From 7c0d28e98853317a5113adebb1d5f9ebfd5f1a70 Mon Sep 17 00:00:00 2001 From: Ming Di Leom <2809763-curben@users.noreply.gitlab.com> Date: Tue, 15 Jun 2021 10:49:03 +0000 Subject: [PATCH] post(nixos): user must be assigned to a group - otherwise the home folder will be created/assigned with "nogroup" group --- source/_posts/caddy-nixos-part-1.md | 2 ++ source/_posts/caddy-nixos-part-2.md | 5 +++++ 2 files changed, 7 insertions(+) diff --git a/source/_posts/caddy-nixos-part-1.md b/source/_posts/caddy-nixos-part-1.md index 3d59950..f6a06d6 100644 --- a/source/_posts/caddy-nixos-part-1.md +++ b/source/_posts/caddy-nixos-part-1.md @@ -182,11 +182,13 @@ Following is my "configuration.nix". I'll show you how to secure NixOS using has home = "/var/lib/caddyProxy"; createHome = true; isSystemUser = true; + group = "caddyProxy"; }; caddyTor = { home = "/var/lib/caddyTor"; createHome = true; isSystemUser = true; + group = "caddyTor"; }; }; diff --git a/source/_posts/caddy-nixos-part-2.md b/source/_posts/caddy-nixos-part-2.md index 607640e..178df03 100644 --- a/source/_posts/caddy-nixos-part-2.md +++ b/source/_posts/caddy-nixos-part-2.md @@ -103,11 +103,13 @@ Combining with the previous user configs, I ended up with: home = "/var/lib/caddyProxy"; createHome = true; isSystemUser = true; + group = "caddyProxy"; }; caddyTor = { home = "/var/lib/caddyTor"; createHome = true; isSystemUser = true; + group = "caddyTor"; }; tor = { home = "/var/lib/tor"; @@ -524,16 +526,19 @@ Since [unattended upgrade](#Unattended-upgrade) is executed on 00:00, I delay ga home = "/var/lib/caddyProxy"; createHome = true; isSystemUser = true; + group = "caddyProxy"; }; caddyTor = { home = "/var/lib/caddyTor"; createHome = true; isSystemUser = true; + group = "caddyTor"; }; caddyI2p = { home = "/var/lib/caddyI2p"; createHome = true; isSystemUser = true; + group = "caddyI2p"; }; };