| 25 Jun 2025 |
|  terje.furenes joined the room. | 15:41:46 |
|  gkak.laₛ changed their display name from gkaklas to gkak.laₛ. | 17:50:21 |
| 26 Jun 2025 |
|  kernz9 joined the room. | 05:39:17 |
|  blaxxmith joined the room. | 09:09:40 |
|  mao zedong changed their profile picture. | 21:42:57 |
| mao zedong changed their display name from nixosfanboy to liselifilozof. | 21:44:02 |
| 27 Jun 2025 |
|  R̴̨͕͇͍̞̮̐̅͆̌̀̉̐͋̈́̃̀͒́̎̅̚̚̚͠͝Ĕ̵̡̛͖͖̟̙̫̱͈̘̞̭͍͍͑̌̄͑̓̋̓̀̈̏̈́͊̇͊͆̉͂̏̀̃̚͘͝͝ͅͅD̶̡̢͔̱̖̮͙͉̘̺͓͍̩̮͈͍͗̃̀̏͌͘͜ͅŚ̸̬̭̯̬͙͇͓̬̩̳̤͚͓̤̩̺͉͖̉͛̓̿̎͊̿̆́̐͂̇͌̄̇̓͘ͅͅT̴̞̫̘̝͇͔̟̪̪̦͂̔̎̀̎ͅŎ̷̡̬̹̪͈̭̣͈̭̭͉̦̖̝̘̪͖͔̥̦̘̻̳Ṋ̶̛̫͈̳̘͚̜̔̋͆̅̈́͊̑͊̉̌̈́̾͑̈́̚ͅË̸̡̨̨̛͇̜̖͔͖̻̟̗̠̙͓̘̗̥͉͇̜͑͆͊͑͑̀̓͒͜͝͝ changed their display name from Redstone to R̴̨͕͇͍̞̮̐̅͆̌̀̉̐͋̈́̃̀͒́̎̅̚̚̚͠͝Ĕ̵̡̛͖͖̟̙̫̱͈̘̞̭͍͍͑̌̄͑̓̋̓̀̈̏̈́͊̇͊͆̉͂̏̀̃̚͘͝͝ͅͅD̶̡̢͔̱̖̮͙͉̘̺͓͍̩̮͈͍͗̃̀̏͌͘͜ͅŚ̸̬̭̯̬͙͇͓̬̩̳̤͚͓̤̩̺͉͖̉͛̓̿̎͊̿̆́̐͂̇͌̄̇̓͘ͅͅT̴̞̫̘̝͇͔̟̪̪̦͂̔̎̀̎ͅŎ̷̡̬̹̪͈̭̣͈̭̭͉̦̖̝̘̪͖͔̥̦̘̻̳Ṋ̶̛̫͈̳̘͚̜̔̋͆̅̈́͊̑͊̉̌̈́̾͑̈́̚ͅË̸̡̨̨̛͇̜̖͔͖̻̟̗̠̙͓̘̗̥͉͇̜͑͆͊͑͑̀̓͒͜͝͝. | 00:55:45 |
|  @psibi:matrix.org left the room. | 09:38:14 |
|  Daniel Ramos joined the room. | 18:33:15 |
| Daniel Ramos | Hello folks 👋
I’m trying to deploy user passwords declaratively with sops-nix, but before moving to sops-nix, I’d like to at least manage user passwords declaratively in a basic way.
I started with something like:
users.users.cris = {
isNormalUser = true;
password = "changeme";
};
I can SSH into the machine and then su cris using the "changeme" password without issues.
Later, I change it to:
users.users.cris = {
isNormalUser = true;
password = "somethingelse";
};
I deploy using deploy-rs, but when I SSH into the machine and run su cris, the password remains the old "changeme", not the new "somethingelse".
Why does this happen? Is this expected behavior in NixOS? Where does this behavior come from?
Thanks in advance!
| 18:39:01 |
 emily | do you have mutableUsers on? | 18:45:29 |
| emily | by default the password options only set initial password, it's evil and you should turn it off | 18:45:47 |
| Daniel Ramos | I think It might be that! I dont' have configured neither mutableUsers = true or false. Where is this config living? under <??>.mutableUsers? Sorry I'm a nix newbie 😅 | 19:03:42 |
| Daniel Ramos | * I think It might be that! I dont' have configured neither mutableUsers = true or false, so I think it has to be retrieving the default config. Where is this config living? under <??>.mutableUsers? Sorry I'm a nix newbie 😅 | 19:04:04 |
 jappie | users.mutableUsers
you can look up such options on search.nixos.org: https://search.nixos.org/options?query=mutableUsers | 19:07:06 |
| Daniel Ramos | thanks you so much!! | 19:11:11 |
| emily | fwiw, I recommend using precomputed password hashes, even when using encryption | 19:34:27 |
| emily | so hashedPassword{,File} rather than password{,File} | 19:34:45 |
| emily | (you can make them ahead of time with mkpasswd0 | 19:34:54 |
| emily | * (you can make them ahead of time with mkpasswd) | 19:34:55 |
| mao zedong changed their profile picture. | 20:27:42 |
| mao zedong changed their display name from liselifilozof to mao zedong. | 20:28:02 |
| Daniel Ramos | ok, thanks you! | 22:18:00 |
| 28 Jun 2025 |
|  Nyxvectar changed their display name from Вектарис Янов to Rtsingo Су. Nyxvectar. | 02:51:55 |
| Nyxvectar changed their profile picture. | 06:32:27 |
| Daniel Ramos | Good morning, folks. I have another question. I’m trying to set up nix-sops with deploy-rs, but I haven’t been able to get it working. Do you have any resources or GitHub repos where I can find a similar setup where can I learn from? Thank you so much. | 08:30:40 |
|  Jason joined the room. | 16:19:57 |
|  bizmyth joined the room. | 16:53:52 |
| 29 Jun 2025 |
 jficz | Can't help with sops much but I recommend to check out agenix if you're still exploring and are not fixed on sops. It is (imho) much more cleanly integrated with Nix. | 21:40:54 |
|  jonhermansen joined the room. | 22:08:50 |
