From d20ec16602c085fa6d5d2fd3e95b0b4ec830179b Mon Sep 17 00:00:00 2001
From: "Kyle J. McKay" <mackyle@gmail.com>
Date: Tue, 11 Feb 2014 22:49:56 -0800
Subject: [PATCH] Universally set var/empty to 0444 in the jail

Since var/empty should be 0444 for all platforms, move the
chmod call into jailsetup.
---
 chrootsetup_linux.sh | 3 +--
 jailsetup.sh         | 1 +
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/chrootsetup_linux.sh b/chrootsetup_linux.sh
index f58523d..1c3aaf3 100644
--- a/chrootsetup_linux.sh
+++ b/chrootsetup_linux.sh
@@ -35,8 +35,7 @@ mknod dev/urandom c 1 9
 chmod a+rw dev/null dev/zero dev/random dev/urandom
 
 # Extra directories
-mkdir -p var/empty var/run/sshd
-chmod 0444 var/empty
+mkdir -p var/run/sshd
 
 # Bring in basic libraries:
 rm -f lib/*
diff --git a/jailsetup.sh b/jailsetup.sh
index d43d406..3300726 100755
--- a/jailsetup.sh
+++ b/jailsetup.sh
@@ -147,6 +147,7 @@ chown 0:0 "$cfg_chroot"
 
 # First, setup basic platform-independent directory structure
 mkdir -p bin dev etc lib sbin var/empty var/run ${cfg_jailreporoot#/}
+chmod 0444 var/empty
 rm -rf usr
 ln -s . usr
 
-- 
2.11.4.GIT