Several changes and updated formatting

* Update ElasticSearch and Kibana version
* Remove nginx config and cert generation for use of
  reverse proxy on host
* Replace geoip updater with crazymax image
* Update formatting to have unix line endings
* Rename docker-compose.yml to compose.yml
* Add explicit network to compose.yml for use with ipv6 (optional)

data/Dockerfiles/parsedmarc-init/Dockerfile

@@ -1,8 +1,8 @@
-FROM alpine:latest
-
-ADD start.sh /start.sh
-
-RUN apk add --no-cache curl openssl jq bash \
-    && chmod +x /start.sh
-
-ENTRYPOINT [ "/start.sh" ]
+FROM alpine:latest
+
+ADD start.sh /start.sh
+
+RUN apk add --no-cache curl jq bash \
+    && chmod +x /start.sh
+
+ENTRYPOINT [ "/start.sh" ]

data/Dockerfiles/parsedmarc-init/start.sh

@@ -8,16 +8,6 @@ echo "Setting permissions..."
 chmod g+rwx -R /usr/share/elasticsearch/data/
 chgrp 0 -R /usr/share/elasticsearch/data/
 
-echo "## NGINX"
-echo "Checking nginx certs..."
-cd /etc/nginx/ssl/
-if [ ! -f "/etc/nginx/ssl/kibana.crt" ] || [ ! -f "/etc/nginx/ssl/kibana.key" ]; then
-	echo "No certs found. Generating..."
-	openssl req -x509 -nodes -days 365 -newkey rsa:3072 -keyout kibana.key -out kibana.crt \
-		-subj "/CN=parsedmarc" -addext "subjectAltName=DNS:parsedmarc"
-	echo "Certs generated."
-fi
-
 echo "## KIBANA"
 exportFile="/etc/parsedmarc/kibana_export.ndjson"
 if [ ! -f "${exportFile}" ]; then

data/conf/geoipupdate.env

@@ -0,0 +1,7 @@
+TZ=Europe/Berlin
+EDITION_IDS="GeoLite2-ASN,GeoLite2-City,GeoLite2-Country"
+LICENSE_KEY=abc1234
+DOWNLOAD_PATH="/data"
+SCHEDULE="0 0 * * 0"
+LOG_LEVEL=warn
+LOG_JSON=false

data/conf/nginx/site.conf

@@ -1,39 +0,0 @@
-server {
-	listen 443 ssl http2;
-
-	server_name _ default_server;
-	ssl_certificate /etc/nginx/ssl/kibana.crt;
-	ssl_certificate_key /etc/nginx/ssl/kibana.key;
-
-	server_tokens off;
-
-	ssl_session_timeout 1d;
-	ssl_session_cache shared:SSL:15m;
-	ssl_session_tickets off;
-
-	# modern configuration. tweak to your needs.
-    ssl_protocols TLSv1.2 TLSv1.3;
-    ssl_ciphers ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-CHACHA20-POLY1305:ECDHE-RSA-CHACHA20-POLY1305:DHE-RSA-AES128-GCM-SHA256:DHE-RSA-AES256-GCM-SHA384;
-    ssl_prefer_server_ciphers off;
-
-	add_header X-Frame-Options SAMEORIGIN;
-	add_header X-Content-Type-Options nosniff;
-
-	# Uncomment this next line if you are using a signed, trusted cert
-	#add_header Strict-Transport-Security "max-age=63072000; includeSubdomains; preload";
-
-	#auth_basic "Login required";
-	#auth_basic_user_file /etc/nginx/htpasswd;
-
-	location / {
-		proxy_pass http://kibana:5601;
-		proxy_set_header Host $host;
-		proxy_set_header X-Real-IP $remote_addr;
-		proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
-	}
-}
-
-server {
-	listen 80;
-	return 301 https://$host$request_uri;
-}

data/conf/parsedmarc/config.sample.ini

@@ -15,7 +15,7 @@ ssl = True
 # advanced
 watch = True
 
-archive_folder = Processed
+#archive_folder = Processed
 delete = False
 
 # advanced advanced