File size: 2,375 Bytes
7c89ed7 | 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 | FROM centos:7
LABEL maintainer="mozdef@mozilla.com"
ENV TZ UTC
RUN \
gpg="gpg --no-default-keyring --secret-keyring /dev/null --keyring /dev/null --no-option --keyid-format 0xlong" && \
rpmkeys --import /etc/pki/rpm-gpg/RPM-GPG-KEY-CentOS-7 && \
rpm -qi gpg-pubkey-f4a80eb5 | $gpg | grep 0x24C6A8A7F4A80EB5 && \
rpmkeys --import https://dl.fedoraproject.org/pub/epel/RPM-GPG-KEY-EPEL-7 && \
rpm -qi gpg-pubkey-352c64e5 | $gpg | grep 0x6A2FAEA2352C64E5 && \
sed -i 's|^mirrorlist=|#mirrorlist=|g' /etc/yum.repos.d/CentOS-*.repo && \
sed -i 's|^#baseurl=http://mirror.centos.org/centos|baseurl=http://vault.centos.org/7|g' /etc/yum.repos.d/CentOS-*.repo && \
sed -i 's|^baseurl=http://mirror.centos.org/centos|baseurl=http://vault.centos.org/7|g' /etc/yum.repos.d/CentOS-*.repo && \
sed -i 's|^baseurl=http://vault.centos.org/7/updates|baseurl=http://vault.centos.org/7/updates|g' /etc/yum.repos.d/CentOS-*.repo && \
yum makecache fast && \
yum install -y epel-release && \
yum install -y \
glibc-devel \
gcc \
libstdc++ \
zlib-devel \
libcurl-devel \
openssl \
openssl-devel \
git \
make \
python36 \
python36-devel \
python36-pip && \
yum clean all && \
rm -rf /var/cache/yum && \
useradd --create-home --shell /bin/bash --home-dir /opt/mozdef mozdef && \
pip3 install virtualenv && \
install --owner mozdef --group mozdef --directory /opt/mozdef/envs /opt/mozdef/envs/mozdef /opt/mozdef/envs/mozdef/cron
# Force pycurl to understand we prefer nss backend
# Pycurl with ssl support is required by kombu in order to use SQS
ENV PYCURL_SSL_LIBRARY=nss
# Create python virtual environment and install dependencies
COPY --chown=mozdef:mozdef requirements.txt /opt/mozdef/envs/mozdef/requirements.txt
COPY --chown=mozdef:mozdef mozdef_util /opt/mozdef/envs/mozdef/mozdef_util
USER mozdef
RUN \
virtualenv -p /usr/bin/python3.6 /opt/mozdef/envs/python && \
source /opt/mozdef/envs/python/bin/activate && \
pip install --requirement /opt/mozdef/envs/mozdef/requirements.txt && \
cd /opt/mozdef/envs/mozdef/mozdef_util && \
pip install --editable . && \
mkdir /opt/mozdef/envs/mozdef/data
WORKDIR /opt/mozdef/envs/mozdef
VOLUME /opt/mozdef/envs/mozdef/data
# Automatically source into python virtual environment
ENV PATH=/opt/mozdef/envs/python/bin:$PATH
USER root
|