Re: Planning for Func 0.19 (and beyond...)

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 

On Tue, Mar 4, 2008 at 12:37 PM, Michael DeHaan <mdehaan@xxxxxxxxxx> wrote:
> We're getting close to releasing Func 0.18, which will be just like 0.17
>  with the addition of certmaster being moved out into a seperate package.
>
>  I see packaging and upgrading of Funcweb as a logical thing to do for a
>  Func 0.19, hopefully we can incorporate some
>  module/improvements/upgrades as well.   That's probably where I plan to
>  spend most of my time.
>
>  Anything needing to be done to the core, perhaps usability wise with
>  respect to the func command line and client side modules?
>
>  Has anyone evaluated "func '*' check" to see if it validates
>  configurations sufficiently?    (Does someone want to extend that to
>  look for expired certs, etc?)
>
>  Perhaps the EL3 backport?
>

The big things that would interest me is how to tie into the func API
with a higher level 'descriptive language'. I would like to be able to
have something where I can say "Make these systems look like this,
make sure that they stay that way (audit them) and tell me when they
change, and then make them the way I told you to do it." I am looking
at more of a declaritive/descriptive higher view so that I can do
something like (syntax not this but something like)

WebClass::AppServers::EL4 -> install_soap

install_soap: {
  package_add {zope, repoX}
  config_manage {/etc/soap/our_configs}
}

audit_soap: {
  package_check {zope,repoX}
 config_check{/etc/soap/our_configs,/etc/passwd}
 report{form_NIST_23231}
}

remove_soap: {
...
}
etc .. the reason is that having done a 5000 line
bash+awk+sed+perl+python script to make a system meet various auditing
requirements and then doing it in 1/10th of that in cfengine (and
probably less in puppet) makes it easier to understand what is going
on. Now a lot of those 5000 lines got pushed down to the 'func' level
but it was a whole lot easier to have a syntax that basically said
what I wanted the class of systems to be, and then did it.


-- 
Stephen J Smoogen. -- CSIRT/Linux System Administrator
How far that little candle throws his beams! So shines a good deed
in a naughty world. = Shakespeare. "The Merchant of Venice"

_______________________________________________
Func-list mailing list
Func-list@xxxxxxxxxx
https://www.redhat.com/mailman/listinfo/func-list
[Index of Archives]     [Fedora Users]     [Linux Networking]     [Fedora Legacy List]     [Fedora Desktop]     [Fedora SELinux]     [Big List of Linux Books]     [Yosemite News]     [KDE Users]

  Powered by Linux