diff --git a/proftpd/tasks/main.yml b/proftpd/tasks/main.yml
index 76056e15..4e6a6884 100644
--- a/proftpd/tasks/main.yml
+++ b/proftpd/tasks/main.yml
@@ -38,6 +38,19 @@
     src: vpasswd
     dest: /etc/proftpd/vpasswd
     force: no
-    mode: "0440"
+  notify: restart proftpd
+  tags:
+  - proftpd
+
+# Why 440? Because should be edited with ftpasswd.
+# So, readonly when opened with vim.
+# Then readable by group.
+- name: Enforce permissions on password file
+  file:
+    path: /etc/proftpd/vpasswd
+    mode: "0440"
+    owner: root
+    group: root
+  notify: restart proftpd
   tags:
   - proftpd