From: Christopher Baines <mail@cbaines.net>
To: Pjotr Prins <pjotr.public12@thebird.nl>
Cc: guix-devel <guix-devel@gnu.org>
Subject: Re: System configuration on non-GuixSD systems (Debian)
Date: Tue, 22 Aug 2017 10:47:23 +0100 [thread overview]
Message-ID: <20170822104723.75630581@cbaines.net> (raw)
In-Reply-To: <20170822092325.GB26942@thebird.nl>
[-- Attachment #1: Type: text/plain, Size: 2066 bytes --]
On Tue, 22 Aug 2017 11:23:25 +0200
Pjotr Prins <pjotr.public12@thebird.nl> wrote:
> I need to reinstall a Debian server (again) and I am looking at how I
> can use 'guix system' to configure stuff. I remember there was someone
> who wrote a about configuring on non-GuixSD, but can't find the
> material (I need Debian because it has CUDA).
>
> Let's say I want sshd. It would make sense to me to create a package
> for openssh-with-config-for-machine, i.e., a modified sshd_config. The
> config file can sit in the store somewhere and I can symlink to a
> profile from /etc/sshd on this box so it gets picked up.
>
> I have two questions:
>
> 1. Is there a smarter way to go about this? I can see for GuixSD is
> handled differently
> 2. How do I best parametrize the configuration file - for different
> machines? I suppose the package could write the config file.
>
> systemd I'll do separately - though I suppose you could mix systemd
> and shepherd?
>
> Doing it in a Guixy way would help me migrate to GuixSD later. Any
> ideas?
One maybe bizare suggestion that comes to mind is to use a container
created through the `guix system container` command.
This would allow you to create a set of processes, that you could give
access to specific parts of the host filesystem (using the --share and
--expose options), and expose the host network to if you want to
use services which access the network (only with this patch [1]).
The more things you do through the container, the closer you are to
having something work just on GuixSD. You might get to the point where
you can even replace what you are using from Debian with Guix packages
that just unpack some Debian packages to the store.
Where this approach might fall down is usability, e.g. reconfiguring a
container isn't possible yet, so you might have to restart it when you
want to make changes, which might be problomatic if you are doing this
through the ssh service in the container...
1: https://debbugs.gnu.org/cgi/bugreport.cgi?bug=28128
[-- Attachment #2: OpenPGP digital signature --]
[-- Type: application/pgp-signature, Size: 963 bytes --]
next prev parent reply other threads:[~2017-08-22 9:47 UTC|newest]
Thread overview: 4+ messages / expand[flat|nested] mbox.gz Atom feed top
2017-08-22 9:23 System configuration on non-GuixSD systems (Debian) Pjotr Prins
2017-08-22 9:47 ` Christopher Baines [this message]
2017-08-25 7:56 ` Ricardo Wurmus
2017-08-25 13:46 ` Pjotr Prins
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
List information: https://guix.gnu.org/
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=20170822104723.75630581@cbaines.net \
--to=mail@cbaines.net \
--cc=guix-devel@gnu.org \
--cc=pjotr.public12@thebird.nl \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
Code repositories for project(s) associated with this public inbox
https://git.savannah.gnu.org/cgit/guix.git
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for read-only IMAP folder(s) and NNTP newsgroup(s).