MISP
/
misp-docker
mirror of https://github.com/MISP/misp-docker
2
0
Fork 0
Code Issues Releases Wiki Activity
214 Commits
2 Branches
0 Tags
3 MiB
Commit Graph

55 Commits (70ac4314678fc8e8c5a3aab1aed0a6f7150808da)

Author SHA1 Message Date
Jason Kendall f987fe180f
Merge pull request #103 from garrit-schroeder/oidc2 
Install dependencies for Open ID Connect implementation for MISP v2.4.140
 2021-04-21 10:50:07 -04:00
E. Balsa ec8c9c3c73 Allow defining the number of parallel workers 2021-04-20 09:13:09 +02:00
Jason Kendall df3b7efeb1
Merge pull request #107 from drcursor/addcertauth 
Add required parameters for cert authentication
 2021-04-19 10:37:47 -04:00
E. Balsa dccadb0337 Change config file permissions 2021-04-14 14:58:22 +02:00
Eduardo Balsa 42a936b3d4
Spacing OCD 2021-04-08 08:40:57 +02:00
Eduardo Balsa a0c35d7720
Making codacy happy take 2 2021-04-08 08:34:57 +02:00
Eduardo Balsa 2acb7d4a97
Making codacy happy 2021-04-08 08:26:44 +02:00
Eduardo Balsa 0c84e0b71b
Configuring nginx for cert authentication 
If the user enables cert authentication on the docker-compose file we must do the following changes to allow CertAuth to work
- Pass on SSL_CLIENT_I_DN and SSL_CLIENT_S_DN to PHP
- Enable ssl_client_certificate using  /etc/nginx/certs/ca.pem
- Enable the CertAuth ( https://github.com/MISP/MISP/tree/2.4/app/Plugin/CertAuth ) plugin on the bootstrap.php file
 2021-04-07 16:42:20 +02:00
Garrit Schroeder c6545a7299 forward url parameters to php 2021-03-15 16:47:08 +01:00
Sentinel Bot d00c31ef33
Replace redis 127.0.0.1 in cake config 2020-12-29 22:40:32 +00:00
James Droste 6b4ae09b08
Allow customization of the MISP Modules server 
Similar to redis, we should allow the ability to customize this value, as it gets overwritten on startup
 2020-08-25 17:04:06 -07:00
Anders Einar Hilden efcb8a7da9 entrypoint_nginx.sh: Make it "safe" to run with INIT=true multiple times 2020-07-27 15:38:25 +00:00
Jason Kendall 270e20806d Move SSL certs /etc/nginx/certs - fixes #53 2020-05-28 20:23:33 -04:00
Jason Kendall 6fb8b182a9 Prevent globbing and word splitting 2020-05-28 19:51:41 -04:00
Jason Kendall 3773870ae3 Ensure upstream files are synced to virtual mount - closes 52 2020-05-28 19:49:27 -04:00
Jason Kendall 29949f8f5f Default to modern nginx security - resolves #50 2020-05-28 19:38:33 -04:00
Jason Kendall 9d2e722140 Default to modern nginx security - resolves #50 2020-05-28 19:33:54 -04:00
Jason Kendall b77ce6c623 Set DB name from VAR closes #45, cleanup docker-compose env 2020-03-21 12:10:13 -04:00
Jason Kendall 7e997fb3fd Don't recreate symlinks - closes #42 2020-03-21 11:48:43 -04:00
Jason Kendall a676d0b65f Match nginx max upload to php 2020-03-20 10:14:53 -04:00
Jason Kendall 5efd4dd8f6 Add FPM timeout to nginx 2020-03-17 18:32:01 -04:00
Jason Kendall 6a7f555def Disable IPv6 option 2020-03-12 09:40:27 -04:00
Jason Kendall dcd893e069 Sync Servers now set be ENV SYNCSERVERS - Closes #40 2020-03-11 14:00:10 -04:00
Jason Kendall 49f65a9b54 Always use Bash, make fifo if it doesn't exist, closes #39 2020-03-06 11:09:11 -05:00
Jason Kendall 003d4cd1d7 Add custom entrypoint closes #15 2020-03-06 11:00:35 -05:00
Jason Kendall 0170dc6427 Simplify workers entrypoint 2020-03-05 11:22:23 -05:00
Jason Kendall b2f76743af Fix some order of operations 2020-02-27 18:14:59 -05:00
Jason Kendall 4c7efe4977 Use distributed configs for defaults 2020-02-27 18:10:39 -05:00
Jason Kendall c57f2669ec ENV to disable port 80 redirect - fixes #34 2020-02-27 15:28:21 -05:00
Jason Kendall 690094e6ed Seperate misp configs per port 2020-02-25 09:24:17 -05:00
Jason Kendall 89caffc58e Fix #31 auto-generating SSL certs 2020-02-24 21:09:08 -05:00
Jason Kendall 72881df281
Merge pull request #29 from seanthegeek/patch-1 
Remove dhparams.pem and chain.pem check
 2020-02-24 19:35:39 -05:00
Sean Whalen 8d928399e1
Update entrypoint_nginx.sh 2020-02-24 19:25:58 -05:00
Jason Kendall e7ab8db479 .gitignore broken, didn't actually add this file 2020-02-24 13:36:42 -05:00
Jason Kendall 3902256c9c Move php config to a fpm entrypoint 2020-02-24 13:31:37 -05:00
Sean Whalen 19a634763d
Remove dhparams.pem and chain.pem check 
These files are not needed with the new nginx config
 2020-02-24 13:17:07 -05:00
Sean Whalen a8b43368b9
Write nginx errors to /dev/stderr 2020-02-24 13:05:07 -05:00
Sean Whalen 07cbd8b84f
Improve security and privacy in nginx config 
- Use modern protocols (TLSv1.3 and HTTTP2)
- Enable browser XSS prevention
- Disable `Referrer` headers (prevent information leaks)
- Prohibit search engine crawling
- Disable access logs
 2020-02-23 14:59:26 -05:00
Jason Kendall 674dd65739 Remove more apache stuff 2020-02-21 10:15:05 -05:00
Jason Kendall 0a3a46ad63 Work arround MISP/issues/5608 2020-02-21 10:14:43 -05:00
Jason Kendall d1a95be518 add missing nginx misp config file 2020-02-19 20:37:14 -05:00
Jason Kendall b5f20b951d First stab at nginx 2020-02-19 20:21:49 -05:00
Jason Kendall d1ee246e25 Add more sane defaults 2020-02-19 10:57:02 -05:00
Jason Kendall e8ae81b65c Set Redis FQDN in misp 2020-02-19 09:30:43 -05:00
Jason Kendall 5a28107595 Some code style fixes 2020-02-12 09:37:23 -05:00
Jason Kendall 8dcfb9744d Define which python3 to use, fixes #10 2020-02-12 08:55:16 -05:00
Jason Kendall eeeec0264a Use globs fixes #11 2020-02-12 08:51:41 -05:00
Jason Kendall ea258885d3 Redirect http virtual host to https - closes #9 2020-02-03 19:25:39 -05:00
Jason Kendall 5dd9367736 Use cake to set baseurl 2020-01-30 11:29:49 -05:00
Jason Kendall 33e3155774 Set baseurl to localhost so compose works out of the box 2020-01-29 15:15:17 -05:00