Report abuse 

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115

class interactive_server { 
  # 
  # Install keys for the proper pool
  #
  case $hostgroup {
    "sunpool": {
      remotefile {
        "/etc/ssh/ssh_host_dsa_key":
        owner => root, group => root, mode => 400, notify => Service["sshd"],
        source => "ssh/files/keys/sunpool.domain.tld-ssh_host_dsa_key";
        "/etc/ssh/ssh_host_key":
        owner => root, group => root, mode => 400, notify => Service["sshd"],
        source => "ssh/files/keys/sunpool.domain.tld-ssh_host_key";
        "/etc/ssh/ssh_host_rsa_key":
        owner => root, group => root, mode => 400, notify => Service["sshd"],
        source => "ssh/files/keys/sunpool.domain.tld-ssh_host_rsa_key";
        "/etc/ssh/ssh_host_dsa_key.pub":
        owner => root, group => root, mode => 444, notify => Service["sshd"],
        source => "ssh/files/keys/sunpool.domain.tld-ssh_host_dsa_key.pub";
        "/etc/ssh/ssh_host_key.pub":
        owner => root, group => root, mode => 444, notify => Service["sshd"],
        source => "ssh/files/keys/sunpool.domain.tld-ssh_host_key.pub";
        "/etc/ssh/ssh_host_rsa_key.pub":
        owner => root, group => root, mode => 444, notify => Service["sshd"],
        source => "ssh/files/keys/sunpool.domain.tld-ssh_host_rsa_key.pub";
      }
    }
  }
  #
  # Implement cronjobs
  #          
  cron { 
    killScriptXxxxxx:
      command => '/usr/local/bin/scriptname -k Xxxxxx.exe',
      user => root, minute => [ 9, 24, 39, 54 ],  ensure => present;
    killScriptXxxxXxxx:
      command => '/usr/local/bin/scriptname -k XxxxXxxx',
      user => root, minute => [ 10, 25, 40, 55 ], ensure => present;
    killScriptXxxxXxxxXxx:
      command => '/usr/local/bin/scriptname -k XxxxXxxxXxx',
      user => root, minute => [ 11, 26, 41, 56 ], ensure => present;
  }
  #
  # Implement platform specific actions
  #
  case $operatingsystem {
    redhat: {
      #
      # include buildPasswd.sh
      #
      include scripts::buildPasswd

      # 
      # Enforce 'stock' /etc/security/limits.conf
      #
      remotefile {
        "/etc/security/limits.conf": 
        mode => 444, source => "etc/security/limits.conf";
      }

      #
      # Increased semaphores on running system, due to problem with 128.
      #
      exec { "sysctlKernelSem":
        command => '/sbin/sysctl -w kernel.sem="250 32000 32 256"',
        unless => "/sbin/sysctl kernel.sem | grep 256";
      }

      #
      # Increased semaphores in sysctl.conf, due to problem with 128.
      #
      ensure_key_value { "sysctl.conf":
        key => "kernel.sem", delimiter => " = ",
        value => "250 32000 32 256", file => "/etc/sysctl.conf";
      }

      #
      # 32 bit only actions
      #
      case $hardwaremodel {
        i686: {
          #
          # Implement cronjobs
          #
          cron {
            # 8,23,38,53 * * * * /usr/local/bin/scriptname -k xxxXxxXxxxx
            killScriptXxxXxxXxxxx:
              command => '/usr/local/bin/scriptname -k xxxXxxXxxxx',
              user => root, minute => [ 8,23,38,53 ], ensure => present;
          }
        }
      }
    }
    solaris: {

      #
      # Implement cronjobs (xxx)
      #
      cron {
        killScriptGet:
          command => '/usr/local/bin/hungjob get > /dev/null 2>&1',
          user => root, minute => [ 9, 24, 39, 55 ], ensure => present;
        killScriptXXXx:
          command => '/usr/local/bin/scriptname -k xxx',
          user => root, minute => [ 13, 28, 43, 58 ], ensure => present;        
        killScriptXxxxxx:
          command => '/usr/local/bin/scriptname -k xxxxx',
          user => root, minute => [ 14, 29, 44, 59 ], ensure => present;        
        killScriptXxxxxxxx:
          command => '/usr/local/bin/scriptname -k xxxxxxx',
          user => root, minute => [ 15, 30, 45, 0 ], ensure => present;        
      }
    }
  }
}