zanshin · May 15, 2014 17:53
diff --git a/ome-alpha-vm1 b/ome-alpha-vm1
 mhn@ome-alpha-vm1:/etc$ sudo chef-client
 Starting Chef Client, version 11.6.2
 resolving cookbooks for run list: ["est-ntp", "est-rsyslog", "est-chef-client", "est-ssh", "est-firewall", "est-mount", "estenv-ome", "est-user::required", "ome_wse_accounts", "est-cis-benchmark", "ome_dev_accounts", "ome_tomcat", "ome_tomcat::properties", "ome_nginx", "ome_telecom_creditcard"]
 Synchronizing Cookbooks:
  - ome_nginx
  - ome_tools
  - ome_tomcat
  - ome_telecom_creditcard
  - ohai
  - yum
  - build-essential
  - runit
  - apt
  - nginx
  - java
  - ome_java
  - ark
  - firewall
  - est-users
  - ome_dev_accounts
  - est-cron
  - est-apt
  - est-ssh
  - est-cis-benchmark
  - ome_wse_accounts
  - est-user
  - sudo
  - est-sudo
  - est-mount
  - estenv-ome
  - est-firewall
  - iptables
  - openssh
  - cron
  - chef-client
  - est-chef-client
  - rsyslog
  - est-rsyslog
  - ntp
  - est-ntp
 Compiling Cookbooks...
 Recipe: ohai::default
  * remote_directory[/etc/chef/ohai_plugins] action createRecipe: <Dynamically Defined Resource>
  * cookbook_file[/etc/chef/ohai_plugins/README] action create (up to date)
 (up to date)
 Recipe: ohai::default
  * ohai[custom_plugins] action reload
    - re-run ohai and merge results into node attributes

 [2014-05-15T12:47:27-05:00] WARN: Cloning resource attributes for service[nginx] from prior resource (CHEF-3694)
 [2014-05-15T12:47:27-05:00] WARN: Previous service[nginx]: /var/chef/cache/cookbooks/nginx/recipes/default.rb:42:in `from_file'
 [2014-05-15T12:47:27-05:00] WARN: Current  service[nginx]: /var/chef/cache/cookbooks/nginx/recipes/default.rb:49:in `from_file'
 [2014-05-15T12:47:27-05:00] WARN: Cloning resource attributes for execute[nxensite default] from prior resource (CHEF-3694)
 [2014-05-15T12:47:27-05:00] WARN: Previous execute[nxensite default]: /var/chef/cache/cookbooks/nginx/definitions/nginx_site.rb:23:in `block in from_file'
 [2014-05-15T12:47:27-05:00] WARN: Current  execute[nxensite default]: /var/chef/cache/cookbooks/nginx/definitions/nginx_site.rb:23:in `block in from_file'
 [2014-05-15T12:47:27-05:00] WARN: Cloning resource attributes for ome_tomcat_application[credit-card.war] from prior resource (CHEF-3694)
 [2014-05-15T12:47:27-05:00] WARN: Previous ome_tomcat_application[credit-card.war]: /var/chef/cache/cookbooks/ome_telecom_creditcard/recipes/default.rb:11:in `from_file'
 [2014-05-15T12:47:27-05:00] WARN: Current  ome_tomcat_application[credit-card.war]: /var/chef/cache/cookbooks/ome_telecom_creditcard/recipes/default.rb:17:in `from_file'
 [2014-05-15T12:47:27-05:00] WARN: Cloning resource attributes for firewall_rule[http] from prior resource (CHEF-3694)
 [2014-05-15T12:47:27-05:00] WARN: Previous firewall_rule[http]: /var/chef/cache/cookbooks/ome_telecom_creditcard/recipes/default.rb:67:in `from_file'
 [2014-05-15T12:47:27-05:00] WARN: Current  firewall_rule[http]: /var/chef/cache/cookbooks/ome_telecom_creditcard/recipes/default.rb:73:in `from_file'
 Converging 107 resources
 Recipe: ntp::default
  * package[ntp] action install (up to date)
  * package[ntpdate] action install (up to date)
  * directory[/var/lib/ntp] action create (up to date)
  * directory[/var/log/ntpstats/] action create (up to date)
  * service[ntp] action enable (up to date)
  * service[ntp] action start (up to date)
  * cookbook_file[/etc/ntp.leapseconds] action create (up to date)
  * template[/etc/ntp.conf] action create (up to date)
 Recipe: rsyslog::default
  * package[rsyslog] action install (up to date)
  * directory[/etc/rsyslog.d] action create (up to date)
  * directory[/var/spool/rsyslog] action create (up to date)
  * template[/etc/rsyslog.conf] action create (up to date)
  * template[/etc/rsyslog.d/50-default.conf] action create (up to date)
  * service[rsyslog] action enable (up to date)
  * service[rsyslog] action start (up to date)
 Recipe: rsyslog::client
  * template[/etc/rsyslog.d/49-remote.conf] action create (up to date)
  * file[/etc/rsyslog.d/server.conf] action delete (up to date)
 Recipe: chef-client::init_service
  * log[Found chef-client in /usr/bin/chef-client] action write

  * directory[/var/run/chef] action create (up to date)
  * directory[/var/cache/chef] action create (up to date)
  * directory[/var/lib/chef] action create (up to date)
  * directory[/var/log/chef] action create (up to date)
  * directory[/etc/chef] action create (up to date)
  * template[/etc/init.d/chef-client] action create (up to date)
  * template[/etc/default/chef-client] action create (up to date)
  * service[chef-client] action enable (up to date)
  * service[chef-client] action start (up to date)
 Recipe: openssh::default
  * package[openssh-client] action install (up to date)
  * package[openssh-server] action install (up to date)
  * service[ssh] action enable (up to date)
  * service[ssh] action start (up to date)
  * template[/etc/ssh/ssh_config] action create
    - change mode from '0600' to '0644'

  * template[/etc/ssh/sshd_config] action create
    - change mode from '0600' to '0644'

 Recipe: firewall::default
  * package[ufw] action install (up to date)
 Recipe: est-firewall::default
  * firewall[ufw] action enable (up to date)
  * firewall_rule[allow EST backups] action allow
    - Allowing 129.130.253.208/29 firewall_rule

  * firewall_rule[allow EST nagios] action allow
    - Allowing 129.130.12.20 firewall_rule

  * firewall_rule[allow EST SNMP] action allow
    - Allowing 129.130.12.224 firewall_rule

  * firewall_rule[allow EST admins] action allow
    - Allowing 129.130.0.0/24 firewall_rule

  * firewall_rule[allow ESTVPN] action allow
    - Allowing 10.130.221.16/28 firewall_rule

 Recipe: est-user::required
  * est-user_account[create required users] action create[2014-05-15T12:48:29-05:00] WARN: jsh not found
 (up to date)
 Recipe: <Dynamically Defined Resource>
  * user[estroot] action create
    - alter user user[estroot]

  * user[jemroot] action create
    - alter user user[jemroot]

  * user[jstroot] action create
    - alter user user[jstroot]

  * user[lkcroot] action create
    - alter user user[lkcroot]

  * user[mbaxa] action create (up to date)
  * user[jamest] action create (up to date)
  * user[eisele] action create (up to date)
 Recipe: estenv-ome::default
  * sudo[eisele] action installRecipe: <Dynamically Defined Resource>
  * template[/etc/sudoers.d/eisele] action create (up to date)
 (up to date)
  * template[/etc/sudoers.d/eisele] action nothing (skipped due to action :nothing)
 Recipe: estenv-ome::default
  * sudo[gidossa] action installRecipe: <Dynamically Defined Resource>
  * template[/etc/sudoers.d/gidossa] action create (up to date)
 (up to date)
  * template[/etc/sudoers.d/gidossa] action nothing (skipped due to action :nothing)
 Recipe: estenv-ome::default
  * sudo[jsw2] action installRecipe: <Dynamically Defined Resource>
  * template[/etc/sudoers.d/jsw2] action create (up to date)
 (up to date)
  * template[/etc/sudoers.d/jsw2] action nothing (skipped due to action :nothing)
 Recipe: estenv-ome::default
  * sudo[mbaxa] action installRecipe: <Dynamically Defined Resource>
  * template[/etc/sudoers.d/mbaxa] action create (up to date)
 (up to date)
  * template[/etc/sudoers.d/mbaxa] action nothing (skipped due to action :nothing)
 Recipe: estenv-ome::default
  * sudo[mhn] action installRecipe: <Dynamically Defined Resource>
  * template[/etc/sudoers.d/mhn] action create (up to date)
 (up to date)
  * template[/etc/sudoers.d/mhn] action nothing (skipped due to action :nothing)
 Recipe: estenv-ome::default
  * firewall_rule[allow WSE desktops] action allow
    - Allowing 129.130.48.8/29 firewall_rule

  * firewall_rule[allow OMEASAVPN] action allow
    - Allowing 10.130.227.224/27 firewall_rule

 Recipe: ome_wse_accounts::default
  * est-user_account[create test users] action create[2014-05-15T12:48:37-05:00] WARN: Cloning resource attributes for user[eisele] from prior resource (CHEF-3694)
 [2014-05-15T12:48:37-05:00] WARN: Previous user[eisele]: /var/chef/cache/cookbooks/est-user/providers/account.rb:41:in `block (2 levels) in class_from_file'
 [2014-05-15T12:48:37-05:00] WARN: Current  user[eisele]: /var/chef/cache/cookbooks/est-user/providers/account.rb:41:in `block (2 levels) in class_from_file'
 [2014-05-15T12:48:37-05:00] WARN: Cloning resource attributes for user[mbaxa] from prior resource (CHEF-3694)
 [2014-05-15T12:48:37-05:00] WARN: Previous user[mbaxa]: /var/chef/cache/cookbooks/est-user/providers/account.rb:41:in `block (2 levels) in class_from_file'
 [2014-05-15T12:48:37-05:00] WARN: Current  user[mbaxa]: /var/chef/cache/cookbooks/est-user/providers/account.rb:41:in `block (2 levels) in class_from_file'
 (up to date)
 Recipe: <Dynamically Defined Resource>
  * user[mhn] action create (up to date)
  * user[eisele] action create (up to date)
  * user[mbaxa] action create (up to date)
  * user[jsw2] action create (up to date)
  * user[gidossa] action create (up to date)
 Recipe: est-cis-benchmark::ssh
  * file[/etc/ssh/ssh_config] action create
    - change mode from '0644' to '0600'

  * file[/etc/ssh/sshd_config] action create
    - change mode from '0644' to '0600'

 Recipe: est-cis-benchmark::sysstat
  * package[sysstat] action install (up to date)
  * service[sysstat] action enable (up to date)
  * service[sysstat] action start (up to date)
  * template[/etc/default/sysstat] action create (up to date)
 Recipe: est-cis-benchmark::portmap
  * execute[/etc/init.d/portmap stop; update-rc.d -f portmap remove] action run
    - execute /etc/init.d/portmap stop; update-rc.d -f portmap remove

 Recipe: est-cis-benchmark::sysctl
  * template[/etc/sysctl.conf] action create (up to date)
 Recipe: est-cis-benchmark::fstab
  * bash[fstab_nodev] action run
    - execute "bash"  "/tmp/chef-script20140515-26529-opapcf"

  * bash[fstab_nodev_media] action run
    - execute "bash"  "/tmp/chef-script20140515-26529-16vykqk"

  * bash[fstab_disable_removable] action run
    - execute "bash"  "/tmp/chef-script20140515-26529-1x65kbc"

  * file[/etc/fstab] action create (up to date)
 Recipe: est-cis-benchmark::perms
  * file[/etc/passwd] action create (up to date)
  * file[/etc/group] action create (up to date)
  * file[/etc/shadow] action create (up to date)
  * file[/etc/crontab] action create (up to date)
  * execute[/var/spool/cron/* permissions] action run
    - execute chown -R root:root /var/spool/cron && chmod -R 770 /var/spool/cron

  * bash[home dir permissions] action run
    - execute "bash"  "/tmp/chef-script20140515-26529-qzhjp5"

  * bash[user dot files perms] action run
    - execute "bash"  "/tmp/chef-script20140515-26529-ly76m7"

 Recipe: est-cron::harden
  * template[/etc/cron.allow] action create (up to date)
  * template[/etc/at.allow] action create (up to date)
 Recipe: est-cis-benchmark::accounts
  * bash[block system accounts] action run
    - execute "bash"  "/tmp/chef-script20140515-26529-18pzxbv"

 Recipe: est-cis-benchmark::su
  * template[/etc/pam.d/su] action create (up to date)
 Recipe: est-cis-benchmark::usb_storage
  * bash[blacklist usb_storage] action run
    - execute "bash"  "/tmp/chef-script20140515-26529-1bk63r4"

  * bash[remove usb_storage module at boot] action run
    - execute "bash"  "/tmp/chef-script20140515-26529-s4jbul"

 Recipe: ome_dev_accounts::default
  * firewall_rule[allow OME develoeprs] action allow
    - Allowing 10.130.227.192/27 firewall_rule

  * est-user_account[create dev users] action create (up to date)
 Recipe: <Dynamically Defined Resource>
  * user[kaz0358] action create (up to date)
  * user[toby] action create (up to date)
 Recipe: ome_tomcat::default
  * user[tomcat] action create (up to date)
  * directory[/as/app/tomcat/7.0.47] action create (up to date)
  * ark[7.0.47] action putRecipe: <Dynamically Defined Resource>
  * directory[/as/app/tomcat/7.0.47] action create (up to date)
  * remote_file[/var/chef/cache/7.0.47.tar.gz] action create (up to date)
  * execute[unpack /var/chef/cache/7.0.47.tar.gz] action nothing (skipped due to action :nothing)
  * execute[set owner on /as/app/tomcat/7.0.47] action nothing (skipped due to action :nothing)
 (up to date)
 Recipe: ome_tomcat::default
  * link[/as/app/tomcat/current] action create (up to date)
  * template[/etc/init.d/tomcat7] action create (up to date)
  * service[tomcat] action start (up to date)
  * execute[wait for tomcat] action nothing (skipped due to action :nothing)
 Recipe: ome_tomcat::properties
  * template[/as/app/tomcat/current/conf/catalina.sh.includes] action create (up to date)
 Recipe: nginx::ohai_plugin
  * ohai[reload_nginx] action nothing (skipped due to action :nothing)
  * template[/etc/chef/ohai_plugins/nginx.rb] action create (up to date)
 Recipe: ohai::default
  * remote_directory[/etc/chef/ohai_plugins] action nothing (skipped due to action :nothing)
  * ohai[custom_plugins] action nothing (skipped due to action :nothing)
 Recipe: nginx::default
  * package[nginx] action install
    - install version 1.1.19-1ubuntu0.6 of package nginx

  * service[nginx] action enable (up to date)
 Recipe: nginx::commons_dir
  * directory[/etc/nginx] action create (up to date)
  * directory[/var/log/nginx] action create (up to date)
  * directory[/etc/nginx/sites-available] action create (up to date)
  * directory[/etc/nginx/sites-enabled] action create (up to date)
  * directory[/etc/nginx/conf.d] action create (up to date)
 Recipe: nginx::commons_script
  * template[/usr/sbin/nxensite] action create (up to date)
  * template[/usr/sbin/nxdissite] action create (up to date)
 Recipe: nginx::commons_conf
  * template[nginx.conf] action create
    - create new file /etc/nginx/nginx.conf
    - update content in file /etc/nginx/nginx.conf from none to 348b57
        --- /etc/nginx/nginx.conf       2014-05-15 12:48:48.099726250 -0500
        +++ /tmp/chef-rendered-template20140515-26529-1ilchxs   2014-05-15 12:48:48.103726205 -0500
        @@ -0,0 +1,39 @@
        +user www-data;
        +worker_processes  2;
        +
        +error_log  /var/log/nginx/error.log;
        +pid        /var/run/nginx.pid;
        +
        +events {
        +  worker_connections  1024;
        +}
        +
        +http {
        +
        +  include       /etc/nginx/mime.types;
        +  default_type  application/octet-stream;
        +
        +  access_log   /var/log/nginx/access.log;
        +
        +  sendfile on;
        +  tcp_nopush on;
        +  tcp_nodelay on;
        +
        +  keepalive_timeout  65;
        +
        +  gzip  on;
        +  gzip_http_version 1.0;
        +  gzip_comp_level 2;
        +  gzip_proxied any;
        +  gzip_vary off;
        +  gzip_types text/plain text/css application/x-javascript text/xml application/xml application/xml+rss text/javascript application/javascript application/json;
        +  gzip_min_length  1000;
        +  gzip_disable     "MSIE [1-6]\.";
        +
        +  server_names_hash_bucket_size 64;
        +  types_hash_max_size 2048;
        +  types_hash_bucket_size 64;
        +
        +  include /etc/nginx/conf.d/*.conf;
        +  include /etc/nginx/sites-enabled/*;
        +}
    - change mode from '' to '0644'
    - change owner from '' to 'root'
    - change group from '' to 'root'

  * template[/etc/nginx/sites-available/default] action create
    - create new file /etc/nginx/sites-available/default
    - update content in file /etc/nginx/sites-available/default from none to 7957c1
        --- /etc/nginx/sites-available/default  2014-05-15 12:48:48.275724277 -0500
        +++ /tmp/chef-rendered-template20140515-26529-1ldtex    2014-05-15 12:48:48.279724232 -0500
        @@ -0,0 +1,11 @@
        +server {
        +  listen   80;
        +  server_name  ome-alpha-vm1;
        +
        +  access_log  /var/log/nginx/localhost.access.log;
        +
        +  location / {
        +    root   /var/www/nginx-default;
        +    index  index.html index.htm;
        +  }
        +}
    - change mode from '' to '0644'
    - change owner from '' to 'root'
    - change group from '' to 'root'

  * execute[nxensite default] action run
    - execute /usr/sbin/nxensite default

 Recipe: nginx::default
  * service[nginx] action start
 ================================================================================
 Error executing action `start` on resource 'service[nginx]'
 ================================================================================


 Errno::ENOENT
 -------------
 No such file or directory - /etc/init.d/nginx start


 Resource Declaration:
 ---------------------
 # In /var/chef/cache/cookbooks/nginx/recipes/default.rb

 49: service 'nginx' do
 50:   supports :status => true, :restart => true, :reload => true
 51:   action :start
 52: end



 Compiled Resource:
 ------------------
 # Declared in /var/chef/cache/cookbooks/nginx/recipes/default.rb:49:in `from_file'

 service("nginx") do
  action [:start]
  supports {:status=>true, :restart=>true, :reload=>true}
  retries 0
  retry_delay 2
  service_name "nginx"
  pattern "nginx"
  startup_type :automatic
  cookbook_name "nginx"
  recipe_name "default"
 end



 Recipe: openssh::default
  * service[ssh] action restart
    - restart service service[ssh]

 Recipe: nginx::default
  * service[nginx] action reload (up to date)
 [2014-05-15T12:48:49-05:00] ERROR: Running exception handlers
 [2014-05-15T12:48:49-05:00] ERROR: Exception handlers complete
 [2014-05-15T12:48:49-05:00] FATAL: Stacktrace dumped to /var/chef/cache/chef-stacktrace.out
 Chef Client failed. 33 resources updated
 [2014-05-15T12:48:49-05:00] FATAL: Chef::Exceptions::ChildConvergeError: Chef run process exited unsuccessfully (exit code 1)
	mhn@ome-alpha-vm1:/etc$ sudo chef-client
	Starting Chef Client, version 11.6.2
	resolving cookbooks for run list: ["est-ntp", "est-rsyslog", "est-chef-client", "est-ssh", "est-firewall", "est-mount", "estenv-ome", "est-user::required", "ome_wse_accounts", "est-cis-benchmark", "ome_dev_accounts", "ome_tomcat", "ome_tomcat::properties", "ome_nginx", "ome_telecom_creditcard"]
	Synchronizing Cookbooks:
	- ome_nginx
	- ome_tools
	- ome_tomcat
	- ome_telecom_creditcard
	- ohai
	- yum
	- build-essential
	- runit
	- apt
	- nginx
	- java
	- ome_java
	- ark
	- firewall
	- est-users
	- ome_dev_accounts
	- est-cron
	- est-apt
	- est-ssh
	- est-cis-benchmark
	- ome_wse_accounts
	- est-user
	- sudo
	- est-sudo
	- est-mount
	- estenv-ome
	- est-firewall
	- iptables
	- openssh
	- cron
	- chef-client
	- est-chef-client
	- rsyslog
	- est-rsyslog
	- ntp
	- est-ntp
	Compiling Cookbooks...
	Recipe: ohai::default
	* remote_directory[/etc/chef/ohai_plugins] action createRecipe: <Dynamically Defined Resource>
	* cookbook_file[/etc/chef/ohai_plugins/README] action create (up to date)
	(up to date)
	Recipe: ohai::default
	* ohai[custom_plugins] action reload
	- re-run ohai and merge results into node attributes

	[2014-05-15T12:47:27-05:00] WARN: Cloning resource attributes for service[nginx] from prior resource (CHEF-3694)
	[2014-05-15T12:47:27-05:00] WARN: Previous service[nginx]: /var/chef/cache/cookbooks/nginx/recipes/default.rb:42:in `from_file'
	[2014-05-15T12:47:27-05:00] WARN: Current service[nginx]: /var/chef/cache/cookbooks/nginx/recipes/default.rb:49:in `from_file'
	[2014-05-15T12:47:27-05:00] WARN: Cloning resource attributes for execute[nxensite default] from prior resource (CHEF-3694)
	[2014-05-15T12:47:27-05:00] WARN: Previous execute[nxensite default]: /var/chef/cache/cookbooks/nginx/definitions/nginx_site.rb:23:in `block in from_file'
	[2014-05-15T12:47:27-05:00] WARN: Current execute[nxensite default]: /var/chef/cache/cookbooks/nginx/definitions/nginx_site.rb:23:in `block in from_file'
	[2014-05-15T12:47:27-05:00] WARN: Cloning resource attributes for ome_tomcat_application[credit-card.war] from prior resource (CHEF-3694)
	[2014-05-15T12:47:27-05:00] WARN: Previous ome_tomcat_application[credit-card.war]: /var/chef/cache/cookbooks/ome_telecom_creditcard/recipes/default.rb:11:in `from_file'
	[2014-05-15T12:47:27-05:00] WARN: Current ome_tomcat_application[credit-card.war]: /var/chef/cache/cookbooks/ome_telecom_creditcard/recipes/default.rb:17:in `from_file'
	[2014-05-15T12:47:27-05:00] WARN: Cloning resource attributes for firewall_rule[http] from prior resource (CHEF-3694)
	[2014-05-15T12:47:27-05:00] WARN: Previous firewall_rule[http]: /var/chef/cache/cookbooks/ome_telecom_creditcard/recipes/default.rb:67:in `from_file'
	[2014-05-15T12:47:27-05:00] WARN: Current firewall_rule[http]: /var/chef/cache/cookbooks/ome_telecom_creditcard/recipes/default.rb:73:in `from_file'
	Converging 107 resources
	Recipe: ntp::default
	* package[ntp] action install (up to date)
	* package[ntpdate] action install (up to date)
	* directory[/var/lib/ntp] action create (up to date)
	* directory[/var/log/ntpstats/] action create (up to date)
	* service[ntp] action enable (up to date)
	* service[ntp] action start (up to date)
	* cookbook_file[/etc/ntp.leapseconds] action create (up to date)
	* template[/etc/ntp.conf] action create (up to date)
	Recipe: rsyslog::default
	* package[rsyslog] action install (up to date)
	* directory[/etc/rsyslog.d] action create (up to date)
	* directory[/var/spool/rsyslog] action create (up to date)
	* template[/etc/rsyslog.conf] action create (up to date)
	* template[/etc/rsyslog.d/50-default.conf] action create (up to date)
	* service[rsyslog] action enable (up to date)
	* service[rsyslog] action start (up to date)
	Recipe: rsyslog::client
	* template[/etc/rsyslog.d/49-remote.conf] action create (up to date)
	* file[/etc/rsyslog.d/server.conf] action delete (up to date)
	Recipe: chef-client::init_service
	* log[Found chef-client in /usr/bin/chef-client] action write

	* directory[/var/run/chef] action create (up to date)
	* directory[/var/cache/chef] action create (up to date)
	* directory[/var/lib/chef] action create (up to date)
	* directory[/var/log/chef] action create (up to date)
	* directory[/etc/chef] action create (up to date)
	* template[/etc/init.d/chef-client] action create (up to date)
	* template[/etc/default/chef-client] action create (up to date)
	* service[chef-client] action enable (up to date)
	* service[chef-client] action start (up to date)
	Recipe: openssh::default
	* package[openssh-client] action install (up to date)
	* package[openssh-server] action install (up to date)
	* service[ssh] action enable (up to date)
	* service[ssh] action start (up to date)
	* template[/etc/ssh/ssh_config] action create
	- change mode from '0600' to '0644'

	* template[/etc/ssh/sshd_config] action create
	- change mode from '0600' to '0644'

	Recipe: firewall::default
	* package[ufw] action install (up to date)
	Recipe: est-firewall::default
	* firewall[ufw] action enable (up to date)
	* firewall_rule[allow EST backups] action allow
	- Allowing 129.130.253.208/29 firewall_rule

	* firewall_rule[allow EST nagios] action allow
	- Allowing 129.130.12.20 firewall_rule

	* firewall_rule[allow EST SNMP] action allow
	- Allowing 129.130.12.224 firewall_rule

	* firewall_rule[allow EST admins] action allow
	- Allowing 129.130.0.0/24 firewall_rule

	* firewall_rule[allow ESTVPN] action allow
	- Allowing 10.130.221.16/28 firewall_rule

	Recipe: est-user::required
	* est-user_account[create required users] action create[2014-05-15T12:48:29-05:00] WARN: jsh not found
	(up to date)
	Recipe: <Dynamically Defined Resource>
	* user[estroot] action create
	- alter user user[estroot]

	* user[jemroot] action create
	- alter user user[jemroot]

	* user[jstroot] action create
	- alter user user[jstroot]

	* user[lkcroot] action create
	- alter user user[lkcroot]

	* user[mbaxa] action create (up to date)
	* user[jamest] action create (up to date)
	* user[eisele] action create (up to date)
	Recipe: estenv-ome::default
	* sudo[eisele] action installRecipe: <Dynamically Defined Resource>
	* template[/etc/sudoers.d/eisele] action create (up to date)
	(up to date)
	* template[/etc/sudoers.d/eisele] action nothing (skipped due to action :nothing)
	Recipe: estenv-ome::default
	* sudo[gidossa] action installRecipe: <Dynamically Defined Resource>
	* template[/etc/sudoers.d/gidossa] action create (up to date)
	(up to date)
	* template[/etc/sudoers.d/gidossa] action nothing (skipped due to action :nothing)
	Recipe: estenv-ome::default
	* sudo[jsw2] action installRecipe: <Dynamically Defined Resource>
	* template[/etc/sudoers.d/jsw2] action create (up to date)
	(up to date)
	* template[/etc/sudoers.d/jsw2] action nothing (skipped due to action :nothing)
	Recipe: estenv-ome::default
	* sudo[mbaxa] action installRecipe: <Dynamically Defined Resource>
	* template[/etc/sudoers.d/mbaxa] action create (up to date)
	(up to date)
	* template[/etc/sudoers.d/mbaxa] action nothing (skipped due to action :nothing)
	Recipe: estenv-ome::default
	* sudo[mhn] action installRecipe: <Dynamically Defined Resource>
	* template[/etc/sudoers.d/mhn] action create (up to date)
	(up to date)
	* template[/etc/sudoers.d/mhn] action nothing (skipped due to action :nothing)
	Recipe: estenv-ome::default
	* firewall_rule[allow WSE desktops] action allow
	- Allowing 129.130.48.8/29 firewall_rule

	* firewall_rule[allow OMEASAVPN] action allow
	- Allowing 10.130.227.224/27 firewall_rule

	Recipe: ome_wse_accounts::default
	* est-user_account[create test users] action create[2014-05-15T12:48:37-05:00] WARN: Cloning resource attributes for user[eisele] from prior resource (CHEF-3694)
	[2014-05-15T12:48:37-05:00] WARN: Previous user[eisele]: /var/chef/cache/cookbooks/est-user/providers/account.rb:41:in `block (2 levels) in class_from_file'
	[2014-05-15T12:48:37-05:00] WARN: Current user[eisele]: /var/chef/cache/cookbooks/est-user/providers/account.rb:41:in `block (2 levels) in class_from_file'
	[2014-05-15T12:48:37-05:00] WARN: Cloning resource attributes for user[mbaxa] from prior resource (CHEF-3694)
	[2014-05-15T12:48:37-05:00] WARN: Previous user[mbaxa]: /var/chef/cache/cookbooks/est-user/providers/account.rb:41:in `block (2 levels) in class_from_file'
	[2014-05-15T12:48:37-05:00] WARN: Current user[mbaxa]: /var/chef/cache/cookbooks/est-user/providers/account.rb:41:in `block (2 levels) in class_from_file'
	(up to date)
	Recipe: <Dynamically Defined Resource>
	* user[mhn] action create (up to date)
	* user[eisele] action create (up to date)
	* user[mbaxa] action create (up to date)
	* user[jsw2] action create (up to date)
	* user[gidossa] action create (up to date)
	Recipe: est-cis-benchmark::ssh
	* file[/etc/ssh/ssh_config] action create
	- change mode from '0644' to '0600'

	* file[/etc/ssh/sshd_config] action create
	- change mode from '0644' to '0600'

	Recipe: est-cis-benchmark::sysstat
	* package[sysstat] action install (up to date)
	* service[sysstat] action enable (up to date)
	* service[sysstat] action start (up to date)
	* template[/etc/default/sysstat] action create (up to date)
	Recipe: est-cis-benchmark::portmap
	* execute[/etc/init.d/portmap stop; update-rc.d -f portmap remove] action run
	- execute /etc/init.d/portmap stop; update-rc.d -f portmap remove

	Recipe: est-cis-benchmark::sysctl
	* template[/etc/sysctl.conf] action create (up to date)
	Recipe: est-cis-benchmark::fstab
	* bash[fstab_nodev] action run
	- execute "bash" "/tmp/chef-script20140515-26529-opapcf"

	* bash[fstab_nodev_media] action run
	- execute "bash" "/tmp/chef-script20140515-26529-16vykqk"

	* bash[fstab_disable_removable] action run
	- execute "bash" "/tmp/chef-script20140515-26529-1x65kbc"

	* file[/etc/fstab] action create (up to date)
	Recipe: est-cis-benchmark::perms
	* file[/etc/passwd] action create (up to date)
	* file[/etc/group] action create (up to date)
	* file[/etc/shadow] action create (up to date)
	* file[/etc/crontab] action create (up to date)
	* execute[/var/spool/cron/* permissions] action run
	- execute chown -R root:root /var/spool/cron && chmod -R 770 /var/spool/cron

	* bash[home dir permissions] action run
	- execute "bash" "/tmp/chef-script20140515-26529-qzhjp5"

	* bash[user dot files perms] action run
	- execute "bash" "/tmp/chef-script20140515-26529-ly76m7"

	Recipe: est-cron::harden
	* template[/etc/cron.allow] action create (up to date)
	* template[/etc/at.allow] action create (up to date)
	Recipe: est-cis-benchmark::accounts
	* bash[block system accounts] action run
	- execute "bash" "/tmp/chef-script20140515-26529-18pzxbv"

	Recipe: est-cis-benchmark::su
	* template[/etc/pam.d/su] action create (up to date)
	Recipe: est-cis-benchmark::usb_storage
	* bash[blacklist usb_storage] action run
	- execute "bash" "/tmp/chef-script20140515-26529-1bk63r4"

	* bash[remove usb_storage module at boot] action run
	- execute "bash" "/tmp/chef-script20140515-26529-s4jbul"

	Recipe: ome_dev_accounts::default
	* firewall_rule[allow OME develoeprs] action allow
	- Allowing 10.130.227.192/27 firewall_rule

	* est-user_account[create dev users] action create (up to date)
	Recipe: <Dynamically Defined Resource>
	* user[kaz0358] action create (up to date)
	* user[toby] action create (up to date)
	Recipe: ome_tomcat::default
	* user[tomcat] action create (up to date)
	* directory[/as/app/tomcat/7.0.47] action create (up to date)
	* ark[7.0.47] action putRecipe: <Dynamically Defined Resource>
	* directory[/as/app/tomcat/7.0.47] action create (up to date)
	* remote_file[/var/chef/cache/7.0.47.tar.gz] action create (up to date)
	* execute[unpack /var/chef/cache/7.0.47.tar.gz] action nothing (skipped due to action :nothing)
	* execute[set owner on /as/app/tomcat/7.0.47] action nothing (skipped due to action :nothing)
	(up to date)
	Recipe: ome_tomcat::default
	* link[/as/app/tomcat/current] action create (up to date)
	* template[/etc/init.d/tomcat7] action create (up to date)
	* service[tomcat] action start (up to date)
	* execute[wait for tomcat] action nothing (skipped due to action :nothing)
	Recipe: ome_tomcat::properties
	* template[/as/app/tomcat/current/conf/catalina.sh.includes] action create (up to date)
	Recipe: nginx::ohai_plugin
	* ohai[reload_nginx] action nothing (skipped due to action :nothing)
	* template[/etc/chef/ohai_plugins/nginx.rb] action create (up to date)
	Recipe: ohai::default
	* remote_directory[/etc/chef/ohai_plugins] action nothing (skipped due to action :nothing)
	* ohai[custom_plugins] action nothing (skipped due to action :nothing)
	Recipe: nginx::default
	* package[nginx] action install
	- install version 1.1.19-1ubuntu0.6 of package nginx

	* service[nginx] action enable (up to date)
	Recipe: nginx::commons_dir
	* directory[/etc/nginx] action create (up to date)
	* directory[/var/log/nginx] action create (up to date)
	* directory[/etc/nginx/sites-available] action create (up to date)
	* directory[/etc/nginx/sites-enabled] action create (up to date)
	* directory[/etc/nginx/conf.d] action create (up to date)
	Recipe: nginx::commons_script
	* template[/usr/sbin/nxensite] action create (up to date)
	* template[/usr/sbin/nxdissite] action create (up to date)
	Recipe: nginx::commons_conf
	* template[nginx.conf] action create
	- create new file /etc/nginx/nginx.conf
	- update content in file /etc/nginx/nginx.conf from none to 348b57
	--- /etc/nginx/nginx.conf 2014-05-15 12:48:48.099726250 -0500
	+++ /tmp/chef-rendered-template20140515-26529-1ilchxs 2014-05-15 12:48:48.103726205 -0500
	@@ -0,0 +1,39 @@
	+user www-data;
	+worker_processes 2;
	+
	+error_log /var/log/nginx/error.log;
	+pid /var/run/nginx.pid;
	+
	+events {
	+ worker_connections 1024;
	+}
	+
	+http {
	+
	+ include /etc/nginx/mime.types;
	+ default_type application/octet-stream;
	+
	+ access_log /var/log/nginx/access.log;
	+
	+ sendfile on;
	+ tcp_nopush on;
	+ tcp_nodelay on;
	+
	+ keepalive_timeout 65;
	+
	+ gzip on;
	+ gzip_http_version 1.0;
	+ gzip_comp_level 2;
	+ gzip_proxied any;
	+ gzip_vary off;
	+ gzip_types text/plain text/css application/x-javascript text/xml application/xml application/xml+rss text/javascript application/javascript application/json;
	+ gzip_min_length 1000;
	+ gzip_disable "MSIE [1-6]\.";
	+
	+ server_names_hash_bucket_size 64;
	+ types_hash_max_size 2048;
	+ types_hash_bucket_size 64;
	+
	+ include /etc/nginx/conf.d/*.conf;
	+ include /etc/nginx/sites-enabled/*;
	+}
	- change mode from '' to '0644'
	- change owner from '' to 'root'
	- change group from '' to 'root'

	* template[/etc/nginx/sites-available/default] action create
	- create new file /etc/nginx/sites-available/default
	- update content in file /etc/nginx/sites-available/default from none to 7957c1
	--- /etc/nginx/sites-available/default 2014-05-15 12:48:48.275724277 -0500
	+++ /tmp/chef-rendered-template20140515-26529-1ldtex 2014-05-15 12:48:48.279724232 -0500
	@@ -0,0 +1,11 @@
	+server {
	+ listen 80;
	+ server_name ome-alpha-vm1;
	+
	+ access_log /var/log/nginx/localhost.access.log;
	+
	+ location / {
	+ root /var/www/nginx-default;
	+ index index.html index.htm;
	+ }
	+}
	- change mode from '' to '0644'
	- change owner from '' to 'root'
	- change group from '' to 'root'

	* execute[nxensite default] action run
	- execute /usr/sbin/nxensite default

	Recipe: nginx::default
	* service[nginx] action start
	================================================================================
	Error executing action `start` on resource 'service[nginx]'
	================================================================================


	Errno::ENOENT
	-------------
	No such file or directory - /etc/init.d/nginx start


	Resource Declaration:
	---------------------
	# In /var/chef/cache/cookbooks/nginx/recipes/default.rb

	49: service 'nginx' do
	50: supports :status => true, :restart => true, :reload => true
	51: action :start
	52: end



	Compiled Resource:
	------------------
	# Declared in /var/chef/cache/cookbooks/nginx/recipes/default.rb:49:in `from_file'

	service("nginx") do
	action [:start]
	supports {:status=>true, :restart=>true, :reload=>true}
	retries 0
	retry_delay 2
	service_name "nginx"
	pattern "nginx"
	startup_type :automatic
	cookbook_name "nginx"
	recipe_name "default"
	end



	Recipe: openssh::default
	* service[ssh] action restart
	- restart service service[ssh]

	Recipe: nginx::default
	* service[nginx] action reload (up to date)
	[2014-05-15T12:48:49-05:00] ERROR: Running exception handlers
	[2014-05-15T12:48:49-05:00] ERROR: Exception handlers complete
	[2014-05-15T12:48:49-05:00] FATAL: Stacktrace dumped to /var/chef/cache/chef-stacktrace.out
	Chef Client failed. 33 resources updated
	[2014-05-15T12:48:49-05:00] FATAL: Chef::Exceptions::ChildConvergeError: Chef run process exited unsuccessfully (exit code 1)