Threads for linuxhackerman
-
Where would I make use of nix? Day to day I don’t even really touch
aptall too much other than to update things. The main place where I do installations where this would seem relevant is in Dockerfiles - is that the intended use case?-
There are many “levels” at which Nix can be useful, for example:
- you can install it and use it to manage software in container images as @wimpress suggests, if you’re using Dockerfiles to “test the waters” or need to be compatible with other components that only like Dockerfiles;
- you can build Docker images entirely within Nix, making reproducing images easier and (often) resulting in more compact images;
- you can use it to manage the everyday software you use on your workstation, simply by installing the software using Nix or by installing and configuring it using home-manager;
- you can use
nix runto try out software without worrying about uninstalling it again later; - you can put your entire OS together with Nix, as with NixOS or more specialised setups like liminix;
All of these are options which will appeal to various people to various degrees, and you can pick and choose which ones you’re most interested in!
-
-
-
I am enjoying all the Linux boot content lately. Hoping for a good post on how exactly secure boot protects you against various attacks and how it does this; anybody know of one?
-
Matthew Garrett has a bunch of good material on Secure Boot. https://mjg59.dreamwidth.org/57199.html isn’t really about the workstation use case, but explains what a secure boot chain can look like (and what it’s there to ensure).
-
-
Didn’t you reinvent
dockerwith your solution? Docker also usespivot_rootand essentially solves the exact same problem with very similar methods. A simple Dockerfile withFROM ubuntu:focalwould probably give you the same thing you outlined here, unless I missed some crucial requirement that cannot be satisfied with docker.-
-
Yeah, as hufman says this isn’t running both OSes in parallel, it’s having them installed in parallel – but mimicking a “normal” installation much more closely than one could ever achieve with docker. None of the namespace or cgroup stuff – real direct access to everything the kernel can provide.
-
-
Original post: https://linus.schreibt.jetzt/posts/qemu-9p-performance.html
I love the clickbait title. QEMU always makes me click.
-
Glad lobste.rs is here to take that with a bit of humour!
To nitpick: neither one is really “canonical” or “original”, one is just my employer’s blog and the other is my own :)
-
-
Excellent! I love that it’s enabled flakes by default. The choice of Rust over shell in this case is pretty choice, too. Mac ships an appallingly old
bashthat is wildly different from … every Linux distribution today.Can’t wait to try it. Does it work on FreeBSD?
Unfortunately it doesn’t support FreeBSD yet. Nix/Nixpkgs itself has pretty poor support for FreeBSD today, so we didn’t build it out yet. We could definitely add it!
Freebsd has its own port though.
I haven’t had a lot of luck getting anything to work. If you have some idea/blog/website of how to bootstrap a new system, I’d love to hear about it. The official docs still download a little tarball of binaries built from a pre-existing nix system, and so far as I can tell, it’s not generally available for FreeBSD.
I’ve been lurking in the Exotic Nix Targets Matrix room, and it looks like the folks there have been putting a lot of good work into supporting less widespread targets, including BSDs and Illumos, recently. That room might be worth joining if you’re interested in those developments :)