Use chmod() to set permissions

pfsense · Jan 30, 2017 · bb9b1ba · bb9b1ba
1 parent a4737dc
commit bb9b1ba
Showing 1 changed file with 8 additions and 2 deletions.
diff --git a/net/pfSense-pkg-freeradius2/files/usr/local/pkg/freeradius.inc b/net/pfSense-pkg-freeradius2/files/usr/local/pkg/freeradius.inc
@@ -2574,7 +2574,10 @@ function freeradius_allcertcnf_resync() {
 				mwexec("/usr/bin/tar -C " . FREERADIUS_ETC . "/raddb/certs -cf " . FREERADIUS_ETC . "/raddb/certs/client.tar client.crt client.csr client.key ca.der client.pem");
 
 				// Make all files in certs folder read/write only for root
-				mwexec("/bin/chmod -R 0600 " . FREERADIUS_ETC . "/raddb/certs/");
+				$certs = glob(FREERADIUS_ETC . "/raddb/certs/*");
+				array_walk($certs, function($cert_file) {
+					chmod($cert_file, 0600);
+				});
 				log_error("freeRADIUS: Created new client.csr .crt .key .pem and added them together with ca.der in " . FREERADIUS_ETC . "/raddb/certs/client.tar");
 			}
 		} else {
@@ -2619,7 +2622,10 @@ function freeradius_allcertcnf_resync() {
 
 				// tar client-cert files
 				mwexec("/usr/bin/tar -C " . FREERADIUS_ETC . "/raddb/certs -cf " . FREERADIUS_ETC . "/raddb/certs/client.tar client.crt client.csr client.key ca.der client.pem");
-				mwexec("/bin/chmod -R 0600 " . FREERADIUS_ETC . "/raddb/certs/");
+				$certs = glob(FREERADIUS_ETC . "/raddb/certs/*");
+				array_walk($certs, function($cert_file) {
+					chmod($cert_file, 0600);
+				});
 				log_error("freeRADIUS: Added client.csr .crt .key .pem together with ca.der in " . FREERADIUS_ETC . "/raddb/certs/client.tar");
 
 				// If there were changes on the certificates we need to restart freeradius