From a9c536749049fd7519872b1c8416b11489f50e73 Mon Sep 17 00:00:00 2001
From: Louis <6653109+artonge@users.noreply.github.com>
Date: Thu, 1 Oct 2020 13:54:43 +0200
Subject: [PATCH] Update Dockerfile

Remove write access to group and others to Amavis configuration files

Fix: #1446
---
 Dockerfile | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/Dockerfile b/Dockerfile
index 93597af1..e5b90d31 100644
--- a/Dockerfile
+++ b/Dockerfile
@@ -168,7 +168,8 @@ RUN sed -i -r 's/#(@|   \\%)bypass/\1bypass/g' /etc/amavis/conf.d/15-content_fil
   # no syslog user in debian compared to ubuntu
   adduser --system syslog && \
   useradd -u 5000 -d /home/docker -s /bin/bash -p "$(echo docker | openssl passwd -1 -stdin)" docker && \
-  echo "0 4 * * * /usr/local/bin/virus-wiper" | crontab -
+  echo "0 4 * * * /usr/local/bin/virus-wiper" | crontab - && \
+  chmod go-w /etc/amavis/conf.d/*
 
 # Configure Fail2ban
 COPY target/fail2ban/jail.conf /etc/fail2ban/jail.conf