@publicvoit sure,
My best advice for #nixos migration:
so don't use #flake if you don't need it
Don't use #homemanager if you don't need it
Don't use #nixops/#colmena if you don't need it
Don't use ....

Is #morph a better solution than #nixops? #nixos

It's just dawned on me that now my #pinephone has #mobiles-nixos on it, I'm going to have to re-learn how to manage #NixOS _without_ #colmena or #NixOps 🤣

`nix rebuild` or `nix-rebuild` or something? It's only been 5 years or so since I worked that way...

I'm a professional, honest, I am... 🤣

What to do in order to enforce security on #nixos based server ?

Some answers here :
Paranoid NixOS Setup - Xe Iaso
https://xeiaso.net/blog/paranoid-nixos-2021-07-18
And
https://xeiaso.net/blog/nixops-services-2020-11-09

With #nixops or #morph or best #Colmena
to manage them all !

This pre-release-announcement for the non-release of #nixops 2.0 was so awesome. https://nixops.readthedocs.io/en/latest/release-notes/index.html#release-2-0 ... what happened after that?

#nixops is such a compelling companion to #nix and #nixos, but doesn't seem to get much love.

upgraded to #colmena v0.4.0 and `colmena apply --reboot` is my new favourite thing in my #NixOS deployment. That's a feature-complete transition from #nixops for me 🎉 😀

Moved my #NixOS deployment from #NixOps to #Colmena

That's just my rock'n'roll lifestyle on a Saturday night 🤘🤣

@nnungest Indeed, relying on commercial entities is generally a questionable bet (even non-profits have some gotchas).

That is probably their goal, yes.

Possible, #NixOps is interesting, as is #GuixDeploy. And both can generate container & VM images.

#NixOS #Guix

I'm discovering that since I last used #nixos , pretty much all of the services I want to run have native configuration support. I remember trying to set up #nomad back in the day and everything just being a pain. Now it's as simple as pie. I just need to figure out a better multi-node deploy strategy. Seems like #nixops is the main thing out there, but the docs are almost non-existent

Are there good alternatives to #nixops in terms of #secret handling?

https://releases.nixos.org/nixops/latest/manual/manual.html#idm140737322342384

Having to execute nixops after each unattended reboot in order to make the secrets available isn't something I'd like to do.

#nix #nixos

playing around with #SelfHosting #Nextcloud on #NixOS while waiting for new hardware to arrive... realizing that I don't quite know the right way, NixOS-wise, to structure things. this machine will be responsible for a few different things - it'll serve as a NAS, a NextCloud instance, a NixOS cache and build machine, a #HomeAssistant instance, and probably more...

should the responsibilities be split into VMs? (#NixOps?) docker containers? just throw everything in the main install?

I intend to back all the data up outside, so I'm not sure what the best balance is...

i would just use proxmox / ncp-ng, but i'd want to use #nixops to manage the vms -- which is un-unusable for the time being (https://github.com/NixOS/nixops/issues/1545), and i don't _really_ like how it manages secrets anyways

if anyone has any other suggestions for long-term vm orchestration, let me know!! #homelab

A wee bit of #Terraform on #Hetzner cloud, a couple minutes, and, presto:

[root@test-server:~]# uname -a
Linux test-server 5.15.77 #1-NixOS SMP Thu Nov 3 14:59:20 UTC 2022 x86_64 GNU/Linux

Tomorrow, #Nixops.

#nixops folks, what tool do you use to save things like database passwords securely and to push them out to the server, like to /var/keys?

I don't have an entire team, just myself. Though I'm interested in the entire team solution, too.

My database has a password, I need to pass it to my Matrix server, and while I could delete the password (localhost-only connections), I might also start using a hosted database where a password would be required.

This morning, with my morning tea, I shall try to deploy a #NixOS machine running #Matrix using #NixOps.

Pray for me.

С новой версией nixops стало неудобно работать.
Теперь утилита проверяет наличие файла nixops.nix или flake.nix в текущей директории. Если его нету - выдаёт ошибку. Из директории с исходным кодом nixpkgs тоже не запускается. Надо, либо указывать новый параметр `--network` с указанием расположения файла `nixops.nix`, либо переходить сперва в директорию где он расположен, и только после этого запускать nixops.
Неудобно и непривычно :(
Так ещё надо осваивать `nix flake`...

#linux #nixos #nixops

Видео-инструкция по базовой работе с утилитой для удаленного обслуживания систем на базе ОС NixOS - nixops

https://stream.elven.pw/videos/watch/514f4b7e-e2c6-4ac4-9cbe-3001dd701445

#wiki #rebrain #linux #nixos #nixops

Мои статьи на Rebrain:
- Настройка кластера Mariadb Galera с помощью nixops

https://rebrainme.com/blog/linux/uglublennaya-rabota-s-nixops-nastraivaem-klaster-mariadb-galera/
https://git.elven.pw/Rebrain/basic-nixops/wiki/nixops-mariadb-galera
#wiki #rebrain #linux #nixos #nixops #mariadb

Мои статьи на Rebrain:
- Базовое знакомство с утилитой управления удалёнными системами nixops

https://rebrainme.com/blog/linux/utilita-dlya-udalennogo-obsluzhivaniya-sistem-nixops/
https://git.elven.pw/Rebrain/basic-nixops/wiki/Basic-work-with-nixops
#wiki #rebrain #linux #nixos #nixops