@sandro@c3d2.social avatar

sandro

@sandro@c3d2.social

Some lefti :AFD:, NixOS :nixos:, Linux :tux:, Chaos :fairydust:

Don't be afraid of colorful flags :progress_pride: 🏳️‍🌈🏳️‍⚧️🚩🏴

This profile is from a federated server and may be incomplete. Browse more on the original instance.

sandro, to random
@sandro@c3d2.social avatar

The entire nixfmt project recently has been a big disappointment for me. nixpkgs-fmt would have been a good starting point, having a balance between enforcing rules and allowing some freedom. While nixfmt initially started with outdated ideas like 80 line length and ill fitted tries to enforce that. Adding new lines before long strings like URLs, sometimes nudging people to split them with a + which makes greping for them unnecessarily hard. They didged that which is good.

sandro, (edited ) to NixOS German
@sandro@c3d2.social avatar

Sometimes I want a reproducibility nightmare in : apply a set of changes but only when the derivativion is rebuilt anyway.

sandro, to NixOS German
@sandro@c3d2.social avatar

Replaced an unbound today with knot resolver daemon or kresd. Was super easy to port with and also create two PRs along the way: updating it to 5.7.2 and adding the missing psl Lua package to nixpkgs and kresd.
Next step is to replace the second and last bind with knot.

sandro,
@sandro@c3d2.social avatar

@silmaril You can combine the flag --extra-experimental-features "nix-command flakes" or use nix.settings.extra-experimental-features = [ "nix-command" "flakes" ];

cadey, to random
@cadey@pony.social avatar

XeDN on Tigris

https://xeiaso.net/blog/2024/xedn-tigris/

sandro,
@sandro@c3d2.social avatar

@cadey @tigrisdata You can probably just throw the blog onto one node with nginx and it be done with it.

sandro, to NixOS
@sandro@c3d2.social avatar

👀

sandro, to NixOS
@sandro@c3d2.social avatar

TIL: You can enter a a process' exact namespace with the following command to debug systemd hardening with ease:
nsenter --all --target $PID

Why did no one tell me this earlier!?

sandro, to random German
@sandro@c3d2.social avatar

Eine Distanzierung auf dem Theaterplatz ist aus der vorbeifahrenden Straßenbahn nicht zu erkennen. Ganz im Gegenteil man steht in einer Menge mit den Verfassungsfeinden der Freien Sachsen und zeigt deren Fahne.

Aus dem Augenwinkel hab ich noch eine schwarze Fahne vermeintlich erkannt, aber ohne Logo. Man ahnt nichts gutes.

sandro, to NixOS German
@sandro@c3d2.social avatar

My 23.12 upgrade story for all the servers and VMs I manage:

Let's start with the terrible. Grafana crashed because it is missed a directory when using provisioned dashboards. Fix is in https://github.com/NixOS/nixpkgs/pull/272564

Then I searched an hour for a faulty change I did two days ago where I didn't think about split Portunus LDAP server and applications and needed to move a mkIf.

That's two |s done. The next two just worked without any changes and nothing broke (so far?).

sandro, to NixOS
@sandro@c3d2.social avatar

I got a hydra that can build ca-derivation based on the current hydra version deployed! 🎉 🚀

https://github.com/NixOS/hydra/pull/1228#issuecomment-1826467256
https://github.com/SuperSandro2000/hydra/commits/ca-derivations-reprise

sandro, to random
@sandro@c3d2.social avatar

I stumbled upon the mesa shader cache bug again today https://github.com/NixOS/nixpkgs/issues/244742

After doing some research I found that Ubuntu is supposed to have a workaround for it https://bugs.launchpad.net/ubuntu/+source/mesa/+bug/2020604

But I just can't find the actual code change they did. Neither launchpad nor their git process is doing me any favor in making it easier to find things.

sandro, to NixOS
@sandro@c3d2.social avatar

Everything I manage in my free time is now on postgres 16. My upgrade script now also handles postgres extensions and jit. https://github.com/SuperSandro2000/nixos-modules/blob/master/modules/postgres.nix
Pretty damn easy with

sandro, (edited ) to NixOS German
@sandro@c3d2.social avatar

Das Hacking area/Hackcenter auf den nimmt Form an.

sandro, to NixOS
@sandro@c3d2.social avatar

nix-output-monitor is recommend by Sandro: "I recommend it"

https://cdn.infobeamer.com/dynimg/blob/image

sandro, to random
@sandro@c3d2.social avatar

Today I enabled tcp fastopen in nginx together with deferred and backlog and either my imagination is fooling me or my nextcloud is really opening noticeable faster. I read in a paper that tcp fastopen alone can improve connection times by ~15% or so. I was a bit lazy to do proper testing but I take the result.

sandro, to random
@sandro@c3d2.social avatar

Today was a productive day and I finally finished some really long taking projects. I am now hosting my own Knot DNS server and finally migrated off Cloudflare. Their DNS servers still respond with old NS records even over a day after deleting the domain from their service. Other DNS server respond with the correct one by now. Let's see when that stops.
I also migrated some mail addresess off GSuite (Google workspace they are called now I think) which triggered that journey

sandro, to random
@sandro@c3d2.social avatar

zweite Versuch erfolgreich

sandro, to random
@sandro@c3d2.social avatar

🥲🫠

sandro, to random
@sandro@c3d2.social avatar

People often tell me that the doc is not that great but compared to the secrets operator from it is fantastic. There are like no explanations of things, mostly API docs. https://developer.hashicorp.com/vault/docs/platform/k8s/vso

There is also a "tutorial" which mostly consists of copy pasting commands and in the end you have a small example that works but you didn't really learn something.
https://developer.hashicorp.com/vault/tutorials/kubernetes/vault-secrets-operator

Or maybe someone needs to point my nose on the right things.

sandro, to random
@sandro@c3d2.social avatar

might be gone much worse with the next bigger mastodon update :( https://github.com/mastodon/mastodon/pull/23989
@astro

sandro, to NixOS
@sandro@c3d2.social avatar

And c3d2.social is on mastodon version 4.1.3 and we kept our custom UI theme thanks to overlays

sandro, to NixOS
@sandro@c3d2.social avatar

I think me and @sophie got https://github.com/NixOS/nixpkgs/issues/39356 fixed this evening 🎉

sandro, to random
@sandro@c3d2.social avatar

story of this afternoon:

  • wifi being very flaky
  • ran into ssh rate limits
  • soft reseted the wrong server with production services on it
  • updated the wrong ceph component

Upsi...

sandro, (edited ) to random
@sandro@c3d2.social avatar

Mate ist definitiv beliebt
@c3d2

sandro, (edited ) to random
@sandro@c3d2.social avatar

@datenspuren @nixos_org

  • All
  • Subscribed
  • Moderated
  • Favorites
  • JUstTest
  • rosin
  • mdbf
  • khanakhh
  • tacticalgear
  • modclub
  • DreamBathrooms
  • thenastyranch
  • magazineikmin
  • InstantRegret
  • Youngstown
  • osvaldo12
  • slotface
  • kavyap
  • megavids
  • cubers
  • cisconetworking
  • anitta
  • tester
  • ngwrru68w68
  • everett
  • ethstaker
  • Durango
  • normalnudes
  • provamag3
  • Leos
  • GTA5RPClips
  • lostlight
  • All magazines
    •