From mboxrd@z Thu Jan 1 00:00:00 1970 From: Ni* Subject: Re: Guix with Debian GNU/Linux Date: Sat, 02 Jan 2016 01:10:34 +0100 Message-ID: <87io3c264l.fsf@grrlz.net> References: <871ta4m4o0.fsf@grrlz.net> <87bn97q15p.fsf@gnu.org> <87bn9760ho.fsf@grrlz.net> <20151231011219.GA23122@jasmine> Mime-Version: 1.0 Content-Type: text/plain; charset=utf-8 Content-Transfer-Encoding: quoted-printable Return-path: Received: from eggs.gnu.org ([2001:4830:134:3::10]:38052) by lists.gnu.org with esmtp (Exim 4.71) (envelope-from ) id 1aF9mL-0001Ba-Ty for help-guix@gnu.org; Fri, 01 Jan 2016 19:10:43 -0500 Received: from Debian-exim by eggs.gnu.org with spam-scanned (Exim 4.71) (envelope-from ) id 1aF9mI-0005OY-0w for help-guix@gnu.org; Fri, 01 Jan 2016 19:10:41 -0500 In-Reply-To: <20151231011219.GA23122@jasmine> (Leo Famulari's message of "Wed, 30 Dec 2015 20:12:19 -0500") List-Id: List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: help-guix-bounces+gcggh-help-guix=m.gmane.org@gnu.org Sender: help-guix-bounces+gcggh-help-guix=m.gmane.org@gnu.org To: Leo Famulari Cc: help-guix@gnu.org Leo Famulari writes: > On Wed, Dec 30, 2015 at 11:21:55PM +0100, Ni* wrote: >> ludo@gnu.org (Ludovic Court=C3=A8s) writes: >>=20 >> > Ni* skribis: >> > >> >> From using GuixSD I know that as little files as possible should be >> >> created in /etc. When using Guix alone, is this still the recommended >> >> way of doing things? >> > >> > Most of the time, you can choose where to store config files, in /etc = or >> > elsewhere. >> > >> >> What I need to know for a server environment is, if I install tor and >> >> serve non-exit tor relays, will the config be read from the location I >> >> am used to (/etc/tor/) or does it differ? (same about httpd/nginx, et= c) >> > >> > Most programs allow you to choose which configuration file to use. For >> > instance, one can run: >> > >> > tor -f /path/to/torrc >> > >> > and Tor will pick its config file from there. I think the same is true >> > of nginx and httpd. >> > >> I have to correct myself, as I confused tor configuration with >> GuixSD, where I have the impression it (tor) is configured in the >> system config.scm to some degree. >> Correction: debian to my knowledge (I don't have much in depth Debian >> experience, slackware forks, gentoo, archlinux, etc everything more used >> than Debian) runs with some /etc/init.d/* files + systemd combination. >> When I use Guix to just install packages, do I write >> systemd/debian-thing service/startup files, or am I confused by being >> exposed to Guix as GuixSD which runs dmd? > > Yes, you won't have dmd on the Debian system. And in Jessie, the init.d > files are really just holdovers from Wheezy that are interpreted by > systemd. I presume the maintainers of those packages did not submit > systemd service files. > >> >> What are things I should look for and be careful about? What can be >> >> removed from the hostsystem, what needs to stay? >> > >> > Compared to GuixSD, a couple of things need tweaking to work smoothly; >> > see . >> > >> > As to what to keep in the host distro, it=E2=80=99s up to you! >> > >> > In some cases, you=E2=80=99ll have to make a binary choice; for instan= ce, if you >> > use Guile from Guix, you=E2=80=99ll have to use Guile packages (say, G= uile-SSH, >> > Guile-JSON, etc.) from Guix as well since otherwise they would end up >> > loading different variants of libguile.so and libc.so. >> Okay, this makes sense. Thanks for the pointers. >> > >> >> Are guix updates handled the same way as they are done in GuixSD >> >> (guix pull ; guix package -u)? >> > >> > Yes. >> > >> > Out of curiosity, what are the technical reasons that led you to prefer >> > Guix-over-Debian rather than GuixSD, since you tried GuixSD already? >> > >> Simple (but detailed) answer: >> I host with IN-Berlin[1] on virtual servers, they only provide Debian. >> If I could explain to them how to deploy it for servers (maybe images >> for the hardware they run the vservers on would already be enough), >> I would be able to run GuixSD. One thing I did though was telling and >> explaining one of people responsible for IN-Berlin what Guix and GuixSD >> is. Maybe it will be possible at some time in the future, they are very >> friendly. >> I would however prefer dedicated servers by now, but in the Ruhrarea >> (Region in Germany, NRW) the choice of ISPs, DCs and otherwise Hosters >> is so big that I always end up realizing that I can do better things >> with my time and leave it be. If I would be in Berlin regulary, >> maintenance would be no problem with colocation with IN-Berlin. Or >> hosting with free.de here, but I would say they don't like to answer que= stions >> about colocation contracts, at least that's my sad past experience with >> them, it would be a 10 minute ride to free.de from here. >>=20 >> > Thanks, >> > Ludo=E2=80=99. >>=20 >> 1: Individual Network Berlin e.V. http://in-berlin.de >>=20 >> Thanks, >> I get the feeling running GuixSD would be easier. So far I managed to get guix running and to install packages and run them. However I don't know about systemd. Long text below, what I wonder is what's the best way to define permanent .service files for guix? using ~/.guix-profile/ for ExecStart (which is just symlinks to the current versions) or some other directory structure outside root? Additionally, if I change and add files in the /gnu/store/ of a package, like ntpd, will the changes and added files be available after I upgrade the package I added changes to the file(s)? Or do I just use /etc/$upstreamdir for configurations and content? In the long run I will move everything to an GuixSD dedicated server, but right now I think I better ask. from the initial guix-daemon.service file after install: cat /etc/systemd/system/guix-daemon.service=20 # This is a "service unit file" for the systemd init system to launch # 'guix-daemon'. Drop it in /etc/systemd/system or similar to have # 'guix-daemon' automatically started. [Unit] Description=3DBuild daemon for GNU Guix [Service] ExecStart=3D/gnu/store/632msbms2yaldfnlrb5lbnlnmn9yjisw-guix-0.9.0/bin/guix= -daemon --build-users-group=3Dguixbuild RemainAfterExit=3Dyes StandardOutput=3Dsyslog StandardError=3Dsyslog [Install] WantedBy=3Dmulti-user.target trying to get OpenNTPD to work: cat /etc/systemd/system/openntpd.service=20 [Unit] Description=3DOpenNTP Daemon After=3Dnetwork.target Conflicts=3Dsystemd-timesyncd.service [Service] Type=3Dsimple #Type=3Dforking ExecStart=3D/root/.guix-profile/sbin/ntpd -s -d -f /root/.guix-profile/etc/= ntpd.conf Restart=3Don-failure [Install] WantedBy=3Dmulti-user.target Where I had to create user "_ntp" to get it to work: useradd -M -s `which nologin` --system _ntp which now gives me =E2=97=8F openntpd.service - OpenNTP Daemon Loaded: loaded (/etc/systemd/system/openntpd.service; disabled) Active: inactive (dead) ntpd[899]: Lost child: child exited ntpd[899]: Terminating ntpd[899]: dispatch_imsg in main: pipe closed systemd[1]: Starting OpenNTP Daemon... systemd[1]: Started OpenNTP Daemon. ntpd[924]: adjtimex adjusted frequency by 0.000000ppm ntpd[924]: fatal: privsep dir /home/_ntp could not be opened: No such file= or directory ntpd[924]: Lost child: child exited ntpd[924]: Terminating ntpd[924]: dispatch_imsg in main: pipe closed which means I have the same problem I had when I created the user with: useradd -d /var/empty -s `which nologin` --system _ntp so I need to create an empty dir of some kind to make it work. --=20 ng/Ni* http://libertad.pw Email is public. Talk to me in private: https://psyced.org:34443/~niasterisk privacy respecting, secure communication: BM-2cSj8qEigE3CMaLU3CwPZf7T3LvzvnttsC (bitmessage)