Fedora 26 Minimal includes Cockpit
- 
 Of all things, that's pretty surprising to be put into Minimal. 
- 
 @scottalanmiller said in Fedora 26 Minimal includes Cockpit: Of all things, that's pretty surprising to be put into Minimal. I nuked my install and did it again to make sure that I installed Minimal too. 
- 
 I'm not happy that that is included. There are a lot of things that can be argued as being applicable to minimal installations, but Cockpit? 
- 
 I've been using virt-builder to build images. Disk is only 6GB. 99% sure cockpit isn't installed. 
- 
 @stacksofplates said in Fedora 26 Minimal includes Cockpit: I've been using virt-builder to build images. Disk is only 6GB. 99% sure cockpit isn't installed. All I know is I downloaded the net image and chose the minimal install. Maybe it is buggy. It is alpha. 
- 
 @JaredBusch said in Fedora 26 Minimal includes Cockpit: @stacksofplates said in Fedora 26 Minimal includes Cockpit: I've been using virt-builder to build images. Disk is only 6GB. 99% sure cockpit isn't installed. All I know is I downloaded the net image and chose the minimal install. Maybe it is buggy. It is alpha. Ya the virt-builder images are GPG signed and prebuilt for KVM. They have the QEMU guest agent installed and will generate a random root password each time you create a disk. I haven't grabbed a server image from the Fedora site in a while. 
- 
 @stacksofplates said in Fedora 26 Minimal includes Cockpit: @JaredBusch said in Fedora 26 Minimal includes Cockpit: @stacksofplates said in Fedora 26 Minimal includes Cockpit: I've been using virt-builder to build images. Disk is only 6GB. 99% sure cockpit isn't installed. All I know is I downloaded the net image and chose the minimal install. Maybe it is buggy. It is alpha. Ya the virt-builder images are GPG signed and prebuilt for KVM. They have the QEMU guest agent installed and will generate a random root password each time you create a disk. I haven't grabbed a server image from the Fedora site in a while. Do you remember where you found that guest image? I'd like to spin some up. Edit: I think I found a source: https://docs.openstack.org/image-guide/obtain-images.html 
- 
 After playing with my install more, I do not think it installed minimal even though I selected it to do so. because nanoandrsyncwere already installed.
- 
 @JaredBusch said in Fedora 26 Minimal includes Cockpit: After playing with my install more, I do not think it installed minimal even though I selected it to do so. because nanoandrsyncwere already installed.Maybe it is as simple as the minimal selector is broken? 
- 
 @scottalanmiller said in Fedora 26 Minimal includes Cockpit: @JaredBusch said in Fedora 26 Minimal includes Cockpit: After playing with my install more, I do not think it installed minimal even though I selected it to do so. because nanoandrsyncwere already installed.Maybe it is as simple as the minimal selector is broken? Probably 
- 
 @travisdh1 said in Fedora 26 Minimal includes Cockpit: @stacksofplates said in Fedora 26 Minimal includes Cockpit: @JaredBusch said in Fedora 26 Minimal includes Cockpit: @stacksofplates said in Fedora 26 Minimal includes Cockpit: I've been using virt-builder to build images. Disk is only 6GB. 99% sure cockpit isn't installed. All I know is I downloaded the net image and chose the minimal install. Maybe it is buggy. It is alpha. Ya the virt-builder images are GPG signed and prebuilt for KVM. They have the QEMU guest agent installed and will generate a random root password each time you create a disk. I haven't grabbed a server image from the Fedora site in a while. Do you remember where you found that guest image? I'd like to spin some up. Edit: I think I found a source: https://docs.openstack.org/image-guide/obtain-images.html It pulls them in automatically. Just run virt-builder fedora-25and add whatever options after. I usually just do something like this:virt-builder fedora-25 --format qcow2 --hostname changeme --run-command 'useradd ansible && echo "ansible ALL=(ALL) NOPASSWD:ALL" > /etc/sudoers.d/ansible' --install '<package that I can't remember right now>' --selinux-relabelOnce it's done building I create the VM using that disk and let it spin up, and then shut it down. Then I run: virt-sysprep -a template.qcow2 --ssh-inject ansible:file:/path/to/pub_keyThen I can just clone it and apply all of my policies with Ansible. 
- 
 These are super minimal. Like to get Ansible to be able to control firewalld I have to add python-firewall and python3-firewall as dependencies. 
- 
 @stacksofplates said in Fedora 26 Minimal includes Cockpit: @travisdh1 said in Fedora 26 Minimal includes Cockpit: @stacksofplates said in Fedora 26 Minimal includes Cockpit: @JaredBusch said in Fedora 26 Minimal includes Cockpit: @stacksofplates said in Fedora 26 Minimal includes Cockpit: I've been using virt-builder to build images. Disk is only 6GB. 99% sure cockpit isn't installed. All I know is I downloaded the net image and chose the minimal install. Maybe it is buggy. It is alpha. Ya the virt-builder images are GPG signed and prebuilt for KVM. They have the QEMU guest agent installed and will generate a random root password each time you create a disk. I haven't grabbed a server image from the Fedora site in a while. Do you remember where you found that guest image? I'd like to spin some up. Edit: I think I found a source: https://docs.openstack.org/image-guide/obtain-images.html It pulls them in automatically. Just run virt-builder fedora-25and add whatever options after. I usually just do something like this:virt-builder fedora-25 --format qcow2 --hostname changeme --run-command 'useradd ansible && echo "ansible ALL=(ALL) NOPASSWD:ALL" > /etc/sudoers.d/ansible' --install '<package that I can't remember right now>' --selinux-relabelOnce it's done building I create the VM using that disk and let it spin up, and then shut it down. Then I run: virt-sysprep -a template.qcow2 --ssh-inject ansible:file:/path/to/pub_keyThen I can just clone it and apply all of my policies with Ansible. Looked when I got home. The package I couldn't remember is python, libselinux-python, and qemu-guest-agent. The image also doesnt havetarorunzipinstalled.I lied about the guest agent. It's not installed by default but the console is available through ttyS0 by default which is nice. 
- 
 @stacksofplates said in Fedora 26 Minimal includes Cockpit: @stacksofplates said in Fedora 26 Minimal includes Cockpit: @travisdh1 said in Fedora 26 Minimal includes Cockpit: @stacksofplates said in Fedora 26 Minimal includes Cockpit: @JaredBusch said in Fedora 26 Minimal includes Cockpit: @stacksofplates said in Fedora 26 Minimal includes Cockpit: I've been using virt-builder to build images. Disk is only 6GB. 99% sure cockpit isn't installed. All I know is I downloaded the net image and chose the minimal install. Maybe it is buggy. It is alpha. Ya the virt-builder images are GPG signed and prebuilt for KVM. They have the QEMU guest agent installed and will generate a random root password each time you create a disk. I haven't grabbed a server image from the Fedora site in a while. Do you remember where you found that guest image? I'd like to spin some up. Edit: I think I found a source: https://docs.openstack.org/image-guide/obtain-images.html It pulls them in automatically. Just run virt-builder fedora-25and add whatever options after. I usually just do something like this:virt-builder fedora-25 --format qcow2 --hostname changeme --run-command 'useradd ansible && echo "ansible ALL=(ALL) NOPASSWD:ALL" > /etc/sudoers.d/ansible' --install '<package that I can't remember right now>' --selinux-relabelOnce it's done building I create the VM using that disk and let it spin up, and then shut it down. Then I run: virt-sysprep -a template.qcow2 --ssh-inject ansible:file:/path/to/pub_keyThen I can just clone it and apply all of my policies with Ansible. Looked when I got home. The package I couldn't remember is python, libselinux-python, and qemu-guest-agent. The image also doesnt havetarorunzipinstalled.I lied about the guest agent. It's not installed by default but the console is available through ttyS0 by default which is nice. @stacksofplates Why inject the ssh-keys with virt-sysprep and not directly with virt-builder? I am getting locale errors when using vms created with virt-builder any idea how to fix this? 
  
- 
 @Romo said in Fedora 26 Minimal includes Cockpit: @stacksofplates said in Fedora 26 Minimal includes Cockpit: @stacksofplates said in Fedora 26 Minimal includes Cockpit: @travisdh1 said in Fedora 26 Minimal includes Cockpit: @stacksofplates said in Fedora 26 Minimal includes Cockpit: @JaredBusch said in Fedora 26 Minimal includes Cockpit: @stacksofplates said in Fedora 26 Minimal includes Cockpit: I've been using virt-builder to build images. Disk is only 6GB. 99% sure cockpit isn't installed. All I know is I downloaded the net image and chose the minimal install. Maybe it is buggy. It is alpha. Ya the virt-builder images are GPG signed and prebuilt for KVM. They have the QEMU guest agent installed and will generate a random root password each time you create a disk. I haven't grabbed a server image from the Fedora site in a while. Do you remember where you found that guest image? I'd like to spin some up. Edit: I think I found a source: https://docs.openstack.org/image-guide/obtain-images.html It pulls them in automatically. Just run virt-builder fedora-25and add whatever options after. I usually just do something like this:virt-builder fedora-25 --format qcow2 --hostname changeme --run-command 'useradd ansible && echo "ansible ALL=(ALL) NOPASSWD:ALL" > /etc/sudoers.d/ansible' --install '<package that I can't remember right now>' --selinux-relabelOnce it's done building I create the VM using that disk and let it spin up, and then shut it down. Then I run: virt-sysprep -a template.qcow2 --ssh-inject ansible:file:/path/to/pub_keyThen I can just clone it and apply all of my policies with Ansible. Looked when I got home. The package I couldn't remember is python, libselinux-python, and qemu-guest-agent. The image also doesnt havetarorunzipinstalled.I lied about the guest agent. It's not installed by default but the console is available through ttyS0 by default which is nice. @stacksofplates Why inject the ssh-keys with virt-sysprep and not directly with virt-builder? I am getting locale errors when using vms created with virt-builder any idea how to fix this? 
  The ansible user isn't in there yet until you spin up the VM so I have to inject it afterward. If I was just using root it would work. I logged into the console once and I did notice that but it doesn't seem to affect anything. I haven't used the console since then. I think it sets that to the default locale but it isn't there. I don't think it will cause any issues, but I could be wrong. 
- 
 @stacksofplates 
 not sure about unzip but tar is also not installed on the minimal install too.
- 
 Yeah I tried Fedora 26 Beta (minimal install via netinst) and Cockpit is up and running by default. It's supposed to be like that by default according to these two sites: http://fedoraproject.org/wiki/Changes/CockpitManagementConsole#Summary http://cockpit-project.org/running.html I think it's rather handy, and it seems easier to turn it off if it's not needed, than to turn it on if it is. 
- 
 @Tim_G yeah, I had no objection to it running in a minimal install, but it was surprising to see. 
- 
 @Tim_G said in Fedora 26 Minimal includes Cockpit: Yeah I tried Fedora 26 Beta (minimal install via netinst) and Cockpit is up and running by default. It's supposed to be like that by default according to these two sites: http://fedoraproject.org/wiki/Changes/CockpitManagementConsole#Summary http://cockpit-project.org/running.html I think it's rather handy, and it seems easier to turn it off if it's not needed, than to turn it on if it is. I like it in non-DevOp scenarios. It's basically the same security profile as SSH, so no real concerns when SSH is also exposed. 
- 
 @scottalanmiller said in Fedora 26 Minimal includes Cockpit: @Tim_G said in Fedora 26 Minimal includes Cockpit: Yeah I tried Fedora 26 Beta (minimal install via netinst) and Cockpit is up and running by default. It's supposed to be like that by default according to these two sites: http://fedoraproject.org/wiki/Changes/CockpitManagementConsole#Summary http://cockpit-project.org/running.html I think it's rather handy, and it seems easier to turn it off if it's not needed, than to turn it on if it is. I like it in non-DevOp scenarios. It's basically the same security profile as SSH, so no real concerns when SSH is also exposed. Yup. Only thing I'd change, is the ability to use your own SSL cert during the install. They could stick that button under the set password button. 







