From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: (qmail 29689 invoked by uid 1002); 10 Jun 2003 16:05:57 -0000 Mailing-List: contact gentoo-dev-help@gentoo.org; run by ezmlm Precedence: bulk List-Post: List-Help: List-Unsubscribe: List-Subscribe: List-Id: Gentoo Linux mail X-BeenThere: gentoo-dev@gentoo.org Received: (qmail 24397 invoked from network); 10 Jun 2003 16:05:56 -0000 From: Michael Boman To: Brett Simpson Cc: Gentoo-dev In-Reply-To: References: Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="=-msd5dl0vUnl6d3JGFkmC" Organization: SecureCiRT Pte Ltd Message-Id: <1055261062.18394.12.camel@r2d2.dmz1.securecirt.com> Mime-Version: 1.0 X-Mailer: Ximian Evolution 1.2.4- Date: 11 Jun 2003 00:04:22 +0800 Subject: Re: [gentoo-dev] Suggestion for improved PORTDIR_OVERLAY X-Archives-Salt: e584139c-4d88-4c59-bb8d-aedf1d258f8a X-Archives-Hash: fcb4117b3f6c8d27b7304611b2ed172c --=-msd5dl0vUnl6d3JGFkmC Content-Type: text/plain Content-Transfer-Encoding: quoted-printable On Tue, 2003-06-10 at 23:43, Brett Simpson wrote: > I'm running into a problem were I have to manually rsync several servers = PORTDIR_OVERLAY contents so that my custom ebuilds get used properly. While= this is manageable for a couple systems it's a pain for me since I have ov= er 6 servers and 4 workstations running Gentoo Linux. >=20 > Using NFS is not an option since some of the servers are locked down as a= firewall. All of these systems of course have internet access so I was thi= nking (which is dangerous) that maybe an additional option called PORTHTTP_= OVERLAY be added. This would in effect look to a web server for custom ebui= lds. >=20 > My other option would be to write an rsync script to pull the files from = my own rsync server to a local PORTDIR_OVERLAY on each system. This is also= not a problem but it would be cooler to have the PORTHTTP_OVERLAY feature. >=20 > Brett I had the same issue, and I solved it by creating my own (tainted) rsync server. First off, I put all my local ebuilds in a own category, "local" for an example, and merge that into the portage tree. Emerge app-admin/gentoo-rsync-mirror and at the end of /opt/gentoo-rsync/rsync-gentoo-portage.sh add /opt/gentoo-rsync/rsync-local-portage.sh Which contain something like this: ---8<------8<------8<------8<------8<------8<--- #!/bin/bash RSYNC=3D"/usr/bin/rsync" LOPTS=3D"--quiet --recursive --links --perms --times --devices --compress --timeout=3D600 --delete --exclude=3DCVS" RSYNC_PORTDIR=3D"/opt/gentoo-rsync/portage" LSRC=3D"/opt/gentoo-rsync/gentoo-x86/local/" DST=3D"/opt/gentoo-rsync/portage/local/" echo "Started update at" `date` >> $0.log 2>&1 logger -t rsync "re-syncing local portage tree" old_pwd=3D`pwd` # Get the files from local CVS cd /opt/gentoo-rsync/gentoo-x86 && cvs -q up -d && cd $old_pwd ${RSYNC} ${LOPTS} ${LSRC} ${DST} grep -q local ${RSYNC_PORTDIR}/profiles/categories 2>/dev/null RETURN_VALUE=3D$? if [ $RETURN_VALUE -eq 1 ]; then echo "Adding 'local' category" >> $0.log 2>&1 echo local >> ${RSYNC_PORTDIR}/profiles/categories else echo "'local' category already exists" >> $0.log 2>&1 fi echo "End: "`date` >> $0.log 2>&1 ---8<------8<------8<------8<------8<------8<--- /opt/gentoo-rsync/gentoo-x86 is a CVS repository (always good to keep track of changes) that has already been checked out. Of course you don't need to use CVS in which case you can just copy your PORTAGE_OVERLAY tree over there and skip the cvs commands. After that is done it's just point on that server as your SYNC=3D"" mirror in make.conf and you should be on your way ;) I am currently working on policies and procedures how to create and maintain servers running Gentoo GNU/Linux so that things doesn't break ;) Once it's finished you can be sure GWN gets a copy of it, but there is a few issues still like having libstdc++ as a own package so no compiler is needed on the server, and producing binary kernel images as packages. If you have any solution how to do that I would be very grateful. Best regards Michael Boman --=20 Michael Boman Security Architect, SecureCiRT Pte Ltd http://www.securecirt.com --=-msd5dl0vUnl6d3JGFkmC Content-Type: application/pgp-signature; name=signature.asc Content-Description: This is a digitally signed message part -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.2 (GNU/Linux) iD8DBQA+5gGGds5fQJiraJwRAmYxAJ9qXmAJNHrUbGj6eXSJ4I2Silfw9QCdHcna GvA3Ws+pcqyLYpFM6hxmkQc= =gbLq -----END PGP SIGNATURE----- --=-msd5dl0vUnl6d3JGFkmC--