diff --git a/chmod b/chmod
index aff02240..e15f3f64 100755
--- a/chmod
+++ b/chmod
@@ -32,14 +32,11 @@ chmod -v 600 ~/.ssh/authorized_keys
 # if we have support for setting ACL, some of this becomes easier (although maybe redundant)
 if hash setfacl 2> /dev/null; then
 	setfacl --modify u:$(id -un):rw,g:$(id -gn):r,o:r ~/.oidentd.conf
-	# The execute permission is a bit silly to  apply recursively, but it's
-	# needed for cd and ls. so perhaps there should be some responsibility
-	# given to others too...
-	setfacl --recursive --modify u:$(id -un):rw,g:$(id -gn):rx,o:rx ~/public_html/
+	setfacl --recursive --modify u:$(id -un):rwX,g:$(id -gn):rX,o:rX ~/public_html/
 
 	# Enabling laziness pt. …
 	if [[ -d ~/.shell-things ]]; then
-		setfacl --recursive --modify u:$(id -un):rw,g:$(id -gn):rx,o:rx ~/.shell-things/
+		setfacl --recursive --modify u:$(id -un):rwX,g:$(id -gn):rX,o:rX ~/.shell-things/
 	fi
 fi
 
diff --git a/etc/systemd/system/aminda-nocron-reboot.service b/etc/systemd/system/aminda-nocron-reboot.service
index f01f927c..aa9b655a 100644
--- a/etc/systemd/system/aminda-nocron-reboot.service
+++ b/etc/systemd/system/aminda-nocron-reboot.service
@@ -40,7 +40,7 @@ ExecStart=-/usr/bin/systemctl enable --now chrony.service
 ExecStart=-/usr/bin/systemctl enable --now chronyd.service
 ExecStart=-/usr/bin/systemctl enable --now systemd-oomd.service systemd-oomd.socket
 ExecStart=-/bin/chown -R root:${LINUXBREWGROUP} /home/linuxbrew -R
-ExecStart=-/bin/setfacl -R -m g:${LINUXBREWGROUP}:rwx,o:rx /home/linuxbrew
+ExecStart=-/bin/setfacl -R -m g:${LINUXBREWGROUP}:rwX,o:rX /home/linuxbrew
 User=root
 StandardOutput=journal
 StandardError=journal