Mirrors/hackacad
2
0
Fork 0
mirror of https://github.com/hackacad/bastille.git synced 2025-12-21 17:52:01 +01:00
Code Issues Packages Projects Releases Wiki Activity
585 Commits 17 Branches 20 Tags
9984101e1b0f30cebd05f7146eb101f895d1764a
Commit Graph

350 Commits

Author SHA1 Message Date
Jose
9984101e1b Don't share ports across the jails, just copy them 
A security concern into the jail could affect the shared ports for all the child, and/or multiple jails accessing/managing/updating the same source could lead into conflicts.

Due the above mentioned issues, the optional distfiles will be copied to the newly created thinjail if they exist on the base release, thus being secure and more granular management.
 2021-03-20 06:12:07 -04:00
Jose
674e8ff087 More validation/checks for export command 2021-02-18 06:48:43 -04:00
Jose
211a268c36 Use which since shell built-in and search for paths 2021-02-08 05:31:16 -04:00
Jose
75ed5b3ce4 Add quick check for pfctl command 2021-02-08 04:17:32 -04:00
Jose
80639062d7 Fix and improve the convert command 2021-02-05 13:59:09 -04:00
Jose
b31c8d514b Simplify options parsing and better handling for combined options 2021-02-03 20:39:30 -04:00
Jose
5583ab1d78 Add support bastille RAW image exports/imports, also extended help usage 2021-02-03 18:31:41 -04:00
Christer Edwards
9a5a1f960e fixes issue #332 2021-01-29 09:27:39 -07:00
Christer Edwards
2c5fff7ec7 version bump for 0.8.20210115 2021-01-15 20:28:34 -07:00
Christer Edwards
6fa744bbda update 2021 copyright 2021-01-15 20:00:26 -07:00
Christer Edwards
5b8fcf5a4d Merge pull request #311 from JRGTH/master 
Don't start empty jails, don't apply template if Bastillefile is empty
 2021-01-15 19:51:40 -07:00
Jose
15c1505187 Revert jail enable|disable feature by now, requested for later review 2021-01-15 22:28:08 -04:00
Jose
2474382756 Improve interface validation on vnet jail creation 2021-01-12 23:15:39 -04:00
Jose
87944a0fd0 Don't allow underscore in jail name beginning, remove jail from bastille_list on destroy 2021-01-10 18:55:02 -04:00
Jose
6aa84cb3f5 Small cosmetic/typo corrections 2021-01-10 02:26:40 -04:00
Jose
ed8ff8bd80 Fix to properly upgrade base releases 2021-01-09 21:24:05 -04:00
Christer Edwards
74fdcbdcb5 rdr now persists rules by default; rdr.sh cleanup 2021-01-09 15:42:24 -07:00
Jose
996e7e2b40 Option to enable/disable jail auto-start using sysrc 2021-01-09 16:18:11 -04:00
Jose
665cc19ce6 Properly link shared ports on thin jails 2021-01-08 22:37:18 -04:00
Jose
d2fcc011be Feature option for safe ZFS jail exports, config update 2021-01-08 20:30:03 -04:00
Jose
b528289815 Don't start empty jails unless templates defined, code improvements 2021-01-08 20:26:31 -04:00
Jose
083e019081 Don't start empty jails, don't apply template if Bastillefile is empty 2021-01-08 02:05:30 -04:00
Christer Edwards
cc870b2667 fix %s->%d regression 2021-01-05 18:24:02 -07:00
Christer Edwards
6f043d62e5 add required 'pass' to rdr rules 2021-01-05 18:00:28 -07:00
Christer Edwards
7c271df2f5 Merge pull request #301 from cedwards/release-prep-20210101 
version bumps for release preparation
 2021-01-01 09:32:55 -07:00
Christer Edwards
83a83e087e adding a couple vnet exceptions for ip4.addr checks 2021-01-01 09:23:26 -07:00
Christer Edwards
a0feac3f66 version bumps for release preparation 2021-01-01 09:13:44 -07:00
Christer Edwards
4136f8fff4 Merge pull request #296 from chriswells0/require-interface 
Verify interface exists when starting jail.
 2020-12-31 15:00:46 -07:00
Christer Edwards
1120a0eebd Merge pull request #279 from chriswells0/default-templates 
Use templates for configuring new jails.
 2020-12-31 15:00:13 -07:00
Christer Edwards
c337994414 Merge pull request #297 from hackacad/zfs_bootstrap 
Check if ZFS is enabled in rc.conf and bastille.conf
 2020-12-23 09:56:20 -07:00
Bike Dude
ca8819d7b6 stop.sh: clear rdr 2020-12-15 10:21:11 +01:00
Bike Dude
32a1278326 add ZFS check on bootstrap 2020-12-15 09:21:26 +01:00
Bike Dude
cbd60032fc add ZFS check on bootstrap 2020-12-15 09:12:02 +01:00
Chris Wells
a56c37983c Verify interface exists when starting non-vnet jail. 
Closes #128.
 2020-12-14 12:24:22 -05:00
Chris Wells
7675286cd3 Fix grep when UTF-8 is not used. 
Support tabs and spaces in templates/config.
 2020-12-12 19:17:20 -05:00
Christer Edwards
be6b1adfb9 Merge pull request #285 from chriswells0/hook-conversion 
Add ability to convert "hook" files to Bastillefile format.
 2020-12-12 12:05:35 -07:00
Christer Edwards
4e843be9e3 Merge pull request #276 from chriswells0/render-message 
Display message about file/directory being rendered.
 2020-12-12 11:55:04 -07:00
Christer Edwards
62c8060b53 Merge pull request #286 from chriswells0/document-limits 
Add missing subcommands (limits/config) to docs.
 2020-12-12 11:54:25 -07:00
Christer Edwards
01494ad3fd Merge pull request #289 from chriswells0/limits-fixes 
Update existing limit when a new value is provided.
 2020-12-12 11:54:05 -07:00
Christer Edwards
574f655cc8 Merge pull request #290 from andrewhotlab/master 
Respect exec.fib parameter in console command
 2020-12-12 11:53:38 -07:00
Christer Edwards
160040d2e9 Merge pull request #291 from JRGTH/master 
Update help usage on update command
 2020-12-12 11:52:46 -07:00
Christer Edwards
73c500ce3e Merge pull request #288 from chriswells0/config-fixes 
Properly escape config property and value.
 2020-12-12 11:52:04 -07:00
Christer Edwards
81ff4a3243 Merge pull request #287 from chriswells0/default-args 
Provide JAIL_NAME and JAIL_IP as default template args.
 2020-12-12 11:51:05 -07:00
Chris Wells
54f6ef62cd Properly escape config property and value. 2020-12-11 18:27:58 -05:00
Petru Garstea
02f9df6cc0 log rctl events to /var/log/messages 2020-12-11 15:47:48 -05:00
Jose
c6ad100d8a Update help usage on update command 2020-12-02 06:41:45 -04:00
Andrew
7d44a39a01 Respect jexec.fib parameter in console command 
If parameter "exec.fib" exists in jail.conf, use it when jexec'ing into the jail.
 2020-12-01 13:03:15 +01:00
Chris Wells
c2839f859e Use templates for configuring new jails. 
Allow user to override default templates.

Closes #205.
 2020-11-29 14:19:41 -05:00
Chris Wells
b90d8c60f7 Update existing limit when a new value is provided. 
Closes #233.
 2020-11-29 11:34:18 -05:00
Chris Wells
5518273881 Provide JAIL_NAME and JAIL_IP as default template args. 
Closes #280.
 2020-11-28 19:55:41 -05:00