2024-11-16 11:16:54 +01:00
|
|
|
### clean known_host doesnt work
|
|
|
|
|
|
2024-11-18 18:33:33 +01:00
|
|
|
## Add quota config and enable/configure rctl
|
2024-11-20 18:15:48 +01:00
|
|
|
|
2024-12-12 18:47:43 +01:00
|
|
|
## Add bsdnix manpage (into pub jail)
|
2024-12-13 18:39:21 +01:00
|
|
|
|
|
|
|
|
## Check if motd generation works
|
|
|
|
|
|
|
|
|
|
See Bastillefile pub
|
2024-12-15 18:48:41 +01:00
|
|
|
|
|
|
|
|
## racct.enable = 1!
|
|
|
|
|
|
|
|
|
|
sysctl kern.racct.enable=1
|
|
|
|
|
sysctl: oid 'kern.racct.enable' is a read only tunable
|
|
|
|
|
sysctl: Tunable values are set in /boot/loader.conf
|
|
|
|
|
|
|
|
|
|
not ="YES"
|
|
|
|
|
|
|
|
|
|
+ test the current setup: does it get configured and how does it limit
|
|
|
|
|
users? also check if new users belong to login class "jail" and test
|
|
|
|
|
their limits
|
|
|
|
|
|
|
|
|
|
## bastille start+template
|
|
|
|
|
|
|
|
|
|
https://github.com/BastilleBSD/bastille/issues/772
|
|
|
|
|
|
|
|
|
|
Maybe build+copy devzat only after the jail is built and running by
|
|
|
|
|
just copying the binariy into it, perhaps like this:
|
|
|
|
|
|
|
|
|
|
- stop
|
|
|
|
|
- copy
|
|
|
|
|
- start
|
|
|
|
|
|
|
|
|
|
or something.
|
