mirror of
https://github.com/telekom-security/tpotce.git
synced 2025-10-24 01:04:43 +00:00

healthcheck, watch pid not cpu cleanup dockerfiles bump dicompot, heralding, elasticpot, endlessh to alpine 3.19 bump dionaea, heralding to latest master
67 lines
1.6 KiB
Docker
67 lines
1.6 KiB
Docker
FROM alpine:3.19
|
|
#
|
|
# Include dist
|
|
COPY dist/ /root/dist/
|
|
#
|
|
# Install packages
|
|
RUN apk -U --no-cache add \
|
|
build-base \
|
|
git \
|
|
libcap \
|
|
libffi-dev \
|
|
openssl-dev \
|
|
py3-pyzmq \
|
|
postgresql-dev \
|
|
py3-attrs \
|
|
py3-mysqlclient \
|
|
py3-nose \
|
|
py3-pip \
|
|
py3-psycopg2 \
|
|
py3-pycryptodome \
|
|
py3-pyzmq \
|
|
py3-requests \
|
|
py3-rsa \
|
|
py3-typing-extensions \
|
|
py3-wheel \
|
|
py3-yaml \
|
|
python3 \
|
|
python3-dev && \
|
|
#
|
|
# Setup heralding
|
|
mkdir -p /opt && \
|
|
cd /opt/ && \
|
|
# git clone https://github.com/johnnykv/heralding && \
|
|
git clone https://github.com/t3chn0m4g3/heralding && \
|
|
cd heralding && \
|
|
git checkout e863c8aa4cee6dd6308ccb20b2d6c816a0fda2a5 && \
|
|
cp /root/dist/requirements.txt . && \
|
|
pip3 install --break-system-packages --upgrade pip && \
|
|
pip3 install --break-system-packages --no-cache-dir -r requirements.txt && \
|
|
pip3 install --break-system-packages --no-cache-dir . && \
|
|
#
|
|
# Setup user, groups and configs
|
|
addgroup -g 2000 heralding && \
|
|
adduser -S -H -s /bin/ash -u 2000 -D -g 2000 heralding && \
|
|
mkdir -p /var/log/heralding/ /etc/heralding && \
|
|
mv /root/dist/heralding.yml /etc/heralding/ && \
|
|
setcap cap_net_bind_service=+ep $(readlink -f $(type -P python3)) && \
|
|
chown -R heralding:heralding /var/log/heralding && \
|
|
#
|
|
# Clean up
|
|
apk del --purge \
|
|
build-base \
|
|
git \
|
|
libcap \
|
|
libffi-dev \
|
|
openssl-dev \
|
|
postgresql-dev \
|
|
python3-dev && \
|
|
rm -rf /root/* \
|
|
/var/cache/apk/* \
|
|
/opt/heralding
|
|
#
|
|
# Start Heralding
|
|
STOPSIGNAL SIGINT
|
|
WORKDIR /tmp/heralding/
|
|
USER heralding:heralding
|
|
CMD exec heralding -c /etc/heralding/heralding.yml -l /var/log/heralding/heralding.log
|