[Pkg-puppet-devel] Bug#854674: unblock: puppet/4.8.2-2
Apollon Oikonomopoulos
apoikos at debian.org
Thu Feb 9 11:39:43 UTC 2017
Package: release.debian.org
Severity: normal
User: release.debian.org at packages.debian.org
Usertags: unblock
Please unblock package puppet.
4.8.2-2 fixes a critical bug (#854487) introduced in 4.8.1-3. In short,
the puppet package will enable the puppet service by default and puppet
will try to connect to the 'puppet' host and receive configuration,
which may or may not be intended.
Previously, our safeguard against this was to start the puppet service,
but leave the agent locked, which meant it would not apply any
configuration whatsoever. Unfortunately, this proved to be fragile and
stopped working when the agent lock path changed.
The fix for this in unstable is to simply not enable the service on new
installations at all, rather than enable it but lock the agent. This is
a better approach for a number of reasons (resource waste, many systems
running puppet under cron anyway etc). The change is properly
documented, and also handles the upgrade path from Jessie. See the
attached source debdiff for details.
unblock puppet/4.8.2-2
-------------- next part --------------
A non-text attachment was scrubbed...
Name: puppet_4.8.2-2.diff
Type: text/x-diff
Size: 9360 bytes
Desc: not available
URL: <http://lists.alioth.debian.org/pipermail/pkg-puppet-devel/attachments/20170209/f16f0661/attachment.diff>
More information about the Pkg-puppet-devel
mailing list