Готовое Rocket.Chat in TOR (onion)

[pewpewpew]

Docker билдер рокетчата в торе. Из клирнета не виден. README в начале.

1. Ставим docker и docker-compose

   apt-get update && apt-get install docker docker-compose

2. Создаем папку (любую) и копируем в неё docker-compose.yml
3. В этой папке запускаем сборку

   docker-compose up -d --build

4. Следить за логом выполнения можно с помощью

   docker-compose logs -f

5. Дождавшись запуска (появится табличка рокетчата в консоле), скопируйте домен

   cat ./tor/hidden_service/hostname

6. На всякий случай, скопируйте папку tor в tor_bkp. В ней хранятся ключи от домена.
7. База данных хранится в папке ./data.

# README
# 1. Install Docker
#       apt-get update
#       apt-get install docker docker-compose
#
# 2. Copy to server docker-compose.yml
# 3. In directory with yml file run "docker-compose up -d --build"
# 4. Watch the launch log: docker-compose logs -f (ctrl+c for quit)
# 5. Wait until TOR was Bootstrapped 100% (done): Done
# 6. Make copy of "tor" directory (cp -R tor tor_bkp)
# 7. All database's locate in 'data' directory
#
# 8. onion domain will be in ./tor/hidden_service/hostname
# 9. key files will be in ./tor/hidden_service/, hs_ed25519_public_key  hs_ed25519_secret_key
#
# If you change server, go through all the steps to the 5th. Replace current tor and data folders with saved (backup)

version: "2.1"
services:
  db:
    image: mongo:4.0
    hostname: db
    container_name: MONGO
    volumes:
      - ./data/runtime/db:/data/db
      - ./data/dump:/dump
    command: mongod --smallfiles --oplogSize 128 --replSet rs01

  rocketchat:
    image: rocketchat/rocket.chat:latest
    container_name: ROCKET
    environment:
      - MONGO_URL=mongodb://db:27017/rocketchat?replicaSet=rs01
      - MONGO_OPLOG_URL=mongodb://db:27017/local?replicaSet=rs01
    links:
      - db
    depends_on:
      - tor-nginx-proxy

  tor-nginx-proxy:
    container_name: TOR
    image: harshitbudhraja/tor-nginx-proxy:latest
    restart: unless-stopped
    environment:
      - NGINX_PORT=80
      - NGINX_PROXY_URL=http://rocketchat:3000
    volumes:
      - ./tor:/var/lib/tor/

 

[pewpewpew]

UPDATE (старая версия теперь не устанавливается, из-за нарушения обратной совместимости версий)

# README
# 1. Install Docker
#       apt-get update
#       apt-get install docker docker-compose
#
# 2. Copy to server docker-compose.yml
# 3. In directory with yml file run "docker-compose up -d --build"
# 4. Watch the launch log: docker-compose logs -f (ctrl+c for quit)
# 5. Wait until TOR was Bootstrapped 100% (done): Done
# 6. Make copy of "tor" directory (cp -R tor tor_bkp)
# 7. All database's locate in 'data' directory
#
# 8. onion domain will be in ./tor/hidden_service/hostname
# 9. key files will be in ./tor/hidden_service/, hs_ed25519_public_key  hs_ed25519_secret_key
#
# If you change server, go through all the steps to the 5th. Replace current tor and data folders with saved (backup)
version: '3'
volumes:
  mongodb_data:
    driver: local

services:
  rocketchat:
    image: registry.rocket.chat/rocketchat/rocket.chat:latest
    restart: on-failure
    environment:
      MONGO_URL: "mongodb://mongodb:27017/rocketchat?replicaSet=rs0"
      MONGO_OPLOG_URL: "mongodb://mongodb:27017/local?replicaSet=rs0"
      ROOT_URL: http://localhost:3000
      PORT: 3000
    depends_on:
      - mongodb

  mongodb:
    image: docker.io/bitnami/mongodb:4.4
    restart: on-failure
    volumes:
      - mongodb_data:/bitnami/mongodb
    environment:
      MONGODB_REPLICA_SET_MODE: primary
      MONGODB_REPLICA_SET_NAME: rs0
      MONGODB_PORT_NUMBER: 27017
      MONGODB_INITIAL_PRIMARY_HOST: mongodb
      MONGODB_INITIAL_PRIMARY_PORT_NUMBER: 27017
      MONGODB_ADVERTISED_HOSTNAME: mongodb
      ALLOW_EMPTY_PASSWORD: 'yes'

  tor-nginx-proxy:
    container_name: TOR
    image: harshitbudhraja/tor-nginx-proxy:latest
    restart: unless-stopped
    environment:
      - NGINX_PORT=80
      - NGINX_PROXY_URL=http://rocketchat:3000
    volumes:
      - ./tor:/var/lib/tor/

 

[th3tr0ll]

pewpewpew sorry for the little OT, how do you feel about Rocket.Chat? Is it usable as other messaging platforms such as Discord?

 

[pewpewpew]

I don't know exactly, I don't use it. But it is more anonymous than discord, so it is often used by APT-teams
As an option, Element.io with custom server

 

[sommerdev]

I don't know exactly, I don't use it. But it is more anonymous than discord, so it is often used by APT-teams
As an option, Element.io with custom server

why element,io are used by APT-teams?

 

[pewpewpew]

Idk exactly about APT, but i know a few groups who use element. On my opinion, its because end-to-end encryption and cross-platform (Win/Mac/Linux/iOS/Android), key auth

 

[oknos]

ваша конфигурация будет дросселировать все это. вы должны отбросить все для ввода пользователем во время установки. 0 баллов на стороне OPSEC, потому что хостер может видеть все пакеты дохода.