Index: scripts/lockdown.sh
===================================================================
diff -u -ra314e515f0e6d3a40237c9be387df61963992723 -ree1c74e58973274b59557d10acce063504fc2d11
--- scripts/lockdown.sh	(.../lockdown.sh)	(revision a314e515f0e6d3a40237c9be387df61963992723)
+++ scripts/lockdown.sh	(.../lockdown.sh)	(revision ee1c74e58973274b59557d10acce063504fc2d11)
@@ -34,6 +34,7 @@
 denali ALL=(root) NOPASSWD: /bin/systemctl stop wpa_supplicant@*
 denali ALL=(root) NOPASSWD: /bin/systemctl restart wpa_supplicant@*
 denali ALL=(root) NOPASSWD: /bin/rm -f /etc/wpa_supplicant/wpa_supplicant-*
+denali ALL=(root) NOPASSWD: /bin/chmod 640 /etc/wpa_supplicant/wpa_supplicant-*
 denali ALL=(root) NOPASSWD: /sbin/ip link set *
 denali ALL=(root) NOPASSWD: /sbin/ip route show
 denali ALL=(root) NOPASSWD: /sbin/ip route del default
Index: scripts/wifi_generate_wpa_supplicant.sh
===================================================================
diff -u -r01b9447a564c79628976078d442b8fa198adec97 -ree1c74e58973274b59557d10acce063504fc2d11
--- scripts/wifi_generate_wpa_supplicant.sh	(.../wifi_generate_wpa_supplicant.sh)	(revision 01b9447a564c79628976078d442b8fa198adec97)
+++ scripts/wifi_generate_wpa_supplicant.sh	(.../wifi_generate_wpa_supplicant.sh)	(revision ee1c74e58973274b59557d10acce063504fc2d11)
@@ -17,13 +17,13 @@
 
 if [ $# -eq 0 ]; then
     currentFile=$(basename "$0")
-    echo "Usage: ./$currentFile <ssid> <password> <dst_file.conf> <security_type>"
+    echo "Usage: ./$currentFile <ssid> <password> <iface> <security_type>"
     exit 0
 fi
 
 ssid=$1
 password=$2
-dest=$3
+dest=/etc/wpa_supplicant/wpa_supplicant-"$3".conf
 securityType=$4
 psk=$(sudo wpa_passphrase "$ssid" "$password" | grep "psk=" | grep -v "#psk" | sed -nr 's/.*psk=(.*)/\1/p')
 case $securityType in 
@@ -55,3 +55,6 @@
 }" | sudo tee $dest > /dev/null;;
 
 esac
+
+sudo chmod 640 $dest
+