From b31968dcf1dc00b8742e921ff54ef54ad1a0e386 Mon Sep 17 00:00:00 2001
From: Timo Makinen <tmakinen@foo.sh>
Date: Wed, 22 May 2019 19:44:04 +0300
Subject: [PATCH] run rsyncd as rsyncd user instead of nobody

---
 roles/rsync/server/tasks/main.yml           | 14 ++++++++++++++
 roles/rsync/server/templates/rsyncd.conf.j2 |  3 +++
 2 files changed, 17 insertions(+)

diff --git a/roles/rsync/server/tasks/main.yml b/roles/rsync/server/tasks/main.yml
index 00f6523..354ac89 100644
--- a/roles/rsync/server/tasks/main.yml
+++ b/roles/rsync/server/tasks/main.yml
@@ -1,4 +1,18 @@
 ---
+- name: create rsyncd group
+  group:
+    name: rsyncd
+    system: true
+
+- name: create rsyncd user
+  user:
+    name: rsyncd
+    comment: Service RSyncd
+    group: rsyncd
+    home: /var/empty
+    shell: /sbin/nologin
+    system: true
+
 - name: create rsyncd config
   template:
     dest: /etc/rsyncd.conf
diff --git a/roles/rsync/server/templates/rsyncd.conf.j2 b/roles/rsync/server/templates/rsyncd.conf.j2
index 72f9a9a..cf22692 100644
--- a/roles/rsync/server/templates/rsyncd.conf.j2
+++ b/roles/rsync/server/templates/rsyncd.conf.j2
@@ -1,3 +1,6 @@
+uid = rsyncd
+gid = rsyncd
+
 [test]
 comment = test module
 path = /srv/mirrors/openbsd/