KDE, GNOME and Sway are the only functional Desktop Environments/Window Managers that support Wayland all, while the Other DEs are not even close to shipping with Wayland.

What

Just use git… One of the huge advantages of latex over docx is its easy diffability

Yay, new Cult Member! 😄🎉

But seriously, awesome, have fun with it! Feel free to comment/message me if questions come up, but beside that, I have to mention that the NixOS forums are very active and friendly!

(And I actually did type that out yesterday, but I’ll definitely be copy-pasting it going forward 😄)

Sorry for not answering sooner - got bogged down with work yesterday. I see you already got a response, but thought I’d write up what I had in mind anyways :)

The benefits

I want a computer that just works, to the extent that that’s possible. I’ll fix stuff that needs fixing, but ideally I don’t need to do much.

That’s great, and good news, this is very easy to achieve with NixOS.

As the other commenter said, rather than (imperatively) running commands like apt install, you configure the entire system through your “nix config”. In the simplest scenario, that’s just a single file which gets auto-generated when you install NixOS, and if all you need/want is to add some packages, then that’s enough (I’ll get to different approaches below). In other words, NixOS is declarative rather than imperative: you use the config file to “declare” what the system should look like, and it’s Nix’s job to ensure that your system adheres to this.

I need to emphasize though, that this is not just about packages, but about every single piece of configuration you could possibly touch on your system. I am currently managing 30+ NixOS machines from a single centralized config, and I have not once edited or even opened a single config files on any of these machines, ever.

Nix comes with a vast package repository: , but just as importantly, with a vast collection of “modules”. Think of modules as an abstraction for all the little things you would need to configure to get something running.

Let’s take everyone’s nightmare configuration as an example, getting Nvidia GPUs to function properly. This is the ArchWiki article on how to do so, and the Debian Wiki does not make it look any simpler. For NixOS, it should be as simple as adding this to your nix configuration file:

hardware.nvidia.enable = true;
hardware.nvidia.open = true; # use the open source drivers; set to false if you want the proprietary ones
hardware.nvidia.nvidiaSettings = true; # optional - will enable the Nvidia settings menu

Of course, all the same complicated steps as with any other distro are necessary “under the hood”, it’s just that with NixOS, someone else already has “declared” what the system needs to look like for Nvidia GPUs to work, and abstracted it behind these easy-to-use config options. There’s currently more than 20.000 such configs options defined, which sounds intimidating, but you only need to use those you actually want to use. For example, let’s say you want to install and configure a jellyfin server.

Again, all that is necessary to be up and running is

services.jellyfin.enable = true;

but if you want to customize the install, you can simply search for all available options. Also note that if you ever disagree with how a package/module is built/installed/configured, you can just overwrite the “official” way, though at least in my experience, that is basically never necessary.

OK, back to you.

Let’s say you have successfully configured the system as you want it to be - KDE5 installed, your favorite packages installed, Steam configured with programs.steam.enable = true;. Now the worst case happens, and your SSD hits the shitter; it’s dead, completely unrecoverable.

Good news: as long as you have a copy of that configuration.nix file, you can be up and running with the a new harddrive and exactly your same, old system in a matter of minutes.

Another scenario, let’s say you manage to brick your install (somehow). No sweat, reboot your PC, the previously used NixOS configuration is available as a grub (or systemd-boot) entry. Does not matter if you ripped out all the drivers, switched from KDE to Gnome in the mean time or anything else.

Essentially, disaster recovery is easy in NixOS, even if it is necessary very, very rarely, because nix will already warn you “yeah this doesn’t work” when you are building the system.

The Nix language

You have already seen some of it above. Most people say NixOS is not a beginner distro, and that opinion is mostly due to the Nix language. It’s… not pretty, but its learning curve is not bad if you just want to do “basic” stuff like configuring your system in the way shown above. For more advanced topics, there is a steep, but not very long learning curve. If that is worth it is up to you; there is no need for it, but it does allow you to write your own modules, and to leverage a full turing-complete programming language inside your configuration. But IMO, just learn as you go, no need to try and study the language just to use NixOS.

Going wild

For a single machine, the single configuration.nix file is perfectly fine. If yo only have a single machine anyways, I’d say stick with that.

As soon as it’s 2 or more machines though, it makes sense to move the configuration elsewhere, in a single project which you can back up (usually, via git). This also allows you to reuse parts of your config - for example, if your user is always the same, and KDE should always be there,…, you can define that once and then import that into the inidividual machine’s config. You then simply tell nix “build this config on that machine”.

There are a ton of awesome projects in the “nix ecosystem”, so to speak, which you can also leverage: for example, you can add home-manager to your config, and then use your existing configuration but extend it with config for inidividual users’ environments, like customizing KDE itself, configuring git, ssh, your terminal,… You said you are not a customizer, so this probably does not apply to you that much, but it’s still good to know that it is easily possible.

Other projects add capability for secure secrets management, for things like turning Nix into a very good approximation of SteamOS,…

TL;DR:

NixOS makes tedious things simple, and disaster recovery trivial. It offers more (and fresher) packages then even the allmighty AUR, while being stable as a rock.

You will never have to re-solve a problem, no matter how long ago you originally solved it.

I host it publicly accessible behind a proper firewall and reverse proxy setup.

If you are only ever using Jellyfin from your own, wireguard configured phone, then that’s great; but there’s nothing wrong with hosting Jellyfin publicly.

I think one of these days I need to make a “myth-busting” post about this topic.

Nice!

How much do you know of nix? (Just gauging where I should start in my propaganda script :D)

Ah, understandable.

May I talk to you about our lord and savio, NixOS? (Only kinda /s)

Is this really a common occurrence for you, that the package isn’t available via apt?

Ugh yeah, it feels like the show is making fun of Preservation, which kinda undermines the show. Contrary to what others seem to think here, in my opinion the added goofiness really detracts a lot from the show.

OK, add step above: use wildcard certificate for your domain.

Terminating the TLS connection at your perimeter firewall is standard practice, there’s no reason your jellyfin host needs to obtain the certificate.

Actual answer for 3:

• put jellyfin behind a proper reverse proxy. Ideally on a separate host / hardware firewall, but nginx on the same host works fine as well.
• create subdomain, let’s say sub.yourdomain.com
• forward traffic, for that subdomain ONLY, to jellyfin in your reverse proxy config
• tell your relatives to put sub.yourdomain.com into their jellyfin app

All the fear-mongering about exposing jellyfin to the internet I have seen on here boils down to either

• “port forwarding is a bad idea!!”, which yes, don’t do that. The above is not that. Or
• “people / bots who know your IP can get jellyfin to work as a 1-bit oracle, telling you if a specific media file exists on your disk” which is a) not an indication for something illegal, and b) prevented by the described reverse proxy setup insofar as the bot needs to know the exact subdomain (and any worthwhile domain-provider will not let bots walk your DNS zone).

(Not saying YOU say that; just preempting the usual folklore typically commented whenever someone suggests hosting jellyfin publicly accessible)

Yyyyyyupp

“Oh no, this device is rooted! :(” Yes because I know what I am doing, now show me my account balance you stupid piece of ahit banking app.

No, mate. I don’t need a guide, or a tour. Just a single clarifying sentence.

“My product does x”. Right now, x could be:

• help you scam people
• provide a meditation partner
• help you learn how to code in Cobol
• give travel tips
• …

What does your product DO? And dong you dare answer “it helps you make money”, that does not explain anything.

I have clicked every link on that site and I still have exactly zero clue wtf this is.

Ah, my bad then! I didn’t see a repo linked in the post or on the site. That’s great, then!

Cool idea. But since it doesn’t seem to be open source and self-hostable, I won’t trust it.

FWIW, I have no issues sending mails/having them be received from my self-hosted to Google mail

On many trackers, you get “paid” for time seeded. Usually in the forms of bonus points or the like. You can then exchange these for improving your ratio (or a freeleech token, or an invite,…).

It’s a system that also rewards keeping media available even if you are not uploading to anyone.

Also, keep in mind that often, a large part of the available content is freeleech (meaning leeching it doesn’t affect your ratio), but seeding those torrents usually still does improve your ratio.

Isn’t that what Sichuan peppers do?

Sorry, I should have mentioned: liking bare-metal does not mean disliking abstraction.

I would absolutely go insane if I had to go back to installing and managing each and every services in their preferred way/config file/config language, and to diy backup solutions, and so on.

I’m currently managing all of that through a single nix config, which doesn’t only take care of 90% of the overhead, it also contains all config in a single, self-documenting, language.