Login | Register
My pages Projects Community openCollabNet

Discussions > users > Re: How to setup multiple computers to use up2date without manual int ervention?

Project highlights: Stable Version: 1.6.1, Development Version: 1.7.6

current
Discussion topic

2020-03-13: This site is going to be decommissioned and shut down very soon. Please copy and archive any data you wish to keep ASAP

Back to topic list

Re: How to setup multiple computers to use up2date without manual int ervention?

Reply

Author "Barry K dot Nathan" <barryn at pobox dot com>
Full name "Barry K dot Nathan" <barryn at pobox dot com>
Date 2003-05-06 20:17:36 PDT
Message On Tue, May 06, 2003 at 05:35:33PM -0700, Villalovos, John L wrote:
> So does anyone know how to setup up2date so that you can register
> clients without having to manually do it?

[bnathan@barrykn bnathan]$ ls -l up2date*.tar.gz
-rw-r--r-- 1 bnathan bnathan 18790 Mar 31 19:33 up2date21as.tar.gz
-rw-r--r-- 1 bnathan bnathan 18619 Apr 14 11:05 up2date71.tar.gz
-rw-r--r-- 1 bnathan bnathan 19280 Apr 14 11:01 up2date72.tar.gz
-rw-r--r-- 1 bnathan bnathan 18785 Apr 11 04:35 up2date73.tar.gz
-rw-r--r-- 1 bnathan bnathan 17090 Apr 4 11:21 up2date80.tar.gz
-rw-r--r-- 1 bnathan bnathan 12222 Apr 14 10:00 up2date9.tar.gz
[bnathan@barrykn bnathan]$ tar ztf up2date73.tar.gz
etc/sysconfig/rhn/
etc/sysconfig/rhn/up​2date-keyring.gpg
etc/sysconfig/rhn/rhn_register
etc/sysconfig/rhn/rhnsd
etc/sysconfig/rhn/up2date
etc/sysconfig/rhn/rhn-applet
etc/sysconfig/rhn/systemid
etc/sysconfig/rhn/up​2date-keyring.gpg.or​ig
usr/share/rhn/RHNS-CA-CERT
usr/share/rhn/RHNS-CA-CERT.rula
usr/share/rhn/RPM-GPG-KEY
usr/share/rhn/RPM-GPG-KEY.orig
[bnathan@barrykn bnathan]$ tar ztf up2date9.tar.gz
etc/sysconfig/rhn/
etc/sysconfig/rhn/up2date-uuid
etc/sysconfig/rhn/rhnsd
etc/sysconfig/rhn/up2date
etc/sysconfig/rhn/rhn-applet
etc/sysconfig/rhn/systemid
etc/sysconfig/rhn/up​2date-keyring.gpg
usr/share/rhn/RHNS-CA-CERT.rula
usr/share/rhn/PSCSG-DSA-KEY
usr/share/rhn/PSCSG-RSA-KEY

Basically, I tar /etc/sysconfig/rhn in its entirety, and some files (SSL
cert and GPG keys) from /usr/share/rhn. up2date-keyring.gpg is a GPG
keyring with all the appropriate keys (Red Hat's normal and beta keys,
and the GPG keys I will be using to sign my own packages). For Red Hat
7.x/2.1AS, I export that whole keyring into RPM-GPG-KEY. For Red Hat 8.0
and 9, I export my GPG keys into separate files, to work around RH
Bugzilla bug 89775.

For RH 7.x I have two copies of the SSL cert -- some older versions of
up2date will use /usr/share/rhn/RHNS-CA-CERT even when you specify
another one in the config files. So what usually happens is:

(a) /usr/share/rhn/RHNS-CA-CERT is used at first
(b) I use up2date to update itself
(c) Installation of the new up2date overwrites
/usr/share/rhn/RHNS-CA-CERT, but on the next run the new up2date
actually uses the SSL cert I specified
(/usr/share/rhn/RHNS​-CA-CERT.rula).

IIRC RHEL 2.1AS comes with a sufficiently recent up2date to not need
this hack, but I do this in that tarball anyway because it can come in
handy when using up2date to switch boxes over from RH <= 7.2 to RHEL
2.1AS. (More specifically, I compiled RHEL 2.1AS from SRPMS, so that
means I don't have an installer for it. What I do instead is to install
RH 7.2, remove redhat-release, install redhat-release-as, unpack the
2.1AS tarball and run up2date.)

So, anyway... this is what I do with my clients, FWIW. It's not
completely free of manual intervention (the GPG keys typically need to
be imported into root's keyring for RH 7.x, or imported into the RPM
database for 8.0 and up). It definitely streamlines things, however.

-Barry K. Nathan <barryn at pobox dot com>

--------------------​--------------------​--------------------​---------
To unsubscribe, e-mail: users-unsubscribe@cu​rrent.tigris.org
For additional commands, e-mail: users-help at current dot tigris dot org

« Previous message in topic | 2 of 6 | Next message in topic »

Messages

Show all messages in topic

How to setup multiple computers to use up2date without manual int ervention? "Villalovos, John L" <john dot l dot villalovos at intel dot com> "Villalovos, John L" <john dot l dot villalovos at intel dot com> 2003-05-06 17:35:33 PDT
     Re: How to setup multiple computers to use up2date without manual int ervention? "Barry K dot Nathan" <barryn at pobox dot com> "Barry K dot Nathan" <barryn at pobox dot com> 2003-05-06 20:17:36 PDT
         Re: How to setup multiple computers to use up2date without manual int ervention? hunterm Hunter Matthews 2003-05-07 08:36:52 PDT
     Re: How to setup multiple computers to use up2date without manual int ervention? jpportz Jeremy Portzer 2003-05-06 21:07:34 PDT
         Re: How to setup multiple computers to use up2date without manual int ervention? jwbernin John Berninger 2003-05-07 05:32:25 PDT
     Re: How to setup multiple computers to use up2date without manual int ervention? Arthur Clune <ajc22 at york dot ac dot uk> Arthur Clune <ajc22 at york dot ac dot uk> 2003-05-07 01:46:16 PDT
Messages per page: