From 9934d2b060e9226b8e21530eadac12c62da7f890 Mon Sep 17 00:00:00 2001 From: Simon Cornet Date: Tue, 20 Oct 2020 13:36:04 +0200 Subject: [PATCH] [POST] Added FreeBSD secure jail post --- public/404.html | 2 +- public/categories/index.html | 2 +- public/categories/index.xml | 8 ++------ public/index.html | 4 ++-- public/index.xml | 18 +++++++++++++----- public/position/coolblue/index.html | 2 +- public/position/index.html | 2 +- public/position/index.xml | 8 ++------ public/position/itcreation/index.html | 2 +- public/position/personal/index.html | 2 +- public/position/skills/index.html | 2 +- public/position/thyssenkrupp/index.html | 2 +- public/post/index.html | 9 +++++++-- public/post/index.xml | 18 +++++++++++++----- public/post/rundeck_331_mysql/index.html | 2 +- public/series/index.html | 2 +- public/series/index.xml | 8 ++------ public/sitemap.xml | 11 ++++++++--- public/status/index.html | 2 +- public/tags/index.html | 2 +- public/tags/index.xml | 8 ++------ 21 files changed, 63 insertions(+), 53 deletions(-) diff --git a/public/404.html b/public/404.html index 29b3e08..a1bb722 100644 --- a/public/404.html +++ b/public/404.html @@ -59,7 +59,7 @@ - + diff --git a/public/categories/index.html b/public/categories/index.html index a19a2cc..ac224ee 100644 --- a/public/categories/index.html +++ b/public/categories/index.html @@ -60,7 +60,7 @@ - + diff --git a/public/categories/index.xml b/public/categories/index.xml index b28a395..5448e37 100644 --- a/public/categories/index.xml +++ b/public/categories/index.xml @@ -5,10 +5,6 @@ https://simoncor.net/categories/ Recent content in Categories on /usr/home/simon/ Hugo -- gohugo.io - en-us - - - - + en-us - \ No newline at end of file + diff --git a/public/index.html b/public/index.html index 1b1cb01..6973e94 100644 --- a/public/index.html +++ b/public/index.html @@ -20,7 +20,7 @@ - + @@ -60,7 +60,7 @@ - + diff --git a/public/index.xml b/public/index.xml index 9c614d9..01536d2 100644 --- a/public/index.xml +++ b/public/index.xml @@ -6,10 +6,18 @@ Recent content on /usr/home/simon/ Hugo -- gohugo.io en-us - Wed, 12 Aug 2020 00:00:00 +0000 - - - + Tue, 20 Oct 2020 00:00:00 +0000 + + FreeBSD - Jail - Secure Jumphost + https://simoncor.net/post/freebsd_jail_jumphost/ + Tue, 20 Oct 2020 00:00:00 +0000 + + https://simoncor.net/post/freebsd_jail_jumphost/ + The goal is to create a limited jail using rbash and securing it so it can only accept secure SSH sessions. It should only be used as an SSH jumphost to connect further. It should therefor not be possible to create, use or install other code in this limited environment. +FreeBSD jail Create a jail and connect to the console. +ezjail-admin create bastion 'bridge0|10.0.0.10' ezjail-admin console bastion Install bash. +pkg install bash OpenSSH-Portable Install openssh-portable. + Rundeck 3.3.1 - MySQL connection @@ -80,4 +88,4 @@ More later … - \ No newline at end of file + diff --git a/public/position/coolblue/index.html b/public/position/coolblue/index.html index 795535f..df3d919 100644 --- a/public/position/coolblue/index.html +++ b/public/position/coolblue/index.html @@ -62,7 +62,7 @@ - + diff --git a/public/position/index.html b/public/position/index.html index fff5731..8b3b68f 100644 --- a/public/position/index.html +++ b/public/position/index.html @@ -60,7 +60,7 @@ - + diff --git a/public/position/index.xml b/public/position/index.xml index 4cc2f32..dc59cb7 100644 --- a/public/position/index.xml +++ b/public/position/index.xml @@ -6,11 +6,7 @@ Recent content in Positions on /usr/home/simon/ Hugo -- gohugo.io en-us - Tue, 14 Jul 2020 00:00:00 +0000 - - - - + Tue, 14 Jul 2020 00:00:00 +0000 Personal Overview https://simoncor.net/position/personal/ @@ -60,4 +56,4 @@ More later … - \ No newline at end of file + diff --git a/public/position/itcreation/index.html b/public/position/itcreation/index.html index eba1801..acf84d6 100644 --- a/public/position/itcreation/index.html +++ b/public/position/itcreation/index.html @@ -62,7 +62,7 @@ - + diff --git a/public/position/personal/index.html b/public/position/personal/index.html index 9b63e28..0a690aa 100644 --- a/public/position/personal/index.html +++ b/public/position/personal/index.html @@ -62,7 +62,7 @@ - + diff --git a/public/position/skills/index.html b/public/position/skills/index.html index 1384436..21b391e 100644 --- a/public/position/skills/index.html +++ b/public/position/skills/index.html @@ -62,7 +62,7 @@ - + diff --git a/public/position/thyssenkrupp/index.html b/public/position/thyssenkrupp/index.html index b8379a9..b5ae260 100644 --- a/public/position/thyssenkrupp/index.html +++ b/public/position/thyssenkrupp/index.html @@ -62,7 +62,7 @@ - + diff --git a/public/post/index.html b/public/post/index.html index 80921f2..e830d48 100644 --- a/public/post/index.html +++ b/public/post/index.html @@ -20,7 +20,7 @@ - + @@ -60,7 +60,7 @@ - + @@ -113,6 +113,11 @@
    +
  • + October 20, 2020 + FreeBSD - Jail - Secure Jumphost +
  • +
  • August 12, 2020 Rundeck 3.3.1 - MySQL connection diff --git a/public/post/index.xml b/public/post/index.xml index aff062a..59d1139 100644 --- a/public/post/index.xml +++ b/public/post/index.xml @@ -6,10 +6,18 @@ Recent content in Posts on /usr/home/simon/ Hugo -- gohugo.io en-us - Wed, 12 Aug 2020 00:00:00 +0000 - - - + Tue, 20 Oct 2020 00:00:00 +0000 + + FreeBSD - Jail - Secure Jumphost + https://simoncor.net/post/freebsd_jail_jumphost/ + Tue, 20 Oct 2020 00:00:00 +0000 + + https://simoncor.net/post/freebsd_jail_jumphost/ + The goal is to create a limited jail using rbash and securing it so it can only accept secure SSH sessions. It should only be used as an SSH jumphost to connect further. It should therefor not be possible to create, use or install other code in this limited environment. +FreeBSD jail Create a jail and connect to the console. +ezjail-admin create bastion 'bridge0|10.0.0.10' ezjail-admin console bastion Install bash. +pkg install bash OpenSSH-Portable Install openssh-portable. + Rundeck 3.3.1 - MySQL connection @@ -23,4 +31,4 @@ Reconfigure Rundeck accordingly: - \ No newline at end of file + diff --git a/public/post/rundeck_331_mysql/index.html b/public/post/rundeck_331_mysql/index.html index 95afd6c..b77df47 100644 --- a/public/post/rundeck_331_mysql/index.html +++ b/public/post/rundeck_331_mysql/index.html @@ -62,7 +62,7 @@ - + diff --git a/public/series/index.html b/public/series/index.html index f4e6307..5ca2312 100644 --- a/public/series/index.html +++ b/public/series/index.html @@ -60,7 +60,7 @@ - + diff --git a/public/series/index.xml b/public/series/index.xml index 70a0b0a..eb649b4 100644 --- a/public/series/index.xml +++ b/public/series/index.xml @@ -5,10 +5,6 @@ https://simoncor.net/series/ Recent content in Series on /usr/home/simon/ Hugo -- gohugo.io - en-us - - - - + en-us - \ No newline at end of file + diff --git a/public/sitemap.xml b/public/sitemap.xml index 6de27e6..bcfece9 100644 --- a/public/sitemap.xml +++ b/public/sitemap.xml @@ -4,12 +4,17 @@ https://simoncor.net/ - 2020-08-12T00:00:00+00:00 + 2020-10-20T00:00:00+00:00 + + + + https://simoncor.net/post/freebsd_jail_jumphost/ + 2020-10-20T00:00:00+00:00 https://simoncor.net/post/ - 2020-08-12T00:00:00+00:00 + 2020-10-20T00:00:00+00:00 @@ -63,4 +68,4 @@ https://simoncor.net/tags/ - \ No newline at end of file + diff --git a/public/status/index.html b/public/status/index.html index c5c50df..8d6239f 100644 --- a/public/status/index.html +++ b/public/status/index.html @@ -61,7 +61,7 @@ - + diff --git a/public/tags/index.html b/public/tags/index.html index e2f6834..658e581 100644 --- a/public/tags/index.html +++ b/public/tags/index.html @@ -60,7 +60,7 @@ - + diff --git a/public/tags/index.xml b/public/tags/index.xml index 61a9c8a..703c94c 100644 --- a/public/tags/index.xml +++ b/public/tags/index.xml @@ -5,10 +5,6 @@ https://simoncor.net/tags/ Recent content in Tags on /usr/home/simon/ Hugo -- gohugo.io - en-us - - - - + en-us - \ No newline at end of file +