4 'debian-archive-debian-samhain-reports@master.debian.org',
5 'debian-admin@ftbfs.de',
24 File['/etc/apt/sources.list.d/db.debian.org.list'],
25 Exec['apt-get update']
34 'libfilesystem-ruby1.8',
63 if getfromhash($site::nodeinfo, 'broken-rtc') {
64 package { 'fake-hwclock':
67 File['/etc/apt/sources.list.d/db.debian.org.list'],
68 Exec['apt-get update']
73 # This really means 'not wheezy'
75 if $::debarchitecture != 'armhf' {
76 site::aptrepo { 'security':
77 template => 'debian-org/etc/apt/sources.list.d/security.list.erb',
79 site::aptrepo { 'backports.debian.org':
80 template => 'debian-org/etc/apt/sources.list.d/backports.debian.org.list.erb',
82 site::aptrepo { 'volatile':
83 template => 'debian-org/etc/apt/sources.list.d/volatile.list.erb',
86 site::aptrepo { 'backports.org':
89 key => 'puppet:///modules/debian-org/backports.org.asc',
92 site::aptrepo { 'debian.org':
96 site::aptrepo { 'db.debian.org':
97 template => 'debian-org/etc/apt/sources.list.d/debian.org.list.erb',
98 key => 'puppet:///modules/debian-org/db.debian.org.asc',
101 file { '/etc/facter':
106 source => 'puppet:///files/empty/',
108 file { '/etc/facter/facts.d':
111 file { '/etc/facter/facts.d/debian_facts.yaml':
112 content => template('debian-org/debian_facts.yaml.erb')
114 file { '/etc/apt/preferences':
115 source => 'puppet:///modules/debian-org/apt.preferences',
117 file { '/etc/apt/trusted-keys.d/':
121 file { '/etc/apt/apt.conf.d/local-compression':
122 source => 'puppet:///modules/debian-org/apt.conf.d/local-compression',
124 file { '/etc/apt/apt.conf.d/local-recommends':
125 source => 'puppet:///modules/debian-org/apt.conf.d/local-recommends',
127 file { '/etc/apt/apt.conf.d/local-pdiffs':
128 source => 'puppet:///modules/debian-org/apt.conf.d/local-pdiffs',
130 file { '/etc/timezone':
131 source => 'puppet:///modules/debian-org/timezone',
132 notify => Exec['dpkg-reconfigure tzdata -pcritical -fnoninteractive'],
134 file { '/etc/puppet/puppet.conf':
135 source => 'puppet:///modules/debian-org/puppet.conf',
137 file { '/etc/default/puppet':
138 source => 'puppet:///modules/debian-org/puppet.default',
140 file { '/etc/cron.d/dsa-puppet-stuff':
141 source => 'puppet:///modules/debian-org/dsa-puppet-stuff.cron',
142 require => Package['debian.org'],
144 file { '/etc/ldap/ldap.conf':
145 require => Package['debian.org'],
146 source => 'puppet:///modules/debian-org/ldap.conf',
148 file { '/etc/pam.d/common-session':
149 require => Package['debian.org'],
150 content => template('debian-org/pam.common-session.erb'),
152 file { '/etc/pam.d/common-session-noninteractive':
153 require => Package['debian.org'],
154 content => template('debian-org/pam.common-session-noninteractive.erb'),
156 file { '/etc/rc.local':
158 source => 'puppet:///modules/debian-org/rc.local',
159 notify => Exec['rc.local start'],
161 file { '/etc/molly-guard/run.d/15-acquire-reboot-lock':
163 source => 'puppet:///modules/debian-org/molly-guard-acquire-reboot-lock',
164 require => Package['molly-guard'],
170 file { '/etc/dsa/cron.ignore.dsa-puppet-stuff':
171 source => 'puppet:///modules/debian-org/dsa-puppet-stuff.cron.ignore',
172 require => Package['debian.org']
175 # set mmap_min_addr to 4096 to mitigate
176 # Linux NULL-pointer dereference exploits
177 site::sysctl { 'mmap_min_addr':
178 key => 'vm.mmap_min_addr',
181 site::alternative { 'editor':
182 linkto => '/usr/bin/vim.basic',
184 site::alternative { 'view':
185 linkto => '/usr/bin/vim.basic',
187 mailalias { 'samhain-reports':
189 recipient => $debianadmin,
192 exec { 'apt-get update':
193 path => '/usr/bin:/usr/sbin:/bin:/sbin',
197 exec { 'dpkg-reconfigure tzdata -pcritical -fnoninteractive':
198 path => '/usr/bin:/usr/sbin:/bin:/sbin',
201 exec { 'puppetmaster restart':
202 path => '/etc/init.d:/usr/bin:/usr/sbin:/bin:/sbin',
205 exec { 'rc.local start':
206 path => '/etc/init.d:/usr/bin:/usr/sbin:/bin:/sbin',