tor/Dockerfile

FROM ubuntu:bionic
MAINTAINER Andrey Arapov <andrey.arapov@nixaid.com>

# To avoid problems with Dialog and curses wizards
ENV DEBIAN_FRONTEND noninteractive

# Keep the image updated and install the dependencies
RUN apt-get update && \
    apt-get -y upgrade && \
    apt-get -y dist-upgrade && \
    apt-get -fy install && \
    apt-get -y install xz-utils libdbus-glib-1-2 libgtk-3-0 libxt6 \
                       libgl1-mesa-glx pulseaudio attr gpg && \
    rm -rf /var/lib/apt/lists

# bzip2 libgtk-3-0 libasound2 libpango1.0-0 libv4l-0 libgl1-mesa-glx x264

# Workaround: pulseaudio client library likes to remove /dev/shm/pulse-shm-*
#             files created by the host, causing sound to stop working.
#             To fix this, we either want to disable the shm or mount /dev/shm
#             in read-only mode when starting the container.
RUN echo "enable-shm = no" >> /etc/pulse/client.conf


ENV USER user
ENV UID 1000
ENV GROUPS video,audio
ENV HOME /home/$USER
RUN useradd -u $UID -m -d $HOME -s /usr/sbin/nologin -G $GROUPS $USER

ENV TORVER 8.0.3
ENV TORKEY "EF6E286DDA85EA2A4BA7DE684E2C6E8793298290"
ADD https://www.torproject.org/dist/torbrowser/${TORVER}/tor-browser-linux64-${TORVER}_en-US.tar.xz /tmp/tor.tar.xz
ADD https://www.torproject.org/dist/torbrowser/${TORVER}/tor-browser-linux64-${TORVER}_en-US.tar.xz.asc /tmp/tor.tar.xz.asc

RUN cd /tmp && \
    gpg --keyserver keyserver.ubuntu.com --recv-keys $TORKEY && \
    gpg --verify tor.tar.xz.asc && \
    tar xf tor.tar.xz -C $HOME && \
    rm -f tor.tar.xz && \
    chown -Rh $USER:$USER $HOME

WORKDIR $HOME

VOLUME [ "/tmp", "$HOME/tor-browser" ]

COPY ./launch /launch
ENTRYPOINT [ "/bin/bash", "/launch" ]
bump tor to 7.5.6 2018-08-13 19:53:40 +00:00			`FROM ubuntu:bionic`
first commit 2016-04-30 10:45:10 +00:00			`MAINTAINER Andrey Arapov <andrey.arapov@nixaid.com>`

			`# To avoid problems with Dialog and curses wizards`
			`ENV DEBIAN_FRONTEND noninteractive`

			`# Keep the image updated and install the dependencies`
			`RUN apt-get update && \`
			`apt-get -y upgrade && \`
			`apt-get -y dist-upgrade && \`
			`apt-get -fy install && \`
bump tor to 8.0.1 2018-09-27 21:14:35 +00:00			`apt-get -y install xz-utils libdbus-glib-1-2 libgtk-3-0 libxt6 \`
bump tor to 7.5.6 2018-08-13 19:53:40 +00:00			`libgl1-mesa-glx pulseaudio attr gpg && \`
first commit 2016-04-30 10:45:10 +00:00			`rm -rf /var/lib/apt/lists`

			`# bzip2 libgtk-3-0 libasound2 libpango1.0-0 libv4l-0 libgl1-mesa-glx x264`

			`# Workaround: pulseaudio client library likes to remove /dev/shm/pulse-shm-*`
			`# files created by the host, causing sound to stop working.`
			`# To fix this, we either want to disable the shm or mount /dev/shm`
			`# in read-only mode when starting the container.`
			`RUN echo "enable-shm = no" >> /etc/pulse/client.conf`


			`ENV USER user`
			`ENV UID 1000`
			`ENV GROUPS video,audio`
			`ENV HOME /home/$USER`
			`RUN useradd -u $UID -m -d $HOME -s /usr/sbin/nologin -G $GROUPS $USER`

bump to 8.0.3 2018-10-23 06:46:23 +00:00			`ENV TORVER 8.0.3`
first commit 2016-04-30 10:45:10 +00:00			`ENV TORKEY "EF6E286DDA85EA2A4BA7DE684E2C6E8793298290"`
multiple updates 2017-09-04 19:03:06 +00:00			`ADD https://www.torproject.org/dist/torbrowser/${TORVER}/tor-browser-linux64-${TORVER}_en-US.tar.xz /tmp/tor.tar.xz`
			`ADD https://www.torproject.org/dist/torbrowser/${TORVER}/tor-browser-linux64-${TORVER}_en-US.tar.xz.asc /tmp/tor.tar.xz.asc`
first commit 2016-04-30 10:45:10 +00:00
			`RUN cd /tmp && \`
bump to 8.0.3 2018-10-23 06:46:23 +00:00			`gpg --keyserver keyserver.ubuntu.com --recv-keys $TORKEY && \`
first commit 2016-04-30 10:45:10 +00:00			`gpg --verify tor.tar.xz.asc && \`
			`tar xf tor.tar.xz -C $HOME && \`
			`rm -f tor.tar.xz && \`
			`chown -Rh $USER:$USER $HOME`

			`WORKDIR $HOME`

bump to 6.5a1-hardened 2016-06-09 18:11:29 +00:00			`VOLUME [ "/tmp", "$HOME/tor-browser" ]`
first commit 2016-04-30 10:45:10 +00:00
make tor grsec friendly 2016-08-28 08:14:17 +00:00			`COPY ./launch /launch`
			`ENTRYPOINT [ "/bin/bash", "/launch" ]`