| 27 Jan 2024 |
 tornax | it belongs to root | 23:35:21 |
 K900 | You need to set the right permissions on the secret | 23:37:38 |
| tornax | ooooh | 23:38:02 |
| K900 | The directory itself should be world readable | 23:37:48 |
| K900 | The secrets can have whatever permissions you tell them to | 23:37:59 |
| K900 | (in this case, probably owned by your user and 0400) | 23:38:17 |
| tornax | In reply to @k900:0upti.me
The directory itself should be world readable hm... I can't do ls /run/agenix | 23:38:28 |
| tornax | 
Download image.png | 23:38:36 |
| K900 | It's 0751 I'm pretty sure | 23:40:02 |
| K900 | Which is an interesting mode | 23:40:08 |
| tornax | 
Download image.png | 23:40:26 |
| K900 | For directories, the "read" permission means "can I get a list of files in this directory", and the "execute" permission means "can I access individual files inside this directory that I know the path to" | 23:41:01 |
| K900 | So yes, it is 0751 (rwx/rx/x) | 23:41:25 |
| tornax | wait, but doesn't that mean, that I should be able to execute ls /run/agenix.d? | 23:41:55 |
| K900 | So ls /run/agenix requires read | 23:42:01 |
| K900 | But cat /run/agenix/foo only requires execute | 23:42:15 |
| K900 | In reply to @tornax:matrix.org
wait, but doesn't that mean, that I should be able to execute ls /run/agenix.d? No, since you're not the owner | 23:42:24 |
| K900 | The permissions as set are: owner read/write/execute, group read/execute, other execute | 23:43:01 |
