Verschillen

Dit geeft de verschillen weer tussen de geselecteerde revisie en de huidige revisie van de pagina.

--- installatie_handleidingen:spacewalk [2017/03/29 17:02]
abel [erata en security advisories]
+++ installatie_handleidingen:spacewalk [2017/04/26 21:36] (huidige)
abel [updates]
@@ Regel 155: / Regel 155: @@
 ''%%semanage fcontext -a -t spacewalk_data_t "/var/satellite(/.*)?"%%\\
 restorecon -R -v /var/satellite''
+==== version lock in verband met updates ====
+''yum install yum-versionlock\\
+ yum versionlock cglib''
+==== updates ====
+''/usr/sbin/spacewalk-service stop\\
+yum update\\
+systemct start postgresql\\
+ /usr/bin/spacewalk-schema-upgrade\\
+/usr/sbin/spacewalk-service start''
 ===== configuratie =====
@@ Regel 183: / Regel 202: @@
 chmod 700 ./errata-import.pl''
-installeer wat packages die nodig zijn voor dit script:\\
+installeer packages die nodig zijn voor dit script:\\
 ''yum install perl-Text-Unidecode perl-XML-Simple perl-Frontier-RPC''
@@ Regel 191: / Regel 210: @@
 ''vi /opt/tools/spacewalk_centos_erata_sync.sh''
-en zet hierin
+en zet hierin:
+<code>
+#!/bin/sh
+# try to create the lock and check the outcome
+LOCKFILE=/var/run/spacewalk_centos_erata_sync.lock
+if [ -e "$LOCKFILE" ]; then
+        echo "Lock file exists, another sync running?. Aborting."
+        exit 1
+else
+        touch "$LOCKFILE"
+fi
+trap "rm ${LOCKFILE}" EXIT
+#sync channels and publish updates
+/usr/bin/spacewalk-repo-sync -c centos_6-x86_64 1>/dev/null 2>&1
+/usr/bin/spacewalk-repo-sync -c centos_6-x86_64-updates 1>/dev/null 2>&1
+/usr/bin/spacewalk-repo-sync -c centos_6-x86_64-extras 1>/dev/null 2>&1
+/usr/bin/spacewalk-repo-sync -c centos_7-x86_64 1>/dev/null 2>&1
+/usr/bin/spacewalk-repo-sync -c centos_7-x86_64-updates 1>/dev/null 2>&1
+/usr/bin/spacewalk-repo-sync -c centos_7-x86_64-extras 1>/dev/null 2>&1
+#get errata file and checksums
+cd /tmp
+wget -N https://cefs.steve-meier.de/errata.latest.xml 1>/dev/null 2>&1
+wget -N https://cefs.steve-meier.de/errata.latest.md5 1>/dev/null 2>&1
+wget -N https://www.redhat.com/security/data/oval/com.redhat.rhsa-all.xml.bz2 1>/dev/null 2>&1
+bunzip2 -f /tmp/com.redhat.rhsa-all.xml.bz2
+#verify integrity
+grep "errata.latest.xml$" errata.latest.md5 > myerrata.md5
+md5sum -c myerrata.md5 1>/dev/null 2>&1
+if [ "$?" == 0 ]; then
+        #ok - import errata
+        SPACEWALK_PASS='Pas5W0rd' SPACEWALK_USER='adminUser' /opt/tools/errata-import.pl --server localhost --errata errata.latest.xml --include-channels=centos_6-x86_64-updates,centos_7-x86_64-updates --rhsa-oval=/tmp/com.redhat.rhsa-all.xml --publish 1>/dev/null
+        if [ "$?" != 0 ]; then
+                echo "It seems like there was a problem while publishing the most recent errata..."
+                exit 1
+        fi
+        rm /tmp/myerrata.md5
+else
+        #errata information possibly invalid
+        echo "ERROR: md5 checksum mismatch, check download!"
+        exit 1
+fi
+</code>
+Vervolgens configureren we een cronjob om elke nacht om 3 uur deze job te draaien:
+''vi /etc/cron.d/0SpaceWalk-erata''
+en zet hier in:
+<code>
+# sync the update repositories, download erata and publish to spacewalk as needed
+3 * * * root /opt/tools/spacewalk_centos_erata_sync.sh >> /var/log/Spacewalk-Erata.log
+</code>
 Omdat het script de CentOS repositories synct moeten we de sync voor al de CentOS repositories in de webinterface uitzetten.
-<note note>Wordt aan gewerkt</note>
-https://cefs.steve-meier.de/
 ==== clients verbinden ====

Gebruikershulpmiddelen

Site-hulpmiddelen

Verschillen

Paginahulpmiddelen