Antonin M.'s questions -server

Antonin M.

Asked: 2020-06-27 07:21:46 +0800 CST

Ansible lineinfile doesn't find a particular string when state present

0

I would like to check if admin_token is defined in my keystone.conf file. To do so I want to use Ansible. However, even if the attribute is present in the file, the task fails.

I compared two tasks with the lineinfile module (same regex, state present then absent). In the first task, Ansible didn't find the line. However, it found it in the second task. No modification is done on the file at any time.

Where could this come from?

PLAY [Docker] ******************************************************************************************************

TASK [Gathering Facts] *********************************************************************************************
ok: [keystone]

TASK [Check admin_token is present] *******************************************************************************
fatal: [keystone]: FAILED! => {"changed": false, "msg": "line is required with state=present"}
...ignoring

TASK [Check admin_token not present] *******************************************************************************
changed: [keystone]

TASK [debug] *******************************************************************************************************
ok: [keystone] => {
    "comment_admin_token_1": {
        "changed": false,
        "failed": true,
        "msg": "line is required with state=present"
    }
}

TASK [debug] *******************************************************************************************************
ok: [keystone] => {
    "comment_admin_token_2": {
        "backup": "",
        "changed": true,
        "diff": [
            {
                "after": "",
                "after_header": "/etc/keystone/keystone.conf (content)",
                "before": "",
                "before_header": "/etc/keystone/keystone.conf (content)"
            },
            {
                "after_header": "/etc/keystone/keystone.conf (file attributes)",
                "before_header": "/etc/keystone/keystone.conf (file attributes)"
            }
        ],
        "failed": false,
        "found": 1,
        "msg": "1 line(s) removed"
    }
}

PLAY RECAP *********************************************************************************************************

keystone                   : ok=5    changed=1    unreachable=0    failed=0

Here after the playbook

- name: Docker
  hosts: containers
  connection: docker
  tasks:
  - name: Check admin_token is present 
    lineinfile:
      path: /etc/keystone/keystone.conf
      regexp: '^admin_token *= *.*'
      state: present
    register: comment_admin_token_disabled
    ignore_errors: yes
    check_mode: yes
  - name: Check admin_token not present 
    lineinfile:
      path: /etc/keystone/keystone.conf
      regexp: '^admin_token *= *.*'
      state: absent
    register: comment_admin_token_disabled
    ignore_errors: yes
    check_mode: yes

Antonin M.

Asked: 2020-03-27 08:07:14 +0800 CST

How to add a certificate in UEFI SHIM for signing a kernel module on GCP?

0

I followed this tutorial in order to add my own signed kernel module in my Ubuntu VM (18.04 LTS). It is hosted on Google Cloud Platform. I would like to add a certificate in the UEFI shim/Mokmanager, but when I restart the server in order to finalize the installation of the certificate, I can't access to the Mokmanager... Nothing happens by pressing on any key of the keyboard (see screenshot).

Is there an other way to add this certificate? Due to the fact that I want UEFI secure boot, disabling it is NOT an option.

Antonin M.

Asked: 2016-02-13 02:00:21 +0800 CST

HTTPD listening in IPv6, according netstat, but reacheable in IPv4

10

Using Openstack, I have a Web GUI (horizon) hosted on my server (HTTPS).

When I do a netstat -lt | grep https, I have:

tcp6       0      0 [::]:https              [::]:*                  LISTEN

With lsof -i :443, I have:

COMMAND   PID   USER   FD   TYPE DEVICE SIZE/OFF NODE NAME
httpd    5250   root    6u  IPv6  27390      0t0  TCP *:https (LISTEN)
httpd   17675 apache    6u  IPv6  27390      0t0  TCP *:https (LISTEN)
httpd   17676 apache    6u  IPv6  27390      0t0  TCP *:https (LISTEN)
httpd   17677 apache    6u  IPv6  27390      0t0  TCP *:https (LISTEN)
httpd   17678 apache    6u  IPv6  27390      0t0  TCP *:https (LISTEN)
httpd   17679 apache    6u  IPv6  27390      0t0  TCP *:https (LISTEN)
httpd   17680 apache    6u  IPv6  27390      0t0  TCP *:https (LISTEN)
httpd   17681 apache    6u  IPv6  27390      0t0  TCP *:https (LISTEN)
httpd   17682 apache    6u  IPv6  27390      0t0  TCP *:https (LISTEN)
httpd   27444 apache    6u  IPv6  27390      0t0  TCP *:https (LISTEN)

However the server is reachable in IPv4. It's ok for me but I wonder why there is not an entry with netstat like this:

tcp       0      0 0.0.0.0:https              0.0.0.0:*                  LISTEN

Ansible lineinfile doesn't find a particular string when state present

How to add a certificate in UEFI SHIM for signing a kernel module on GCP?

HTTPD listening in IPv6, according netstat, but reacheable in IPv4

Can you pass user/pass for HTTP Basic Authentication in URL parameters?

Ping a Specific Port

Check if port is open or closed on a Linux server?

How to automate SSH login with password?

How do I tell Git for Windows where to find my private RSA key?

What's the default superuser username/password for postgres after a new install?

What port does SFTP use?

Command line to list users in a Windows Active Directory group?

What is a Pem file and how does it differ from other OpenSSL Generated Key File Formats?

How to determine if a bash variable is empty?