Use the actual default Debian Stretch configuration for jail.conf #77
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Pull Request (PR) description
While trying to fix a problem with the Debian Stretch template (imap3 port is not defined in Debian Stretch), I realized that the default template of
jail.conf
on Debian Stretch is a slightly modified version of the default template for Debian Jessie, and not the actual default files provided in Debian Stretch.As stated in this configuration file,
jail.conf
has been heavily refactored in 0.9.0 release.This pull-request integrates the actual default template, adjusted to allow customization through the module.
In order to ease-up reviewing, here is a diff between the original file as provided in the Debian package and the template included in this PR.
The enabled lines have been checked to match the sections names, and only the
sshd
andsshd-ddos
do not match the enabled lines in to match the other templates.This incidentally fixes the root problem addressed in #75, but if this PR is accepted, I can follow-up in that other PR to include the acceptance tests.
This Pull Request (PR) fixes the following issues
n/a