You’re not supposed to “sudo everything” though. It’s mostly for changing the system configuration (editing config files in /etc/, running your system package manager etc.). It shouldn’t be a “oh, I got a permission error, better sudo the same command again olol”
Ah, ACLs, had the pleasure of working with these again last weeks.
It gets really curious when even the Arch wiki doesn’t really know what’s going on (talking about mask and effective permissions):
From trying, I can confirm that the info presented further down is wrong.
Once you read what it actually does and why it’s the way it is, it makes more sense - not that I remember it now - but at least there was a coherent design decision behind it