Give robe access to secrets file on secure server

[robe]

Alex just sent me the credentials for our

​https://www.cloudvps.com

I would like to store this in the secrets file we have in place but don't believe I have access.

[strk]

I don't even know what's this secure file we have in place, where did you read about it ?

[neteler]

Replying to strk:

I don't even know what's this secure file we have in place, where did you read about it ?

I have sent the file location to you (strk) via PM.

[strk]

I think we should review management of that file. Maybe an argument for next meeting

[robe]

strk I can log into the secure server so that's all set, but I actually don't know which file on this server I'm supposed to put the new information in.

If editing the file requires sudo access, I won't be able too since it appears I am not on the sudoers list.

[martin]

access.txt

[strk]

I've created an "access" group and a directory /root/access which is read-writeable by members of such group and not accessible by others. Then I added user "robe" to this group.

Regina: please create a new file in that directory, make sure it's not world readable, then add the info in there. Name the file after the service.

I'm hoping to get more fine-grained access control in this way. And move closer to a standard password store layout, similar to what ​https://www.passwordstore.org/ uses.

[robe]

strk I tried to create a new file using VIM in that folder, and when I went to write, I get this error

E138: Can't write viminfo file /home/robe/.viminfo!

Can I not even write to my own home directory?

[robe]

It seemed to be able to add the file though so it's in there and I changed permissions to be group readable/writable and not public readable

[strk]

I've now created you an home (it's not automatic on first login, unfortunately).

For the future, please change permissions *before* writing content (safer).