mirror of
https://github.com/telekom-security/tpotce.git
synced 2025-04-20 06:02:24 +00:00
e6f392a098
Finalize qhoneypots config, thanks to @giga-a for native JSON logging! Completely rework T-Pot Landing Page based on Bento (https://github.com/migueravila/Bento). New NGINX image is down by 100MB and only uses 3.3 MB of RAM at runtime. Keep legacy Sensor option (without logstash).
37 lines
1.2 KiB
YAML
37 lines
1.2 KiB
YAML
version: '2.3'
|
|
|
|
services:
|
|
|
|
# nginx service
|
|
nginx:
|
|
build: .
|
|
container_name: nginx
|
|
restart: always
|
|
environment:
|
|
### If set to YES all changes within Heimdall will remain for the next start
|
|
### Make sure to uncomment the corresponding volume statements below, or the setting will prevent a successful start of T-Pot.
|
|
- HEIMDALL_PERSIST=NO
|
|
tmpfs:
|
|
- /var/tmp/nginx/client_body
|
|
- /var/tmp/nginx/proxy
|
|
- /var/tmp/nginx/fastcgi
|
|
- /var/tmp/nginx/uwsgi
|
|
- /var/tmp/nginx/scgi
|
|
- /run
|
|
- /var/log/php7/
|
|
- /var/lib/nginx/tmp:uid=100,gid=82
|
|
- /var/lib/nginx/html/storage/logs:uid=100,gid=82
|
|
- /var/lib/nginx/html/storage/framework/views:uid=100,gid=82
|
|
network_mode: "host"
|
|
ports:
|
|
- "64297:64297"
|
|
- "127.0.0.1:64304:64304"
|
|
image: "dtagdevsec/nginx:2203"
|
|
#read_only: true
|
|
volumes:
|
|
- /data/nginx/cert/:/etc/nginx/cert/:ro
|
|
- /data/nginx/conf/nginxpasswd:/etc/nginx/nginxpasswd:ro
|
|
- /data/nginx/log/:/var/log/nginx/
|
|
### Enable the following volumes if you set HEIMDALL_PERSIST=YES
|
|
# - /data/nginx/heimdall/database:/var/lib/nginx/html/database
|
|
# - /data/nginx/heimdall/storage:/var/lib/nginx/html/storage
|