Run the ZNC IRC Bouncer with tor in a Docker container.
- Install Docker.
- Make .znc container:
docker run -v /znc-data --name znc-data busybox echo Data-only container for znc
To retain your ZNC settings between runs, you will need to bind a directory
from the host to /znc-data
in the container. For example:
docker run -d -p 6667 --volumes-from znc-data shastafareye/znc-tor
This will download the image if needed, and create a default config file in your data directory unless you already have a config in place. The default config has ZNC listening on port 6667. To see which port on the host has been exposed:
docker ps
Or if you want to specify which port to map the default 6667 port to:
docker run -d -p 36667:6667 --volumes-from znc-data shastafareye/znc-tor
Resulting in port 36667 on the host mapping to 6667 within the container.
If you've let the container create a default config for you, the default username/password combination is admin/admin. You can access the web-interface to create your own user by pointing your web-browser at the opened port.
I'd recommend you create your own user by cloning the admin user, then ensure your new cloned user is set to be an admin user. Once you login with your new user go ahead and delete the default admin user.
Because ZNC does not resolve .onion domains on its own, we map them to internal IP addresses in our custom tor configuration ([torrc][]). If you'd like to connect to additional IRC servers using hidden tor services (.onion addresses), define them in [torrc][] before building the Docker image. [torrc]: https://github.com/shastafareye/docker-znc-tor/blob/master/torrc
Freenode's .onion Servers are defined here: https://freenode.net/irc_servers.shtml
Connecting to Freenode's Hidden Tor Services
-
If you have not already, register a Freenode NickServ account: (https://freenode.net/faq.shtml#nicksetup)
-
Edit your user within the ZNC webadmin
ZNC » webadmin » Edit User
, add a freenode network, enter your registered Nickname, enable the sasl module, and set these as the "Servers of this IRC network": 10.40.40.41 +6697 10.40.40.42 +6697 10.40.40.43 +6697 -
Save your new ZNC network configuration and connect to ZNC with your IRC client. Set the server username field as:
<nickname>/<networkname>
or set the server password field as:<nickname>/<networkname>:<password>
-
Once connected to ZNC you need to configure sasl (only once):
/msg *sasl Set AccountName Password
If you need to use external modules, simply place the original *.cpp
source
files for the modules in your {DATADIR}/modules
directory. The startup
script will automatically build all .cpp files in that directory with
znc-buildmod
every time you start the container.
This ensures that you can easily add new external modules to your znc configuration without having to worry about building them. And it only slows down ZNC's startup with a few seconds.
ZNC needs a data/config directory to run. Within the container it uses
/znc-data
, so to retain this data when shutting down a container, you should
use the volume from another persistent container. Hence --volumes-from znc-data
is part of the instructions above.
You'll want to periodically back up your znc data to the host fs:
docker run --volumes-from znc-data -v $(pwd):/backup ubuntu tar cvf /backup/backup.tar /znc-data
And restore them later:
docker run --volumes-from znc-data -v $(pwd):/backup busybox tar xvf /backup/backup.tar
As docker run
passes all arguments after the image name to the entrypoint
script, the start-znc-tor script simply passes all arguments along to ZNC.
For example, if you want to use the --makepass
option, you would run:
docker run -i -t --volumes-from znc-data shastafareye/znc-tor --makepass
Make note of the use of -i
and -t
instead of -d
. This attaches us to the
container, so we can interact with ZNC's makepass process. With -d
it would
simply run in the background.
- Follow Prerequisites above.
- Checkout source:
git clone https://github.com/shastafareye/docker-znc-tor.git && cd docker-znc-tor
- Build container:
sudo docker build -t $(whoami)/znc .
- Make data container:
sudo docker run -v /znc-data --name znc-data shastafareye/znc-tor echo Data-only container for znc
- Run container:
sudo docker run -d -p 6667 --volumes-from znc-data $(whoami)/znc-tor