| 12 Dec 2023 |
 Wanja Hentze | not to my knowledge | 01:51:27 |
| Wanja Hentze | sounds lime a good thing to have available though! | 01:51:36 |
| Wanja Hentze | * sounds like a good thing to have available though! | 01:51:56 |
 ibizaman | Jasom can you elaborate on what this state management or I guess the lack of thereof means in practice? I don’t remember ever having to deal with that. | 01:58:42 |
 Jasom | In reply to @ibizaman:matrix.org
Jasom can you elaborate on what this state management or I guess the lack of thereof means in practice? I don’t remember ever having to deal with that. The system.stateVersion is the biggest one; if it goes in your configuration, then if you wipe a VM (or machine for that matter) and reprovision, it will be wrong if you've ever upgraded nixos to a new release. If it's not in your configuration then it will be wrong as soon as you upgrade to a new release. Nixops kept track of this (and some other state). IIRC it gave each machine a unique ID, checked that it hadn't changed and stored the information in an SQLite database in ~/.nixops. It also performs ssh key management for you, generating (and storing) a private key for each machine and adding the public key to the authorized_keys on the remote. I suspect there's other things it does as well, but I haven't dug too deeply. | 04:11:05 |
| Jasom | To clarify, I think Colmena not doing these things is the right choice, since e.g. auto-provisioning new VMs in the cloud is out-of-scope and silently storing unencrypted keys that allow root access to servers in the user's home directory is a ... suboptimal default. However authentication still needs to happen, so I'm pondering a tool that would work along-side Colmena to do some of these things. | 04:15:31 |
| ibizaman | I see, indeed I needed to do some manual work to generate a ssh key and add it to the target. | 04:17:20 |
| ibizaman | I remember reading about stateVersion, it makes sure you're introducing only backwards compatible changes and you can update it when you went through all the manual steps outlined in the release notes. | 04:18:17 |
| 16 Dec 2023 |
|  Dennis Stengele changed their profile picture. | 18:17:13 |
| 17 Dec 2023 |
|  NixOS Moderation Bot banned  @blaggacao:matrix.org (true). | 17:51:29 |
| 19 Dec 2023 |
|  @areskul:matrix.org joined the room. | 04:59:03 |
| @areskul:matrix.org | Jasom: I need a tool like this too! I am open to contribute! | 05:04:04 |
|  @the_observer:fairydust.space left the room. | 10:34:24 |
| 20 Dec 2023 |
|  @julian:nekover.se changed their display name from June to June 📞 5863. | 23:31:29 |
| 21 Dec 2023 |
| @julian:nekover.se changed their display name from June 📞 5863 to June. | 14:13:55 |
| 22 Dec 2023 |
|  Sylvie (she) ⚡️ joined the room. | 06:58:40 |
| 23 Dec 2023 |
| @julian:nekover.se changed their display name from June to June 📞 5863. | 01:55:58 |
|  raitobezarius changed their display name from raitobezarius to raitobezarius (DECT 2128). | 22:21:50 |
| 24 Dec 2023 |
|  Tammi (ey/em) changed their display name from Tammi (she/ey) to Tammi (ey/em). | 14:03:45 |
| Tammi (ey/em) changed their profile picture. | 14:03:51 |
| 25 Dec 2023 |
|  @lab-cat:ag-link.xyz changed their display name from lab-cat to lab-cat (DECT 3655). | 00:02:48 |
| 26 Dec 2023 |
|  Tommy changed their display name from Tommy to Tommy (DECT 2903). | 18:06:26 |
| Tommy changed their display name from Tommy (DECT 2903) to Tommy (☎️ 2903). | 18:38:51 |
| 29 Dec 2023 |
| Tammi (ey/em) changed their profile picture. | 09:39:14 |
| 30 Dec 2023 |
 Chinchilla Wetreat | Is there a way to deploy via a jump box? | 03:34:09 |
| Chinchilla Wetreat | (that is the -j flag in ssh | 03:34:26 |
| Chinchilla Wetreat | * (that is the -J flag in ssh | 03:34:42 |
| Chinchilla Wetreat | I tried port forwarding, but for some reason I can't ssh to localhost. It's odd.
❯ ssh localhost:1122
ssh: Could not resolve hostname localhost:1122: Name or service not known
❯ ssh 127.0.0.1:1122
ssh: Could not resolve hostname 127.0.0.1:1122: Name or service not known
| 03:36:23 |
| Chinchilla Wetreat | * (that is the -J flag in ssh) | 03:36:43 |
| Chinchilla Wetreat | okay $NIX_SSHOPTS works for nix-copy-closure but it seems colmena doesn't listen to it? | 03:56:52 |
