On Mo, 22.07.24 12:18, Nikita Krasnov (nikita.nikita.kras...@gmail.com) wrote:
> This output is when not using `User=root` and `KeyringMode=shared` since
> adding this to every service file isn't feasible (and I also can't have
> everything running as root).
You should really install a key that s
On Mon, Jul 22, 2024 at 2:15 PM Nikita Krasnov
wrote:
>
> Well, both actually. If that's possible, I would prefer to keep my
> service files intact (some of them are inside
> "/usr/lib/systemd/system" and some are inside "/usr/lib/systemd/user")
> and only alter the one that creates the key inside
Well, both actually. If that's possible, I would prefer to keep my
service files intact (some of them are inside
"/usr/lib/systemd/system" and some are inside "/usr/lib/systemd/user")
and only alter the one that creates the key inside the keyring. The
directory is decrypted transparently if the key
On Mon, Jul 22, 2024 at 12:18 PM Nikita Krasnov
wrote:
>
> I am working with kernel keyring (`e4crypt` tool stores its keys there). The
> end goal, basically, is there is one service that decrypts a folder (creates
> a key in the kernel keyring) and then every service has access to that key,
>
