Jérémy Lecour
2057a6fd80
Restore compatibility with Debian <10
...
ssh-keygen has "-f prefix_path" in openssh-server version 7.9+
2020-09-25 14:12:12 +02:00
Jérémy Lecour
7d1964370d
jails and incs lists are sorted alphanumerically
2020-08-28 10:21:13 +02:00
Jérémy Lecour
39901967a7
bkctld-check-setup: forgot to increment the summary
2020-08-20 14:50:09 +02:00
Jérémy Lecour
08a2e067c2
bkctld-check-setup: remove "set -x"
2020-08-19 14:01:57 +02:00
Jérémy Lecour
bc6a571595
whitespaces for readability
2020-08-19 13:58:23 +02:00
Jérémy Lecour
ea9aac50a3
explicit path refix for ssh-keygen
2020-08-19 13:58:03 +02:00
Jérémy Lecour
1063dfe74d
bkctld: don't replace SSH host keys when creating/updating a jail
2020-08-19 13:57:18 +02:00
Jérémy Lecour
c141986a6d
create new ssh keys for new jails instead of copying those from the host
...
It increases the security by having different keys between jails.
It reduces the risk of changing the keys of jails after creationtheir
creation.
2020-08-07 14:24:20 +02:00
Jérémy Lecour
0ad1e8d342
Split check into check-jails and check-setup
...
bkctld-check-setup checks if the partition is mounted and writable, if
firewall is configured and if all jails are started
2020-07-10 14:34:06 +02:00
Jérémy Lecour
d07b493131
bkctld-update: start jail after upgrade if it was started before
2020-07-09 17:14:49 +02:00
Jérémy Lecour
505e0f7f53
New command bkctld upgrade-config
...
It moves the legacy config file "/etc/evobackup/<jail>" to the new
config structure "/etc/evobackup/<jail>.d/incs_policy"
2020-05-28 11:11:59 +02:00
Jérémy Lecour
505bdb9117
On sync, add trailing slash to rsync command
2020-05-28 10:22:34 +02:00
Jérémy Lecour
b659e9d8c5
better sync
...
* add/remove config files to mirror source
* restart minifirewall only if present
* sync state with proper action
2020-05-03 11:03:04 +02:00
Jérémy Lecour
3ac79da9b2
bkctld-sync: don't sync whole firewall file, just rules for jail
2020-05-01 10:33:06 +02:00
Jérémy Lecour
8311e33c76
join arguments in ssh command
2020-05-01 10:31:46 +02:00
Jérémy Lecour
8ed06511d9
bkctld-sync: don't init jail if it already exists
2020-05-01 10:31:20 +02:00
Jérémy Lecour
9cd94dabc2
An empty lock file shouldn't stop the program
2020-05-01 09:52:06 +02:00
Jérémy Lecour
ebfc16f65a
grammar
2020-05-01 09:51:47 +02:00
Jérémy Lecour
b3529f2131
bkctld-is-on returns code 100 if jail is stopped
2020-05-01 09:51:36 +02:00
Jérémy Lecour
64ec60428d
error() function accepts an optional return code
2020-05-01 09:51:09 +02:00
Jérémy Lecour
fa109e216b
Give the pid of the new process
2020-04-21 09:03:18 +02:00
Jérémy Lecour
4829232a65
quote variable
2020-04-21 09:03:01 +02:00
Jérémy Lecour
ea912c40f0
missing whitespace
2020-04-20 23:43:56 +02:00
Jérémy Lecour
5f3cc873a1
fix date format
2020-04-20 23:43:45 +02:00
Jérémy Lecour
11bb59831c
bkctld-rm: state the age of the process when killing it
2020-04-20 23:31:39 +02:00
Jérémy Lecour
ea140f6137
fix log message wording
2020-04-20 23:30:57 +02:00
Jérémy Lecour
86e88ad2c2
fix log date format
...
%S = seconds
%s = number of seconds since epoch
2020-04-20 23:30:45 +02:00
Jérémy Lecour
205e3774a9
rewrite log messages and format
2020-04-20 08:29:21 +02:00
Jérémy Lecour
35d257d9c7
rm/inc : log progress
2020-04-20 00:38:44 +02:00
Jérémy Lecour
1846be4e45
better quotes
2020-04-19 10:05:20 +02:00
Jérémy Lecour
478703d96e
No space before colons in log messages
2020-04-19 09:56:52 +02:00
Jérémy Lecour
32f242fe9c
Reorganize temp files and lock files
...
Temp files/dirs all share a common prefix, so we can delete them all
effectively
Lock file is managed globally for bkctld-rm.
No need for a lock file for bkctld-inc anymore since there is a check on
the inc directory before starting.
2020-04-19 09:55:43 +02:00
Jérémy Lecour
f66d832d3a
properly call subcommands
2020-04-19 00:16:30 +02:00
Jérémy Lecour
096fe95b2f
bkctld-rm: fix lock file management
...
logic was badly implemented
2020-04-18 19:11:08 +02:00
Jérémy Lecour
723c8511e1
Don't forget to log the start time!
2020-04-18 19:10:19 +02:00
Jérémy Lecour
7a13a42ad2
Create empty directory in the default tmp directory
2020-04-18 19:09:52 +02:00
Jérémy Lecour
f7e8324ba5
Embed check-incs and check-last-incs in bkctld
2020-04-18 10:29:21 +02:00
Jérémy Lecour
0dcd72d3f2
move relative_date() function to includes files
2020-04-18 10:28:44 +02:00
Jérémy Lecour
9c6be0e74c
bkctld-rm: fix inc removal
...
echo-ing the list of incs gives a single line, hard to match with lines
in the keep file.
We store the incs list in a temp file to help comparing contents.
2020-04-12 11:45:21 +02:00
Jérémy Lecour
2d4cae58bc
fix typo
2020-04-12 11:43:06 +02:00
Jérémy Lecour
3198ba7f37
bkctld-rm: log incs to be deleted
2020-04-11 08:41:04 +02:00
Jérémy Lecour
11f84a9f7b
Emit a warning if no firewall file is configured
2020-04-08 18:35:09 +02:00
Jérémy Lecour
bdc6b4fa4d
bkctld-check: sourcing issue is just a warning
2020-04-08 18:32:27 +02:00
Jérémy Lecour
a0b3c4fd26
bkctld-check: shorter output
2020-04-08 17:54:09 +02:00
Jérémy Lecour
c2f39a0218
bkctld-check: don't eval the variables
2020-04-08 17:53:56 +02:00
Jérémy Lecour
e5997400cd
bkctld-check: verify that firewall rules are sourced
2020-04-08 12:26:59 +02:00
Jérémy Lecour
53b8fe8376
extract variable "jail_sshd_config"
2020-04-08 00:32:15 +02:00
Jérémy Lecour
5a90ae8a16
bkctld-ip: fail when trying to add an IP when there is no AllowUsers
2020-04-08 00:31:55 +02:00
Jérémy Lecour
2ef20df5ca
whitespaces
2020-04-05 11:43:52 +02:00
Jérémy Lecour
d29743357a
rename function for ext4 filesystems
2020-04-05 11:41:41 +02:00