tpotce/docker/cowrie/Dockerfile

FROM alpine:3.20
#
# Include dist
COPY dist/ /root/dist/
#
# Install packages
RUN apk --no-cache -U upgrade && \
    apk --no-cache -U add \
		bash \
		build-base \
		git \
		gmp-dev \
		libcap \
		libffi-dev \
		mpc1-dev \
		mpfr-dev \
		openssl \
		openssl-dev \
		py3-appdirs \
		py3-asn1-modules \
		py3-attrs \
		py3-bcrypt \
		py3-cryptography \
		py3-dateutil \
		py3-greenlet \
		py3-mysqlclient \
		py3-openssl \
		py3-packaging \
		py3-parsing \
		py3-pip \
		py3-service_identity \
		py3-treq \
		py3-twisted \
		python3 \
		python3-dev && \
#
# Setup user
    addgroup -g 2000 cowrie && \
    adduser -S -s /bin/ash -u 2000 -D -g 2000 cowrie && \
#
# Install cowrie
    mkdir -p /home/cowrie && \
    cd /home/cowrie && \
    git clone https://github.com/cowrie/cowrie && \
    cd cowrie && \
    git checkout 49c7c4aac87603e0d2449501c300841a1f59fd0f && \
    mkdir -p log && \
    cp /root/dist/requirements.txt . && \
    pip3 install --break-system-packages --upgrade --no-cache-dir pip && \
    pip3 install --break-system-packages --no-cache-dir -r requirements.txt && \
#
# Setup configs
    setcap cap_net_bind_service=+ep $(readlink -f $(type -P python3)) && \
    cp /root/dist/cowrie.cfg /home/cowrie/cowrie/cowrie.cfg && \
    chown cowrie:cowrie -R /home/cowrie/* /usr/lib/$(readlink -f $(type -P python3) | cut -f4 -d"/")/site-packages/twisted/plugins && \
#
# Start Cowrie once to prevent dropin.cache errors upon container start caused by read-only filesystem
    su - cowrie -c "export PYTHONPATH=/home/cowrie/cowrie:/home/cowrie/cowrie/src && \
                    cd /home/cowrie/cowrie && \
                    /usr/bin/twistd --uid=2000 --gid=2000 -y cowrie.tac --pidfile cowrie.pid cowrie &" && \
    sleep 10 && \
    rm -rf /home/cowrie/cowrie/etc && \
#
# Clean up
    apk del --purge build-base \
                    git \
                    gmp-dev \
                    libcap \
                    libffi-dev \
                    mpc1-dev \
                    mpfr-dev \
                    openssl-dev \
                    python3-dev \
                    py3-mysqlclient && \
    rm -rf /root/* /tmp/* \
           /var/cache/apk/* \
           /home/cowrie/cowrie/cowrie.pid \
           /home/cowrie/cowrie/.git
#
# Start cowrie
ENV PYTHONPATH /home/cowrie/cowrie:/home/cowrie/cowrie/src
WORKDIR /home/cowrie/cowrie
USER cowrie:cowrie
CMD ["/usr/bin/twistd", "--nodaemon", "-y", "cowrie.tac", "--pidfile", "/tmp/cowrie/cowrie.pid", "cowrie"]
bump cowrie to latest master 2024-11-19 17:06:23 +00:00			`FROM alpine:3.20`
bump cowrie to v2.0.0 2019-10-21 20:59:36 +00:00			`#`
include docker repos ... skip emobility since it is a dev repo 2017-10-13 18:58:14 +00:00			`# Include dist`
tweaking 2022-03-05 00:50:47 +00:00			`COPY dist/ /root/dist/`
bump cowrie to v2.0.0 2019-10-21 20:59:36 +00:00			`#`
Finish work on new builder, tweaking 2024-09-11 10:42:17 +00:00			`# Install packages`
tweaking, cleanup 2024-12-05 20:12:18 +00:00			`RUN apk --no-cache -U upgrade && \`
			`apk --no-cache -U add \`
tweaking healthcheck, watch pid not cpu cleanup dockerfiles bump dicompot, heralding, elasticpot, endlessh to alpine 3.19 bump dionaea, heralding to latest master 2024-02-28 18:07:22 +00:00			`bash \`
			`build-base \`
			`git \`
			`gmp-dev \`
			`libcap \`
			`libffi-dev \`
			`mpc1-dev \`
			`mpfr-dev \`
			`openssl \`
			`openssl-dev \`
			`py3-appdirs \`
			`py3-asn1-modules \`
			`py3-attrs \`
			`py3-bcrypt \`
			`py3-cryptography \`
			`py3-dateutil \`
			`py3-greenlet \`
			`py3-mysqlclient \`
			`py3-openssl \`
			`py3-packaging \`
			`py3-parsing \`
			`py3-pip \`
			`py3-service_identity \`
			`py3-treq \`
			`py3-twisted \`
			`python3 \`
			`python3-dev && \`
bump cowrie to v2.0.0 2019-10-21 20:59:36 +00:00			`#`
include docker repos ... skip emobility since it is a dev repo 2017-10-13 18:58:14 +00:00			`# Setup user`
			`addgroup -g 2000 cowrie && \`
tweaking, hardening 2018-05-04 16:29:55 +00:00			`adduser -S -s /bin/ash -u 2000 -D -g 2000 cowrie && \`
bump cowrie to v2.0.0 2019-10-21 20:59:36 +00:00			`#`
bump cowrie to 1.5.3 2019-02-26 13:07:07 +00:00			`# Install cowrie`
			`mkdir -p /home/cowrie && \`
			`cd /home/cowrie && \`
fix git tree error 2024-03-12 16:37:23 +00:00			`git clone https://github.com/cowrie/cowrie && \`
bump cowrie to 1.5.3 2019-02-26 13:07:07 +00:00			`cd cowrie && \`
bump cowrie to latest master 2024-11-22 12:48:55 +00:00			`git checkout 49c7c4aac87603e0d2449501c300841a1f59fd0f && \`
bump cowrie to 1.5.3 2019-02-26 13:07:07 +00:00			`mkdir -p log && \`
cowrie, test reduce build times 2022-03-12 14:27:34 +00:00			`cp /root/dist/requirements.txt . && \`
optimize build 2024-11-29 15:47:57 +00:00			`pip3 install --break-system-packages --upgrade --no-cache-dir pip && \`
			`pip3 install --break-system-packages --no-cache-dir -r requirements.txt && \`
bump cowrie to v2.0.0 2019-10-21 20:59:36 +00:00			`#`
tweaking, hardening 2018-05-04 16:29:55 +00:00			`# Setup configs`
tweak deploy, add autoheal, start update Dockerfiles - tweak deploy a little further - start with rebuilding Dockerfiles - rework healthcheck for adbhoney CPU issues - bump adbhoney, ciscoasa, citrixhoneypot, conpot, cowriepot, ddospot to alpine 3.19 - fix conpot issue with py 3.11 - bump conpot to latest master - bump cowrie to latest master - add autoheal to tpotinit to restart unhealthy container (if healthcheck enabled) 2024-02-27 19:11:16 +00:00			`setcap cap_net_bind_service=+ep $(readlink -f $(type -P python3)) && \`
include docker repos ... skip emobility since it is a dev repo 2017-10-13 18:58:14 +00:00			`cp /root/dist/cowrie.cfg /home/cowrie/cowrie/cowrie.cfg && \`
tweak deploy, add autoheal, start update Dockerfiles - tweak deploy a little further - start with rebuilding Dockerfiles - rework healthcheck for adbhoney CPU issues - bump adbhoney, ciscoasa, citrixhoneypot, conpot, cowriepot, ddospot to alpine 3.19 - fix conpot issue with py 3.11 - bump conpot to latest master - bump cowrie to latest master - add autoheal to tpotinit to restart unhealthy container (if healthcheck enabled) 2024-02-27 19:11:16 +00:00			`chown cowrie:cowrie -R /home/cowrie/* /usr/lib/$(readlink -f $(type -P python3) \| cut -f4 -d"/")/site-packages/twisted/plugins && \`
bump cowrie to v2.0.0 2019-10-21 20:59:36 +00:00			`#`
tweaking, hardening 2018-05-04 16:29:55 +00:00			`# Start Cowrie once to prevent dropin.cache errors upon container start caused by read-only filesystem`
bump cowrie to 1.5.3 2019-02-26 13:07:07 +00:00			`su - cowrie -c "export PYTHONPATH=/home/cowrie/cowrie:/home/cowrie/cowrie/src && \`
			`cd /home/cowrie/cowrie && \`
			`/usr/bin/twistd --uid=2000 --gid=2000 -y cowrie.tac --pidfile cowrie.pid cowrie &" && \`
tweaking, hardening 2018-05-04 16:29:55 +00:00			`sleep 10 && \`
Tweaking - Ciscoasa, update py package - Cowrie, remove build artifact - Dicompot, harden image - Dionaea, hardening, update for py3.12 2024-11-26 10:49:31 +00:00			`rm -rf /home/cowrie/cowrie/etc && \`
bump cowrie to v2.0.0 2019-10-21 20:59:36 +00:00			`#`
include docker repos ... skip emobility since it is a dev repo 2017-10-13 18:58:14 +00:00			`# Clean up`
tweaking, hardening 2018-05-04 16:29:55 +00:00			`apk del --purge build-base \`
			`git \`
			`gmp-dev \`
			`libcap \`
tweaking 2018-03-30 21:47:59 +00:00			`libffi-dev \`
tweaking, hardening 2018-05-04 16:29:55 +00:00			`mpc1-dev \`
			`mpfr-dev \`
bump cowrie to 1.5.3 2019-02-26 13:07:07 +00:00			`openssl-dev \`
bump cowrie to v2.0.0 2019-10-21 20:59:36 +00:00			`python3-dev \`
			`py3-mysqlclient && \`
Finish work on new builder, tweaking 2024-09-11 10:42:17 +00:00			`rm -rf /root/* /tmp/* \`
			`/var/cache/apk/* \`
			`/home/cowrie/cowrie/cowrie.pid \`
			`/home/cowrie/cowrie/.git`
bump cowrie to v2.0.0 2019-10-21 20:59:36 +00:00			`#`
include docker repos ... skip emobility since it is a dev repo 2017-10-13 18:58:14 +00:00			`# Start cowrie`
bump cowrie to 1.5.3 2019-02-26 13:07:07 +00:00			`ENV PYTHONPATH /home/cowrie/cowrie:/home/cowrie/cowrie/src`
include docker repos ... skip emobility since it is a dev repo 2017-10-13 18:58:14 +00:00			`WORKDIR /home/cowrie/cowrie`
tweaking 2018-03-30 21:47:59 +00:00			`USER cowrie:cowrie`
tweaking, hardening 2018-05-04 16:29:55 +00:00			`CMD ["/usr/bin/twistd", "--nodaemon", "-y", "cowrie.tac", "--pidfile", "/tmp/cowrie/cowrie.pid", "cowrie"]`