fishinthecalculator 1 month ago • 100%
Would be pretty useful, as far as I know there is no way to change /etc/{subuid,subgid} in the system configuration without manually editing.
Well I had to make one :) it is being tracked on https://issues.guix.gnu.org/72337 . You can define subuid and subgid ranges like so:
(use-modules (gnu system shadow) ;for 'subids-service-type'
(gnu system accounts)) ;for 'subid-range'
(operating-system
(services
(list
(simple-service 'alice-bob-subids
subids-service-type
(subids-extension
(subgids
(list
(subid-range (name "alice"))))
(subuids
(list
(subid-range (name "alice"))
(subid-range (name "bob")
(start 100700)))))))))
which would yield
# cat /etc/subgid
root:100000:65536
alice:165536:65536
# cat /etc/subuid
root:100000:700
bob:100700:65536
alice:166236:65536
Another annoyance with podman on guix is making / a shared mount doesn’t work so changes in mounts aren’t propagated.
I think I solved that by using a Shepherd service run on boot calling mount --make-shared /
. I didn't do extensive testing of mounts but I'm currently using this on my systems as it's set up in my
personal channel. By adding the following to my own system config
(use-modules (small-guix system accounts)
(small-guix services containers))
(service iptables-service-type)
(service rootless-podman-service-type
(rootless-podman-configuration
(subgids
(list (subid-range (name "alice"))))
(subuids
(list (subid-range (name "alice"))))))
I'm able to run the following rootless Podman hello world
$ podman run -it --rm docker.io/alpine cat /etc/*release*
NAME="Alpine Linux"
ID=alpine
VERSION_ID=3.20.2
PRETTY_NAME="Alpine Linux v3.20"
HOME_URL="https://alpinelinux.org/"
BUG_REPORT_URL="https://gitlab.alpinelinux.org/alpine/aports/-/issues"
and with guix shell podman-compose
I'm able to run this Podman compose
hello world:
$ mkdir data
$ echo hello world > data/index.html
$ podman compose up -d
...
exit code: 0
$ curl localhost:8080
hello world
So some kind of mount appears to work. Thank you for your feedback and feel free to try the service from my own channel if you are interested in providing more or in trying rootless podman on the Guix System.
fishinthecalculator 2 months ago • 100%
A little too pitchy imho. It is just a regular linux distro with each system update creating a new fs snapshots .
Just use Nix/Guix lmao
fishinthecalculator 5 months ago • 100%
I wouldn't go the manual way if you are not forced. If you use NetworkManager you can import the configuration either grafically or with nmcli
.
It should be sufficiente to modify the network manager service provided by Guix:
(modify-services %desktop-services
[...]
(network-manager-service-type config =>
(network-manager-configuration
(inherit config)
(vpn-plugins (list network-manager-openvpn))))
reconfiguring your system, rebooting and then importing the configuration and set your credentials
fishinthecalculator 7 months ago • 100%
It is quite basic still and historically had some problems with reboots, but lately it has gained a lot of attention and bug fixes. I have no experience of runnit, compared to systemd is leaner but in my experience there's no big feature lacking
fishinthecalculator 8 months ago • 100%
They do very different things even if the outcome is the same. You are not rollingback your system by downgrading each package. You are statefully changing your filesystem. Rollbacks in Nix and Guix are internet free, atomic and reproducible because they amount to changing the target of a single symlink
fishinthecalculator 8 months ago • 66%
I guess you are not entitled free support once you execute a free program
fishinthecalculator 8 months ago • 100%
I think functional distros like Guix or Nix are just another thing. Their ability of programming , provisioning and deploying software environments is unparalleled. My personal favorite is Guix since, while having less packages than Nix, it has the most consistent experience: everything is in Scheme from the top to the bottom of the distro. Also it pushes really hard on a sane bootstrapping story while allowing for impurity through channels like nonguix .
The main downside is the lack of tutorials and a documentation that's very intense, let's say. typical of GNU projects. I suggest the System Crafters youtube channel which has a lot of nice tutorials
fishinthecalculator 8 months ago • 100%
with nonguix the lines are like five instead of one, but yes there are less packages than nix. the real selling point imho is how everything is human-sized and consistent
a proposal of automated provisioning of secrets on guix with sops
If you need to run Grafana on the Guix System this post is the right place. In this example we'll setup Grafana to read metrics from the same machine it's run upon, but you can adapt this to use a remote datasource.
fishinthecalculator 10 months ago • 100%
imho having a more accessible contribution workflow would increase the number of people interested in spending time in reviewing.
Regardless of the many problems of web forges today the ability to review only what's changed between the various revisions of a pull request and the comments in a single view is not achievable with a simple email workflow. You end up reimplementing the PR/MR functionality with other tools, exactly as is happening with the Guix QA tools. I love them but we're reimplementing gitlab/gitea/codeberg by parsing patch revisions from emails subjects.
fishinthecalculator 10 months ago • 100%
it's not like it's easy contributing to guix :( i really hope they move to something more accessible
I'm developing a Guix channel with a library of community maintained Shepherd Services for self-hosted software that is not yet guixable. For now there are Grafana, Prometheus and Conduit but it would be amazing if you'd like to contribute some services or even just test the existing ones and report any bug.
fishinthecalculator 10 months ago • 100%
If you don't have commit access you don't need an account. I contributed many times without ever registering on Savannah.
fishinthecalculator 10 months ago • 100%
Do you have commit access? Otherwise your account is mostly useless also if they don't delete it.
fishinthecalculator 10 months ago • 100%
Yes and if you like lisp or FSDG compliance have a look at Guix
fishinthecalculator 11 months ago • 100%
The fact that you see guix downloading mariadb is probably due to "inputs bloat" you may never be able to get rid of it without an upstream fix or providing your own implementation of some upstream package/service. 4 to 6 hours is a lot, do you use substitutes?
If you want to reduce the bloatedness of your operating-system record, look into %desktop-services
or %base-services
(depending on which one you are overriding) and delete/replace what you will with modify-services
.
Here are my configurations.
fishinthecalculator 11 months ago • 100%
not sure if it's still useful, I sometimes use this script to find out which executable file depend on which shared library in a fs tree. maybe it can help you too
fishinthecalculator 11 months ago • 100%
Hi, I just wanted to share small collection of utilities I'm maintaining to ease my way into Guix development. I hope they can help you as they do for me :)
fishinthecalculator 11 months ago • 100%
Working Screensharing from first boot lmao
fishinthecalculator 12 months ago • 100%
Just use lisp
fishinthecalculator 12 months ago • 100%
You are probably looking at the 1.4 release download page, if you click on the latest release it should be there.
Let me know if you manage to get it running 🥺 I was about to open a bug report
fishinthecalculator 12 months ago • 50%
Like third grade history I believe
fishinthecalculator 12 months ago • 90%
No. They are not equal and neither same. If you understand Italian I suggest you to search for Prof. Barbero videos on the topic. They are quite better than anything I'll be able to convey.
Fascism:
It's an authoritarian dictatorship happened between 1914 and 1945 in Italy. The fascist regime and ideology was strictly based on Mussolini's figure, people marched in straight lines down the streets, everyone wearing the same uniforms and Italy was a great imperialist nation (lol jk it wasn't but they quite believed it). Fascism and the fascist party stopped existing after partisans overthrew the regime. Fascism is a 20 years long dictatorship. After that there were some regimes around the world that were inspired by Mussolini such as the current ruling party Italy Fratelli d'Italia, Marine le Pen's party in France, those shitty AFD in Germany, orban's Regime, franco in Spain etc etc. They are called neofascists, because Fascism was a 20 years long regime happened in Italy between 1914 and 1945.
Communism:
Communism is a model of governace that's never been achieved in human history, as someone above said it's about classless, stateless, governance models. It's been around for like 200 years (the Communist Party Manifesto is from 1848), and in every country of the world there is/ has been a Communist Party and as we know they were always persecuted for being communist, stopped from going to the government and stopped from bulding a classless society when they managed to get to govern. Just see what the USA did in the last 50/60 years in every country that risked a communist government: Chile and latin America in general, Italy and so on an so forth.
Fascism =/= communism, and if you say the contrary you just don't know how they work.
fishinthecalculator 1 year ago • 100%
My guess would be that it's not a property of the kernel, it's a property of the software distribution you build upon that kernel. The same way you can distribute software for Linux with Guix, Nix, APT, RPM, Flatpak, I suppose in the Redox world you could distribute software and deploy systems in many different ways.
fishinthecalculator 1 year ago • 100%
You mean something like Guix or Nix?
Does anyone have experience in flashing the Pinebook Pro EMMC with Guix? The images provided on the website don't boot on my SDCard with TowBoot. I flashed it multiple times with `dd if=guix-latest.img of=/dev/mmcblkX bs=4M status=progress oflag=sync` Am I supposed to do something specific?
How can I prevent Doom Emacs from pointlessly downloading emacs packages whenever I update it and instead load the ones provided by Guix? I have [this](https://gitlab.com/orang3/guix-home/-/blob/main/fishinthecalculator/etc/doom/.doom.d/config.el#L80) in my Doom configuration but I have no idea about how to test if it's working, and anyway Doom still dowloads i.e. undo-tree which I installed in my Guix profile
fishinthecalculator 3 years ago • 100%
It's FOSS, It clearly states that it "grants rights to study, execute, modify and redistribute the Software or its derivatives", but "reserve the commercial use of these rights to the only entities defined in Article 3."
fishinthecalculator 3 years ago • 100%
Yes I definitely agree: free software is also a requirement for bootstrappability and reproducibility.
fishinthecalculator 3 years ago • 80%
You mean reproducibility and bootstrappability?
fishinthecalculator 3 years ago • 80%
Nice try Jeff, nice try... /s
fishinthecalculator 4 years ago • 84%
You do realize that's a bad attribute for someone leading the Free Software Foundation.
fishinthecalculator 4 years ago • 70%
I mean if near endorsement of child abuse is not enough , yeah, please, let's wait until he fully endorses child abuse, then we'll get rid of him.
fishinthecalculator 4 years ago • 71%
How is this good news?
fishinthecalculator 4 years ago • 100%
+1, for me it was Guile Scheme. I think that S-exp are actually unbeatable for their combo of simplicity, expressive power and strong specification (and they are like ~60 years old). No one of the above mentioned formats has all of these features.
fishinthecalculator 4 years ago • 100%
After the parentheses revolution we'll use S-exps all the way down! :D
fishinthecalculator 4 years ago • 100%
Si scusate per il casino, non avevo letto la descrizione e ho dato per scontato fosse l'unica community.
fishinthecalculator 4 years ago • 100%
Whoops, quindi sono OT. Scusate, avevo dato per scontato senza leggere la descrizione.
fishinthecalculator 4 years ago • 100%
I really envy you, I'm doing some research about Italian tech coops for a-soon-to-be Awesome List for TWC Italia and I found four so far (three of which come from this list :'D).
fishinthecalculator 4 years ago • 100%
No actually I would love to but in Italy (as far as I know) the idea is not that spread yet. BTW I would really love to start one as well.
fishinthecalculator 4 years ago • 100%
I use Guix as a daily driver on my laptop, coming from Arch and Debian.
What I like the most about Guix is the hackability of it all. In my (about one year long) experience the consistency of iterfacing with a single API and syntax to almost everything in a system is a breath of fresh air after years of copypasting snippets from the web to the most disparate files under /etc.
Of course Scheme has a little steeper learning curve w.r.t. PKGBUILD
s but imho it's much easier than to learn the APT packaging system, that requires you to understand the purpose and syntax of many different DSLs.
fishinthecalculator 4 years ago • 100%
That every interaction with the system is done through a transaction thus is atomic and reversible.
Atomic means every time you upgrade/install/remove a package from your profile that action can either fail or succeed, it can't get stuck in between. After performing that action, you can always roll back that action so you basically have an undo button for package management.