Don't use "nobody"

2 files changed, 14 insertions, 6 deletions

diff --git a/config-parabola-service-myhostname.PKGBUILD b/config-parabola-service-myhostname.PKGBUILD
index 0bf2fc2..6bf63df 100644
--- a/config-parabola-service-myhostname.PKGBUILD
+++ b/config-parabola-service-myhostname.PKGBUILD
@@ -1,5 +1,5 @@
 . ${BUILDFILE%/*}/common.sh
-pkgver=20180826.1
+pkgver=20180828
 
 package() {
 preamble
@@ -61,12 +61,16 @@ for cmd in "\${cmds[@]}"; do
 done
 EOF
 
+add-file -m644 etc/sysusers.d/myhostname.conf <<-'EOF'
+	u myhostname -
+	EOF
+
 add-file etc/uwsgi/myhostname.ini <<EOF
 [uwsgi]
 master = true
 processes = 1
 
-uid = nobody
+uid = myhostname
 gid = http
 
 plugins = cgi
diff --git a/config-parabola-service-repo.PKGBUILD b/config-parabola-service-repo.PKGBUILD
index d11a962..732c811 100644
--- a/config-parabola-service-repo.PKGBUILD
+++ b/config-parabola-service-repo.PKGBUILD
@@ -1,5 +1,5 @@
 . ${BUILDFILE%/*}/common.sh
-pkgver=20180826.2
+pkgver=20180828
 
 package() {
 preamble
@@ -59,12 +59,16 @@ server {
 }
 EOF
 
+add-file -m644 etc/sysusers.d/repo.conf <<-'EOF'
+	u repo-readonly -
+	EOF
+
 add-file -m644 etc/uwsgi/repo.ini <<EOF
 [uwsgi]
 master = true
 processes = 4
 
-uid = nobody
+uid = repo-readonly
 gid = http
 
 plugins = php
@@ -101,7 +105,7 @@ add-file -m644 etc/uwsgi/repomirror.ini <<EOF
 master = true
 processes = 4
 
-uid = nobody
+uid = repo-readonly
 gid = http
 
 plugins = php
@@ -114,7 +118,7 @@ add-unit etc/systemd/system/sockets.target.wants/uwsgi@repomirror.socket
 
 add-file -m644 etc/systemd/system/rsyncd@.service.d/user.conf <<EOF
 [Service]
-User=nobody
+User=repo-readonly
 EOF
 
 add-file -m644 etc/systemd/system/rsyncd.socket.d/port.conf <<EOF