mirror of
https://github.com/telekom-security/tpotce.git
synced 2025-10-24 17:24:44 +00:00

make tpotinit aware of sigterm events to unload blackhole routes, firewall rules fixes #1204 where citrixhoneypot logs use logs instead of log folder bump ELK stack to 8.12.2 add wordpot logs to logstash pipeline bump t-pot attackmap to 2.2.0, alpine 3.19
38 lines
980 B
Docker
38 lines
980 B
Docker
FROM alpine:3.19
|
|
#
|
|
# Install packages
|
|
RUN apk -U --no-cache add \
|
|
build-base \
|
|
git \
|
|
libcap \
|
|
py3-pip \
|
|
python3 \
|
|
python3-dev \
|
|
tzdata && \
|
|
#
|
|
# Install from GitHub and setup
|
|
mkdir -p /opt && \
|
|
cd /opt/ && \
|
|
git clone https://github.com/t3chn0m4g3/t-pot-attack-map -b 2.2.0 && \
|
|
cd t-pot-attack-map && \
|
|
pip3 install --break-system-packages --upgrade pip && \
|
|
pip3 install --break-system-packages -r requirements.txt && \
|
|
setcap cap_net_bind_service=+ep $(readlink -f $(type -P python3)) && \
|
|
#
|
|
# Setup user, groups and configs
|
|
addgroup -g 2000 map && \
|
|
adduser -S -H -s /bin/ash -u 2000 -D -g 2000 map && \
|
|
chown map:map -R /opt/t-pot-attack-map && \
|
|
#
|
|
# Clean up
|
|
apk del --purge build-base \
|
|
git \
|
|
python3-dev && \
|
|
rm -rf /root/* /var/cache/apk/* /opt/t-pot-attack-map/.git
|
|
#
|
|
# Start T-Pot-Attack-Map
|
|
ENV TZ=UTC
|
|
STOPSIGNAL SIGINT
|
|
USER map:map
|
|
WORKDIR /opt/t-pot-attack-map
|
|
CMD /usr/bin/python3 $MAP_COMMAND
|