bunkerweb 1.4.0

2022-06-03 17:24:14 +02:00
parent 3a078326c5
commit a9f886804a
5245 changed files with 1432051 additions and 27894 deletions
--- a/examples/mongo-express/bw_data/configs/modsec/www.example.com/mongo-express.conf
+++ b/examples/mongo-express/bw_data/configs/modsec/www.example.com/mongo-express.conf
@@ -0,0 +1 @@
+SecRule REQUEST_FILENAME "@rx ^/db" "id:1,ctl:ruleRemoveByTag=attack-generic,ctl:ruleRemoveByTag=attack-protocol,nolog"
--- a/examples/mongo-express/docker-compose.yml
+++ b/examples/mongo-express/docker-compose.yml
@@ -0,0 +1,47 @@
+version: "3"
+
+services:
+  mongo:
+    image: mongo:latest
+    container_name: mongo
+    volumes:
+      - ./db:/data/db
+    environment:
+      - MONGO_INITDB_ROOT_USERNAME=root             # replace with a less obvious username
+      - MONGO_INITDB_ROOT_PASSWORD=toor             # replace with a better password
+      - MONGO_INITDB_DATABASE=mongo                 # replace with the database name of your choice
+
+  mongo-ui:
+    image: mongo-express:latest
+    environment:
+      - ME_CONFIG_MONGODB_SERVER=mongo
+      - ME_CONFIG_MONGODB_ADMINUSERNAME=root        # replace with a less obvious username  
+      - ME_CONFIG_MONGODB_ADMINPASSWORD=toor        # replace with a better password
+      - ME_CONFIG_BASICAUTH_USERNAME=changeme       # replace with a better username
+      - ME_CONFIG_BASICAUTH_PASSWORD=changeme       # replace with a better password
+    restart: unless-stopped
+    depends_on:
+      - mongo
+
+  mybunker:
+    image: bunkerity/bunkerweb:1.4.0
+    ports:
+      - 80:8080
+      - 443:8443
+    volumes:
+      - ./bw_data:/data
+    environment:
+      - SERVER_NAME=www.example.com                 # replace with your domain
+      - SERVE_FILES=no
+      - DISABLE_DEFAULT_SERVER=yes
+      - AUTO_LETS_ENCRYPT=yes
+      - USE_CLIENT_CACHE=yes
+      - USE_GZIP=yes
+      - AUTO_LETS_ENCRYPT=yes
+      - USE_REVERSE_PROXY=yes
+      - REVERSE_PROXY_URL=/
+      - REVERSE_PROXY_HOST=http://mongo-ui:8081
+      - USE_ANTIBOT=javascript                      # put the antibot of your choice here
+
+volumes:
+  bw_config:
--- a/examples/mongo-express/setup.sh
+++ b/examples/mongo-express/setup.sh
@@ -0,0 +1,9 @@
+#!/bin/bash
+
+if [ $(id -u) -ne 0 ] ; then
+	echo "❌ Run me as root"
+	exit 1
+fi
+
+chown -R root:101 bw_data
+chmod -R 770 bw_data
				`@@ -0,0 +1 @@`
				`SecRule REQUEST_FILENAME "@rx ^/db" "id:1,ctl:ruleRemoveByTag=attack-generic,ctl:ruleRemoveByTag=attack-protocol,nolog"`