tpotce/docker/honeytrap/Dockerfile

FROM ubuntu:22.04
ENV DEBIAN_FRONTEND noninteractive
#
# Include dist
COPY dist/ /root/dist/
#
# Install packages
RUN apt-get update && \
    apt-get -y upgrade && \
#
# Install packages
    apt-get install -y autoconf \
                       build-essential \
                       git \
                       iptables \
                       libcap2 \
                       libcap2-bin \
                       libnetfilter-queue1 \
                       libnetfilter-queue-dev \
                       libjson-c-dev \
                       libtool \
                       libpq5 \
                       libpq-dev \
                       netbase \
                       procps \
                       wget && \
#
# Install honeytrap from source
    git clone https://github.com/t3chn0m4g3/honeytrap /root/honeytrap && \
    cd /root/honeytrap/ && \
#    git checkout 9aa4f734f2ea2f0da790b02d79afe18204a23982 && \
    autoreconf -vfi && \
    ./configure \
      --with-stream-mon=nfq \
      --with-logattacker \
      --with-logjson \
      --prefix=/opt/honeytrap && \
    make && \
    make install && \
    make clean && \
#
# Setup user, groups and configs
    addgroup --gid 2000 honeytrap && \
    adduser --system --no-create-home --shell /bin/bash --uid 2000 --disabled-password --disabled-login --gid 2000 honeytrap && \
    mkdir -p /opt/honeytrap/etc/honeytrap/ /opt/honeytrap/var/attacks /opt/honeytrap/var/downloads /opt/honeytrap/var/log && \
    mv /root/dist/honeytrap.conf /opt/honeytrap/etc/honeytrap/ && \
    setcap cap_net_admin=+ep /opt/honeytrap/sbin/honeytrap && \
#
# Clean up
    rm -rf /root/* && \
    apt-get purge -y autoconf \
                     build-essential \
                     git \
                     libnetfilter-queue-dev \
                     libpq-dev && \
    apt-get autoremove -y --purge && \
    apt-get clean && \
        rm -rf /var/lib/apt/lists/* \
            /tmp/* /var/tmp/* \
            /root/.cache \
            /root/* \
            /opt/honeytrap/.git
#
# Start honeytrap
USER honeytrap:honeytrap
CMD ["/opt/honeytrap/sbin/honeytrap", "-D", "-C", "/opt/honeytrap/etc/honeytrap/honeytrap.conf", "-P", "/tmp/honeytrap/honeytrap.pid", "-t", "5", "-u", "honeytrap", "-g", "honeytrap"]
revert honeytrap to ubuntu 22.04 2025-01-10 18:58:17 +00:00			`FROM ubuntu:22.04`
include docker repos ... skip emobility since it is a dev repo 2017-10-13 18:58:14 +00:00			`ENV DEBIAN_FRONTEND noninteractive`
prep honeytrap rebuild 2019-08-28 14:34:20 +00:00			`#`
include docker repos ... skip emobility since it is a dev repo 2017-10-13 18:58:14 +00:00			`# Include dist`
image tweaking 2022-03-08 23:36:03 +00:00			`COPY dist/ /root/dist/`
prep honeytrap rebuild 2019-08-28 14:34:20 +00:00			`#`
Finish work on new builder, tweaking 2024-09-11 10:42:17 +00:00			`# Install packages`
			`RUN apt-get update && \`
housekeeping 2024-12-05 21:39:01 +00:00			`apt-get -y upgrade && \`
prep honeytrap rebuild 2019-08-28 14:34:20 +00:00			`#`
include docker repos ... skip emobility since it is a dev repo 2017-10-13 18:58:14 +00:00			`# Install packages`
prep for 18.04 2018-03-25 18:35:32 +00:00			`apt-get install -y autoconf \`
			`build-essential \`
			`git \`
			`iptables \`
hardening 2018-05-19 19:13:03 +00:00			`libcap2 \`
			`libcap2-bin \`
prep for 18.04 2018-03-25 18:35:32 +00:00			`libnetfilter-queue1 \`
			`libnetfilter-queue-dev \`
			`libjson-c-dev \`
			`libtool \`
			`libpq5 \`
			`libpq-dev \`
			`netbase \`
			`procps \`
			`wget && \`
prep honeytrap rebuild 2019-08-28 14:34:20 +00:00			`#`
include docker repos ... skip emobility since it is a dev repo 2017-10-13 18:58:14 +00:00			`# Install honeytrap from source`
add new honeypots to nextgen to prep for ELK setup honeytrap testing 2021-10-01 16:18:10 +00:00			`git clone https://github.com/t3chn0m4g3/honeytrap /root/honeytrap && \`
include docker repos ... skip emobility since it is a dev repo 2017-10-13 18:58:14 +00:00			`cd /root/honeytrap/ && \`
revert honeytrap to ubuntu 22.04 2025-01-10 18:58:17 +00:00			`# git checkout 9aa4f734f2ea2f0da790b02d79afe18204a23982 && \`
include docker repos ... skip emobility since it is a dev repo 2017-10-13 18:58:14 +00:00			`autoreconf -vfi && \`
			`./configure \`
			`--with-stream-mon=nfq \`
			`--with-logattacker \`
			`--with-logjson \`
			`--prefix=/opt/honeytrap && \`
			`make && \`
			`make install && \`
			`make clean && \`
prep honeytrap rebuild 2019-08-28 14:34:20 +00:00			`#`
include docker repos ... skip emobility since it is a dev repo 2017-10-13 18:58:14 +00:00			`# Setup user, groups and configs`
			`addgroup --gid 2000 honeytrap && \`
			`adduser --system --no-create-home --shell /bin/bash --uid 2000 --disabled-password --disabled-login --gid 2000 honeytrap && \`
			`mkdir -p /opt/honeytrap/etc/honeytrap/ /opt/honeytrap/var/attacks /opt/honeytrap/var/downloads /opt/honeytrap/var/log && \`
			`mv /root/dist/honeytrap.conf /opt/honeytrap/etc/honeytrap/ && \`
hardening 2018-05-19 19:13:03 +00:00			`setcap cap_net_admin=+ep /opt/honeytrap/sbin/honeytrap && \`
prep honeytrap rebuild 2019-08-28 14:34:20 +00:00			`#`
include docker repos ... skip emobility since it is a dev repo 2017-10-13 18:58:14 +00:00			`# Clean up`
			`rm -rf /root/* && \`
prep for 18.04 2018-03-25 18:35:32 +00:00			`apt-get purge -y autoconf \`
			`build-essential \`
			`git \`
			`libnetfilter-queue-dev \`
			`libpq-dev && \`
include docker repos ... skip emobility since it is a dev repo 2017-10-13 18:58:14 +00:00			`apt-get autoremove -y --purge && \`
Finish work on new builder, tweaking 2024-09-11 10:42:17 +00:00			`apt-get clean && \`
			`rm -rf /var/lib/apt/lists/* \`
			`/tmp/* /var/tmp/* \`
			`/root/.cache \`
			`/root/* \`
			`/opt/honeytrap/.git`
prep honeytrap rebuild 2019-08-28 14:34:20 +00:00			`#`
include docker repos ... skip emobility since it is a dev repo 2017-10-13 18:58:14 +00:00			`# Start honeytrap`
hardening 2018-05-19 19:13:03 +00:00			`USER honeytrap:honeytrap`
tweaking, hardening 2018-05-18 16:05:28 +00:00			`CMD ["/opt/honeytrap/sbin/honeytrap", "-D", "-C", "/opt/honeytrap/etc/honeytrap/honeytrap.conf", "-P", "/tmp/honeytrap/honeytrap.pid", "-t", "5", "-u", "honeytrap", "-g", "honeytrap"]`