[Pkg-puppet-devel] Proposed Puppet package changes
Stig Sandbeck Mathisen
ssm at debian.org
Thu Nov 19 12:18:10 UTC 2009
Andrew Pollock <apollock at debian.org> writes:
> 1) The Puppet client daemon starts automatically on install
>
> Given this reaches out and talks to a host called "puppet" this was
> deemed as a security issue (Not unreasonably so IMO). Given that a
> Puppet client generally requires some configuration before it's
> usable, I don't think it's unreasonable to not try to start Puppet
> automatically. I was thinking of setting START=no in
> /etc/default/puppet to address this.
That's a good idea. Starting puppetmasterd automatically is generally
non-destructive, but starting puppetd may cause trouble.
> I thought we could roll all of these in with the package splitting that Stig
> was proposing to do.
Neat. :)
> Unrelated, Luke seemed to think that Puppet 1.0 would be out within
> the timeframe that Ubuntu 10.04 is going to feature freeze. Whether
> we want to race to ship that in Debian and Ubuntu within that
> timeframe is another question though...
It may not hurt to ask for an exception for a major release, especially
if it is early in the freeze period. What do you think?
--
Stig Sandbeck Mathisen
Oooo, shiny!
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 196 bytes
Desc: not available
URL: <http://lists.alioth.debian.org/pipermail/pkg-puppet-devel/attachments/20091119/86304d6d/attachment.pgp>
More information about the Pkg-puppet-devel
mailing list