Author: kittycool only

by

Can ChatGPT write Ansible playbooks that work?

This is an interesting article from OpenSource.com Can ChatGPT write Ansible playbooks that work? I will just put the conclusion from the author

If you are trying to learn or if you have no clue about how to perform a certain programming task, ChatGPT can show you some examples that may or may not work the way you want. This can be useful in some situations, because if you search for examples in a search engine, you may find thousands of references that you need to evaluate, interpret, and test, versus having to so for the single result ChatGPT provides. Reading manuals is always recommended, but sometimes you must read pages and pages until you find one applicable example.

ChatGPT is also useful if you just want a quick example to give you ideas or help you remember a module or function that you’ve already used before.

But I would not recommend you take anything provided by the AI and use it without fully understanding, validating, and testing it. Especially if you need to use it in a production environment. Well, this general advice is applicable to ANYTHING you find on the internet. I am just being obvious.

Can ChatGPT write Ansible playbooks that work?
by

SKT significantly speed up launch of Korean ChatGPT

The article is taken from SKT doubles supercomputer capacity to speed up launch of Korean ChatGPT

SK telecom Co. (SKT) has doubled the capacity of its supercomputer, which serves as the brain of its artificial intelligence model AIDAT, as competition mounts to develop and launch a chatbot that relies on generative AI after the release of Open AI’s ChatGPT.

SKT announced Sunday that “Titan,” the supercomputer that is the basis for its super-giant AI advancement since 2021, expanded its capacity to 1,040 NVIDIA A100 GPUs.

Titan supports performance of more than 17.1 petaflops. One petaflop can calculate speed of a computer equal to one 1,000 trillion times per second, and 17.1 petaflop means the computer is capable of computing 17.1 trillion times per second.

SKT doubles supercomputer capacity to speed up launch of Korean ChatGPT
by

Red Hat CloudForms 5.0 will reach the end of its life as of March 12, 2023

Red Hat CloudForms 5.0 will reach the end of its life as of March 12, 2023, and there will be no other supported versions of CloudForms by Red Hat. After this date technical or general support, updates, and security fixes will no longer be available. More information about Red Hat CloudForms’ can be found in the Red Hat Statement of Direction

by

Nautilus start slowly with errors

If you are having a slow startup and facing a Nautilus Issue like this

[user1@node1 ~]$ nautilus

** (nautilus:3369252): WARNING **: 14:40:58.988: Error on getting connection: Failed to load SPARQL backend: GDBus.Error:org.freedesktop.DBus.Error.NoReply: Message recipient disco                      nnected from message bus without replying

(nautilus:3369252): GLib-GIO-CRITICAL **: 14:52:11.952: g_dbus_connection_signal_unsubscribe: assertion 'G_IS_DBUS_CONNECTION (connection)' failed

(nautilus:3369252): GLib-GObject-CRITICAL **: 14:52:11.952: g_object_unref: assertion 'G_IS_OBJECT (object)' failed

(nautilus:3369252): GLib-GObject-CRITICAL **: 14:52:11.952: g_object_unref: assertion 'G_IS_OBJECT (object)' failed

(nautilus:3369252): GLib-GObject-WARNING **: 14:52:11.952: invalid (NULL) pointer instance

(nautilus:3369252): GLib-GObject-CRITICAL **: 14:52:11.952: g_signal_connect_data: assertion 'G_TYPE_CHECK_INSTANCE (instance)' failed
Error creating proxy: Error calling StartServiceByName for org.gtk.vfs.GoaVolumeMonitor: Timeout was reached (g-io-error-quark, 24)

The solution is by clearing the .cache/tracker

$ rm -rf .cache/tracker/

Log Off and Log On again. You should be able to run nautilus without issues

by

CPF, EZ-Link services, multiple websites down after power outage at Microsoft Azure

Taken from CPF, EZ-Link services, multiple websites down after power outage at Microsoft Azure

SINGAPORE – Multiple organisations including the Central Provident Fund (CPF) Board, EZ-Link, the Esplanade and Nanyang Technological University (NTU) saw disruptions to their Web services on Wednesday as a result of the outage of the Microsoft Azure cloud service.

Microsoft Azure said on its website that a utility power surge in the South-east Asia region at 3.19am on Wednesday had tripped a subset of the cooling units in a data centre and brought them offline.

Azure said it “proactively powered down a small subset of selected compute and storage scale units” to minimise the damage to hardware, but was unable to say when services would be restored, as an extended period would be needed to restore cooling capacity.

CPF, EZ-Link services, multiple websites down after power outage at Microsoft Azure
by

Intel Processor, Persistent Memory and Nvidia-H100 on Japan’s most efficient Supercomputer

Full Article can found at Japan university tackles supercomputer’s memory problem

Pegasus boasts 120 of Nvidia’s cutting-edge H100 graphics-processing units. The same technology was used in the Lenovo-built Henri, which was crowned the world’s most energy-efficient supercomputer in November.

These are combined with state-of-the-art central processing units from Intel, giving Pegasus a theoretical peak performance of 6.5 petaflops — 6.5 quadrillion floating point operations per second.
……
……

Persistent memory is also used in addition to conventional DRAM. Accessing data from it takes longer than from DRAM. But it consumes less energy and promises around 10 times the capacity at a similar cost, according to the center. Persistent memory can handle both temporary and long-term data storage

…..

Using persistent memory allows Pegasus to tap more of its capabilities without requiring a major increase in cost or energy consumption.

Japan university tackles supercomputer’s memory problem
by

Enabling EPEL, Python Bindings for SELinux, and Firewall Settings

I have been learning from this book Fabio Alessandro Locati, published under Packt>.

There is one simple exercise where there is an example of “Configuring a basic server”. The codes can be found

Enabling EPEL

To enable EPEL, in RHEL/CentOS 7, just install the epel-release package

--- 
- hosts: all 
  remote_user: ansible
  tasks: 
    - name: Ensure EPEL is enabled 
      yum: 
        name: epel-release 
        state: present 
      become: True

Python bindings for SELINUX

Ansible is written in python, and mainly use the Python bindings to operate on the operating system.

--- 
- hosts: all 
  remote_user: ansible
  tasks: 
     - name: Ensure libselinux-python is present 
      yum: 
        name: libselinux-python  
        state: present 
      become: True 
    - name: Ensure libsemanage-python is present 
      yum: 
        name: libsemanage-python 
        state: present 
      become: True

Firewall Settings

--- 
- hosts: all 
  remote_user: ansible
  tasks: 
    - name: Ensure FirewallD is running 
      service: 
        name: firewalld 
        state: started 
        enabled: True 
      become: True 
    - name: Ensure SSH can pass the firewall 
      firewalld: 
        service: ssh 
        state: enabled 
        permanent: True 
        immediate: True 
      become: True
by

Basic Installing and Configuring NTP with Ansible

I have been learning from this book Fabio Alessandro Locati, published under Packt>.

There is one simple exercise where there is an example of “Ensuring that NTP is installed, configured and running”. The codes can be found at https://github.com/PacktPublishing/Learning-Ansible-2.X-Third-Edition/tree/master/Chapter02

--- 
- hosts: all 
  remote_user: ansible
  tasks: 
    - name: Ensure NTP is installed 
      yum: 
        name: ntp 
        state: present 
      become: True 
    - name: Ensure the timezone is set to UTC 
      file: 
        src: /usr/share/zoneinfo/GMT 
        dest: /etc/localtime 
        state: link 
      become: True 
    - name: Ensure the NTP service is running and enabled 
      service: 
        name: ntpd 
        state: started 
        enabled: True 
      become: True
by

Basic Installing and Configuring a Web Server with Ansible

I have been learning from this book Fabio Alessandro Locati, published under Packt>

There is one simple exercise where there is an example of “Installing and Configuring a Web Server”. The codes can be found at https://github.com/PacktPublishing/Learning-Ansible-2.X-Third-Edition/tree/master/Chapter02

Installing and Configuring a Web Server

The first set of codes deal with the installation and enabling of HTTPd package and services. In addition, both HTTP and HTPS must be able to pass through the firewalld

-- 
- hosts: all 
  remote_user: ansible
  tasks: 
    - name: Ensure the HTTPd package is installed 
      yum: 
        name: httpd 
        state: present 
      become: True 
    - name: Ensure the HTTPd service is enabled and running 
      service: 
        name: httpd 
        state: started 
        enabled: True 
      become: True 
    - name: Ensure HTTP can pass the firewall 
      firewalld: 
        service: http 
        state: enabled 
        permanent: True 
        immediate: True 
      become: True 
    - name: Ensure HTTPS can pass the firewall 
      firewalld: 
        service: https 
        state: enabled 
        permanent: True 
        immediate: True 
      become: True

Reviewing and Running the Deployment, we can use the command to fire it. 

$ ansible-playbook webserver.yaml --list-tasks
$ ansible-playbook -i host webserver.yaml

Publishing a Simple Website

Assuming the Website is a simple single-page website using a simple template call index.html.j2

--- 
- hosts: all 
  remote_user: ansible
  tasks: 
    - name: Ensure the website is present and updated 
      template: 
        src: index.html.j2 
        dest: /var/www/html/index.html 
        owner: root 
        group: root 
        mode: 0644 
      become: True

Just a note that the “become: True” parameter represents the fact that the tasks should be executed with sudo access. In other words, the sudo user’s file should allow access

by

Massive Ransomware Campaign Targeting Unpatched Vmware ESXi Servers

From SINGCERT (https://www.csa.gov.sg/singcert/Alerts/AL-2023-015) dated 04 Feb 2023

There are reports of an ongoing ransomware campaign actively exploiting a vulnerability (CVE-2021-21974) in unpatched VMware ESXi servers.

Successful exploitation of the vulnerability could allow an attacker to perform remote code execution by triggering the heap-overflow issue in OpenSLP service.

The following versions of the products are affected by the aforementioned vulnerability:

•             ESXi versions 7.x earlier than ESXi70U1c-17325551

•             ESXi versions 6.7.x earlier than ESXi670-202102401-SG

•             ESXi versions 6.5.x earlier than ESXi650-202102101-SG

Users and administrators of affected product versions are advised to upgrade to the latest versions immediately. As a precaution, a full system scan should also be performed to detect any signs of compromise. Users and administrators are also advised to assess if the ransomware campaign-targeted port 427 can be disabled without disrupting operations.

Users and administrators may also wish to configure their firewall rules to block any connections to the following IP addresses purportedly carrying out the attacks:

  • 104.152.52[.]55
  • 193.163.125[.]138
  • 43.130.10[.]173
  • 104.152.52[.]0/24

More information can be found at

https://www.vmware.com/security/advisories/VMSA-2021-0002.html

https://www.bleepingcomputer.com/news/security/massive-esxiargs-ransomware-attack-targets-vmware-esxi-servers-worldwide/

https://www.cert.ssi.gouv.fr/alerte/CERTFR-2023-ALE-015/

https://www.csa.gov.sg/singcert/Advisories/ad-2021-009/