Had a user in my org report an issue installing osquery. They're using RHEL, so I'm following along with the 'alternative install options' on https://osquery.io/downloads/official/4.70. For my test, running all in docker:

docker run -it <http://registry.access.redhat.com/ubi8/ubi:8.1|registry.access.redhat.com/ubi8/ubi:8.1> bash

# yum-config-manager needs to be installed on this system
yum install yum-utils

# no sudo installed by default and already running as root, so I've modified instructions to remove sudo, but otherwise are the same:
curl -L <https://pkg.osquery.io/rpm/GPG> | tee /etc/pki/rpm-gpg/RPM-GPG-KEY-osquery

yum-config-manager --add-repo <https://pkg.osquery.io/rpm/osquery-s3-rpm.repo>

yum-config-manager --enable osquery-s3-rpm
Error: No matching repo to modify: osquery-s3-rpm.

^ I noticed the instructions failed at this point. I opened https://pkg.osquery.io/rpm/osquery-s3-rpm.repo to take a look... Looks like the repo name changed or something? Shows as

osquery-s3-rpm-repo

instead of

osquery-s3-rpm

. Seems to pan out, because changing the line to this works:

yum-config-manager --enable osquery-s3-rpm

And then I'm able to successfully install osquery with

yum install osquery

Do you mean the command:

yum-config-manager --enable osquery-s3-rpm-repo

worked?

yeah

interesting, this might be a typo on the website, vs. a change to that file

I'm not sure where this is setup so not sure about digging through old commits to identify this.

ah okay - documentation is one of the hard problems in computer science 😢

Is the

--enable

required?

Interesting - I'm not sure. I don't regularly use yum / any systems that do. I was basically furiously googling my way through debugging this one 😐

I feel bad I didn't hint it then. I think i twiddled a couples and didn't think too hard.