Ukukhutshwa kwe-Bastille 0.9.20220216 kupapashwe, inkqubo yokwenza ngokuzenzekelayo ukuthunyelwa kunye nokulawulwa kwezicelo ezisebenza kwiikhonteyina ezizimeleyo zisebenzisa i-FreeBSD Jail mechanism. Ikhowudi ibhalwe kwi-Shell, ayifuni ukuxhomekeka kwangaphandle ekusebenzeni kwaye isasazwa phantsi kwelayisensi ye-BSD.
Ukulawula izitya, i-interface yomyalelo we-bastille inikwe evumela ukuba udale kwaye uhlaziye iindawo zeJail ngokusekelwe kwinguqu ekhethiweyo ye-FreeBSD kwaye wenze imisebenzi yesikhongozeli efana nokuqala / ukuyeka, ukwakha, ukudibanisa, ukungenisa / ukuthumela ngaphandle, ukuguqula, ukutshintsha izicwangciso, ukulawula ukufikelela kwinethiwekhi kunye nokumisela izithintelo kusetyenziso lwezibonelelo. Kuyenzeka ukuhambisa iimeko-bume ze-Linux (Ubuntu kunye neDebian) kwisikhongozeli, usebenzisa i-Linuxulator. Phakathi kweempawu eziphambili, ixhasa ukuqhuba imiyalelo esemgangathweni kwizikhongozeli ezininzi ngaxeshanye, iitemplates ezifakwe kwindlwane, izifinyezo kunye nee-backups. Isahlulo sengcambu kwisikhongozeli sixhonywe kwindlela yokufunda kuphela.
Indawo yokugcina inikezela malunga neetemplates ezingama-60 zokuqalisa ngokukhawuleza izikhongozeli zezicelo eziqhelekileyo, eziqulathe iinkqubo zeeseva (nginx, mysql, wordpress, asterisk, redis, postfix, elasticsearch, ityuwa, njl.), abaphuhlisi (gitea, gitlab, jenkins jenkins , python , php, perl, ruby, rust, go, node.js, openjdk) kunye nabasebenzisi (firefox, chromium). Ixhasa ukudalwa kwemfumba yezikhongozeli, ikuvumela ukuba usebenzise itemplate enye kwenye. Imekobume yokuqhuba izikhongozeli inokudalwa zombini kwiiseva ezibonakalayo okanye iibhodi zeRaspberry Pi, nakwi-AWS EC2, Vultr kunye neDigitalOcean cloud environments.
Le projekthi iphuhliswa nguChrister Edward ovela eSaltStack, ekwagcina amazibuko eSistim yolawulo olusembindini lweSalt kwiFreeBSD. UChrister wake waba negalelo kuphuhliso lwe-Ubuntu, wayengumlawuli wenkqubo kwi-GNOME Foundation, kwaye wasebenzela i-Adobe (ungumbhali wesixhobo se-Adobe esivulelekileyo seHubble sokubeka iliso kunye nokugcina ukhuseleko lwenkqubo).
Kukhupho olutsha:
- Inkxaso eyongeziweyo yeemeko ezingqongileyo zentolongo ebanjwe kwizahlulo zeZFS.
- Kongezwe "i-bastille list release -p" umyalelo wokubonisa ukukhutshwa okuphakathi xa kudweliswa iinguqulelo zesistim kwiindawo.
- Ukusasazwa okuphuculweyo kwemeko-bume zeLinux. Inkxaso eyongeziweyo yokusebenzisa ubume be-Debian kunye ne-Ubuntu kuyilo lwe-Aarch64 (arm64).
- Iingxaki ngokwenza uthungelwano lwenyani lokudibanisa izikhongozeli usebenzisa inkqubo esezantsi yeVNET zisonjululwe.
umthombo: opennet.ru