Not sure if something changed, or when, but I don't seem to be able to SSH into the image scalers anymore. Standard MW app servers seem ok
Useful to be able to do so for checking packages and such installed (among other testing)
Not sure if something changed, or when, but I don't seem to be able to SSH into the image scalers anymore. Standard MW app servers seem ok
Useful to be able to do so for checking packages and such installed (among other testing)
Subject | Repo | Branch | Lines +/- | |
---|---|---|---|---|
Fix deployers access to imagescaler boxes | operations/puppet | production | +2 -0 |
I looked at this briefly. reedy has no key deployed in /etc/ssh/userkeys/ on mw1153 (one of the imagescalers). He does have a key defined in puppet in general, which works on some other hosts elsewhere. Probably he's either recently been dropped from some applicable user group, or the user groups on the host have changed. That or something of that nature happened a while back, but didn't take pragmatic effect for his logins until the key location change. I can't make heads or tails of how groups are applied to machines this evening, though.
Isn't there supposed to be something like this in hieradata/role/common/mediawiki/imagescaler.yaml?
admin::groups: - deployment
It's in all the other files in that directory.
Change 218135 had a related patch set uploaded (by Alex Monk):
Fix deployers access to imagescaler boxes