From 731e18d083a5f77f63d83b6f4689787a4e59f86a Mon Sep 17 00:00:00 2001
From: Marco Ochse <t3chn0m4g3@gmail.com>
Date: Wed, 9 May 2018 14:29:06 +0000
Subject: [PATCH] tweaking

---
 docker/ciscoasa/Dockerfile         | 12 ++++++++----
 docker/ciscoasa/dist/asa_server.py |  2 +-
 docker/ciscoasa/docker-compose.yml |  4 ++--
 3 files changed, 11 insertions(+), 7 deletions(-)

diff --git a/docker/ciscoasa/Dockerfile b/docker/ciscoasa/Dockerfile
index 6be4b00e..933d7fd2 100644
--- a/docker/ciscoasa/Dockerfile
+++ b/docker/ciscoasa/Dockerfile
@@ -7,8 +7,12 @@ ADD dist/ /root/dist/
 RUN apk -U upgrade && \
     apk add build-base \
             git \
+            libcap \
+            libffi \
             libffi-dev \
+            openssl \
             openssl-dev \
+            python3 \
             python3-dev && \
 
 # Setup user
@@ -20,23 +24,23 @@ RUN apk -U upgrade && \
     cd /opt/ && \
     git clone https://github.com/cymmetria/ciscoasa_honeypot && \
     cd ciscoasa_honeypot && \
+    pip3 install --no-cache-dir --upgrade pip && \
     pip3 install --no-cache-dir -r requirements.txt && \
     cp /root/dist/asa_server.py /opt/ciscoasa_honeypot && \
     chown -R ciscoasa:ciscoasa /opt/ciscoasa_honeypot && \
+    setcap cap_net_bind_service=+ep /usr/bin/python3.6 && \
 
 # Clean up
     apk del --purge build-base \
                     git \
+                    libcap \
                     libffi-dev \
                     openssl-dev \
                     python3-dev && \
-    apk add libffi \
-            openssl \
-            python3 && \
     rm -rf /root/* && \
     rm -rf /var/cache/apk/*
 
 # Start ciscoasa
 WORKDIR /tmp/ciscoasa/
 USER ciscoasa:ciscoasa
-CMD cp -R /opt/ciscoasa_honeypot/* /tmp/ciscoasa && exec python3 asa_server.py --enable_ssl --verbose >> /var/log/ciscoasa/ciscoasa.log 2>&1
+CMD cp -R /opt/ciscoasa_honeypot/* /tmp/ciscoasa && exec python3 asa_server.py --ike-port 500 --enable_ssl --port 443 --verbose >> /var/log/ciscoasa/ciscoasa.log 2>&1
diff --git a/docker/ciscoasa/dist/asa_server.py b/docker/ciscoasa/dist/asa_server.py
index d02803af..11fa1bf1 100644
--- a/docker/ciscoasa/dist/asa_server.py
+++ b/docker/ciscoasa/dist/asa_server.py
@@ -150,7 +150,7 @@ class WebLogicHandler(SimpleHTTPRequestHandler):
 
     def log_message(self, format, *args):
         self.logger.debug("{'timestamp': '%s', 'src_ip': '%s', 'payload_printable': '%s'}" %
-                          (datetime.datetime.utcnow().isoformat(),
+                          (datetime.datetime.now().isoformat(),
                            self.client_address[0],
                            format % args))
 
diff --git a/docker/ciscoasa/docker-compose.yml b/docker/ciscoasa/docker-compose.yml
index 59ff0ebb..3d957358 100644
--- a/docker/ciscoasa/docker-compose.yml
+++ b/docker/ciscoasa/docker-compose.yml
@@ -16,8 +16,8 @@ services:
     networks:
      - ciscoasa_local
     ports:
-     - "5000:5000"
-     - "8443:8443"
+     - "5000:500"
+     - "8443:443"
     image: "dtagdevsec/ciscoasa:1804"
     read_only: true
     volumes: