Host_Alias SECHOSTS = chopin
Host_Alias FTPHOSTS = franck
Host_Alias ZIVITHOSTS = zelenka, zandonai
-Host_Alias AACRAIDHOSTS = paganini, respighi, beethoven, pettersson
+Host_Alias AACRAIDHOSTS = respighi, beethoven, pettersson
Host_Alias MEGARAIDHOSTS = rautavaara, sibelius
Host_Alias MPTRAIDHOSTS = barber, biber, cilea, vitry, orff
Host_Alias MEGACTLHOSTS = nielsen
# nagios
nagios MQ_HOSTS=(rabbitmq) NOPASSWD: /usr/sbin/rabbitmqctl list_queues -p dsa name messages consumers
-nagios ALL=(ALL) NOPASSWD: /etc/init.d/ekeyd-egd-linux restart
+nagios ALL=(ALL) NOPASSWD: /usr/sbin/service ekeyd-egd-linux restart
+nagios ALL=(ALL) NOPASSWD: /usr/sbin/service samhain restart
nagios ALL=(ALL) NOPASSWD: /usr/lib/nagios/plugins/dsa-check-dabackup ""
nagios ALL=(ALL) NOPASSWD: /usr/lib/nagios/plugins/dsa-check-filesystems ""
# with smartarray controllers
%secretary ALL=(secretary) ALL
%sectracker ALL=(sectracker) ALL
%security SECHOSTS=(mail_security) ALL
+%security ALL=(security) ALL
%snapshot ALL=(snapshot) ALL
%uddadm ALL=(udd) ALL
%volatile ALL=(volatile) ALL
%qa-core ALL=(qa) ALL
%gobby gombert=(gobby) ALL
%dacshelper diabelli=(www-data) ALL
+%debsso diabelli=(debsso) ALL
# the dak user gets to run stuff as dak-unpriv (for things like lintian checks)
%ftptrainee FTPHOSTS=(dak-unpriv) NOPASSWD: /usr/bin/lintian
%Debian dillon=(staticsync) NOPASSWD: /usr/local/bin/static-update-component mozilla.debian.net
%ports dillon=(staticsync) NOPASSWD: /usr/local/bin/static-update-component www.ports.debian.org
%debvoip dillon=(staticsync) NOPASSWD: /usr/local/bin/static-update-component rtc.debian.org
+%security dillon=(staticsync) NOPASSWD: /usr/local/bin/static-update-component security-team.debian.org
# The piuparts slave needs to handle chroots
piupartss PIUPARTS_SLAVE_HOSTS=(ALL) NOPASSWD: ALL
projects / dsa-puppet.git / blobdiff