Update ciscoasa for py3.12

harden image

docker/ciscoasa/Dockerfile

@@ -1,7 +1,4 @@
-FROM alpine:3.19
-#
-# Include dist
-COPY dist/ /root/dist/
+FROM alpine:3.20 AS builder
 #
 # Install packages
 RUN apk --no-cache -U add build-base \
@@ -15,33 +12,22 @@ RUN apk --no-cache -U add build-base \
 		python3 \
 		python3-dev && \
 #
-# Setup user
-    addgroup -g 2000 ciscoasa && \
-    adduser -S -s /bin/bash -u 2000 -D -g 2000 ciscoasa && \
-#
 # Get and install packages
     mkdir -p /opt/ && \
     cd /opt/ && \
-    git clone https://github.com/cymmetria/ciscoasa_honeypot && \
+    git clone https://github.com/t3chn0m4g3/ciscoasa_honeypot && \
     cd ciscoasa_honeypot && \
-    git checkout d6e91f1aab7fe6fc01fabf2046e76b68dd6dc9e2 && \
     sed -i "s/git+git/git+https/g" requirements.txt && \
-    pip3 install --break-system-packages --no-cache-dir -r requirements.txt && \
-    cp /root/dist/asa_server.py /opt/ciscoasa_honeypot && \
-    chown -R ciscoasa:ciscoasa /opt/ciscoasa_honeypot && \
+    pip3 install --break-system-packages pyinstaller && \
+    pip3 install --break-system-packages --no-cache-dir -r requirements.txt
+WORKDIR /opt/ciscoasa_honeypot
+RUN pyinstaller asa_server.py --add-data "./asa:./asa"
 #
-# Clean up
-    apk del --purge build-base \
-                    git \
-                    libffi-dev \
-                    openssl-dev \
-                    python3-dev && \
-    rm -rf /root/* \
-           /opt/ciscoasa_honeypot/.git \
-           /var/cache/apk/*
+FROM alpine:3.20
+COPY --from=builder /opt/ciscoasa_honeypot/dist/ /opt/
 #
 # Start ciscoasa
 STOPSIGNAL SIGINT
-WORKDIR /tmp/ciscoasa/
-USER ciscoasa:ciscoasa
-CMD cp -R /opt/ciscoasa_honeypot/* /tmp/ciscoasa && exec python3 asa_server.py --ike-port 5000 --enable_ssl --port 8443 --verbose >> /var/log/ciscoasa/ciscoasa.log 2>&1
+WORKDIR /opt/asa_server/
+USER 2000:2000
+CMD ./asa_server --ike-port 5000 --enable_ssl --port 8443 --verbose >> /var/log/ciscoasa/ciscoasa.log 2>&1