Would be pretty useful, as far as I know there is no way to change /etc/{subuid,subgid} in the system configuration without manually editing.

Well I had to make one :) it is being tracked on https://issues.guix.gnu.org/72337 . You can define subuid and subgid ranges like so:

(use-modules (gnu system shadow)      ;for 'subids-service-type'
                         (gnu system accounts))   ;for 'subid-range'

(operating-system
  (services
    (list
      (simple-service 'alice-bob-subids
                      subids-service-type
                      (subids-extension
                        (subgids
                         (list
                          (subid-range (name "alice"))))
                        (subuids
                         (list
                          (subid-range (name "alice"))
                          (subid-range (name "bob")
                                       (start 100700)))))))))

which would yield

# cat /etc/subgid
root:100000:65536
alice:165536:65536


# cat /etc/subuid
root:100000:700
bob:100700:65536
alice:166236:65536

Another annoyance with podman on guix is making / a shared mount doesn’t work so changes in mounts aren’t propagated.

I think I solved that by using a Shepherd service run on boot calling mount --make-shared / . I didn't do extensive testing of mounts but I'm currently using this on my systems as it's set up in my personal channel. By adding the following to my own system config

(use-modules (small-guix system accounts)
                         (small-guix services containers))

(service iptables-service-type)
(service rootless-podman-service-type
               (rootless-podman-configuration
                (subgids
                 (list (subid-range (name "alice"))))
                (subuids
                 (list (subid-range (name "alice"))))))

I'm able to run the following rootless Podman hello world

$ podman run -it --rm docker.io/alpine cat /etc/*release*
NAME="Alpine Linux"
ID=alpine
VERSION_ID=3.20.2
PRETTY_NAME="Alpine Linux v3.20"
HOME_URL="https://alpinelinux.org/"
BUG_REPORT_URL="https://gitlab.alpinelinux.org/alpine/aports/-/issues"

and with guix shell podman-compose I'm able to run this Podman compose hello world:

$ mkdir data
$ echo hello world > data/index.html
$ podman compose up -d

...

exit code: 0
$ curl localhost:8080
hello world

So some kind of mount appears to work. Thank you for your feedback and feel free to try the service from my own channel if you are interested in providing more or in trying rootless podman on the Guix System.

A little too pitchy imho. It is just a regular linux distro with each system update creating a new fs snapshots .

Just use Nix/Guix lmao

I wouldn't go the manual way if you are not forced. If you use NetworkManager you can import the configuration either grafically or with nmcli.

It should be sufficiente to modify the network manager service provided by Guix:

(modify-services %desktop-services
 [...]
 (network-manager-service-type config =>
 		               (network-manager-configuration
			        (inherit config)
			        (vpn-plugins (list network-manager-openvpn))))

reconfiguring your system, rebooting and then importing the configuration and set your credentials

It is quite basic still and historically had some problems with reboots, but lately it has gained a lot of attention and bug fixes. I have no experience of runnit, compared to systemd is leaner but in my experience there's no big feature lacking

They do very different things even if the outcome is the same. You are not rollingback your system by downgrading each package. You are statefully changing your filesystem. Rollbacks in Nix and Guix are internet free, atomic and reproducible because they amount to changing the target of a single symlink

I guess you are not entitled free support once you execute a free program

I think functional distros like Guix or Nix are just another thing. Their ability of programming , provisioning and deploying software environments is unparalleled. My personal favorite is Guix since, while having less packages than Nix, it has the most consistent experience: everything is in Scheme from the top to the bottom of the distro. Also it pushes really hard on a sane bootstrapping story while allowing for impurity through channels like nonguix .

The main downside is the lack of tutorials and a documentation that's very intense, let's say. typical of GNU projects. I suggest the System Crafters youtube channel which has a lot of nice tutorials

with nonguix the lines are like five instead of one, but yes there are less packages than nix. the real selling point imho is how everything is human-sized and consistent

imho having a more accessible contribution workflow would increase the number of people interested in spending time in reviewing.

Regardless of the many problems of web forges today the ability to review only what's changed between the various revisions of a pull request and the comments in a single view is not achievable with a simple email workflow. You end up reimplementing the PR/MR functionality with other tools, exactly as is happening with the Guix QA tools. I love them but we're reimplementing gitlab/gitea/codeberg by parsing patch revisions from emails subjects.

it's not like it's easy contributing to guix :( i really hope they move to something more accessible

If you don't have commit access you don't need an account. I contributed many times without ever registering on Savannah.

Do you have commit access? Otherwise your account is mostly useless also if they don't delete it.

Yes and if you like lisp or FSDG compliance have a look at Guix

The fact that you see guix downloading mariadb is probably due to "inputs bloat" you may never be able to get rid of it without an upstream fix or providing your own implementation of some upstream package/service. 4 to 6 hours is a lot, do you use substitutes?

If you want to reduce the bloatedness of your operating-system record, look into %desktop-services or %base-services (depending on which one you are overriding) and delete/replace what you will with modify-services.

Here are my configurations.

not sure if it's still useful, I sometimes use this script to find out which executable file depend on which shared library in a fs tree. maybe it can help you too

Hi, I just wanted to share small collection of utilities I'm maintaining to ease my way into Guix development. I hope they can help you as they do for me :)

Working Screensharing from first boot lmao

Just use lisp

You are probably looking at the 1.4 release download page, if you click on the latest release it should be there.

Let me know if you manage to get it running 🥺 I was about to open a bug report

Like third grade history I believe

No. They are not equal and neither same. If you understand Italian I suggest you to search for Prof. Barbero videos on the topic. They are quite better than anything I'll be able to convey.

Fascism:

It's an authoritarian dictatorship happened between 1914 and 1945 in Italy. The fascist regime and ideology was strictly based on Mussolini's figure, people marched in straight lines down the streets, everyone wearing the same uniforms and Italy was a great imperialist nation (lol jk it wasn't but they quite believed it). Fascism and the fascist party stopped existing after partisans overthrew the regime. Fascism is a 20 years long dictatorship. After that there were some regimes around the world that were inspired by Mussolini such as the current ruling party Italy Fratelli d'Italia, Marine le Pen's party in France, those shitty AFD in Germany, orban's Regime, franco in Spain etc etc. They are called neofascists, because Fascism was a 20 years long regime happened in Italy between 1914 and 1945.

Communism:

Communism is a model of governace that's never been achieved in human history, as someone above said it's about classless, stateless, governance models. It's been around for like 200 years (the Communist Party Manifesto is from 1848), and in every country of the world there is/ has been a Communist Party and as we know they were always persecuted for being communist, stopped from going to the government and stopped from bulding a classless society when they managed to get to govern. Just see what the USA did in the last 50/60 years in every country that risked a communist government: Chile and latin America in general, Italy and so on an so forth.

Fascism =/= communism, and if you say the contrary you just don't know how they work.

My guess would be that it's not a property of the kernel, it's a property of the software distribution you build upon that kernel. The same way you can distribute software for Linux with Guix, Nix, APT, RPM, Flatpak, I suppose in the Redox world you could distribute software and deploy systems in many different ways.

You mean something like Guix or Nix?

It's FOSS, It clearly states that it "grants rights to study, execute, modify and redistribute the Software or its derivatives", but "reserve the commercial use of these rights to the only entities defined in Article 3."

Yes I definitely agree: free software is also a requirement for bootstrappability and reproducibility.

You mean reproducibility and bootstrappability?

Nice try Jeff, nice try... /s

You do realize that's a bad attribute for someone leading the Free Software Foundation.

I mean if near endorsement of child abuse is not enough , yeah, please, let's wait until he fully endorses child abuse, then we'll get rid of him.

How is this good news?

+1, for me it was Guile Scheme. I think that S-exp are actually unbeatable for their combo of simplicity, expressive power and strong specification (and they are like ~60 years old). No one of the above mentioned formats has all of these features.

After the parentheses revolution we'll use S-exps all the way down! :D

Si scusate per il casino, non avevo letto la descrizione e ho dato per scontato fosse l'unica community.

Whoops, quindi sono OT. Scusate, avevo dato per scontato senza leggere la descrizione.

I really envy you, I'm doing some research about Italian tech coops for a-soon-to-be Awesome List for TWC Italia and I found four so far (three of which come from this list :'D).

No actually I would love to but in Italy (as far as I know) the idea is not that spread yet. BTW I would really love to start one as well.

I use Guix as a daily driver on my laptop, coming from Arch and Debian.

What I like the most about Guix is the hackability of it all. In my (about one year long) experience the consistency of iterfacing with a single API and syntax to almost everything in a system is a breath of fresh air after years of copypasting snippets from the web to the most disparate files under /etc.

Of course Scheme has a little steeper learning curve w.r.t. PKGBUILDs but imho it's much easier than to learn the APT packaging system, that requires you to understand the purpose and syntax of many different DSLs.

That every interaction with the system is done through a transaction thus is atomic and reversible.

Atomic means every time you upgrade/install/remove a package from your profile that action can either fail or succeed, it can't get stuck in between. After performing that action, you can always roll back that action so you basically have an undo button for package management.