1 |
On 11/12/2018 06:47 PM, Zac Medico wrote: |
2 |
>> |
3 |
>> The idea being, to put it in the right place by default, and let people |
4 |
>> override it with EXTRA_ECONF if they really want to download random |
5 |
>> binaries from strangers and run them. |
6 |
> |
7 |
> I recommend to add /nix to the whitelist because this is the default |
8 |
> location for all operating systems, as shown consistently throughout the |
9 |
> installation instructions found at |
10 |
> https://nixos.org/nix/manual/#chap-installation. |
11 |
|
12 |
I mean... I know... my argument is not that they don't tell you to do |
13 |
something dumb. If you really want the official experience, you can |
14 |
close your eyes, cross your fingers, say a prayer to RMS, and then |
15 |
follow their installation instructions: |
16 |
|
17 |
$ curl https://nixos.org/nix/install | sh |
18 |
|
19 |
The fact that some people choose to use portage to install it probably |
20 |
means that they were looking for something a little less yee-haw. We |
21 |
trust the package manager to not let ebuilds do dumb things to our |
22 |
systems: no surprise network access, no random filesystem reads/writes, |
23 |
reliable uninstalls, things installed in sensible paths, etc. We |
24 |
shouldn't make exceptions to those policies without a good reason. |
25 |
|
26 |
|
27 |
> The nix manual also has this explicit warning in the "Building Nix from |
28 |
> Source" section found at https://nixos.org/nix/manual/#sec-building-source: |
29 |
> |
30 |
>> Warning: It is best not to change the Nix store from its default, |
31 |
> since doing |
32 |
>> so makes it impossible to use pre-built binaries from the standard Nixpkgs |
33 |
>> channels — that is, all packages will need to be built from source. |
34 |
|
35 |
Do I have to be that guy who suggests that if people don't want to build |
36 |
from source, then maybe they took a wrong turn back at distrowatch? |
37 |
|
38 |
You can override the nix store location with EXTRA_ECONF if you really |
39 |
want to dump stuff in /nix. At which point the warning is just telling |
40 |
you what's up: you're doing something wrong. |