mkOption inherits their default from a parent
reading default values from neighbouring
mkOption(s) for conditional defaults
passing in the config, to read the hostName from a submodule (email system)
setting default values from attrset (email system)
generating documentation for custom modules (outside of #nixpkgs )
test your module out, you can run the following from a local checkout of #nixpkgs with a copy of a configuration.nix #vm
nixos-rebuild build-vm --fast -I nixos-config=./configuration.nix -I nixpkgs=.
git checkout -b mymodule upstream/nixos-unstable
nix-shell and non #flake commands use the nixpkgs offered in the NIX_PATH environment variable, which should be set to a directory managed by nix-channel, but the channels are obsoleted by flakes...
Fortunately, in the same way we synchronized the system flakes with the commands flakes, you can add this code to use the system nixpkgs with your nix-shell
This requires your user to logout from your current session to be effective. You can then check nix-shell and nix shell use the same nixpkgs source with this snippet. This asks the full path of the test program named "hello" and compares both results, they should match if they use the same nixpkgs.
#Pi is slow and it doesn’t have a lot of memory. Just evaluating the configuration with #nixos -rebuild takes about a minute even when there haven’t been any changes, and compiling anything substantial is usually a recipe for Death By Swap.
lots of services defined in the NixOS options will have an "escape hatch" option named something like
extraConfig. this usually lets you append verbose text to a complex config file, like in the case of Postfix where the options couldn't conceivably cover everything.
you can also always just write a static file to /etc if you want or need to(pfa)
few configurations, you can manage them directly through home manager - programs.emacs.extraConfig).
If there are many configurations, it is recommended to use home manager - home.file..source for management.
as well as running one-off #systemd services declaratively:
#MediaWiki #Update: 🙈 Erstmal #Ubuntu 18.04 im #LXC auf 20.04 updaten, damit zumindest #PHP 7.4 verfügbar war. Danach MediaWiki selbst von 1.31 auf 1.35 (#LTS) und nochmal auf 1.39 (LTS) hochgezogen. Letzter Schritt: Das ganze rüber bringen auf #AlmaLinux 9 mit PHP 8.2. 🚀
#Homelab #LinuxContainer #VM #VirtualServer #SelfHosted #Linux #RHEL #Proxmox #Cluster #Server
So, I messed about with "The Cloud". And I really don't get the appeal. Regular dedicated and virtual servers are SO much cheaper and they do exactly the same things. And hoooly crap how they overengineered simple virtual machines.
Usually there are machines and there are images. That's it. But they turned it into this whole landscape of made-up terms and whatnot and made it so fucking complex you need another VM (the "shell") and probably an extra employee just to control the damn thing. And don't get me started on cloud storage, that's just FTP with extra steps!
I mean, I'm sure there are *some* applications where it's absolutely neccessary to basically have an (almost) infinitely powerful computer, *cough* NodeJS *cough* but I don't understand why it's so trendy. Just get a regular server guys. Don't want to mess with hard drive failures? Fine, get a virtual one then.
ng lxc.apparmor.profile = unconfined is essential for remounting /nix/store read-only. For some reason, LXC considers read-only remounting a bind mount to be privileged, even if the mount only exists inside the container. If there are security concerns, we could also make a custom profile which allows read-only remounting bind mounts.
default Docker Unix socket (/var/run/docker.sock) can be mounted by any container if not properly secured. If some container mounts this socket, it can shutdown, start or create new images.
you can share a folder by setting up a shared mount, and since the Docker/kernel enforces file permissions that is used by containers, the guest system can't bypass that restrictions. With a #VM, if you want to share folder you have to let one machine run a network file server or Samba server or FTP server, and the #hypervisor have little visibility into the share and can't enforce sharing permissions. The additional moving parts here (the file server), may also have its own vulnerabilities and misconfiguration issues to consider.
Décidément, nous vivons dans une poudrière remplie de malades mentaux profonds.
Pour ma part j'm'en balec :
- Je me passe très bien de Youtube (et de beaucoup d'autres).
- Il y a longtemps que je télécharge les vidéos pour les regarder en local (Via #OpenVideoDownloader)
- sauf quand j'ai la flemme, dans une #VM à part. Dans laquelle si besoin je pourrai installer un navigateur de merde rien que pour ça.
Sometime before #Windows10 support ends, I'm going to be installing #Linux on my #desktop again. Generally I use #LinuxMint for bare-metal installs, but I was thinking about running #ArchLinux via #EndeavourOS since it seems pretty nice in a #VM. I'd also messed with #Fedora #KDE and it's decent. Then I saw stuff about #NixOS and thought it was pretty cool how it avoids dependency issues, so I thought about getting into that even though I've never even tried it. What do you think I should run?
I have multiple VMs on a host machine (#Proxmox, but I don't think that matters for this question).
I want to have several VMs on a virtual -- i.e. software only -- network inside the Proxmox server. Like there's a little pretend switch, connected to pretend NICs on each VM.
WHAT IS THAT CALLED?
I would've thought "VLAN" meant this, but when I look it up, it seems to be a more expansive term, and people talk about "managed switches", etc.
@conner Für Spiele aus dem Epic Games Launcher verwende ich unter Linux (auf #endeavouros ) den #heroicgameslauncher - funktioniert wunderbar. Leider hat #Epic die #EAC Unterstützung für #Fortnite unter Linux deaktiviert, daher wird #Fortnite unter Linux leider nicht laufen. Alternativ kannst du Windows auf einer #VM installieren mit #GPUPassthrough...
[#OSINT|#UBUNTU] Do we need Ubuntu Pro for OSINT? (by Inteltechniques):
Leggi il mio ultimo articolo su Linux/hub 👇
💬 #pausadev - Virtual Machine, container e sottosistemi (https://linuxhub.it/articles/pausadev-container-vm-wsl/)
What's with the hatred against docker? I recently come across this (not in app dev myself) and find it rather convenient and easier than spinning up a VM sandbox. I have found dangerzone in specific very useful.
Could the nice folks at infosec please enlighten me?
Kennt wer einen günstigen (und einfachen) #cloud Anbieter, wo man stundenweise eine #Linux #vm laufen lassen kann? Azure, AWS und Google mag ich nicht so sehr, ich suche eher kleinere Anbieter in Deutschland... Am Ende muss nur ein #SSH funktionieren, die nötigen Ressourcen sind eher gering.... Und rauswärts sollen Penetration-Tests des eigenen Netzwerkes laufen können....
Danke für jeden Hinweis!
@tayledras @noiq Also I think that a lot of these have diminshing returns because once you can snapshot instanty, backup, restore, transfer and duplicate a VM you basically abstracted everything that's worth abstracting.
And I seriously doubt that things like #OSv really bring any advantage to the table, as they are a #VM-only OS and not like a #Linux distro with solid #LongTermSupport or something else that makes it worth the effort...
After 1h+ I finally setup my Xubuntu VM on my 12 yo laptop I use as a server. I wanted to have a small OS that supports graphics, a browser and VSCode. I will use it to test my apps under Linux (I'm a Windows User). I am using some not OSS Software like VSCode and Vivaldi, but they worked for me the best.
I tried to install #PeerTube in a #VM on my computer to mess around with it but it keeps telling me that getting client tokens for localhost:9000 is forbidden no matter what I try. Kinda have to access it over HTTP due to running directly on my computer and it's just the easiest way to run it when not having a way to get a certificate since I'm not using a domain. Can't find anything that works, either. Maybe I need to go back to an earlier checkpoint and try reconfiguring it again?
Running Windows XP in a virtual machine?
A little project called, "Legacy Update" replaces Microsoft Update and allows you to update Windows XP to the latest software Microsoft had to offer, which was XP compatible.
It's developed by @kirb
Check out his website "Legacy Update" dot net.
Should probably install it in a #VM on my computer first to test it out and make sure I know what I'm doing (only local-network accessible, of course), but I'm wondering if anyone has had any luck with #PeerTube on a single core if you're only uploading your own stuff and won't often need to encode a video if that would be fine for a #VPS since #DreamCompute's dual-core option is $24 a month which is a lot of money for just my stuff (plus I need object storage and #CDN).
Also you can simply backup & restore that VM when you need to and don't have to setup everything from scratch...
I was looking for a way to read and write #ext4 formatted SD card from my #RaspberryPI on #macOS. Messed up my home network setup, and needed to edit a DHCP config file to resolve an issue - long story.
Imagine my surprise when this solution worked immediately with zero friction or additional setup needed!
Today's "in case you didn't know" link is purely technical wizardry. If you do anything at all with OS installations (bare metal, vms, really anything) you probably want to know about https://netboot.xyz
It is a net-bootable menu of TONS of installers, tools, live cds, full distributions, etc. It is self-hostable, and it even works on ARM64!
Cheat code: Get into an iPXE shell (in a VM just enable netboot and hit ^B when prompted) then run
dhcp to get an address, and
chain --autofree https://boot.netboot.xyz to boot the menu (pictured)
#linux #windows #tools #recovery #virtualization #vm #netboot #install #livecd
Sointu: a modular software #synthesizer for producing music for 4k intros -- small executeables with a maximum filesize of 4096 bytes containing real-time audio and #visuals, written with the #gio framework for #go. The sound is produced by a #vm that executes small #bytecode to produce audio. A fairly capable synthesis engine can be fit in 600 bytes (386, compressed), with another few hundred bytes for patch ad pattern data
Might just use #VirtualBox and by that time you could also install @ubuntu / #UbunutLTS on bare metal and use #Windows as #Guest in VirtualBox instead as that'll get you all the control you want in both worlds...
My #SUN #Solaris 10 #UNIX #vm running #WordPerfect 8. I feel this is a reality many of us have not come terms with, but UNIX is pretty much dead. Most of the videos on #YouTube about it are historical or experience videos. #Solaris 11.4 is next to unusable, I don't know what #Oracle did to it. I'm so glad I had grabbed this ISO of v10 before they took it over.
Spectrum Bugs and Patches - HedgeDoc
" #Wayland security context protocol is how the compositor will know
which #VM is responsible for which Wayland client, which will allow us to
make per-VM policy decisions. crosvm is the part of #Spectrum’s stack
that can give this information to the compositor, so we need it to
implement this protocol."
It took what seems like a bazillion steps and, unless you are comfortable with calculating mebibyte boundaries in qcow raw disks, a running Windows Server with Hyper-V installed. (If you do have Hyper-V, just give the #PowerShell Add-AzVhd your VHD and it’ll calculate the size).
I gotta say, I’m a little dizzy after all that tinkering to prep the VHD for import.
But I relished the trip.
And the Azure VM is ripping.
The systems programming language that the co-creator of #WASM has been working on for over 20 years:
#Virgil is a programming language designed for building lightweight high-performance systems. Its design blends functional and object-oriented programming paradigms for expressiveness and performance. Virgil's compiler produces optimized, standalone native executables, WebAssembly modules, or JARs for the #JVM. For quick turnaround in testing and debugging, programs can also be run directly on a built-in interpreter. It is well-suited to writing small and fast programs with little or no dependencies, which makes it ideal for the lowest level of software systems. On native targets, it includes features that allow building systems that talk directly to #kernel, dynamically generate machine code, implement garbage collection, etc. It is currently being used for #vm and programming language research, in particular the development of a next-generation #WebAssembly virtual machine, Wizard.
I may be biased as a #Chromebook user but even I have things I dislike about #ChromeOS.
1. Having to use the #Linux #container or turn on Developer Mode to sideload #Android apps. I mean come on! If you can run whatever you want in the Linux Container why can't I sideload stuff into my Android #VM‽ Even #Windows 11 let's you sideload Android apps and it's a worse implementation! I still want to try #FydeOS though since I hear it lets you sideload.
2. Deprecating the chrome.input.ime API without a proper replacement is a dick move on the part of #Google. One of my favorite #Chrome #extensions #CrosKeys is going to stop working as of ChromeOS 119. It's a powerful app that lets me insert #Unicode characters in any app, even Android and Linux. I'm going to miss that. Even if it's a security issue, you could have still provided a replacement. Android has custom keyboards so why can't ChromeOS?
3. Why are so many expected features missing from ChromeOS? Pull to refresh is no more on Chromebooks which was useful for tablet mode. The eyedropper API is missing which would be nice for graphic design. There used to be a feature where you could tear tabs out of windows and put them in other tabbed windows even if it's not from the same app. That was really cool and I miss it.
I could go on but this is already a long #rant post so yeah. I still love Chromebooks though. I hope it gets better with cool features.
Ich habe auf #opensuse Gnome Boxes installiert.
Wenn ich eine VM einrichte, dann hat die leider immer eine 10er IP von der ich aber vom Laptop aus, wo Gnome Boxes läuft, nicht per SSH drauf komme. Die VM sollte eine 192er IP haben.
Im Netz hab ich gelesen, dass "libvirt-daemon-config-network " installiert sein muss.
Das hat aber nicht geholfen/gereicht.
Hat noch jemensch einen Rat?
***LAST EDITED*** 2/9/23
#Weblorg is an Emacs-Lisp API rather than a command line tool. The use of the API becomes the description of a pipeline that takes lists of Org-Mode files as input, templatize them and generate HTML files as an output. Although it can be used just like any other Emacs Lisp API, there are some conventions for creating a weblorg.
gotta mod 1 src it a bit to render media
like #Python's os.path.join or concat.map in #nix
(defun joindirs (root &rest dirs)
"Joins a series of directories together, like Python's os.path.join,
(dotemacs-joindirs \"/tmp\" \"a\" \"b\" \"c\") => /tmp/a/b/c"
(if (not dirs)
(expand-file-name (car dirs) root)
(joindirs "/tmp" "a" "b")
(joindirs "~" ".emacs.d" "src")
(joindirs "~" ".emacs.d" "~tmp")
podman run --name app --privilaged \
--mount --type=bind,source=target \
-p 9080:80 -d nginx
podman run --network=host nginxinc/nginx-unprivileged
apparently that's pretty much all , there is to mounting a content volume to an #nginx server in a podmain container , now if I want n such containers to talk I might need #k8 or equivalent , if I want this container be hosted on a different os, I might run it with a #vm yeda yeda yeda
I was experimenting with Windows Sandbox over the weekend, and as a result I now have a sandbox config which launches it with drives mapped and both Winget and Chocolatey installed. 😁
The only hiccup I've run into is that Winget is being stubborn (there are some dependency issues) on Windows 10. 🤔
On Windows 11 however it's absolutely fine. 👍😎👍
I think I’m going to try Windows in a VM. I want to revisit some games that I miss. #VM
So einfach emulieren Sie macOS unter Linux
Apples macOS in einer virtuellen Maschine einzurichten ist überraschend einfach, es braucht lediglich das richtige Skript.
*NEW TUTORIAL AVAILABLE*
"This 1 Simple Proxmox Setting Change Can Significantly Improve VM CPU Performance"
This tutorial demonstrates what kind of CPU performance gains you might expect - in some workloads, I recorded an improvement of over 10% - as well as when you shouldn't make this change.
I'm trying to get a decent virtual windows workstation (AWS) running at work. As far as I can tell, it's just not possible to use GPU acceleration from the host in any windows version anymore, is that correct?
Everything graphical is extremely sluggish on the VM, which makes it unusable for us. The only information I can find from Microsoft is to use discrete device assignment, which is not an option for us.
If you utilize Virtual Machines, how many of you use them for day-to-day use/during your main workflow?
Interested to know how many people get use out of them/how many uses them for daily use.
1. Goto Edit → Virtual Machine Details
2. Select View → Details
3. Under Display Spice set Listen type to None and check OpenGL.
4. Under Video, select Virtio and check 3D acceleration.
5. Ensure qemu-device-display-virtio-vga and qemu-ui-opengl packages are installed alongside virt-install, virt-manager, virt-viewer, and libvirt-daemon-config-network.
Reverse Engineering Tiktok's VM Obfuscation (Part 1)
Dropped a new blog post where I detail the start of my journey into TikTok's VM based obfuscation.
So far only covers the discovery of the script and how I dumped strings from each "program"
Setting up alerts in Proxmox is important and critical to making sure you are notified if something goes wrong with your servers. It’s so easy, I should have done this years ago! NEW VIDEO!
I run a *bunch* of #Debian #VirtualMachines in my colo. Since many of those #VM systems don't have direct WAN access (and to more efficiently use bandwidth), I run apt-cacher-ng proxy.
The local OS's sources.list has the FQDN of the local apt-cacher for the OS; this means that only the apt-cacher reaches out to a public mirror for updates.
And it looks like #GATech Debian mirror is down.
So everything breaks!
lol, perhaps I need to get with @kwf 😂