of a security-check summary report. Currently the > output is > | split up by server class via data from the database and is formatted to > allow > | copy and paste execution on all hosts via cssh. > | > | gentoo-i686ws update list: > | You can perform the following command(s) to update the hosts with > their updates: > | # cssh \ > | rocket > | > | # emerge -1ka \ > | =net-analyzer/wireshark-0.99.7 > | > | > | gentoo-ppcencoder update list: > | You can perform the following command(s) to update the hosts with > their updates: > | # cssh \ > | ppcencoder01 \ > | ppcencoder02 \ > | ppcencoder03 \ > | ppcencoder04 \ > | ppcencoder05 \ > | ppcencoder06 \ > | ppcencoder07 \ > | ppcencoder08 \ > | ppcencoder09 \ > | ppcencoder10 \ > | ppcencoder11 > | > | # emerge -1ka \ > | =app-admin/syslog-ng-2.0.6 > | > | > | gentoo-p4srv update list: > | You can perform the following command(s) to update the hosts with > their updates: > | # cssh \ > | mysql1 \ > | mysql2 \ > | gentest > | > | # emerge -1ka \ > | =app-admin/syslog-ng-2.0.6 > | > | Brian > | > | sysspoof <sysspoof@ng-lab.org>: > | Hello ML members, > | > | I am curious if there is any update system available for Gentoo Linux > | server for corporate use. > | With update system I mean a full concept with dist host, perhaps a > | webinterface where you can see all available server and what packages are > | out of date, cron job for daily --sync and world update. It should also > | contain a guide, shows how to configure the Gentoo server for those > | updates. For example it should recommend settings like > | FEATURES="protect-collisions" etc. > | > | Any input? > | > | Thank you, > | > |> > - -- > gentoo-server@lists.gentoo.org mailing list > |> > > - -- > Patrick Grieshaber > sysspoof@ng-lab.org > http://ng-lab.org > -----BEGIN PGP SIGNATURE----- > Version: GnuPG v1.4.7 (Darwin) > Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org > > iD8DBQFHgp9FPtCAYLeEIgwRAsDTAJ91R4Ow77p6Bri6ptw4MTu6/Q0bWwCfWjAd > 65UjzQBpHsIOCVDy7bKl1RI= > =uYMe > -----END PGP SIGNATURE----- > > -- > gentoo-server@lists.gentoo.org mailing list >
Attachment:
smime.p7s
Description: S/MIME cryptographic signature