machinery-tool 1.22.2 → 1.22.3

Sign up to get free protection for your applications and to get access to all the features.
Files changed (24) hide show
  1. checksums.yaml +4 -4
  2. data/.git_revision +1 -1
  3. data/NEWS +9 -0
  4. data/bin/machinery +1 -1
  5. data/html/index.html.haml +1 -1
  6. data/lib/exceptions.rb +2 -0
  7. data/lib/filter.rb +7 -1
  8. data/lib/remote_system.rb +10 -1
  9. data/lib/version.rb +1 -1
  10. data/machinery-helper/version.go +1 -1
  11. data/man/generated/machinery.1.gz +0 -0
  12. data/manual/docs/machinery.ymp +11 -56
  13. data/manual/site/machinery.ymp +11 -56
  14. data/manual/site/mkdocs/js/lunr.min.js +7 -0
  15. data/manual/site/mkdocs/js/search.js +2 -2
  16. data/manual/site/sitemap.xml +48 -48
  17. data/plugins/patterns/patterns_inspector.rb +9 -1
  18. data/tools/go.rb +4 -1
  19. data/tools/helper_builder.rb +0 -1
  20. metadata +8 -25
  21. data/manual/site/base.html +0 -42
  22. data/manual/site/machinery-inspect-docker.1/index.html +0 -242
  23. data/manual/site/machinery_security_implications.1/index.html +0 -223
  24. data/manual/site/mkdocs/js/lunr-0.5.7.min.js +0 -7
data/plugins/patterns/patterns_inspector.rb CHANGED
@@ -60,11 +60,19 @@ module Machinery
60
60
  xml = @system.run_command("zypper", "--non-interactive", "-xq", "--no-refresh", "patterns",
61
61
  "-i", stdout: :capture)
62
62
  rescue Cheetah::ExecutionFailed => e
63
- if e.stdout.include?("locked")
63
+ # Zypper is locked
64
+ if e.status.exitstatus == 7 # ZYPPER_EXIT_ZYPP_LOCKED
64
65
  Machinery.logger.error(e.stdout)
65
66
  raise Machinery::Errors::ZypperFailed.new(
66
67
  "Zypper is locked."
67
68
  )
69
+ # Repositories are updated or gpg keys are expiring
70
+ elsif e.status.exitstatus == 106 # ZYPPER_EXIT_INF_REPOS_SKIPPED
71
+ Machinery.logger.error(
72
+ "Zypper returned exit code #{e.status.exitstatus} during patterns inspection with" \
73
+ " the message:\n#{e.stdout}"
74
+ )
75
+ xml = e.stdout
68
76
  else
69
77
  raise
70
78
  end
data/tools/go.rb CHANGED
@@ -35,9 +35,12 @@ class Go
35
35
 
36
36
  def build
37
37
  if archs.count == 1
38
- system("go build -o machinery-helper-#{archs.first}")
38
+ arch = archs.first
39
+ puts("Building machinery-helper for architecture #{arch}.")
40
+ system("go build -o machinery-helper-#{arch}")
39
41
  else
40
42
  archs.each do |arch|
43
+ puts("Building machinery-helper for architecture #{arch}.")
41
44
  system(
42
45
  "env GOOS=linux #{compile_options(arch)} go build -o machinery-helper-#{arch}"
43
46
  )
data/tools/helper_builder.rb CHANGED
@@ -66,7 +66,6 @@ const VERSION = "#{git_revision}"
66
66
  def build_machinery_helper
67
67
  FileUtils.rm_f(Dir.glob(File.join(@helper_dir, "machinery-helper*")))
68
68
  Dir.chdir(@helper_dir) do
69
- puts("Building machinery-helper binaries")
70
69
  if @go.build
71
70
  true
72
71
  else
metadata CHANGED
@@ -1,14 +1,14 @@
1
1
  --- !ruby/object:Gem::Specification
2
2
  name: machinery-tool
3
3
  version: !ruby/object:Gem::Version
4
- version: 1.22.2
4
+ version: 1.22.3
5
5
  platform: ruby
6
6
  authors:
7
7
  - SUSE
8
8
  autorequire:
9
9
  bindir: bin
10
10
  cert_chain: []
11
- date: 2016-11-16 00:00:00.000000000 Z
11
+ date: 2017-06-20 00:00:00.000000000 Z
12
12
  dependencies:
13
13
  - !ruby/object:Gem::Dependency
14
14
  name: cheetah
@@ -24,20 +24,6 @@ dependencies:
24
24
  - - "~>"
25
25
  - !ruby/object:Gem::Version
26
26
  version: '0.4'
27
- - !ruby/object:Gem::Dependency
28
- name: json
29
- requirement: !ruby/object:Gem::Requirement
30
- requirements:
31
- - - "~>"
32
- - !ruby/object:Gem::Version
33
- version: '1.8'
34
- type: :runtime
35
- prerelease: false
36
- version_requirements: !ruby/object:Gem::Requirement
37
- requirements:
38
- - - "~>"
39
- - !ruby/object:Gem::Version
40
- version: '1.8'
41
27
  - !ruby/object:Gem::Dependency
42
28
  name: abstract_method
43
29
  requirement: !ruby/object:Gem::Requirement
@@ -98,14 +84,14 @@ dependencies:
98
84
  name: haml
99
85
  requirement: !ruby/object:Gem::Requirement
100
86
  requirements:
101
- - - "~>"
87
+ - - ">="
102
88
  - !ruby/object:Gem::Version
103
89
  version: '4.0'
104
90
  type: :runtime
105
91
  prerelease: false
106
92
  version_requirements: !ruby/object:Gem::Requirement
107
93
  requirements:
108
- - - "~>"
94
+ - - ">="
109
95
  - !ruby/object:Gem::Version
110
96
  version: '4.0'
111
97
  - !ruby/object:Gem::Dependency
@@ -140,14 +126,14 @@ dependencies:
140
126
  name: sinatra
141
127
  requirement: !ruby/object:Gem::Requirement
142
128
  requirements:
143
- - - "~>"
129
+ - - ">="
144
130
  - !ruby/object:Gem::Version
145
131
  version: '1.4'
146
132
  type: :runtime
147
133
  prerelease: false
148
134
  version_requirements: !ruby/object:Gem::Requirement
149
135
  requirements:
150
- - - "~>"
136
+ - - ">="
151
137
  - !ruby/object:Gem::Version
152
138
  version: '1.4'
153
139
  - !ruby/object:Gem::Dependency
@@ -483,7 +469,6 @@ files:
483
469
  - manual/docs/wheels.png
484
470
  - manual/mkdocs.yml
485
471
  - manual/site/CNAME
486
- - manual/site/base.html
487
472
  - manual/site/css/bootstrap.min.css
488
473
  - manual/site/css/custom.css
489
474
  - manual/site/css/fixed-positioning.css
@@ -542,7 +527,6 @@ files:
542
527
  - manual/site/machinery-export-html.1/index.html
543
528
  - manual/site/machinery-export-kiwi.1/index.html
544
529
  - manual/site/machinery-inspect-container.1/index.html
545
- - manual/site/machinery-inspect-docker.1/index.html
546
530
  - manual/site/machinery-inspect.1/index.html
547
531
  - manual/site/machinery-list.1/index.html
548
532
  - manual/site/machinery-man.1/index.html
@@ -557,8 +541,7 @@ files:
557
541
  - manual/site/machinery_main_scopes.1/index.html
558
542
  - manual/site/machinery_main_security_implications.1/index.html
559
543
  - manual/site/machinery_main_usecases.1/index.html
560
- - manual/site/machinery_security_implications.1/index.html
561
- - manual/site/mkdocs/js/lunr-0.5.7.min.js
544
+ - manual/site/mkdocs/js/lunr.min.js
562
545
  - manual/site/mkdocs/js/mustache.min.js
563
546
  - manual/site/mkdocs/js/require.js
564
547
  - manual/site/mkdocs/js/search-results-template.mustache
@@ -781,7 +764,7 @@ required_rubygems_version: !ruby/object:Gem::Requirement
781
764
  version: 1.3.6
782
765
  requirements: []
783
766
  rubyforge_project:
784
- rubygems_version: 2.2.2
767
+ rubygems_version: 2.2.5
785
768
  signing_key:
786
769
  specification_version: 4
787
770
  summary: Systems management toolkit
data/manual/site/base.html DELETED
@@ -1,42 +0,0 @@
1
- <!DOCTYPE html>
2
- <html>
3
- <head>
4
- <meta charset="utf-8"/>
5
- <link href="{{ base_url }}/custom.css" rel="stylesheet">
6
- </head>
7
- <body id="manpage">
8
- <div id="back">
9
- <a href="{{ base_url }}">
10
- <img src="../hand3.png" class="hand3"/>
11
- <div class="goback">Go back to the web site</div>
12
- </a>
13
- </div>
14
- <div class="mp">
15
- <div class="nav">
16
- <ul>
17
- {% for nav_item in nav %}
18
- {% if nav_item.children %}
19
- <li>{{ nav_item.title }}
20
- <ul>
21
- {% for nav_item in nav_item.children %}
22
- <li class="{% if nav_item.active%}current{%endif%}">
23
- <a href="{{ nav_item.url }}">{{ nav_item.title }}</a>
24
- </li>
25
- {% endfor %}
26
- </ul>
27
- </li>
28
- {% else %}
29
- <li class="{% if nav_item.active%}current{%endif%}">
30
- <a href="{{ nav_item.url }}">{{ nav_item.title }}</a>
31
- </li>
32
- {% endif %}
33
-
34
- {% endfor %}
35
- </ul>
36
- </div>
37
- <div class="content">
38
- {{ content }}
39
- </div>
40
- </div>
41
- </body>
42
- </html>
data/manual/site/machinery-inspect-docker.1/index.html DELETED
@@ -1,242 +0,0 @@
1
- <!DOCTYPE html>
2
- <html>
3
- <head>
4
- <meta charset="utf-8"/>
5
- <link href="../custom.css" rel="stylesheet">
6
- </head>
7
- <body id="manpage">
8
- <div id="back">
9
- <a href="..">
10
- <img src="../hand3.png" class="hand3"/>
11
- <div class="goback">Go back to the web site</div>
12
- </a>
13
- </div>
14
- <div class="mp">
15
- <div class="nav">
16
- <ul>
17
-
18
-
19
- <li class="">
20
- <a href="../docs/">Welcome</a>
21
- </li>
22
-
23
-
24
-
25
-
26
- <li>Home
27
- <ul>
28
-
29
- <li class="">
30
- <a href="../machinery_main_general.1/">General</a>
31
- </li>
32
-
33
- <li class="">
34
- <a href="../machinery_main_scopes.1/">Scopes</a>
35
- </li>
36
-
37
- <li class="">
38
- <a href="../machinery_main_usecases.1/">Use cases</a>
39
- </li>
40
-
41
- <li class="">
42
- <a href="../machinery_security_implications.1/">Security Implications</a>
43
- </li>
44
-
45
- </ul>
46
- </li>
47
-
48
-
49
-
50
-
51
- <li>Commands
52
- <ul>
53
-
54
- <li class="">
55
- <a href="../machinery-analyze.1/">Analyze</a>
56
- </li>
57
-
58
- <li class="">
59
- <a href="../machinery-build.1/">Build</a>
60
- </li>
61
-
62
- <li class="">
63
- <a href="../machinery-compare.1/">Compare</a>
64
- </li>
65
-
66
- <li class="">
67
- <a href="../machinery-config.1/">Config</a>
68
- </li>
69
-
70
- <li class="">
71
- <a href="../machinery-copy.1/">Copy</a>
72
- </li>
73
-
74
- <li class="">
75
- <a href="../machinery-deploy.1/">Deploy</a>
76
- </li>
77
-
78
- <li class="">
79
- <a href="../machinery-export-autoyast.1/">Export AutoYaST</a>
80
- </li>
81
-
82
- <li class="">
83
- <a href="../machinery-export-kiwi.1/">Export Kiwi</a>
84
- </li>
85
-
86
- <li class="">
87
- <a href="../machinery-inspect.1/">Inspect</a>
88
- </li>
89
-
90
- <li class="current">
91
- <a href="./">Inspect Docker</a>
92
- </li>
93
-
94
- <li class="">
95
- <a href="../machinery-list.1/">List</a>
96
- </li>
97
-
98
- <li class="">
99
- <a href="../machinery-man.1/">Man</a>
100
- </li>
101
-
102
- <li class="">
103
- <a href="../machinery-move.1/">Move</a>
104
- </li>
105
-
106
- <li class="">
107
- <a href="../machinery-remove.1/">Remove</a>
108
- </li>
109
-
110
- <li class="">
111
- <a href="../machinery-serve.1/">Serve</a>
112
- </li>
113
-
114
- <li class="">
115
- <a href="../machinery-show.1/">Show</a>
116
- </li>
117
-
118
- <li class="">
119
- <a href="../machinery-upgrade-format.1/">Upgrade Format</a>
120
- </li>
121
-
122
- <li class="">
123
- <a href="../machinery-validate.1/">Validate</a>
124
- </li>
125
-
126
- </ul>
127
- </li>
128
-
129
-
130
-
131
- </ul>
132
- </div>
133
- <div class="content">
134
- <h1 id="inspect-container-inspect-container">inspect-container — Inspect Container</h1>
135
- <h2 id="synopsis">SYNOPSIS</h2>
136
- <p><code>machinery inspect-container</code> [OPTIONS] IMAGENAME</p>
137
- <p><code>machinery inspect-container</code> [OPTIONS] IMAGEID</p>
138
- <p><code>machinery</code> help inspect-container</p>
139
- <h2 id="description">DESCRIPTION</h2>
140
- <p>The <code>inspect-container</code> command inspects a container image. It creates and starts the container from the provided image before inspection
141
- and generates a system description from the gathered data. After the inspection the container will be killed and removed again.
142
- This approach ensures that no containers and images are affected by the inspection.</p>
143
- <p>Right now the container inspection only supports Docker images.</p>
144
- <p>The system data is structured into scopes, controlled by the
145
- <code>--scope</code> option.</p>
146
- <p><strong>Note</strong>:
147
- Machinery will always inspect all specified scopes, and skip scopes which
148
- trigger errors.</p>
149
- <h2 id="arguments">ARGUMENTS</h2>
150
- <ul>
151
- <li><code>IMAGENAME / IMAGEID</code> (required):
152
- The name or id of the image to be inspected. The provided name or id will also be
153
- used as the name of the stored system description unless another name is
154
- provided with the <code>--name</code> option.</li>
155
- </ul>
156
- <h2 id="options">OPTIONS</h2>
157
- <ul>
158
- <li>
159
- <p><code>-n NAME</code>, <code>--name=NAME</code> (optional):
160
- Store the system description under the specified name.</p>
161
- </li>
162
- <li>
163
- <p><code>-s SCOPE</code>, <code>--scope=SCOPE</code> (optional):
164
- Inspect image for specified scope.
165
- See the <a href="#Scopes">Scope section</a> for more information.</p>
166
- </li>
167
- <li>
168
- <p><code>-e SCOPE</code>, <code>--ignore-scope=IGNORE-SCOPE</code> (optional):
169
- Inspect image for all scopes except the specified scope.
170
- See the <a href="#Scopes">Scope section</a> for more information.</p>
171
- </li>
172
- <li>
173
- <p><code>-x</code>, <code>--extract-files</code> (optional):
174
- Extract changed configuration and unmanaged files from the inspected container.
175
- Shortcut for the combination of <code>--extract-changed-config-files</code>,
176
- <code>--extract-unmanaged-files</code>, and <code>--extract-changed-managed-files</code></p>
177
- </li>
178
- <li>
179
- <p><code>--extract-changed-config-files</code> (optional):
180
- Extract changed configuration files from the inspected image.</p>
181
- </li>
182
- <li>
183
- <p><code>--extract-unmanaged-files</code> (optional):
184
- Extract unmanaged files from the inspected image.</p>
185
- </li>
186
- <li>
187
- <p><code>--extract-changed-managed-files</code> (optional):
188
- Extract changed managed files from inspected image.</p>
189
- </li>
190
- <li>
191
- <p><code>--skip-files</code> (optional):
192
- Do not consider given files or directories during inspection. Either provide
193
- one file or directory name or a list of names separated by commas. You can
194
- also point to a file which contains a list of files to filter (one per line)
195
- by adding an '@' before the path, e.g.</p>
196
- <p>$ <code>machinery</code> inspect-container --skip-files=@/path/to/filter_file myimage</p>
197
- <p>If a filename contains a comma it needs to be escaped, e.g.</p>
198
- <p>$ <code>machinery</code> inspect-container --skip-files=/file\,with_comma myimage</p>
199
- <p><strong>Note</strong>: File or directory names are not expanded, e.g. '../path' is taken
200
- literally and not expanded.</p>
201
- </li>
202
- <li>
203
- <p><code>--verbose</code> (optional):
204
- Display the filters which are used during inspection.</p>
205
- </li>
206
- </ul>
207
- <h2 id="prerequisites">PREREQUISITES</h2>
208
- <ul>
209
- <li>
210
- <p>Inspecting a container requires an image specified by the name or id.</p>
211
- </li>
212
- <li>
213
- <p>The image to be inspected needs to have the following commands:</p>
214
- <ul>
215
- <li><code>rpm</code> or <code>dpkg</code></li>
216
- <li><code>zypper</code>, <code>yum</code> or <code>apt-cache</code></li>
217
- <li><code>rsync</code></li>
218
- <li><code>cat</code></li>
219
- <li><code>sed</code></li>
220
- <li><code>find</code></li>
221
- </ul>
222
- </li>
223
- </ul>
224
- <h2 id="examples">EXAMPLES</h2>
225
- <ul>
226
- <li>
227
- <p>Inspect Docker container <code>myimage</code> and save system description under name 'MyContainer':</p>
228
- <p>$ <code>machinery</code> inspect-container --name=MyContainer myimage</p>
229
- </li>
230
- <li>
231
- <p>Inspect Docker container <code>076f46c1bef1</code> and save system description under name 'MySecondContainer':</p>
232
- <p>$ <code>machinery</code> inspect-container --name=MySecondContainer 076f46c1bef1</p>
233
- </li>
234
- <li>
235
- <p>Extract changed managed files and save them:</p>
236
- <p>$ <code>machinery</code> inspect-container --scope=changed-managed-files --extract-files myimage</p>
237
- </li>
238
- </ul>
239
- </div>
240
- </div>
241
- </body>
242
- </html>
data/manual/site/machinery_security_implications.1/index.html DELETED
@@ -1,223 +0,0 @@
1
- <!DOCTYPE html>
2
- <html>
3
- <head>
4
- <meta charset="utf-8"/>
5
- <link href="../custom.css" rel="stylesheet">
6
- </head>
7
- <body id="manpage">
8
- <div id="back">
9
- <a href="..">
10
- <img src="../hand3.png" class="hand3"/>
11
- <div class="goback">Go back to the web site</div>
12
- </a>
13
- </div>
14
- <div class="mp">
15
- <div class="nav">
16
- <ul>
17
-
18
-
19
- <li class="">
20
- <a href="../docs/">Welcome</a>
21
- </li>
22
-
23
-
24
-
25
-
26
- <li>Home
27
- <ul>
28
-
29
- <li class="">
30
- <a href="../machinery_main_general.1/">General</a>
31
- </li>
32
-
33
- <li class="">
34
- <a href="../machinery_main_scopes.1/">Scopes</a>
35
- </li>
36
-
37
- <li class="">
38
- <a href="../machinery_main_usecases.1/">Use cases</a>
39
- </li>
40
-
41
- <li class="current">
42
- <a href="./">Security Implications</a>
43
- </li>
44
-
45
- </ul>
46
- </li>
47
-
48
-
49
-
50
-
51
- <li>Commands
52
- <ul>
53
-
54
- <li class="">
55
- <a href="../machinery-analyze.1/">Analyze</a>
56
- </li>
57
-
58
- <li class="">
59
- <a href="../machinery-build.1/">Build</a>
60
- </li>
61
-
62
- <li class="">
63
- <a href="../machinery-compare.1/">Compare</a>
64
- </li>
65
-
66
- <li class="">
67
- <a href="../machinery-config.1/">Config</a>
68
- </li>
69
-
70
- <li class="">
71
- <a href="../machinery-copy.1/">Copy</a>
72
- </li>
73
-
74
- <li class="">
75
- <a href="../machinery-deploy.1/">Deploy</a>
76
- </li>
77
-
78
- <li class="">
79
- <a href="../machinery-export-autoyast.1/">Export AutoYaST</a>
80
- </li>
81
-
82
- <li class="">
83
- <a href="../machinery-export-kiwi.1/">Export Kiwi</a>
84
- </li>
85
-
86
- <li class="">
87
- <a href="../machinery-inspect.1/">Inspect</a>
88
- </li>
89
-
90
- <li class="">
91
- <a href="../machinery-inspect-docker.1/">Inspect Docker</a>
92
- </li>
93
-
94
- <li class="">
95
- <a href="../machinery-list.1/">List</a>
96
- </li>
97
-
98
- <li class="">
99
- <a href="../machinery-man.1/">Man</a>
100
- </li>
101
-
102
- <li class="">
103
- <a href="../machinery-move.1/">Move</a>
104
- </li>
105
-
106
- <li class="">
107
- <a href="../machinery-remove.1/">Remove</a>
108
- </li>
109
-
110
- <li class="">
111
- <a href="../machinery-serve.1/">Serve</a>
112
- </li>
113
-
114
- <li class="">
115
- <a href="../machinery-show.1/">Show</a>
116
- </li>
117
-
118
- <li class="">
119
- <a href="../machinery-upgrade-format.1/">Upgrade Format</a>
120
- </li>
121
-
122
- <li class="">
123
- <a href="../machinery-validate.1/">Validate</a>
124
- </li>
125
-
126
- </ul>
127
- </li>
128
-
129
-
130
-
131
- </ul>
132
- </div>
133
- <div class="content">
134
- <h1 id="security-implications">SECURITY IMPLICATIONS</h1>
135
- <p>This document describes security related issues administrators need to be aware of when using
136
- Machinery.</p>
137
- <h2 id="inspection">Inspection</h2>
138
- <p>Machinery inspects several parts of a system which are covered by Machinery's scopes. A list
139
- of the available scopes and information about what they do can be found
140
- <a href="../machinery_main_scopes.1/index.html">here</a>.</p>
141
- <p>Users of Machinery who inspect systems need to be aware of the security implications in order
142
- to take the right decisions on how to protect the retrieved data.</p>
143
- <h2 id="retrieval-of-data">Retrieval of Data</h2>
144
- <p>Machinery transfers data from one end point to another via SSH (using public key authentication).</p>
145
- <p>Depending on the scope, Machinery <a href="../machinery_main_scopes.1/index.html">collects information</a>
146
- about files on the system. Additionally, when the <code>--extract-files</code> option is given for the
147
- <code>inspect</code> command, not only the meta data about the files (e.g. permission bits, owner, group etc
148
- .) but also the file content is extracted. Machinery does not distinguish between sensitive
149
- data (such as private keys or password files). That means that everyone with access to the system
150
- description has automatically access to <strong>all</strong> extracted files and contained sensitive data.</p>
151
- <h4 id="rootsudo-privileges">root/sudo Privileges</h4>
152
- <p>An inspection can only be done, when the user on the inspected system is either root or has
153
- sudo privileges. Information about the required sudo configuration can be found
154
- <a href="../machinery-inspect.1/index.html#prerequisites">here</a>.</p>
155
- <h2 id="storage-of-data">Storage of Data</h2>
156
- <h4 id="access-restrictions">Access Restrictions</h4>
157
- <p>After an inspection has been completed, the directory where the description is stored is made
158
- readable only for the user. The data is not encrypted by Machinery.</p>
159
- <h4 id="used-permission-bits">Used Permission Bits</h4>
160
- <p>When Machinery extracts data, it sets permission bits for files and directories as follows:</p>
161
- <table>
162
- <thead>
163
- <tr>
164
- <th>Permission Bits</th>
165
- <th>Used for ...</th>
166
- </tr>
167
- </thead>
168
- <tbody>
169
- <tr>
170
- <td>0700</td>
171
- <td>... directories inside the description directory</td>
172
- </tr>
173
- <tr>
174
- <td>0600</td>
175
- <td>... for files inside the description directory</td>
176
- </tr>
177
- </tbody>
178
- </table>
179
- <h4 id="accessing-system-descriptions">Accessing System Descriptions</h4>
180
- <p>By default, all system descriptions are stored in the directory <code>.machinery</code> in the home directory
181
- of the user running Machinery. The directory can be redefined by the environment variable
182
- <code>$MACHINERY_DIR</code>. Each description has its own subdirectory. There is a <code>manifest.json</code> file in
183
- each description directory which contains the data of the inspection. Extracted files are stored in
184
- separate subdirectories inside the same description directory.</p>
185
- <h2 id="presentation-of-data">Presentation of Data</h2>
186
- <p>There are several ways how data can be presented to one or more users. The user has the option to
187
- either start a web server and view descriptions or view the descriptions only in the console.</p>
188
- <p>The following commands are used to present data to users:</p>
189
- <ul>
190
- <li>show</li>
191
- <li>compare</li>
192
- <li>serve</li>
193
- <li>list</li>
194
- </ul>
195
- <p>All of the commands listed above also have a <code>--html</code> option. When this option is used, Machinery
196
- starts a web server what will listen on the IP address <code>127.0.0.1</code>. The <code>serve</code> command
197
- offers also a <code>--public</code> option which makes the server listen on all configured IP addresses.</p>
198
- <p><strong>WARNING:</strong> When making the server reachable from the outside, users can modify the link to
199
- access also other descriptions. There is currently no way to restrict the access to only one
200
- description.</p>
201
- <p>The <code>serve</code> command also allows the user to specify a port via the <code>--port</code> option. When no port
202
- is specified, the default port which is configured in the machinery config file in
203
- <code>~/.machinery/machinery.config</code>) will be taken.</p>
204
- <h2 id="export-of-data">Export of Data</h2>
205
- <h4 id="export-autoyast">export-autoyast</h4>
206
- <p>The <code>export-autoyast</code> command creates an AutoYaST profile for an automated installation. The result
207
- are also tar balls containing the extracted files from the system description. These files
208
- potentially contain sensitive data (e.g. passwords). This fact needs to be kept in mind, especially
209
- if these files are copied to a web server for an AutoYaST installation via HTTP.</p>
210
- <h4 id="export-kiwi">export-kiwi</h4>
211
- <p>The program Kiwi allows you to build OS images what you can use for installation. Machinery gives
212
- you the opportunity to build a complete Kiwi configuration from a system description. This
213
- configuration can be used to build an image via Kiwi. The <code>export-kiwi</code> command creates a
214
- directory, where it stores the Kiwi configuration and the files of a system description. These
215
- files potentially contain sensitive data (e.g. passwords).</p>
216
- <h4 id="build">build</h4>
217
- <p>The created image potentially contains sensitive data (e.g. passwords) from extracted files.</p>
218
- <h4 id="deploy">deploy</h4>
219
- <p>The uploaded image potentially contains sensitive data (e.g. passwords) from extracted files.</p>
220
- </div>
221
- </div>
222
- </body>
223
- </html>