>muh reproducible builds

>muh reproducible builds

  1. 2 weeks ago
    Anonymous

    but guix packages are both more customizable than gentoo and they get cached so you actually just download the binary if you havent customized it

    • 2 weeks ago
      Anonymous

      >but guix packages are both more customizable than gentoo

  2. 2 weeks ago
    Anonymous

    debian is wrong
    if you want update you have to compile from source because it's outdated trash
    diffence between debian and gentoo is that on gentoo to compile is a choice, while on debian it's necessary if you want new shit

    • 2 weeks ago
      Anonymous

      >it's necessary if
      so it's a choice

    • 2 weeks ago
      Anonymous

      >t. turbobrainlet who can't even into frankendebbing with sid

      • 2 weeks ago
        Anonymous

        >sid
        Honest question: why not just use Arch?

        • 2 weeks ago
          Anonymous

          >implying i use JUST sid
          >implying i don't enjoy and rely on the stability of a vast majority of packages i don't SNEEEEEED to HECKIN UPDOOT
          >t. turbobrainlet who doesn't even know what frankendebbing is

          • 2 weeks ago
            Anonymous

            sid is not a stable system
            >t. turbobrainlet who doesn't even know what frankendebbing is
            I do know and it's stupid.

            • 2 weeks ago
              Anonymous

              >sid is not a stable system
              arch is not a stable system
              a stable system with a few sid packages where you need them on the other hand is basically a stable system
              >a hurr a durr its STOOPEED!
              just werks cry more

              • 2 weeks ago
                Anonymous

                I know I'm gonna get shit on for this, but muh gaems won't run well if you don't have up to date drivers, wine, clang, etc. and their dependencies. The next thing you know 50% of installed packages are from sid.

    • 2 weeks ago
      Anonymous

      >new shit
      apt install flatpak

  3. 2 weeks ago
    Anonymous

    >dead language
    lmao filtered by fucking parentheses

    • 2 weeks ago
      Anonymous

      scheme was the first language i ever learned and i was the top student in my class retard
      still a dead language
      i don't make the trends i just follow them

  4. 2 weeks ago
    Anonymous

    why haven't you taken the nix pill yet

    • 2 weeks ago
      Anonymous

      >why don't i daily drive a distro that takes "you can wait 5 hours to get a guaranteed exact replica of a system you couldve waited 5 minutes for" and tries to bill it as a feature
      it's anyone's guess really

      Reproducible & Bootstrappable builds are the only way to be fully glownagger-proof

      1) Unless you audit the machine code of the bootstrap compiler, you can't guarantee it doesn't inject a self-replicating and self-hiding rootkit that propagates itself all the way through the toolchain and into every binary you build. Reproducibility won't save you either, if the infection is upstream.
      2) No tools you might think to use to detect such a virus will have any effect if you build those tools with the infected toolchain. (Assume the virus is so smart that it knows exactly how to alter the behavior of any imaginable auditing tool to make all the output look like the virus isn't there.)
      3) Even if no such virus exists, modern hardware and firmware basically do its job for it. You can try telling me you're running a stinkpad with libreboot, but I won't care, because the hardware isn't open source. How do you know the hardware isn't mitming you before the bios even loads? And if you say wireshark, see above: it could be altering the behavior of wireshark to disguise itself -- or, for that matter, bypassing it entirely by not presenting any controller for the kernel to even detect, given we're talking about a hardware-level rootkit here. If you say you're using pinebook -- a FULLY open-source laptop -- first of all I won't believe you, because pine64 is a garbage company and I'm the only person who still gives them a chance ever, and secondly, even if you're telling the truth, your hardware is from hong kong, so na na na na na and neener neener i say to you my good man.
      4) Since modern hardware is pozzed, the aforementioned machine code level audit of the bootstrap compiler can only be trusted if it's performed on fully open-source hardware, including the storage media.
      5) Even with all that, glowies can still see what you do online

      • 2 weeks ago
        Anonymous

        Dont let perfect be the enemyh of good. And beside the glowies will not use their bestest exploits on a nobody like me for fear that they will be discovered.

      • 2 weeks ago
        Anonymous

        >1) Unless you audit the machine code of the bootstrap compiler, you can't guarantee it doesn't inject a self-replicating and self-hiding rootkit that propagates itself all the way through the toolchain and into every binary you build. Reproducibility won't save you either, if the infection is upstream.
        >2) No tools you might think to use to detect such a virus will have any effect if you build those tools with the infected toolchain. (Assume the virus is so smart that it knows exactly how to alter the behavior of any imaginable auditing tool to make all the output look like the virus isn't there.)
        t. person who knew nothing about compiler bootstrapping before posting this

        • 2 weeks ago
          Anonymous

          you didn't greentext it so that means you're talking about yourself

          • 2 weeks ago
            Anonymous

            >t. genius

        • 2 weeks ago
          Anonymous

          >t. person who knew nothing about compiler bootstrapping before posting this
          can you post to the code in gcc or some other compiler that audits itself while bootstrapping?

    • 2 weeks ago
      Anonymous

      >trannix
      Nah.

  5. 2 weeks ago
    Anonymous

    Reproducible & Bootstrappable builds are the only way to be fully glownagger-proof

    • 2 weeks ago
      Anonymous

      nakadashi glowharem

    • 2 weeks ago
      Anonymous
  6. 2 weeks ago
    Anonymous

    Between those 3, I don't care who's the best. They are all amazing distros along with kiss, void, alpine, openbsd, bedrock, glaucus, hyperbola/parabola...

  7. 2 weeks ago
    Anonymous

    Ironically, Debian is the distro that has put the most work into reproducible builds.

    • 2 weeks ago
      Anonymous

      Indeed.
      https://wiki.debian.org/ReproducibleBuilds
      https://isdebianreproducibleyet.com/

  8. 2 weeks ago
    Anonymous

    cringe af knowing someone took time out of their life to make that pic.

    • 2 weeks ago
      Anonymous

      Bitch please, as if it was time i could've spent on anything better.

      windows 10 enterprise ltsc is better than any of those operating systems

      botnet

      • 2 weeks ago
        Anonymous

        your cpu is backdoored

        • 2 weeks ago
          Anonymous

          Dunno about yours but mine isn't, I only use pine64 hardware.

          • 2 weeks ago
            Anonymous

            >I only use pine64 hardware.
            jon get off the computer it's dindin time

            • 2 weeks ago
              Anonymous

              >"you should only use X it's the most botnet-free"
              >"i use Y it's more botnet-free than X"
              >"you're fat"
              LULZ in a nutshell

        • 2 weeks ago
          Anonymous

          nope

  9. 2 weeks ago
    Anonymous

    windows 10 enterprise ltsc is better than any of those operating systems

    • 2 weeks ago
      Anonymous

      Good morning sir

  10. 2 weeks ago
    Anonymous

    add the Nix logo to the Guix logo as well, then it's perfect

  11. 2 weeks ago
    Anonymous

    > *debian shill noises*
    Still don't like Linux, huh?

    • 2 weeks ago
      Anonymous

      >my phone is a pinephone
      >my laptop is a pinebook
      >i "don't like linux"
      explain

  12. 2 weeks ago
    Anonymous

    fixed version

    • 2 weeks ago
      Anonymous

      yep, my amazing gimp skills shining through once again
      here, actually fixed

      • 2 weeks ago
        Anonymous

        if only nix could selinux it would actually be usable

  13. 2 weeks ago
    Anonymous

    You can install the Nix and Guix package managers just fine on Debian. That way, you get to enjoy their benefits without having to struggle to have a working base system.

    • 2 weeks ago
      Anonymous

      using the package manager outside of NixOS basically warrants not using it at all, you essentially get none of the upsides with all of the downsides.

      • 2 weeks ago
        Anonymous

        it's good for development environments, in particular if you're often hopping around different versions of libraries and software
        using it to just install programs doesn't make much sense though

      • 2 weeks ago
        Anonymous

        Retard.

  14. 2 weeks ago
    Anonymous

    >she

  15. 2 weeks ago
    Anonymous

    >clones my install w/ disk to disk cloning via CloneZilla

    nothin personel debian/nix/guix trannies

    • 2 weeks ago
      Anonymous

      >debian trannies
      cmon newfag, everyone knows debian users are lesbians

  16. 2 weeks ago
    Anonymous

    Gentoo is the only way

    • 2 weeks ago
      Anonymous

      >dat pic

  17. 2 weeks ago
    Anonymous

    All nixos has to do to win the distro game is symlink libraries to their normal locations. I should be able to download random shit from github, possibly build, and run it without trying to fix it to make it work on nixos. I shouldn't have to run programs through fucking steam-run if it isn't built specifically for nixos.
    Also, letting me use a config file for a user by default instead of using home-manager on nixos would be great as well.

    • 2 weeks ago
      Anonymous

      >All nixos has to do is stop doing what's making it work and let me shit all over my system again
      Sasuga retard

  18. 2 weeks ago
    Anonymous

    >words words words
    the left cant meme

  19. 2 weeks ago
    sage

    >ITT
    >neets with aspergers fling shit at each other over unusable garbage nobody cares about
    1% market share.

    • 2 weeks ago
      Anonymous

      you're just mad your "OS" has no interesting discussion points because you can't influence anything anyway

  20. 2 weeks ago
    Anonymous

    Package management is just a ploy to give the autistic trannies who maintain packages something to do.

    Just use Slackware.

    • 2 weeks ago
      Anonymous

      Enjoy your dependency hell.

      • 2 weeks ago
        Anonymous

        Has never been a problem for me on Slackware.
        The default install already covers pretty much any dependency you'll ever need. Slackware simply gives you a good solid base that just works instead of all these autistic package management games.

    • 2 weeks ago
      Anonymous

      Has never been a problem for me on Slackware.
      The default install already covers pretty much any dependency you'll ever need. Slackware simply gives you a good solid base that just works instead of all these autistic package management games.

      but what will you do when you need dependencies that need dependencies that need dependencies that slackware doesn't provide and yes this occasionally happens for certain use cases that simply don't apply to you don't pretend it doesn't you disingenuous little rat

      • 2 weeks ago
        Anonymous

        It won't apply to you either. You just ate the FUD without ever trying it for yourself.

        I use plenty of obscure software - the only nightmare dependencies I encountered are with shit like Python scripts with a million tiny libraries but those things already come with their own package manager - I don't need my distro to repackage them (which will usually be out of date)

        • 2 weeks ago
          Anonymous

          the obscure use case will apply to someone or else it wouldn't exist

          • 2 weeks ago
            Anonymous

            It doesn't exist.
            "Dependency hell" shit comes from a time where people were mixing all kinds of different RPMs from random sources.

            • 2 weeks ago
              Anonymous

              >It doesn't exist.
              ya it do

Your email address will not be published.