The file must not be executable, but writeable by anybody
in the group nobody.
cd $(DIR_APP) && patch -Np1 < $(DIR_SRC)/src/patches/squidclamav-5.11-dont_use_ipv6.patch
cd $(DIR_APP) && ./configure --prefix=/usr
cd $(DIR_APP) && make install
- install -v -m 755 $(DIR_CONF)/squidclamav/squidclamav.conf /etc/squidclamav.conf
+ install -v -m 664 $(DIR_CONF)/squidclamav/squidclamav.conf /etc/squidclamav.conf
+ chown -v root:nobody /etc/squidclamav.conf
install -v -m 644 $(DIR_SRC)/config/backup/includes/squidclamav /var/ipfire/backup/addons/includes/squidclamav
chmod 755 /srv/web/ipfire/html/clwarn.cgi
@rm -rf $(DIR_APP)
-e "s/^#squid_port 3128/squid_port 800/g" \
-e "s/^#trust_cache 1/trust_cache 1/g" -i /etc/squidclamav.conf
+ # Fix permissions.
+ chmod 664 /etc/squidclamav.conf
+ chown root.nobody /etc/squidclamav.conf
+
# Regenerate configuration files.
perl /srv/web/ipfire/cgi-bin/proxy.cgi
fi