From a6730669bed7b3f0ab546f8c0dc9ad02c608844c Mon Sep 17 00:00:00 2001
From: TKE <tobias.kessels@certbw.de>
Date: Tue, 12 Jan 2021 15:18:20 +0100
Subject: [PATCH] Make freshclam runnable by low priv user

---
 Dockerfile | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/Dockerfile b/Dockerfile
index 3a3fa6a..b9ece24 100644
--- a/Dockerfile
+++ b/Dockerfile
@@ -25,6 +25,9 @@ RUN chmod +x /start.sh
 #customize clamav config
 RUN sed -ie 's/#DetectPUA yes/DetectPUA yes/p' /etc/clamav/clamd.conf
 RUN sed -ie 's/#AlertOLE2Macros yes/AlertOLE2Macros yes/p' /etc/clamav/clamd.conf
+#make freshclam suid so user can run it
+RUN chown root /usr/bin/freshclam
+RUN chmod u+s /usr/bin/freshclam
 #add user
 RUN addgroup -g ${PGID} user && \
     adduser -D -u ${PUID} -G user user