@sandro@c3d2.social avatar

sandro

@sandro@c3d2.social

Some lefti :AFD:, NixOS :nixos:, Linux :tux:, Chaos :fairydust:

Don't be afraid of colorful flags :progress_pride: 🏳️‍🌈🏳️‍⚧️🚩🏴

This profile is from a federated server and may be incomplete. Browse more on the original instance.

domenkozar, to random
@domenkozar@fosstodon.org avatar

http://devenv.sh will use Mold linker when using
@rust by default on Linux to speed up compilation, you can disable it via

languages.rust.mold.enable = false;

sandro,
@sandro@c3d2.social avatar

@domenkozar @rust Is it really just a drop-in replacement? Sounds to good to be true .

jakehamilton, to random
@jakehamilton@hachyderm.io avatar

Nushell is really cool

sandro,
@sandro@c3d2.social avatar

@jakehamilton A friend of mine has it by default and I always tell him to just open bash when he struggles to run basic Linux commands like du -sh 😅

Shells other than bash/zsh always failed for me because of the hard backwards compatibility break.

jakehamilton, to random
@jakehamilton@hachyderm.io avatar

FYI

If I'm following you, it's because I think you're cool. If I'm not following you, it's because I don't know how cool you are yet.

You're cool, keep doing cool things

sandro,
@sandro@c3d2.social avatar

@jakehamilton 🧊

geerlingguy, to linux
@geerlingguy@mastodon.social avatar

A few years ago, I would've said CentOS or Debian. Now, the answer is much easier

sandro,
@sandro@c3d2.social avatar

@crft @geerlingguy The pain with Debian starts when using out of tree software. Every homelab project I want to use is not in Debian.

sandro, to NixOS
@sandro@c3d2.social avatar

Maybe I didn't delete old system profiles for a bit...

note: currently hard linking saves 273250.45 MiB
119288 store paths deleted, 148805.54 MiB freed

flora, to macos
@flora@shonk.social avatar

anyone here that can help me with nix on macos with limited sudo access and self-signed certs being forced into my connection to nixos.org by corporate?

sandro,
@sandro@c3d2.social avatar

@flora Create an Excel sheet and collect how much time you are wasting on a daily basis to patch certificates into various programs. Besides that MITM TLS makes security worse and breaks whole bunch of stuff.

sandro,
@sandro@c3d2.social avatar

@flora You can collect that on sheet 2 😂

sandro, to NixOS German
@sandro@c3d2.social avatar

Replaced an unbound today with knot resolver daemon or kresd. Was super easy to port with and also create two PRs along the way: updating it to 5.7.2 and adding the missing psl Lua package to nixpkgs and kresd.
Next step is to replace the second and last bind with knot.

sandro,
@sandro@c3d2.social avatar

@Lafiel I didn't do reliable benchmarking but the final config is about half as long and it feels like kresd has more modern features and the design behind it is newer.

justelex, to NixOS German
@justelex@social.justelex.de avatar

Es ist faszinierend wie sehr in meinem Umfeld doch um sich gegriffen hat. Speziell in den @westwoodlabs . Wir haben mittlerweile schon unsere eigene, nicht ganz kleine Usergroup.

sandro,
@sandro@c3d2.social avatar

@justelex @westwoodlabs Kann man nix dagegen machen

joshuaCrewe, to NixOS
@joshuaCrewe@fosstodon.org avatar

Any suggestions on how to structure my config is very welcome. I have been trying to follow along with some of the things I have been seeing but not seen a consensus.

sandro,
@sandro@c3d2.social avatar

@joshuaCrewe I have a module for global settings and several smaller ones for specific tasks like servers or desktops and then the host specific config.

pi_crew, to NixOS
@pi_crew@social.project-insanity.org avatar

Impressive increase in commit count for the nixpkgs repository last month 😳

sandro,
@sandro@c3d2.social avatar

@pi_crew More doesn't mean better.

clot27, to NixOS
@clot27@mastodon.social avatar

Gotta learn about nixos home manager, worth it?

sandro,
@sandro@c3d2.social avatar

@clot27 If you are solely on NixOS IMO not at all. It has to many workarounds and quirks for other OS's.

amanzer, to NixOS
@amanzer@techhub.social avatar

How do people handle in configurations?

I see sops-nix a lot, but it's generally used with SSH keys. But where do I get that SSH key from, and what if I lose it? Or what if I want to put my SSH key in Home Manager? Or what if I do a rebuild on another system that doesn't have that ssh key?

Can I just put a password in during a nixos-rebuild that'll decrypt my secret file(s)?

(I tried using sops with a gpg key on my Yubikey, but stumbled into an "Invalid Time" error that apparently me and 3 other people on Reddit have seen. But even if the key was safe on my Yubikey, it still doesn't solve the "rebuilding on another machine", because my Yubikey is on my desktop, not the VM, right?)

sandro,
@sandro@c3d2.social avatar

@amanzer https://github.com/Mic92/sops-nix

sandro,
@sandro@c3d2.social avatar

@silmaril You can combine the flag --extra-experimental-features "nix-command flakes" or use nix.settings.extra-experimental-features = [ "nix-command" "flakes" ];

ch, to linux
@ch@emacs.ch avatar

Getting your configuration.nix squared away is the 2024-equivalent of optimising your CFLAGS in Gentoo.

sandro,
@sandro@c3d2.social avatar

@ch Except that it isn't that statefull 😅

jakehamilton, to NixOS
@jakehamilton@hachyderm.io avatar

The latest edition of is out! Lots of things happened last week, take a look!

https://nixpkgs.news/

sandro,
@sandro@c3d2.social avatar

@jakehamilton small note: the xz revert is not causing a few hundred rebuilds but more a couple of thousand on a end user system and 200k for nixpkgs.

b0rk, (edited ) to random
@b0rk@jvns.ca avatar

what's your favourite way to simplify your life with git? mostly interested in slightly unusual tricks to reduce the number of git features you're using, like:

  • never using the stash, just creating temporary branches instead
  • deleting your main branch so that you can never accidentally commit to it
sandro,
@sandro@c3d2.social avatar

@jakehamilton @b0rk The default to create a merge commit is usually worse.

otini, to NixOS
@otini@functional.cafe avatar

I hate it so much when I update my system and it starts compiling something and it’s hard to even know what and even harder to know why the hell is it building from source

sandro,
@sandro@c3d2.social avatar

@otini They are sorted by store path

sandro,
@sandro@c3d2.social avatar

@otini I am not sure on that one. People working on paid software are getting paid and that is usually also pretty shitty.

sandro,
@sandro@c3d2.social avatar

@otini Do you have overlays?

pmakholm, to random
@pmakholm@fosstodon.org avatar

I have never been much of a distro hopper.

Since I installed Debian 2.0 (Hamm) I have only moved slightly between Debian and Ubuntu and since the discontinuation of Upstartd this is hardly hopping.

But now I'm ready to try something new...

More and more often I found myself doing things like developing my code in one terminal and running it in another with "docker -run ti -v .:/workspace xxx".

It works, it keeps my main environment clean, it is inconvenient.

sandro,
@sandro@c3d2.social avatar

@pmakholm You mean something like https://github.com/nix-community/lorri ?

Ede, to NixOS German
@Ede@chaos.social avatar

Hallo Fedi,

kann mir sagen wie ich cap-add unter konfigurieren muss, damit ich in Containern /dev/tun/tap verwenden kann? Mir würde ein snippet oder howto reichen.

sandro,
@sandro@c3d2.social avatar

@Ede Kann man das per default mit den configs setzen? Dann könnte man vllt virtualisation.podman.defaultNetwork.settings
oder so nutzen

kitchen, to random
@kitchen@simian.rodeo avatar

learning an entirely new programming language to manage my dotfiles because bash is that bad

sandro,
@sandro@c3d2.social avatar

@kitchen You don't really need to. For most basic and middle level things you need to know very little about the nix language.

LGUG2Z, to NixOS
@LGUG2Z@hachyderm.io avatar

As promised, here is the step-by-step walkthrough showing you how to get full passthrough support for your 🗝

Yes, I do mean FULL passthrough, including support for ! 🔐

Yes, you can copy and paste instructions and code for every step! 👩‍💻

The walkthrough targets but you can replicate the same steps on any other distro too 🎉

https://lgug2z.com/articles/yubikey-passthrough-on-wsl2-with-full-fido2-support

sandro,
@sandro@c3d2.social avatar

@LGUG2Z Can you update the post now that the module got merged? Also I think you forgot to mention that you need to run usbipd bind to make the usb device available.

  • All
  • Subscribed
  • Moderated
  • Favorites
  • megavids
  • ngwrru68w68
  • kavyap
  • everett
  • Durango
  • osvaldo12
  • rosin
  • thenastyranch
  • DreamBathrooms
  • mdbf
  • magazineikmin
  • InstantRegret
  • Youngstown
  • slotface
  • JUstTest
  • anitta
  • normalnudes
  • ethstaker
  • cisconetworking
  • tacticalgear
  • khanakhh
  • cubers
  • GTA5RPClips
  • provamag3
  • modclub
  • Leos
  • tester
  • lostlight
  • All magazines
    •