FROM vulnerables/web-dvwa
ENV DEBIAN_FRONTEND=noninteractive
# stretch est passé des dépôts officiels aux archives debian
RUN sed -i /security/d /etc/apt/sources.list
RUN sed -i /stretch-updates/d /etc/apt/sources.list
RUN sed -i s/deb.debian.org/archive.debian.org/g /etc/apt/sources.list
RUN sed -i 's/^deb/deb [trusted=yes]/' /etc/apt/sources.list
RUN apt update 
# on installe wget et netcat pour les hacks
RUN apt install -y wget netcat
# on modifie php.ini en suivant les recommandations de dvwa
RUN sed -i 's/allow_url_include = Off/allow_url_include = On/' /etc/php/7.0/apache2/php.ini
# on preconfigure phpmyadmin
RUN echo "phpmyadmin phpmyadmin/dbconfig-install boolean true" | debconf-set-selections
RUN echo "phpmyadmin phpmyadmin/mysql/admin-pass password ''" | debconf-set-selections
RUN echo "phpmyadmin phpmyadmin/reconfigure-webserver multiselect apache2" | debconf-set-selections
# on installe phpmyadmin
RUN chown -R mysql:mysql /var/lib/mysql /var/run/mysqld;service mysql start; apt install -y phpmyadmin