diff --git a/source/_posts/caddy-nixos-part-1.md b/source/_posts/caddy-nixos-part-1.md
index 3d59950..f6a06d6 100644
--- a/source/_posts/caddy-nixos-part-1.md
+++ b/source/_posts/caddy-nixos-part-1.md
@@ -182,11 +182,13 @@ Following is my "configuration.nix". I'll show you how to secure NixOS using has
         home = "/var/lib/caddyProxy";
         createHome = true;
         isSystemUser = true;
+        group = "caddyProxy";
       };
       caddyTor = {
         home = "/var/lib/caddyTor";
         createHome = true;
         isSystemUser = true;
+        group = "caddyTor";
       };
     };
 
diff --git a/source/_posts/caddy-nixos-part-2.md b/source/_posts/caddy-nixos-part-2.md
index 607640e..178df03 100644
--- a/source/_posts/caddy-nixos-part-2.md
+++ b/source/_posts/caddy-nixos-part-2.md
@@ -103,11 +103,13 @@ Combining with the previous user configs, I ended up with:
         home = "/var/lib/caddyProxy";
         createHome = true;
         isSystemUser = true;
+        group = "caddyProxy";
       };
       caddyTor = {
         home = "/var/lib/caddyTor";
         createHome = true;
         isSystemUser = true;
+        group = "caddyTor";
       };
       tor = {
         home = "/var/lib/tor";
@@ -524,16 +526,19 @@ Since [unattended upgrade](#Unattended-upgrade) is executed on 00:00, I delay ga
         home = "/var/lib/caddyProxy";
         createHome = true;
         isSystemUser = true;
+        group = "caddyProxy";
       };
       caddyTor = {
         home = "/var/lib/caddyTor";
         createHome = true;
         isSystemUser = true;
+        group = "caddyTor";
       };
       caddyI2p = {
         home = "/var/lib/caddyI2p";
         createHome = true;
         isSystemUser = true;
+        group = "caddyI2p";
       };
     };