tweaking

2025-07-01 12:32:12 +00:00 · 2018-05-09 14:29:06 +00:00 · 2018-05-09 14:29:06 +00:00 · 731e18d083
commit 731e18d083
parent 94af9493b1
3 changed files with 11 additions and 7 deletions
--- a/docker/ciscoasa/Dockerfile
+++ b/docker/ciscoasa/Dockerfile
@ -7,8 +7,12 @@ ADD dist/ /root/dist/
 RUN apk -U upgrade && \
    apk add build-base \
            git \
+            libcap \
+            libffi \
            libffi-dev \
+            openssl \
            openssl-dev \
+            python3 \
            python3-dev && \

 # Setup user
@ -20,23 +24,23 @@ RUN apk -U upgrade && \
    cd /opt/ && \
    git clone https://github.com/cymmetria/ciscoasa_honeypot && \
    cd ciscoasa_honeypot && \
+    pip3 install --no-cache-dir --upgrade pip && \
    pip3 install --no-cache-dir -r requirements.txt && \
    cp /root/dist/asa_server.py /opt/ciscoasa_honeypot && \
    chown -R ciscoasa:ciscoasa /opt/ciscoasa_honeypot && \
+    setcap cap_net_bind_service=+ep /usr/bin/python3.6 && \

 # Clean up
    apk del --purge build-base \
                    git \
+                    libcap \
                    libffi-dev \
                    openssl-dev \
                    python3-dev && \
-    apk add libffi \
-            openssl \
-            python3 && \
    rm -rf /root/* && \
    rm -rf /var/cache/apk/*

 # Start ciscoasa
 WORKDIR /tmp/ciscoasa/
 USER ciscoasa:ciscoasa
-CMD cp -R /opt/ciscoasa_honeypot/* /tmp/ciscoasa && exec python3 asa_server.py --enable_ssl --verbose >> /var/log/ciscoasa/ciscoasa.log 2>&1
+CMD cp -R /opt/ciscoasa_honeypot/* /tmp/ciscoasa && exec python3 asa_server.py --ike-port 500 --enable_ssl --port 443 --verbose >> /var/log/ciscoasa/ciscoasa.log 2>&1
--- a/docker/ciscoasa/dist/asa_server.py
+++ b/docker/ciscoasa/dist/asa_server.py
@ -150,7 +150,7 @@ class WebLogicHandler(SimpleHTTPRequestHandler):

    def log_message(self, format, *args):
        self.logger.debug("{'timestamp': '%s', 'src_ip': '%s', 'payload_printable': '%s'}" %
-                          (datetime.datetime.utcnow().isoformat(),
+                          (datetime.datetime.now().isoformat(),
                           self.client_address[0],
                           format % args))

--- a/docker/ciscoasa/docker-compose.yml
+++ b/docker/ciscoasa/docker-compose.yml
@ -16,8 +16,8 @@ services:
    networks:
     - ciscoasa_local
    ports:
-     - "5000:5000"
-     - "8443:8443"
+     - "5000:500"
+     - "8443:443"
    image: "dtagdevsec/ciscoasa:1804"
    read_only: true
    volumes: