bunkerweb 1.4.0

2022-06-03 17:24:14 +02:00
parent 3a078326c5
commit a9f886804a
5245 changed files with 1432051 additions and 27894 deletions
--- a/examples/tor-hidden-service/README.md
+++ b/examples/tor-hidden-service/README.md
@@ -1,11 +0,0 @@
-# Tomcat
-
-Secure your TOR hidden services ".onion" with bunkerized-nginx.
-
-## Architecture
-
-<img src="https://github.com/bunkerity/bunkerized-nginx/blob/master/examples/tor-hidden-service/architecture.png?raw=true" />
-
-## Docker
-
-See [docker-compose.yml](https://github.com/bunkerity/bunkerized-nginx/blob/master/examples/tor-hidden-service/docker-compose.yml).
--- a/examples/tor-hidden-service/architecture.png
+++ b/examples/tor-hidden-service/architecture.png
--- a/examples/tor-hidden-service/docker-compose.yml
+++ b/examples/tor-hidden-service/docker-compose.yml
@@ -4,41 +4,38 @@ services:

  myonion:
    image: goldy/tor-hidden-service
-    restart: always
    volumes:
      - ./hidden-services:/var/lib/tor/hidden_service # .onion address and private key will be located in ./hidden_service
    environment:
-      - SERVICE1_TOR_SERVICE_HOSTS=80:mywww:8080
+      - SERVICE1_TOR_SERVICE_HOSTS=80:mybunker:8080
      - SERVICE1_TOR_SERVICE_VERSION=3

-  mywww:
-    image: bunkerity/bunkerized-nginx
-    restart: always
-    depends_on:
-      - myphp
-    # bunkerized-nginx runs as an unprivileged user with UID/GID 101
+  mybunker:
+    image: bunkerity/bunkerweb:1.4.0
+    # ⚠️ read this if you use local folders for volumes ⚠️
+    # bunkerweb runs as an unprivileged user with UID/GID 101
    # don't forget to edit the permissions of the files and folders accordingly
+    # example if you need to create a directory : mkdir folder && chown root:101 folder && chmod 770 folder
+    # another example for existing folder : chown -R root:101 folder && chmod -R 770 folder
+    # more info at https://docs.bunkerweb.io
    volumes:
-      - ./web-files:/www:ro
+      - bw_cache:/cache
    environment:
-      - BLOCK_TOR_EXIT_NODE=no
-      - BLOCK_ABUSERS=no
-      - BLOCK_PROXIES=no
+      # disable common security measures based on IP
      - USE_BAD_BEHAVIOR=no
      - USE_DNSBL=no
-      - USE_WHITELIST_IP=no
-      - USE_WHITELIST_REVERSE=no
-      - USE_BLACKLIST_IP=no
-      - USE_BLACKLIST_REVERSE=no
+      - USE_WHITELIST=no
+      - USE_BLACKLIST=no
+      # enable captcha at least
      - USE_ANTIBOT=captcha
      - USE_CLIENT_CACHE=yes
      - USE_GZIP=yes
-      - REMOTE_PHP=myphp
-      - REMOTE_PHP_PATH=/app
+      - USE_REVERSE_PROXY=yes
+      - REVERSE_PROXY_URL=/
+      - REVERSE_PROXY_HOST=http://myapp

-  myphp:
-    image: php:fpm
-    restart: always
-    volumes:
-      - ./web-files:/app
+  myapp:
+    image: tutum/hello-world

+volumes:
+  bw_cache:
--- a/examples/tor-hidden-service/web-files/index.php
+++ b/examples/tor-hidden-service/web-files/index.php
@@ -1,5 +1,7 @@
 <?php

-echo "Hello Onion!";
+echo "Hello onion world !";

 ?>
+
+<script src="/js/script.js"></script>
--- a/examples/tor-hidden-service/web-files/js/script.js
+++ b/examples/tor-hidden-service/web-files/js/script.js
@@ -0,0 +1 @@
+alert('JavaScript is working!');