diff --git a/docker/hellpot/Dockerfile b/docker/hellpot/Dockerfile index a8297f30..3be885f7 100644 --- a/docker/hellpot/Dockerfile +++ b/docker/hellpot/Dockerfile @@ -17,11 +17,8 @@ RUN apk -U --no-cache add \ mkdir -p /opt/go && \ git clone https://github.com/yunginnanet/HellPot && \ cd HellPot && \ - git checkout 1312f20e719223099af8aad80f316420ee3dfcb1 && \ - # Hellpot ignores setting the logpath, need to do this hardcoded ... - sed -i 's#logDir = snek.GetString("logger.directory")#logDir = "/var/log/hellpot/"#g' config/logger.go && \ - sed -i 's#tnow := "HellPot"#tnow := "hellpot"#g' config/logger.go && \ - sed -i 's#logFileName := "HellPot"#logFileName := "hellpot"#g' config/logger.go && \ + git checkout cadca0adf9970d86124ae8f0246423d0c1f13cf4 && \ + sed -i 's#logFileName := "HellPot"#logFileName := "hellpot"#g' internal/config/logger.go && \ go build cmd/HellPot/HellPot.go && \ mv /root/HellPot/HellPot /opt/hellpot/ && \ # diff --git a/docker/hellpot/dist/config.toml b/docker/hellpot/dist/config.toml index dd4f1340..d708c26e 100644 --- a/docker/hellpot/dist/config.toml +++ b/docker/hellpot/dist/config.toml @@ -1,23 +1,42 @@ +[deception] + # Used as "Server" HTTP header. Note that reverse proxies may hide this. + server_name = "nginx" + [http] + # TCP Listener (default) bind_addr = "0.0.0.0" bind_port = "8080" - paths = ["wp-login.php","wp-login","wp-json/omapp/v1/support"] + + # this contains a list of blacklisted useragent strings. (case sensitive) + # clients with useragents containing any of these strings will receive "Not found" for any requests. + uagent_string_blacklist = ["Cloudflare-Traffic-Manager", "curl"] # Unix Socket Listener (will override default) + unix_socket_path = "/var/run/hellpot" + unix_socket_permissions = "0666" use_unix_socket = false - unix_socket = "/var/run/hellpot" + + [http.router] + # Toggling this to true will cause all GET requests to match. Forces makerobots = false. + catchall = true + # Toggling this to false will prevent creation of robots.txt handler. + makerobots = true + # Handlers will be created for these paths, as well as robots.txt entries. Only valid if catchall = false. + paths = ["wp-json/omapp/v1/support", "wp-login.php", "wp-login"] [logger] + # verbose (-v) debug = true - log_directory = "/var/log/hellpot/" - nocolor = true + # extra verbose (-vv) + trace = false + # JSON log files will be storn in the below directory. + directory = "/var/log/hellpot/" + # disable all color in console output. when using Windows this will default to true. + nocolor = true + # toggles the use of the current date as the names for new log files. use_date_filename = false [performance] # max_workers is only valid if restrict_concurrency is true - restrict_concurrency = false max_workers = 256 - -[deception] - # Used as "Server: " header (if not proxied) - server_name = "nginx" + restrict_concurrency = false