From 67fb5939f759554b8feec436ad290886e5ae5f37 Mon Sep 17 00:00:00 2001 From: OPSXCQ Date: Fri, 12 Oct 2018 17:44:03 +0000 Subject: [PATCH] updated debian to 9.2 and migrated to mariadb --- Dockerfile | 19 ++++++++++++------- config.inc.php | 2 +- php.ini | 2 +- 3 files changed, 14 insertions(+), 9 deletions(-) diff --git a/Dockerfile b/Dockerfile index bdb10af..b04b9f7 100644 --- a/Dockerfile +++ b/Dockerfile @@ -1,4 +1,4 @@ -FROM debian:jessie +FROM debian:9.2 LABEL maintainer "opsxcq@strm.sh" @@ -6,15 +6,16 @@ RUN apt-get update && \ apt-get upgrade -y && \ DEBIAN_FRONTEND=noninteractive apt-get install -y \ debconf-utils && \ - echo mysql-server-5.5 mysql-server/root_password password vulnerables | debconf-set-selections && \ - echo mysql-server-5.5 mysql-server/root_password_again password vulnerables | debconf-set-selections && \ + echo mariadb-server mysql-server/root_password password vulnerables | debconf-set-selections && \ + echo mariadb-server mysql-server/root_password_again password vulnerables | debconf-set-selections && \ DEBIAN_FRONTEND=noninteractive apt-get install -y \ apache2 \ - mysql-server \ - php5 \ - php5-mysql \ + mariadb-server \ + php \ + php-mysql \ + php-pgsql \ php-pear \ - php5-gd \ + php-gd \ && \ apt-get clean && \ rm -rf /var/lib/apt/lists/* @@ -27,6 +28,10 @@ COPY config.inc.php /var/www/html/config/ RUN chown www-data:www-data -R /var/www/html && \ rm /var/www/html/index.html +RUN service mysql start && \ + sleep 3 && \ + mysql -uroot -pvulnerables -e "CREATE USER app@localhost IDENTIFIED BY 'vulnerables';CREATE DATABASE dvwa;GRANT ALL privileges ON dvwa.* TO 'app'@localhost;" + EXPOSE 80 COPY main.sh / diff --git a/config.inc.php b/config.inc.php index 4b72ff6..a39f7d4 100644 --- a/config.inc.php +++ b/config.inc.php @@ -17,7 +17,7 @@ $DBMS = 'MySQL'; $_DVWA = array(); $_DVWA[ 'db_server' ] = '127.0.0.1'; $_DVWA[ 'db_database' ] = 'dvwa'; -$_DVWA[ 'db_user' ] = 'root'; +$_DVWA[ 'db_user' ] = 'app'; $_DVWA[ 'db_password' ] = 'vulnerables'; # Only used with PostgreSQL/PGSQL database selection. diff --git a/php.ini b/php.ini index 72b3f35..24f975b 100644 --- a/php.ini +++ b/php.ini @@ -41,7 +41,7 @@ file_uploads = On upload_max_filesize = 2M max_file_uploads = 20 allow_url_fopen = On -allow_url_include = On +allow_url_include = 1 default_socket_timeout = 60 [CLI Server] cli_server.color = On