diff --git a/Makefile b/Makefile index e2b8d6a9..5c53ea80 100644 --- a/Makefile +++ b/Makefile @@ -28,7 +28,7 @@ run-only: .PHONY: run-cloudy-mozdef run-cloudy-mozdef: ## Run the MozDef containers necessary to run in AWS (`cloudy-mozdef`). This is used by the CloudFormation-initiated setup. - docker-compose -f -f $(USE_DKR_IMAGES) -f docker/compose/docker-compose-cloudy-mozdef.yml -p $(NAME) up -d + docker-compose -f docker/compose/docker-compose-cloudy-mozdef.yml -p $(NAME) up -d # TODO? add custom test targets for individual tests (what used to be `multiple-tests` for example # The docker files are still in docker/compose/docker*test* diff --git a/cloudy_mozdef/cloudformation/mozdef-instance.yml b/cloudy_mozdef/cloudformation/mozdef-instance.yml index e77b8583..6da356a1 100644 --- a/cloudy_mozdef/cloudformation/mozdef-instance.yml +++ b/cloudy_mozdef/cloudformation/mozdef-instance.yml @@ -100,7 +100,8 @@ Resources: path: /opt/mozdef/docker/compose/cloudy_mozdef.env runcmd: - chmod 600 /opt/mozdef/docker/compose/cloudy_mozdef.env - - make -C /opt/mozdef -f /opt/mozdef/Makefile # run-cloudy-mozdef + - cd /opt/mozdef && git pull infosec_workweek + - make -C /opt/mozdef -f /opt/mozdef/Makefile # USE_DKR_IMAGES=docker/compose/docker-compose-norebuild.yml run-cloudy-mozdef MozDefAutoScaleGroup: Type: AWS::AutoScaling::AutoScalingGroup Properties: diff --git a/cloudy_mozdef/packer/packer.json b/cloudy_mozdef/packer/packer.json index 2f7d75ad..cdd90e7a 100644 --- a/cloudy_mozdef/packer/packer.json +++ b/cloudy_mozdef/packer/packer.json @@ -26,6 +26,7 @@ "sudo yum install -y git", "sudo yum install -y docker", "sudo pip install virtualenv ", + "sudo pip install docker-compose", "sudo systemctl enable docker", "sudo mkdir -p /opt/mozdef/", "sudo git clone https://github.com/mozilla/MozDef /opt/mozdef", diff --git a/docker/compose/docker-compose-cloudy-mozdef.yml b/docker/compose/docker-compose-cloudy-mozdef.yml index 3f4c8040..a62e0b8e 100644 --- a/docker/compose/docker-compose-cloudy-mozdef.yml +++ b/docker/compose/docker-compose-cloudy-mozdef.yml @@ -2,9 +2,7 @@ version: '2.2' services: nginx: - build: - context: ../../ - dockerfile: docker/compose/nginx/Dockerfile + image: mozdef/mozdef_nginx restart: always command: /usr/sbin/nginx depends_on: @@ -17,9 +15,7 @@ services: networks: - default mongodb: - build: - context: ../../ - dockerfile: docker/compose/mongodb/Dockerfile + image: mozdef/mozdef_mongodb restart: always command: /usr/bin/mongod --smallfiles --config /etc/mongod.conf volumes: @@ -27,9 +23,7 @@ services: networks: - default bootstrap: - build: - context: ../../ - dockerfile: docker/compose/mozdef_bootstrap/Dockerfile + image: mozdef/mozdef_bootstrap env_file: - cloudy_mozdef.env command: bash -c 'source /opt/mozdef/envs/python/bin/activate && python docker/conf/initial_setup.py ${ES_URL} cron/defaultMappingTemplate.json cron/backup.conf' @@ -39,18 +33,14 @@ services: - default # MozDef Specific Containers base: - build: - context: ../../ - dockerfile: docker/compose/mozdef_base/Dockerfile + image: mozdef/mozdef_base env_file: - cloudy_mozdef.env command: bash -c 'su - mozdef -c /opt/mozdef/envs/mozdef/cron/update_geolite_db.sh' volumes: - geolite_db:/opt/mozdef/envs/mozdef/data alertplugins: - build: - context: ../../ - dockerfile: docker/compose/mozdef_alertplugins/Dockerfile + image: mozdef/mozdef_alertplugins env_file: - cloudy_mozdef.env restart: always @@ -62,9 +52,7 @@ services: networks: - default alerts: - build: - context: ../../ - dockerfile: docker/compose/mozdef_alerts/Dockerfile + image: mozdef/mozdef_alerts env_file: - cloudy_mozdef.env restart: always @@ -75,9 +63,7 @@ services: networks: - default cron: - build: - context: ../../ - dockerfile: docker/compose/mozdef_cron/Dockerfile + image: mozdef/mozdef_cron env_file: - cloudy_mozdef.env restart: always @@ -91,9 +77,7 @@ services: networks: - default loginput: - build: - context: ../../ - dockerfile: docker/compose/mozdef_loginput/Dockerfile + image: mozdef/mozdef_loginput env_file: - cloudy_mozdef.env restart: always @@ -104,9 +88,7 @@ services: networks: - default meteor: - build: - context: ../../ - dockerfile: docker/compose/mozdef_meteor/Dockerfile + image: mozdef/mozdef_meteor restart: always command: bash -c 'node bundle/main.js' depends_on: @@ -116,9 +98,7 @@ services: networks: - default rest: - build: - context: ../../ - dockerfile: docker/compose/mozdef_rest/Dockerfile + image: mozdef/mozdef_rest env_file: - cloudy_mozdef.env restart: always @@ -130,9 +110,7 @@ services: networks: - default syslog: - build: - context: ../../ - dockerfile: docker/compose/mozdef_syslog/Dockerfile + image: mozdef/mozdef_syslog env_file: - cloudy_mozdef.env restart: always diff --git a/docker/compose/mozdef_base/Dockerfile b/docker/compose/mozdef_base/Dockerfile index 46a699f5..4b9b61a5 100644 --- a/docker/compose/mozdef_base/Dockerfile +++ b/docker/compose/mozdef_base/Dockerfile @@ -40,7 +40,8 @@ USER mozdef RUN \ virtualenv /opt/mozdef/envs/python && \ source /opt/mozdef/envs/python/bin/activate && \ - pip install -r /opt/mozdef/envs/mozdef/requirements.txt + pip install -r /opt/mozdef/envs/mozdef/requirements.txt && \ + pip install git+https://github.com/andrewkrug/configlib # Local copy for dev COPY mozdef_util /opt/mozdef/envs/mozdef/mozdef_util