PoolloverNathan

PoolloverNathan, 6 days ago

Obligatory “I lustrated it in favor of nixos” post

PoolloverNathan, 6 days ago

Installed NixOS but don’t like NixOS? Try nix-env -iA estrogen.

PoolloverNathan, 6 days ago

tar x

PoolloverNathan, 7 days ago

LiNuX uSeR iNsTaLlInG A BrOwSeR haha

yeah uh…

• sudo apt install firefox
• sudo xbps-install firefox
• sudo pacman -Syu firefox
• nix-env -iA firefox

PoolloverNathan, 11 days ago

Is that TV just a CentOS box running VLC‽

PoolloverNathan, 12 days ago

You need to surround the text. H2O2 = H2O2.

PoolloverNathan, 12 days ago

!technicallythetruth

PoolloverNathan, 12 days ago

Tip: Alt+SysRq+F to force an OOM kill. It’ll usually target the leaking process.

PoolloverNathan, 12 days ago

Print Screen

PoolloverNathan, 13 days ago

Relevant XKCD

PoolloverNathan, 13 days ago

Rule 24 of the internet is that there is always a relevant XKCD.

PoolloverNathan, 13 days ago (edited 9 days ago)

OS: NixOS 24.05 (gen 67, non-flake)
WM, DE: KDE Plasma
Mass massaging: Aliucord mobile, Vencord (installed from nixpkgs patch) desktop
P2P messaging: Netcat
Don’t really watch many videos / listen to music
Editor: Sandboxed VSCodium
Base flake for development environments: stddev
Programming language: Haskell + Rust + Go (one project)
Browser: Sandboxed Firefox
Phone launcher: Niagara

PoolloverNathan, 14 days ago

I use NixOS (plasma, setting up xmonad) btw

PoolloverNathan, 12 days ago

Thank you!

PoolloverNathan, 14 days ago

Actually I want to write an app browser for NixOS now.

PoolloverNathan, 15 days ago

!woooosh

PoolloverNathan, 14 days ago

I’m glad Voyager puts baby icons on new accounts; it usually resembles how they look in real life.

PoolloverNathan, 14 days ago (edited 7 days ago)

!holocaustjokes

Edit: Not associated with lemmygrad or anything in those instances. That was just the instance that sounded most likely to have this community.

PoolloverNathan, 17 days ago

Use asterisks for in-word italics: infamous → infamous.

PoolloverNathan, 19 days ago

I calmly remove my USB labeled “oh shit” from my pocket, insert it, and reboot.

PoolloverNathan, 20 days ago

It cannot go above a certain value

PoolloverNathan, 23 days ago

That’s why I put Linux on my house.

PoolloverNathan, 24 days ago

I just add this to my system config:

<span style="color:#323232;">networking.wireless = {
</span><span style="color:#323232;">  enable = true;
</span><span style="color:#323232;">  networks = import ./networks.nix;
</span><span style="color:#323232;">};
</span>

Then I define my networks in a gitignored file and I’m good to go.

PoolloverNathan, 14 days ago

Made a Nix library for this. For a simple setup you can just build this (untested) and run the result:

<span style="color:#323232;">import ./encase.nix {
</span><span style="color:#323232;">  name = "firefox";
</span><span style="color:#323232;">  rw.home.nathan = /home/nathan/home-for/firefox;
</span><span style="color:#323232;">  # other dependencies it might need...
</span><span style="color:#323232;">  tmp = /tmp; # fresh tmpfs for this sandbox
</span><span style="color:#323232;">  network = true;
</span><span style="color:#323232;">  command = pkgs.firefox;
</span><span style="color:#323232;">}
</span>

It doesn’t have user isolation yet, so if it escapes the browser and the chroot (which doesn’t have a /proc unless you set proc = /proc;, and runs in a PID namespace either way) your files are still at risk. However, this is still pretty secure, and you can run the script itself as a different user (it creates a new UID namespace so chrooting can be done without root).

PoolloverNathan, 14 days ago

It’s an option, default off. If you enable it it prompts you to install the CA for the block page.