| 10 Aug 2021 |
 David Arnold (blaggacao) | * For do, you'd create a single boostrap image and then launch droplets from it. And make sure it has your pubkey and then bootstrap the actual non-anonymous host from it. | 02:28:42 |
| David Arnold (blaggacao) | * For do, you'd create a single bootstrap image and then launch droplets from it. And make sure it has your pubkey and then bootstrap the actual non-anonymous host from it. | 02:28:47 |
| David Arnold (blaggacao) | * Well it's built locally and then pushed to then mount-point and activated and via nixos-enter the bootloder will be installed. | 02:29:01 |
| David Arnold (blaggacao) | * Well it's built locally and then pushed to then mount-point and activated and via nixos-enter the bootloader will be installed. | 02:29:07 |
| David Arnold (blaggacao) | * `nixos-infect` tries to be too smart, I feel. | 02:29:21 |
| David Arnold (blaggacao) | Not sure why nixos-infect has had it's inplementation so complicated? | 02:30:26 |
| David Arnold (blaggacao) | Maybe to procure a different cli UX. | 02:30:41 |
 @kraftnix:matrix.org | In reply to @blaggacao:matrix.org
nixos-infect tries to be too smart, I feel. probably, although it definitely impressed me that nixos could do that when i was first starting out | 02:30:51 |
| David Arnold (blaggacao) | Hahah, as tim wrote in the Foreword. The system is just a package (file tree) | 02:31:23 |
| David Arnold (blaggacao) | * Hahah, as Tim wrote in the Foreword. The system is just a package (file tree) | 02:31:34 |
| @kraftnix:matrix.org | theres a difference between thinking that and seeing it done :) | 02:31:54 |
| David Arnold (blaggacao) | So I guess yeet --mount-point '/mnt' should be soon able to install nixos remotely (after manual formatting) | 02:33:25 |
| @kraftnix:matrix.org | i will be very happy to test that feature out | 02:34:04 |
| David Arnold (blaggacao) | But nothing hinders anybody, to write a formatting script into the deploy-rs activation script as well. | 02:34:15 |
| David Arnold (blaggacao) | Ah no! That would have to be run earlier. | 02:34:32 |
| David Arnold (blaggacao) | So maybe yeet --formatting-script ./path/to/gparted-script could be a thing. | 02:35:19 |
| @kraftnix:matrix.org | i essentially have those scripts for a standard VM (expecting /dev/vda) and full disk btrfs/zfs on BIOS/UEFI with LUKS support as well) | 02:35:52 |
| @kraftnix:matrix.org | you could also achieve the same with an ssh activation script, probably? | 02:36:14 |
| David Arnold (blaggacao) | But that's actually would not be any different from doing the same thing via ssh plain. | 02:36:20 |
| David Arnold (blaggacao) | Yeah, maybe out of scope. | 02:36:44 |
| David Arnold (blaggacao) | * Yeah, maybe out of scope (for `yeet`). | 02:36:56 |
| @kraftnix:matrix.org | in scope for bud wrapped yeet? | 02:37:10 |
| @kraftnix:matrix.org | at least my bud if i get around to it, although i shouldn't need to provision machines for a while so it would mostly be for fun | 02:38:14 |
| David Arnold (blaggacao) | Hm, yeah maybe a bud format-host or something. Since the exact command might be a bit pesky to remember | 02:39:06 |
| David Arnold (blaggacao) | * Hm, yeah maybe a `bud format-host` or something. Since the exact `ssh` command with all bells and whistles might be a bit pesky to remember | 02:39:45 |
| David Arnold (blaggacao) | Btw., bud gained a bud burn which basically helps identify the removable media that you want to flash an iso to. | 02:40:53 |
| David Arnold (blaggacao) | Like the /device/sdaX part for dd that you better get right 😁😆 | 02:41:32 |
| David Arnold (blaggacao) | * Like the `/dev/sdaX` part for `dd` that you better get right 😁😆 | 02:41:44 |
| @kraftnix:matrix.org | yeah, also at least for my setup I need some info back from the host, so format-host to create a new ./hosts entry would be quite useful and interactive as a devos install process. some bits of state that are somewhat required if I want to go from nothing to fully deployed during install would be to pregen root ssh keys so agenix secrets can be provisioned during install | 02:41:57 |
| David Arnold (blaggacao) | I still have the vision to boostrap and manage cryptographic host identity through an identity attestor such as Spiffe/spire or step ca | 02:44:10 |
