Ask Your Question
0

get a file's checksum from reports

asked 2013-10-10 14:40:20 -0500

banjer gravatar image

updated 2013-10-10 14:46:00 -0500

Is there a way to get puppet's reported checksum/md5sum of a given filename and node name? I'm interested in having a file integrity monitor check against puppet to see if the file change that occurred was expected.

e.g. the file change monitoring software saw that /etc/ntp.conf was changed and now has the checksum 4ce0a9696afac214a2690c83341f4148. Does the latest puppet report show the same checksum for that file? If so, then don't send an alert about this file changing, because we expected it to.

So where could I find the file's checksum per puppet ... (more)

edit retag flag offensive close merge delete

1 Answer

Sort by ยป oldest newest most voted
0

answered 2013-10-11 07:38:26 -0500

banjer gravatar image

updated 2013-10-11 07:38:56 -0500

On each node, /var/lib/puppet/state/last_run_report.yaml reports the old and new checksum of any file that was changed during the last puppet run. I can parse this, but was hoping for a nice API solution.

edit flag offensive delete link more

Your Answer

Please start posting anonymously - your entry will be published after you log in or create a new account.

Add Answer

Question Tools

1 follower

Stats

Asked: 2013-10-10 14:40:20 -0500

Seen: 520 times

Last updated: Oct 11 '13