9984101e1b
Don't share ports across the jails, just copy them
...
A security concern into the jail could affect the shared ports for all the child, and/or multiple jails accessing/managing/updating the same source could lead into conflicts.
Due the above mentioned issues, the optional distfiles will be copied to the newly created thinjail if they exist on the base release, thus being secure and more granular management.
2021-03-20 06:12:07 -04:00
674e8ff087
More validation/checks for export command
2021-02-18 06:48:43 -04:00
211a268c36
Use which since shell built-in and search for paths
2021-02-08 05:31:16 -04:00
75ed5b3ce4
Add quick check for pfctl command
2021-02-08 04:17:32 -04:00
80639062d7
Fix and improve the convert command
2021-02-05 13:59:09 -04:00
b31c8d514b
Simplify options parsing and better handling for combined options
2021-02-03 20:39:30 -04:00
5583ab1d78
Add support bastille RAW image exports/imports, also extended help usage
2021-02-03 18:31:41 -04:00
9a5a1f960e
fixes issue #332
2021-01-29 09:27:39 -07:00
6fa744bbda
update 2021 copyright
2021-01-15 20:00:26 -07:00
5b8fcf5a4d
Merge pull request #311 from JRGTH/master
...
Don't start empty jails, don't apply template if Bastillefile is empty
2021-01-15 19:51:40 -07:00
15c1505187
Revert jail enable|disable feature by now, requested for later review
2021-01-15 22:28:08 -04:00
2474382756
Improve interface validation on vnet jail creation
2021-01-12 23:15:39 -04:00
87944a0fd0
Don't allow underscore in jail name beginning, remove jail from bastille_list on destroy
2021-01-10 18:55:02 -04:00
6aa84cb3f5
Small cosmetic/typo corrections
2021-01-10 02:26:40 -04:00
ed8ff8bd80
Fix to properly upgrade base releases
2021-01-09 21:24:05 -04:00
74fdcbdcb5
rdr now persists rules by default; rdr.sh cleanup
2021-01-09 15:42:24 -07:00
996e7e2b40
Option to enable/disable jail auto-start using sysrc
2021-01-09 16:18:11 -04:00
665cc19ce6
Properly link shared ports on thin jails
2021-01-08 22:37:18 -04:00
d2fcc011be
Feature option for safe ZFS jail exports, config update
2021-01-08 20:30:03 -04:00
b528289815
Don't start empty jails unless templates defined, code improvements
2021-01-08 20:26:31 -04:00
083e019081
Don't start empty jails, don't apply template if Bastillefile is empty
2021-01-08 02:05:30 -04:00
cc870b2667
fix %s->%d regression
2021-01-05 18:24:02 -07:00
6f043d62e5
add required 'pass' to rdr rules
2021-01-05 18:00:28 -07:00
83a83e087e
adding a couple vnet exceptions for ip4.addr checks
2021-01-01 09:23:26 -07:00
4136f8fff4
Merge pull request #296 from chriswells0/require-interface
...
Verify interface exists when starting jail.
2020-12-31 15:00:46 -07:00
1120a0eebd
Merge pull request #279 from chriswells0/default-templates
...
Use templates for configuring new jails.
2020-12-31 15:00:13 -07:00
c337994414
Merge pull request #297 from hackacad/zfs_bootstrap
...
Check if ZFS is enabled in rc.conf and bastille.conf
2020-12-23 09:56:20 -07:00
ca8819d7b6
stop.sh: clear rdr
2020-12-15 10:21:11 +01:00
32a1278326
add ZFS check on bootstrap
2020-12-15 09:21:26 +01:00
cbd60032fc
add ZFS check on bootstrap
2020-12-15 09:12:02 +01:00
a56c37983c
Verify interface exists when starting non-vnet jail.
...
Closes #128 .
2020-12-14 12:24:22 -05:00
7675286cd3
Fix grep when UTF-8 is not used.
...
Support tabs and spaces in templates/config.
2020-12-12 19:17:20 -05:00
be6b1adfb9
Merge pull request #285 from chriswells0/hook-conversion
...
Add ability to convert "hook" files to Bastillefile format.
2020-12-12 12:05:35 -07:00
4e843be9e3
Merge pull request #276 from chriswells0/render-message
...
Display message about file/directory being rendered.
2020-12-12 11:55:04 -07:00
01494ad3fd
Merge pull request #289 from chriswells0/limits-fixes
...
Update existing limit when a new value is provided.
2020-12-12 11:54:05 -07:00
574f655cc8
Merge pull request #290 from andrewhotlab/master
...
Respect exec.fib parameter in console command
2020-12-12 11:53:38 -07:00
160040d2e9
Merge pull request #291 from JRGTH/master
...
Update help usage on update command
2020-12-12 11:52:46 -07:00
73c500ce3e
Merge pull request #288 from chriswells0/config-fixes
...
Properly escape config property and value.
2020-12-12 11:52:04 -07:00
81ff4a3243
Merge pull request #287 from chriswells0/default-args
...
Provide JAIL_NAME and JAIL_IP as default template args.
2020-12-12 11:51:05 -07:00
54f6ef62cd
Properly escape config property and value.
2020-12-11 18:27:58 -05:00
02f9df6cc0
log rctl events to /var/log/messages
2020-12-11 15:47:48 -05:00
c6ad100d8a
Update help usage on update command
2020-12-02 06:41:45 -04:00
7d44a39a01
Respect jexec.fib parameter in console command
...
If parameter "exec.fib" exists in jail.conf, use it when jexec'ing into the jail.
2020-12-01 13:03:15 +01:00
c2839f859e
Use templates for configuring new jails.
...
Allow user to override default templates.
Closes #205 .
2020-11-29 14:19:41 -05:00
b90d8c60f7
Update existing limit when a new value is provided.
...
Closes #233 .
2020-11-29 11:34:18 -05:00
5518273881
Provide JAIL_NAME and JAIL_IP as default template args.
...
Closes #280 .
2020-11-28 19:55:41 -05:00
30a8a93fe9
Display message about file/directory being rendered.
2020-11-28 18:54:14 -05:00
554f2293c1
Add ability to convert "hook" files to Bastillefile format.
2020-11-28 17:50:39 -05:00
b0c27329c9
Merge pull request #284 from chriswells0/stopped-jail-actions
...
Fix bug preventing commands against stopped jails.
2020-11-28 13:12:52 -07:00
351020d137
Fix bug preventing commands against stopped jails.
2020-11-28 14:04:15 -05:00
Jose
Christer Edwards
Christer Edwards
Bike Dude
Chris Wells
Petru Garstea
Andrew