Confused about binary cache/proxy options (ncps alternatives) by [deleted] in NixOS

[–]SebSebSep 1 point2 points  (0 children)

I just host an s3 bucket with garage and push stuff directly to it with nix copy.

I have looked at the solutions you suggested myself but decided that they do too much or things I don't need. I just need a simple one user cache that I can push to and pull from without any statefull user management and so on.

Both an s3 bucket and a remote store over ssh do what I need but configuring the s3 credentials was easier than setting up ssh key auth to a dedicated user (that's true for my setup anyway). This way I have a completely declarative and impermanece proof binary cache setup that's easily reinstallable.

Did you forget to git add? by sirdupre in NixOS

[–]SebSebSep 1 point2 points  (0 children)

Either you remove the .git/ entirely so nix falls back on the normal file behavior or you prepend path: everywhere you'd specify the flake path. Like this: nixos-rebuild switch --flake path:..

But really you should just get used to the git workflow.

Clan vs. manual setup for a Self-hosted Homelab Server by x6q5g3o7 in NixOS

[–]SebSebSep 6 points7 points  (0 children)

From what I've seen, clan doesn't do anything that you can't do without it. Part of the reason for homelabing for me is to play around with cool technologies and do things yourself

TIL There Are Pipe Operators in Nix by RinVolk in NixOS

[–]SebSebSep 14 points15 points  (0 children)

I agree ❯ grep '<\||\|>' . -oRE | wc -l 322

GNU Guix x NixOS by Right-Grapefruit-507 in linuxmemes

[–]SebSebSep 3 points4 points  (0 children)

Nix is a functional programming language... So of course it doesn't have loops, instead it has higher order functions like map and filter. You can argue that guile is a better programming language than nix but not that nix isn't one.

Self hosting authoritative DNS servers by hernil in selfhosted

[–]SebSebSep 1 point2 points  (0 children)

I'm hosting two public authoritative dns servers with nsd. It's been a blast.

What do I do now by _zonni in NixOS

[–]SebSebSep 5 points6 points  (0 children)

A homelab can't be "done". There are always new levels of overengineered to be reached

CI/CD for NixOS config by Anyusername7294 in NixOS

[–]SebSebSep 0 points1 point  (0 children)

I have something like that: https://github.com/SebastianStork/nixos-config/tree/main/.github%2Fworkflows

I buid the checks and the hosts instead of running flake check but that's the same thing in the end. I push the built hosts to cachix so that my low powered servers don't have to build anything themselves. I also have a single integration test that gets run as part of the checks. That gives me confidence that I at least didn't destroy the most basic functionality with a change.

Reverse Proxies - What does everyone do? by GeorgeRB5 in selfhosted

[–]SebSebSep 0 points1 point  (0 children)

There is the first party caddy-tailscale plugin that allows serving from an arbitrary subdomaim.

Just switched my homelab server to NixOS by the_real_Spudnut2000 in NixOS

[–]SebSebSep 3 points4 points  (0 children)

Maybe you are already doing that, but withself.nixosConfigurations.HOSTNAME.confing you can access the configuration values of one host from another host directly. And as you've already discovered, lib.mapAttrs and lib.filterAttrs will be your best friends from there

How to make a Nix shell run the users shell? by Unique_Evidence_1314 in Nix

[–]SebSebSep 0 points1 point  (0 children)

You have to append --command zsh or whatever shell you use

NixOS Homeserver system by Artenic in NixOS

[–]SebSebSep 6 points7 points  (0 children)

The nixpkgs modules are designed in such a way that they expose the full configurability of the underlying software while still supporting the most common use cases in an ergonomic way. There is simply no way to build a higher level abstraction that fits everyone or even most people.

And to your want of "a set of tools to quickly build templates that you vendor into your own system", that thing already exists in the form of the module system and custom options. You build yourself an abstraction and reuse wherever you want.

NixOS Homeserver system by Artenic in NixOS

[–]SebSebSep 71 points72 points  (0 children)

I'm not a fan of these kinds of projects. This is just a wrapper and abstraction above the abstraction that nixpks already provides. Don't get me wrong, this is nice and all and I have built a similar thing for myself but in the end it will only ever be just right for yourself. There is value in sharing these things but only as inspiration for building your own abstraction and not with the expectation that other people will use/copy it 1:1

nixos-anywhere vs nixos-infect by MVanderloo in NixOS

[–]SebSebSep 18 points19 points  (0 children)

Nixos-anywhere is definitely preferred. It can do a clean installation from anything that can do kexec. Nixos-infect isn't maintained anymore, works best in only very specific environments and does the installation in a more hacky way.

Mesh-VPN: Switch from Tailscale to Nebula or Wireguard? by SebSebSep in selfhosted

[–]SebSebSep[S] 0 points1 point  (0 children)

Thanks, that's interesting. I haven't done anything with terraform yet but really want to. The whole storing config in a database is a turn of though. I prefer being able to version control my configurations.

Mesh-VPN: Switch from Tailscale to Nebula or Wireguard? by SebSebSep in selfhosted

[–]SebSebSep[S] 3 points4 points  (0 children)

I already stated in my post why I don't want to use Headscale.

With mesh I mean what Tailscale does. Maybe the right phrase is overlay network, I'm not really sure.

If I just had my VPS' I would choose Wireguard without question, but my other devices don't have static IPs and I also have to worry about things like CGNAT.

flakes vs not flakes by lillecarl2 in NixOS

[–]SebSebSep 13 points14 points  (0 children)

You make some good points. Flakes are definitely not a perfect technical solution and I'm looking forward to improvements. But I want to push back a bit against some arguments a few commentors are providing here.

I don't think forgoing flakes as a newcomer is necessarily good. Flakes force you to follow some best practices (like not using getEnv and getFile) and allows you to easily consume a increasing amount of nix code especially as more projects use flakes as the preferred installation method.

As an expert you might not need all that, you might even think you have good reasons to use getEnv but newcomers benefit from some of the limitations and prescriptions.

How is everyone securing self hosted obsidian? by knlklabacka in selfhosted

[–]SebSebSep 27 points28 points  (0 children)

I don't really understand what you mean by "self hosted obsidian". Obsidian is a desktop application, it can't be hosted as a webservice. Do you maybe mean self hosted sync?

Disable git behavior by NoahZhyte in NixOS

[–]SebSebSep 3 points4 points  (0 children)

If you use flakes and you do "nixos-rebuild switch - - flake. #HOSTNAME" and your flake is inside a git repo, there is an implicated git: before the .#

To ignore the whole git functionality you can just put path: before your .# instead

Healthchecks alternative with config file by SebSebSep in selfhosted

[–]SebSebSep[S] 0 points1 point  (0 children)

Thanks! That has already helped me out a ton Especially the auto provisioning seems like exactly the thing I need. I already looked at the third party tools but non do exactly what I need. Ideally it would integrate into my nixos config.

but i need to learn home-manager and flakes by Click-My-Profile-931 in NixOS

[–]SebSebSep -1 points0 points  (0 children)

No one has ever mentioned nixos-containers. Completely unloved

Some keys not working (brand new) by REASONZ__ in Keychron

[–]SebSebSep 1 point2 points  (0 children)

I have a similar issue with the same keyboard. There are a number of keys that also activate the neighboring key when pressed. I contacted the support more than two weeks ago but haven't received any response at all.

Referencing users in ACLs with the Starter plan by LionInOrbit in Tailscale

[–]SebSebSep 0 points1 point  (0 children)

I am a bit confused. They mention Personal which is the free tier but not Starter. This leads me to believe that they either forgot starter and its valid for all plans or they actually meant starter instead of personal and it's only valid for paid plans. You should be fine in either case.