tpotce/docker/honeypots/Dockerfile

FROM alpine:3.19
#
# Include dist
COPY dist/ /root/dist/
#
# Install packages
RUN apk --no-cache -U add \
		build-base \
		freetds \
		freetds-dev \
		gcc \
		git \
		hiredis \
		jpeg-dev \
		libcap \
		libffi-dev \
		libpq \
		musl-dev \
		openssl \
		openssl-dev \
		postgresql-dev \
		py3-chardet \
		py3-click \
		py3-cryptography \
		py3-dnspython \
		py3-flask \
		py3-future \
		py3-hiredis \
		py3-impacket \
		py3-itsdangerous \
		py3-jinja2 \
		py3-ldap3 \
		py3-markupsafe \
		py3-netifaces \
		py3-openssl \
		py3-packaging \
		py3-paramiko \
		py3-pip \
		# py3-psutil \
		py3-psycopg2 \
		py3-pycryptodomex \
		py3-requests \
		py3-service_identity \
		py3-twisted \
		py3-werkzeug \
		py3-wheel \
		python3 \
		python3-dev \
		zlib-dev && \
#	     
# Install honeypots from GitHub and setup
    mkdir -p /opt \
             /var/log/honeypots && \
    cd /opt/ && \
    git clone https://github.com/qeeqbox/honeypots && \
    cd honeypots && \
    git checkout a990b2c1ab04ffafde229e478ced54ffbb665d5c && \
    # git checkout 5b3bfbecbf85c1f5235b320b333bdeff2d312372 && \
    # cp /root/dist/pyproject.toml . && \
    pip3 install --break-system-packages --upgrade pip && \
    pip3 install --break-system-packages . && \
    setcap cap_net_bind_service=+ep $(readlink -f $(type -P python3)) && \
#
# Setup user, groups and configs
    addgroup -g 2000 honeypots && \
    adduser -S -H -s /bin/ash -u 2000 -D -g 2000 honeypots && \
    chown honeypots:honeypots -R /opt/honeypots && \
    chown honeypots:honeypots -R /var/log/honeypots && \
    mv /root/dist/config.json /opt/honeypots/ && \
#
# Clean up
    apk del --purge build-base \
		freetds-dev \
		git \
		jpeg-dev \
		libffi-dev \
		openssl-dev \
		postgresql-dev \
		python3-dev \
		zlib-dev && \
	rm -rf /root/* \
			/var/cache/apk/* \
			/opt/honeypots/.git
#
# Start honeypots 
STOPSIGNAL SIGINT
USER honeypots:honeypots
WORKDIR /opt/honeypots/
CMD python3 -E -m honeypots --setup all --config config.json