Jérémy Lecour
937e75daa7
Rename incs_policy template
2021-02-22 10:15:53 +01:00
Jérémy Lecour
82dbb29511
bkctld-upgrade-config: install check_policy template if missing
2021-02-22 09:37:15 +01:00
Jérémy Lecour
21f4544016
Install default check_policy file on init
2021-02-22 09:36:53 +01:00
Jérémy Lecour
f84e9ec02d
fix infinite loop
2021-02-08 17:20:20 +01:00
Brice Waegeneire
3215ab2fa3
bkctld-check-incs: Correct shellchek warnings
...
- SC2013: To read lines rather than words, pipe/redirect to a 'while
read' loop.
- SC2086: Double quote to prevent globbing and word splitting.
2021-02-08 14:17:28 +01:00
Brice Waegeneire
c27cb81b57
bkctld-check-incs: Protect jail_config_epoch
...
Test if `incs_policy_file` exists before using it. Fixes #43 .
2021-02-08 14:17:22 +01:00
Jérémy Lecour
1a52f012a6
bkctld: new inc-lock and inc-unlock command
2020-11-28 10:46:57 +01:00
Jérémy Lecour
3aef89053b
bkctld-upgrade-config is executable
2020-11-27 10:04:09 +01:00
Jérémy Lecour
01a19ad2da
Release 2.7.0
2020-11-13 15:49:43 +01:00
Jérémy Lecour
76a298c042
bkctld-rm: delete empty jails in incs directory
2020-11-13 15:33:18 +01:00
Jérémy Lecour
f9018738b9
tests: use FORCE flag to remove jail in tests
2020-11-13 15:32:19 +01:00
Jérémy Lecour
3c5a646ae3
bkctld-rm: list jails from incs directory
...
We list jails in "incs" directory, not in "jails" directory so we can
clean old incs after a jail is archived
2020-11-12 18:35:41 +01:00
Jérémy Lecour
bf56c16ed2
bkctld-remove: confirmation before removal of jails if not in force mode
2020-10-11 15:19:00 +02:00
Jérémy Lecour
2ccd8c1b8d
add a [-f|--force] option to remove confirmation on some commands
2020-10-11 14:57:47 +02:00
Jérémy Lecour
9eae80c002
globally disable shecllcheck SC2034 in lib/includes
...
Many variables defined in this file are not used here.
2020-10-11 14:56:22 +02:00
Jérémy Lecour
05c3715c6a
Better help message composition and formating
2020-10-11 14:53:26 +02:00
Jérémy Lecour
2ad1032f9d
Release 2.6.0
2020-10-07 20:51:29 +02:00
Jérémy Lecour
c1fbe6394f
Add "version" and extract "help" options
2020-10-07 20:50:17 +02:00
Jérémy Lecour
2057a6fd80
Restore compatibility with Debian <10
...
ssh-keygen has "-f prefix_path" in openssh-server version 7.9+
2020-09-25 14:12:12 +02:00
Jérémy Lecour
7d1964370d
jails and incs lists are sorted alphanumerically
2020-08-28 10:21:13 +02:00
Jérémy Lecour
39901967a7
bkctld-check-setup: forgot to increment the summary
2020-08-20 14:50:09 +02:00
Jérémy Lecour
08a2e067c2
bkctld-check-setup: remove "set -x"
2020-08-19 14:01:57 +02:00
Jérémy Lecour
bc6a571595
whitespaces for readability
2020-08-19 13:58:23 +02:00
Jérémy Lecour
ea9aac50a3
explicit path refix for ssh-keygen
2020-08-19 13:58:03 +02:00
Jérémy Lecour
1063dfe74d
bkctld: don't replace SSH host keys when creating/updating a jail
2020-08-19 13:57:18 +02:00
Jérémy Lecour
c141986a6d
create new ssh keys for new jails instead of copying those from the host
...
It increases the security by having different keys between jails.
It reduces the risk of changing the keys of jails after creationtheir
creation.
2020-08-07 14:24:20 +02:00
Jérémy Lecour
0ad1e8d342
Split check into check-jails and check-setup
...
bkctld-check-setup checks if the partition is mounted and writable, if
firewall is configured and if all jails are started
2020-07-10 14:34:06 +02:00
Jérémy Lecour
d07b493131
bkctld-update: start jail after upgrade if it was started before
2020-07-09 17:14:49 +02:00
Jérémy Lecour
505e0f7f53
New command bkctld upgrade-config
...
It moves the legacy config file "/etc/evobackup/<jail>" to the new
config structure "/etc/evobackup/<jail>.d/incs_policy"
2020-05-28 11:11:59 +02:00
Jérémy Lecour
505bdb9117
On sync, add trailing slash to rsync command
2020-05-28 10:22:34 +02:00
Jérémy Lecour
b659e9d8c5
better sync
...
* add/remove config files to mirror source
* restart minifirewall only if present
* sync state with proper action
2020-05-03 11:03:04 +02:00
Jérémy Lecour
3ac79da9b2
bkctld-sync: don't sync whole firewall file, just rules for jail
2020-05-01 10:33:06 +02:00
Jérémy Lecour
8311e33c76
join arguments in ssh command
2020-05-01 10:31:46 +02:00
Jérémy Lecour
8ed06511d9
bkctld-sync: don't init jail if it already exists
2020-05-01 10:31:20 +02:00
Jérémy Lecour
9cd94dabc2
An empty lock file shouldn't stop the program
2020-05-01 09:52:06 +02:00
Jérémy Lecour
ebfc16f65a
grammar
2020-05-01 09:51:47 +02:00
Jérémy Lecour
b3529f2131
bkctld-is-on returns code 100 if jail is stopped
2020-05-01 09:51:36 +02:00
Jérémy Lecour
64ec60428d
error() function accepts an optional return code
2020-05-01 09:51:09 +02:00
Jérémy Lecour
fa109e216b
Give the pid of the new process
2020-04-21 09:03:18 +02:00
Jérémy Lecour
4829232a65
quote variable
2020-04-21 09:03:01 +02:00
Jérémy Lecour
ea912c40f0
missing whitespace
2020-04-20 23:43:56 +02:00
Jérémy Lecour
5f3cc873a1
fix date format
2020-04-20 23:43:45 +02:00
Jérémy Lecour
11bb59831c
bkctld-rm: state the age of the process when killing it
2020-04-20 23:31:39 +02:00
Jérémy Lecour
ea140f6137
fix log message wording
2020-04-20 23:30:57 +02:00
Jérémy Lecour
86e88ad2c2
fix log date format
...
%S = seconds
%s = number of seconds since epoch
2020-04-20 23:30:45 +02:00
Jérémy Lecour
205e3774a9
rewrite log messages and format
2020-04-20 08:29:21 +02:00
Jérémy Lecour
35d257d9c7
rm/inc : log progress
2020-04-20 00:38:44 +02:00
Jérémy Lecour
1846be4e45
better quotes
2020-04-19 10:05:20 +02:00
Jérémy Lecour
478703d96e
No space before colons in log messages
2020-04-19 09:56:52 +02:00
Jérémy Lecour
32f242fe9c
Reorganize temp files and lock files
...
Temp files/dirs all share a common prefix, so we can delete them all
effectively
Lock file is managed globally for bkctld-rm.
No need for a lock file for bkctld-inc anymore since there is a check on
the inc directory before starting.
2020-04-19 09:55:43 +02:00