anti
dcd558fd91
All base images (debian:bookworm-slim, ubuntu:22.04, ubuntu:20.04, rockylinux:9-minimal, centos:7, alpine:3.19, fedora:39, kalilinux/kali-rolling, archlinux:latest, honeynet/conpot:latest) now carry their resolved sha256 digest so 'docker pull' is deterministic. :tag retained for human readability; @sha256 is what Docker actually resolves. Refresh procedure documented at the top of decnet/distros.py.
37 lines
1.2 KiB
Python
37 lines
1.2 KiB
Python
from pathlib import Path
|
|
from decnet.services.base import BaseService
|
|
|
|
|
|
class ConpotService(BaseService):
|
|
"""ICS/SCADA honeypot covering Modbus (502), SNMP (161 UDP), and HTTP (80).
|
|
|
|
Uses a custom build context wrapping the official honeynet/conpot image
|
|
to fix Modbus binding to port 502.
|
|
"""
|
|
|
|
name = "conpot"
|
|
ports = [502, 161, 80]
|
|
default_image = "build"
|
|
# config_schema: no user-tunable fields yet — TODO add when compose_fragment grows cfg reads
|
|
|
|
def compose_fragment(self, decky_name: str, log_target: str | None = None, service_cfg: dict | None = None) -> dict:
|
|
env = {
|
|
"CONPOT_TEMPLATE": "default",
|
|
"NODE_NAME": decky_name,
|
|
}
|
|
if log_target:
|
|
env["LOG_TARGET"] = log_target
|
|
|
|
return {
|
|
"build": {
|
|
"context": str(self.dockerfile_context()),
|
|
"args": {"BASE_IMAGE": "honeynet/conpot:latest@sha256:cd93e88d9e44b020db691fc4c75cb29e76b5e90ddbc408aca26e6c78c5646976"},
|
|
},
|
|
"container_name": f"{decky_name}-conpot",
|
|
"restart": "unless-stopped",
|
|
"environment": env,
|
|
}
|
|
|
|
def dockerfile_context(self):
|
|
return Path(__file__).parent.parent / "templates" / "conpot"
|