LINUX Unplugged - 640: Duece Configalo: Desktop Gigolo
Episode Date: November 10, 2025We dive into your configs, the genius moves, the glorious blunders, and everything in between.Sponsored By:Managed Nebula: Meet Managed Nebula from Defined Networking. A decentralized VPN built on the... open-source Nebula platform that we love. 1Password Extended Access Management: 1Password Extended Access Management is a device trust solution for companies with Okta, and they ensure that if a device isn't trusted and secure, it can't log into your cloud apps. CrowdHealth: Discover a Better Way to Pay for Healthcare with Crowdfunded Memberships. Join CrowdHealth to get started today for $99 for your first three months using UNPLUGGED.Unraid: A powerful, easy operating system for servers and storage. Maximize your hardware with unmatched flexibility. Support LINUX UnpluggedLinks:💥 Gets Sats Quick and Easy with Strike📻 LINUX Unplugged on Fountain.FMLINUX Unplugged 634: Config Confessionsyechielw/dots — Nixos and home-manager configShayne's budget FlakeShayne's Budget PackagesShayne's Budget Configuration.nixChris' Budget Flake FixMillak/guix-config: mirror of my guix configsMillak/my-guix: local guix packagesefraim-home: Add mpv-sponsorblock-minimal-conf.dDistrostu's configsDistrostu's M Series ConfigOly Mike's NixbookwriteShellApplication - Nix function referencewriteShellApplication - Nixpkgs Manual — writeShellApplication is similar to writeShellScriptBin and writeScriptBin but supports runtime dependencies with runtimeInputs.rwiankowski/homeserver-nixos — My Home Server Setup using a single NixOS nodeBrandon's HomelabBrandon's MacBrandon's brew defined by NixBrandon's Mac Apps installed via NixBeardedTek/nixos-router: NixOS Router Configuration — A declarative NixOS configuration that transforms a standard PC into a full-featured network router with integrated secrets management.blocky: DNS proxy and ad-blockerDeidrael/nix-config: My NixOS ConfigFuzzyMistborn/infra — 100% chance of id10t errors....and a slight chance of a credential leakwilliam/nix-config: All my nix stuff, in a single flakePick: SoltrOS — Immutable Linux designed for gaming & developmentPick: Parabolic — A powerful yt-dlp frontend.Pick: Youtarr — Youtarr is a self-hosted YouTube DVR that lets you subscribe to channels, browse their videos in a web UI, and automatically download and archive the ones you care about to your own storage.
Transcript
Discussion (0)
Hello, friends, and welcome back to your weekly Linux talk show.
My name is Chris.
My name is Wes.
And my name is Brent.
Hello, gentlemen.
Coming up on the show today, it's the sequel to the summer blockbuster config confessions.
We'll dive in to your configs, call out the genius moves.
the blunders and everything in between.
And then we'll round it out with some shoutouts, some picks, and a lot more.
There's so much to get into lots of cool config.
So before we do all of that, let's say time-appropriate greetings to our virtual lug.
Hello, mumble room.
Hello.
Hey, Chris, nice-bye-d-d-dust.
Hey, good morning.
Good morning, everybody.
Hello, thank you for joining us.
That is a rock and mumble room.
And hello up there to the quiet listening to.
And a big good morning to our friends at Defind.net slash unplugged.
Go meet Managed Nebula from Defined Networking.
It's a decentralized VPN built on the Nebula platform.
This is a project that we love.
We've been following it from the very early days.
It's optimized for speed, simplicity, and if you want, self-hosting.
It's great for a home lab.
It's also great for an enterprise.
It started in 2017 right there in the thick of it to connect all of Slack's global infrastructure.
You can imagine the back-end Slack must have.
Wow.
And they needed a way to securely connect all the global infrastructure.
and Nebula was engineered for scale and performance from day one.
But the thing that I have really learned to appreciate as I've built out and used all of these different types of mesh and decentralized VPNs, including standard VPNs like WireGuard and way back in the day, OpenVPN and others, there's always a tradeoff when it comes to hosted infrastructure, except with Nebula.
Nebula lets you control the entire thing.
They offer a managed platform and you can go to a self-hosted platform and you can use a managed platform.
Everything. It's not like a thing that they're resisting. It's how the product was built. And when you are creating your infrastructure, you're building out your infrastructure, you want something the last for years, I think that really matters, even for an enterprise or a home lab. So they align with the way I think about things and the way I want my infrastructure to be built. You know, there's other ways you can do it, of course, but I really like the way they're building out both the company and the project and the product. So check it out at define.net slash unplugged. Redefine your VPN experience. Get it for 100 hosts. Absolutely.
free and support the show.
And if you get to the point where it's like, okay, it's time to self-host, Nebula is killer.
Nobody beats Nebula at that.
The resiliency, the robustness, and I'm talking mobile device battery life, all that kind of stuff.
Nobody beats Nebula.
Check it out at Defined.net slash unplugged.
And a big thank you to Defined.net for sponsoring this here Unplugged program.
Config Confessions.
Step right and tell us where it broke again.
All right, this time it's config confessions in space, the linting.
And we're back for another round.
We asked you to send in your configs, and you've done it.
And there's a nice batch this week.
And if you want to catch the first version, it's episode 634.
You can find that at Linux unplug.com slash 634.
So here we are.
Now it's at fall time, and we're,
back for round two.
And I got to start with the hardest one I think to pronounce here.
I'm going to give it a shot.
Wait, wait.
I think before we dive right into the first one, which...
Okay.
Impressive.
I mean, shouldn't we all confess a little bit?
Like, how much have we looked at this stuff?
Because, you know, people have been sending them in, and then you did the hard work to, like,
you know, gather them all up and try to find them.
Brent's been doing the hard work at driving.
So I think they're my point of confess in a...
around like, are we looking at these for the first time?
Do we, you know, let's just be transparent.
Okay, that's good.
That's good.
Some of us might be coming in cold, like in the snow, you might say, hey, on this.
Yeah, I did have a chance.
I went through, you know, I took in the flavor of it, of each one, sort of got in their headspace the best I could and made some notes for us to chew through.
So I think we're going to have a nice combination of clean cold takes and, uh,
fully immersed takes.
How you feel?
Does that work?
Is that?
That's perfect.
Yeah.
I'm down with that.
And it's not all Nix.
We had some people send in their Ansible configs.
We had a Gouix config sent in.
We had some Mac systems sent in.
So we have some interesting ones.
And I'm going to say, do you think it's Yichel?
Yichel is perhaps how you say their name.
They say, please roast my NixOS config.
It's an opinionated hyperland-based config with the same design and productivity-based setup.
Oh, that's why I got first.
first billing yeah I see this now no it was chronological it was chronological um so I noticed that
first of all it's it's you know everybody has a bit of their own design style for their repo and
eachel here starts with a nice screenshot of course of fast-fetch you got to get the fast-fetch
screenshot in there so that's a classic and then he breaks it all down the colonel's cashie OS has support
for TPM and Waybar is in there.
You got sway sync in there, Kitty, NeoVim.
And then one of the things that I always like to see is a get started real quick.
And even if it's just for yourself, for future you.
And they have that right here.
A get started real quick script and then a post installation, a couple of tasks to run.
So those are my initial, that was my initial impression is I like this screenshot, get started real quick approach.
I think it's really good for restoring a system on the quick and things like that.
And they're actively committing.
They got 444 commits.
And as just a couple of days ago, they were updating their flake.
How are you missing that?
Four days ago was last updated.
And there's 444 commit.
What's going on with four here?
I don't know.
Yeah, you're right.
But, I mean, you called it out there, but Cash EOS kernel.
Are you picking up that?
I'm liking that.
I'm liking that.
So if you go in and take a look at dots slash.
nix slash boot dot nix you'll see packages dot linx packages testing commented out packages dot linux packages
zen what we're both using commented out this is telling a story to me because what is left
uncommented is linux packages underscore cacheOS which i did not realize was just an option that we could
do so i think we have to try that i do like that um programs dot nix is an interesting file i think
he's turning on some app images. I see Zoom.
I'm okay, do you connect? I'm not quite sure. What really threw me
for a loop, and I kind of wanted to get your eyes on
this one, was, let's see, I made a note in our notes
here. Yeah, okay, I think he's installing pinch flat
on his desktop system.
If I'm understanding this correctly.
Because in this config, he's also
defining, like, his power management, his system
DNS, and all of, like, the keyboard layout
stuff, you know, turning on pipe
wire. So it's like his, it's like, kind of like a system configuration, but then he has
pinch flat installed there. Like, I love pinch flat, but on the desktop.
Well, I see it in services.nix. So it might depend on where that's all sourced.
Yeah, that's where I couldn't tell for sure. I do think it's a very solid layout. A lot of Lua,
40% Lua in there. Well, I was, I'm like, okay, some host modules in here, too, I'm seeing.
And it uses a settings.comfile to set the username, the system, description,
and the system type, so like X-86 or ARM.
So he's got one file where he can go in there and just set that.
Sort of as an override.
I think you're also missing.
Did you see the contributor count on this thing?
Yeah, I know.
59 people have worked on this.
It's insane.
How is he getting 59?
Like, this is more series of a Nix config than any of us have put together.
I know.
How's he getting 59 people?
That's awesome.
It's a great question.
there's a lot to look here in you know because you can tell it's like really well used i don't know if you notice but there's like separate home manager configs for like um if you're going with a window manager environment or if you're going in a tui environment i guess or there's modules for both anyway so love to see that yeah and quite the flake you know like there's all kinds of inputs going on there's there's fanciness i don't know what nick's cats is but i assume it's a category theory theory thing or just cute cat pictures either way i like it yeah
Oh, maybe it's for a neovim, I see.
Yeah, a lot of neovim stuff too, which is great.
I've seen the config folder here, Linux dash enable dash IR emitter.
Any guesses on what that's being used for?
Sounds like something West should look at.
You're right.
It looks like he's defining a PCI device, right?
Is that what he's doing?
Interesting.
Yeah, this is great.
This kind of stuff, if you can have this just redeployed when you set up your system
and like these kinds of devices, so your IR blaster,
just works. Oh, that's that's getting it dialed in, buddy. I'm, you know, I'm not
sure if we wanted to score these, but I'm kind of feeling like this is a four out of five. I just
have a couple of gripes. In my opinion, it's a little sprawly, just a little bit. But
not bad, not bad. So I can't give it a full five out of five. But I do want to give it a four
out of four. Or a four out of five, I think. I don't know. How do you feel? Is that a fair?
Should we adjust? I'm open to the committee. Are there not a left like initialization
scripts for you? Is that your problem?
You bastard. Yeah, the activation script
seriously underdeveloped in this one. I just
can't get five out of five if you don't get that.
Look, if you're not creating the Tilda directory, I don't want to hear.
Oh, wait, I'm roasting the wrong person.
Yeah, yeah, we're roasting their config.
Ooh, sorry. I think, I just don't know if it's a five out of five,
but I think it's really close. I could
be argued up or down
if anybody wants to make the case. I mean, I think the contributor
count like okay maybe it's a little sprawling or maybe it's a lot if you're just trying to use it
for like one or two systems but i feel like that contributor count says that a lot of the functionality in
here is probably being used imported like more than just you know this is not just a single
person's config for their like laptop at home there's a lot more work and polish in here okay
all right so you've got the contributors also i'm talking myself into making it a five out of five
because like as we'll see as we go along some of these they kind of go too far right
This is a nice balance.
A lot of things that are solved, problems like those PCI device,
things that are solved, but we're not going like nutso with it.
You know, you can take it too far.
So I'm kind of talking myself into a five out of five now.
Lock it in.
All right.
Okay, so that, hopefully I got anywhere close to your name, Eichel, but thank you for sending that in.
Nice to see the Hyperland setup.
Love seeing those.
And I like seeing Lonzebue, TPM stuff.
There's just a lot to like, so thank you.
Yes.
The Lonzabut was cool.
All right, their next one is Shane's budget config.
He says, I've attached a Nix config for you guys to analyze.
Don't hold back.
Tell me how bad it is.
My goal with this config is to make a working config that uses Flakes, although I don't really
know what they are still, and allows me to add programs from either stable or unstable
by choice.
So after many hours of back and forth with failed configs and hallucinations at times insults
towards the stupid bot, we have a working config.
Now it's probably jank.
I don't know.
But it does seem to work.
And so he supplied us with a flake, a packages.nix, and a configuration.nix.
And I wanted to get your eyes on that flake there, Wes, and see if you had any, you know,
editor's notes for Shane's budget flake.
Yeah, I mean, I think you're doing well, Shane.
You're well on your way to getting a flake system, right?
Like going from the first sort of configuration.nix setup with channels, getting into the flake mindset,
that's a lot to do.
So we kind of see a pretty clean flake here.
we've got Nix packages and, right, as Shane was alluding to, also Nix package is unstable.
The first one's pinned to a regular release and unstable.
And then you can see here, they have a let block where they're setting up both unstable and regular packages.
And then let's see here.
Ah, so then they're using a Nix module that they can feed in both manually as a, so they do like an import call to load in their packages.
nix file that gets them all the packages they want from either collection of upstream nix
packages and then they use an in place module in the flake to inject that into the config
that's pretty that's pretty clever there might be easier ways ultimately depending on how you
want to do it but i mean it definitely works okay so it's got the west paying approval i wasn't
sure i did wonder if there was some redundant package assignments in there but that's a pretty
minor quibble. I think
that got a
more resounding Westpain approval than I
expected, so I'm not going to argue with that.
The packages.nix is interesting
here. It's a
pretty well laid out.
Here, I'll pull it up. I hosted these, by the way.
These will be linked in the show notes if people listening
want to look at these as we're talking about them.
They are linked over at Linuxunplug.com
640, if you'd
like to check them out. And he has
I think he has a couple
of apps that are like his staples.
that he's pulling from the Knicks Stable Repository.
And if you're looking at the packages.nix,
and then he's got a handful of, like, you know, rock and roll apps
that he pulls from unstable, like Waybar, WL Roots,
those types of things, Shane's pulling from unstable.
And I think that is,
listen to me now, audience.
Other distros can do it.
Nobody does it like Nix.
Right?
So if you never want your NeoVim to get changed out from underneath you,
you pull that from stable.
Or your Android tools is another example.
example in here, or, you know, Romania. But your launcher, Wofi, your Waybar, why not? Why not?
Those are pretty rapidly developed. Why not pull those from unstable if it works for you? And you
could do both. Well, and, right? You can swap them, right? So in this case, because Shane's got this
single file, it's pretty easy to just, you know, remove Waybar from unstable and move it back up
to stable if that's where you want to get it from. So I think that is one aspect that this works really
Welk's like it's it can be tricky figuring out how you inject both like everything's kind of
set up if you do it the normal way like you get your one version of Nix packages and you give that
to your module and like you just kind of inherit that as packages inside your module it's all easy
to access there and then there's multiple different mechanisms for like how do you actually
thread unstable packages or you know how do you thread an additional set of Nix packages through
your entire config a lot of people use like special ARGs which can totally work
Shane's using a clever, I think
Nick's forward approach here, and you can
also use, which is this is
like halfway to, I think,
using the module interface to pass that
through as well. But I like that,
especially for a small config like this,
it's really easy to switch where you're
pulling stuff, so that's great. Now, Brent,
can I call upon you to give Shane
just a quick elevator GitHub talk
here because he sent these as attachments
to email because he's not using
Git to manage these.
Seems like that could be an area. Maybe he could
improve on? Well, you're assuming he's not using Git to manage these. Maybe he's just doing a local
Git and doesn't have these necessarily publicly available, which I am a big fan of. I don't know.
I think he said he wasn't, but in the email, I just didn't put that in the dock. But I might be wrong.
All right. All right. Well, if not, I would say, come on, history is great because it keeps track of
every single mistake or fix that you ever made to your configs and you can go back and look at them
or have at least some peace of mind for rollbacks.
There's really little downside.
You should use Git.
There you go.
Only took Chris, what, eight months to be convinced, but we're trying.
You had to...
Again, again, I'm not the one you're...
I'm not the one.
If you bother to go with flakes and you don't go with gay,
you're just like totally losing out on half of the value proposition.
Oh, yeah.
There you go.
Yeah, there you go.
I do dig that on his systems, he's using system D-boot.
Didn't see that across all of the conflag.
figs. And, you know, I say have system do all, system D do all the things, including boot the
system. So, well done, sir. You thought we'd be mean, but we were pretty impressed.
Yeah, well, you're going to want system D to do apps next, huh?
Yeah, system D app to you, buddy.
Looks like Shane is from Australia, do so. Cudos.
Yeah. E-frame came in. He says, I'm not a Nix user, but I'm a GUX user.
I figured I'd send you my GUX config, which he did. I've been a GUX user.
and contributor for about 10 years now
and I have a small build farm at home
three risk 64 machines
three arch 64 a arch 64
so armish 64 machines
to ibook g4s
oh that's fun
those ibook g4s are fun
and about an even mix
of systems writing guix or guics
on top of debion
this this was a
this I've seen
basic guic's examples before
but this was some gooix
wizardry and I really really
appreciate the Eframe sent this in because this gave me exposure to like somebody who knows
what the hell they're doing with Gouix. You know, it really helped me kind of understand it a bit
better. I believe it's pronounced geeks. Yeah, you're right. You're right. It is. I'm sorry. That's
an old habit. It is pronounced geeks. But you're right. Like we've, I've seen it. I've been curious
about it. I've like tried a little bit because it's like Nix. It's, you know, they share a lot,
except Nix rolled its own, right?
It's like Nix makes it super confusing
because you get Nix OS, the OS.
You get Nix packages the packages.
You get Nix like as a build tool.
And of course, that build tool also decided
that they would ship with their own programming language,
the Nix language or Nixlang.
Whereas Geeks used scheme,
which is a type of Lisp, as their language,
along with like, you know, their own tooling
and libraries and standard lib and all that kind of stuff
on top of it.
So it's sort of like a, you know,
a sibling in the Nix face.
family, if you will. But yeah, you're right. Like, I've never, I've not yet had the chance to really
appreciate a fully used Geeks config that wasn't just managing some packages. Yeah. Yeah. And also
across multiple architectures, too. The, you know, the Pine 64 is in here, the arm system's in here.
Rock 64, I think. It's so cool. And I saw, like, he had a system in there for his kids.
It hasn't been updated for a little bit, but he can pull in, like, these profiles. And that's a neat idea.
profiles for different systems.
There's also, I don't know if you noticed, VM config.
That's kind of neat.
You can see like there's some stuff in here to define an operating system with the host name, time zone.
Like it looks, the bootloader config.
A lot of this, even though the syntax is a little different, it looks a lot like a NICS system.
It's kind of, it's like living in a different parallel universe.
I was checking out his commit history, and three weeks ago, he had a really interesting
commit.
And it was adapting MPV to always include sponsor block.
So it's like pre-bundled into MVV to have,
maybe he's pulling down YouTube streams or something.
I don't know.
But it's an interesting application of geeks here
where you can sort of build this like this.
And so looking through his commit history here,
it was pretty fascinating to see that.
And also just like a great idea.
I just love that.
And that's pretty powerful stuff.
Lots of little things in there.
I mean, he's managing some of the stuff at a pretty intricate level,
which seems like a little tedious to me, but the results seem to speak for themselves.
Well, it seems neat, too, because, like, I don't know if there is, like, a home manager quite equivalent,
but you can see, right, that came from the home.
com file, and maybe I guess that's stuff that's built in.
I see, like, use module, Gnew, home services.
Yeah.
But it kind of shows, like, clearly Geeks is pretty darn flexible,
because without, at least as far as I can tell,
a giant system activation script,
you know, they're managing like MPVs,
like all kinds of different comp files
that probably you would have to use something like Home Manager
or a dot file manager or something on another system.
I see you two have decided that I'm the villain of this sequel.
It's just good storytelling.
This is why you want to put your stuff up on GitHub.
It's that way your buddies can make funny all the time.
This is why you want to do it.
Okay.
All right, but very well, very well done, very thought out.
Thank you for sending that in.
I don't have a lot of comments.
I do think it's interesting to kind of, I have more questions than I, like, I.
Yeah, homework more to do, really.
Yeah, yeah, yeah, absolutely.
All right, our next config confession comes from distro stew.
And he says, every time I have, every time I have an alias you that updates everything.
Oh, okay, regardless of my package manager, and I did it this way in Nix for a long time.
Eventually I started causing issues, so now I've broken into more granular aliase.
check it out.
And he provides his config.
Distro Stu, looking at you.
Yeah, look at his management commands here.
He's got, and, you know, if you're going to do this, document it in which he has done.
So U-Dash NixOS pulls updates and applies the NixOS configs.
U-Dash home pulls updates for the Home Manager and applies to Nix configs.
U-Dash Flatpack command updates the flatpacks on my desktop.
That's pretty great.
I've never done this.
In all my years of Linux, I've never really got into aliasing.
I always hesitate because it's super convenient, obviously, for things that you run all the time.
But then if you're moving to a new system that doesn't have your aliasis for any reason,
then will you forget how to do it the native way?
That's always a fear of mine, right?
How do I update NXOS again, I forget?
That's why I don't do it.
Okay, I got to give brownie points when I sees it.
We didn't rate the last one.
I think the last one was probably a five.
It was hard to rate.
But this always brings it up on my list.
This is how you get a win with me.
And it's how to get started right here in the Read Me.
A fresh system, copy these commands, run these commands, pull this in, whatever it is,
just go from blank system to my full setup.
When people have that and they've documented it, I'm giving it a W.
I mean, so you guys got to talk me out of this.
But, you know, Distrus Drew, Distra Stue here, he got a lot of points.
I mean, that makes it at least a three and a half right there.
there because he's got that.
I do like it.
And he's got his own commands.
He's got a flake system
pulling in some unstable goodness.
What do you think of the nesting?
You know,
like Stu pointed us at the NixOS stuff,
but that's kind of only one subduer
in this whole repo.
I mean, it does have its own read me.
So I'm not trying to take away from that.
Yeah, yeah.
But there's a lot of others.
I got, when I was looking through,
I kind of got lost just because there's a lot of other
interesting stuff in this total config repo.
So props to you for that.
Like, there's stuff here for Devon.
and for flocks and like flatpack scripts.
So even outside of the Nix configs,
Stu clearly has like a lot of his computing life automated and documented,
which is pretty great.
Okay.
I feel like that brings it up to a four.
Can we get Distro Stu up to a five?
Is there, Brent,
you have any thoughts on how we can do that?
Well, I'm seeing a couple things here.
I'm seeing Disco being used.
I think that gets extra points.
Setting up systems using Disco is, uh,
on the expert side of things,
definitely where things are going.
Also successfully navigated,
there was a minute
where some of the, like, the newer
Linux kernel, latest kernel,
kind of broke a small test inside
tail scale if you were building it.
Anyway, it caused problems that you kind of had to do an
override if you're on unstable
index. I see that
override, which I think can now be removed to.
So note there, but as a positive
because, you know, you had to go find
the issue and, like, copy the code
into an overlay and figure out where that goes
and the config and make it work.
So sort of a good, you know,
Knicks and practice paper cuts
edition. And like Wes was saying,
you know, Stu has folders for hosts
and modules. And then there's a folder
directory just for files. And if you
go into this files directory,
it has just one thing. And it's
a sync thing ignore.t.
And that's it. He's like,
you solved that problem once?
Nicely done.
Yeah. And that's good. You know, like
for the max, it
doesn't sync the .d.S. Store crap and whatnot. I did see, speaking of Macs, I did see that
distro stew has a Nix config for an M-Series MacBook, which I'll link in the show notes specifically
if you out there are trying to get that working. Nice to see. Did you check more into syncthing.
com. I mean, it's not just that ignores thing. There's a lot going on.
No, I should, huh? No, I was just impressed with the ignores.
Yeah, go under NixOS. Configs, NixOS modules. Syncthing.com.
Yeah, I'm also seeing configs here for, well, it depends where you look.
If you look in the hosts folder, it's a little bit less,
but I saw configs for at least eight different hosts.
So that's really nice to see.
Distra's getting himself a little mini-fleak going.
A couple different architectures, too, so nicely done.
Oh, yeah, and he's got, okay, this is a really cool sync thing config.
He's got the different systems in here and their sync thing IDs.
Oh, man, this is, we should add that to the show notes.
That's a slick sync thing set up.
I thought you'd like that.
I think that brings it to a five.
Whoa.
Right?
So we're just doing like the DoorDash rating system today.
Yeah, I guess so.
He's also using Home Manager.
Maybe you can get inspired here.
Dang it, Brent.
I was actually hoping to see less Home Manager usage here.
Well, maybe we can like vibe code something that converts
home manager configs into activation scripts or something.
I just, you know what I want, really honestly, would work for me.
If we could somehow have Markdown converted into Home Manager, that, now we're talking.
If I could just write the whole thing in Markdown.
You record a voice note on your phone and then that becomes your own manager config.
Even better, even better.
Can we do that?
I think, you know, distra stew, I think you did pretty well here.
Like West said, there is that tailscale overlay thing that you could probably fix now.
But that was a good catch on your part.
So I guess that makes all of these five out of fives.
It's the summer of, it's the fall of love, I think the geeks one, we technically have to use imaginary numbers.
It's like a whole separate axis, definitely.
Negative four, um, 22.
I don't know.
But yeah, these are some pretty solid configs, minor stuff in there.
Real minor stuff.
Nice to see.
Well done, everyone.
Now we're going to get into some tricky ones.
OnePassword.com slash unplugged.
Take the first steps to better security for your team by securing credentials and protecting every application, even the ones you don't know about.
Learn more at one password.com slash unplugged.
That's the number one password, and it's all lowercase unplugged right there.
You just go there and learn more because this is something that would have changed the game for me when I was in IT.
If you're in IT, if maybe you're in security as well, you know what a mountain.
of different assets. There's physical hardware. There's user identities. There's applications.
And it's a lot. And it's always growing. Well, you can conquer this continuously growing
mountain of security risk with one password extended access management. This is a huge issue.
You're not alone. This has been identified as a major problem out there. And this is where
one password is trying to make life better for both users, IT, and security. And they have
Trellica. This is something that can discover and secure access to all.
of your apps, managed or unmanaged.
Trellica can buy one password inventories every app and use at your company.
It has pre-populated app profiles so can assess the different SaaS risks.
It'll let you know who has access to what.
You can manage that.
You can optimize the spend.
You can even enforce security best practices across every applications your employees use.
And now you're going to know which ones they're using, even the shadow IT.
I also really appreciate this because I know so many companies struggle with onboarding
and off-boarding employees.
You have a process that lasts for a little while.
This needs to be better, and this is an area where OnePassword can help.
It can help you meet compliance goals.
It provides a complete solution for SaaS Access Governance.
Trellica by One Password is just one of the ways that extended access management as an entire suite helps team strengthen compliance and security.
You know about their award-winning password manager.
I use it.
Family members use it.
It's trusted by millions of people.
I was really thrilled when they came to Linux.
businesses all over the world use it this goes way beyond that they're securing more than just
passwords with one password extended access management this is something that would make life easier
for me and i think it'll make life easier for you so take the first steps to better security
for your team by securing credentials and protecting every application even the unmanaged ones
you can learn more by supporting the show and going to onepassword dot com slash unplugged they have a
video there you could watch that's the number one password dot com slash unplugged
all lowercase, go learn more.
OnePassword.com slash unplugged.
Join crowdhealth.com and use the promo code unplugged.
This is something that has changed my life and my wife's life.
As small business owners, both of us, we own our own business.
We have really struggled with medical insurance.
And we just needed something that was a better deal.
And honestly, something that gave us some peace of mind.
And it's open enrollment right now, the season where all the health insurance companies will hope that you'll just sign on the dotted line once again for what is just ridiculously priced premiums and lots of confusing fine print where they're going to try to wiggle out of helping you.
That's what I've noticed at least.
You don't even take my word for it.
Go trust yourself.
Take control of your future with crowd health.
It's a health care alternative for people who make their own decisions.
Don't play the insurance company's game.
Go join crowd health.
It's a community of people funding each other's medical bills directly.
No middleman, no networks, no nonsense.
It's like you have a team of people that will negotiate with the hospital on your behalf.
And the process goes from feeling like you're just a number in a machine that's just getting an output, probably from, I would doubt, no day in LLM.
Crowd Health makes it feel personal, direct, and like actions actually happening.
And they have a great app to walk through from the very beginning of the process all the way to the end.
both is you the contributor or somebody asking for a contribution.
This is crowd health, the health insurance alternative, health care for under $100.
You get access to a team of health bill negotiators, low-cost prescriptions, lab testing tools,
as well as a database of low-cost, high-quality doctors that have been vetted by the crowd health community.
And if something major happens, you pay the first $500, and then the crowd steps in to fund the rest.
This has been a mess.
Health insurance has, it's just been years of a mess.
and the only way we're going to change it is in the market.
That's the only thing these people are going to pay attention to.
And Crowd Health is a group of people taking care of each other.
Don't stay stuck in the same overpriced, overcomplicated mess.
If it's not working for you, go somewhere else.
Crowd Health members have saved over $40 million in health care expenses
because they refuse to overpay for health care.
Now is the time.
Take your power back, join CrowdHealth to get started for $99 for the first three months.
Use the promo code unplugged at joincrowdealth.com.
See why I've been using it for over three years.
Joincrowdehealth.com promo code unplugged.
CrowdHealth is not insurance.
Opt out and take your power back.
This is how we win.
Joincrowdealth.com and promo code unplugged.
Well, last episode, we got a boost from our dear Olympia, Mike, sending in his Nick's book config.
He says here, hey guys, I'd love to get in on the Roast My Nix Config action.
This isn't my personal config, but the main Nix module for the Nixbook project that I've been working on for nearly a year now.
Yeah, we have Nix books.
Mike was very generous and gave us each a Nix book, which he has essentially taken on this role of refurbishing abandoned machines and putting a Chrome OS-like experience based on NixOS onto these.
named Nick's book. And he's actually getting quite a fleet and he's become known in our local
area for doing this. And we call Olympia Mike because he's from Olympia, Washington. And so what
he sent us in is the configuration he's deploying to all of these people out there. And I don't
know the exact number, but I know it's probably in the low hundreds. So it's quite a bit of people
and it's growing all the time. When I check in with them, I always hear about more people that
are deploying it or I see something on his social. So I was really looking forward to digging
through Ollie Mike's Nick's book setup.
I'll start with what I liked, and I'd like to hear from you, gentlemen.
I do have a few ideas, but I'll start with what I liked.
He's got an auto-update system in here, and I'm a big fan of if you're deploying these
systems in a way where you can roll back if something goes wrong, build them to update,
take some precautions, which I'll get into later, but I love that he has that forward-thinking
kind of approach to managing these systems.
Now, I think if I would just add to that, some sort of more air catching, maybe an auto stop or rollback, you know, like if somebody, for an example would be, because I've had this happen to me, if I'm doing an update and I lose my internet connection, kind of just get stuck in like this no man's own loop, right?
So some stuff around that kind of catching errors with the updates or maybe like the, you know, the checkout didn't work completely or something like that.
I think would make that even a little bit better of a system just from the short experience I had with it, but I like it a lot.
One thing I always hesitate with auto-updating systems is considering my crazy lifestyle, I'm often on a network that I don't necessarily want to pull down a ton of data.
Yeah.
So a little notification, I don't know, five minutes before saying, hey, five minutes from now, we're going to do this.
And a little, like, please no button would be really nice for my lifestyle.
I don't know how easy or hard that is, but I'll just throw that out as a feature request.
You know, it's funny is in my initial notes, I had like a little on-screen display that says your system's going to get updated.
And I thought, I put myself in Mike's shoes for a second, I thought, I bet he doesn't even want them thinking about it.
He just wants it like a Chromebook, just all updating in the background.
That's a great point.
I don't know, Brian, what do you think about switching to a next book for a while?
Because just given the bug field
and exactly what you were just saying,
you know, this might be the fastest way
to get some great feedback possible.
There you go.
I like that idea.
You know, when Mike gave us these,
he specifically said,
hey, Brent, please try to break this
and give me some feedback.
So I do have one of these Nick's books
on some refurbished hardware
that he provided us.
Right above my head here in the van in the cupboard.
It's been the dedicated, like, van laptop.
Of course, when I do podcasting in here, I actually have my main system.
But as like a pull it out and just use it for a quick thing, I have been using index book for, I guess it's like four or five months now.
I don't use it that often, but it's been doing what it needs to every once in a while when I pull it out.
But I am going for the long-term review.
So I think so far, been okay.
I haven't run into any huge massive bugs.
There is that hesitation I mentioned about the auto-updating when I'm.
on like sketchy network so I tend to only want to do that when I'm connected to like a grid
network or something like that but otherwise it's been okay I got an idea about this and I don't
know Wes if this is I think this is possible so when I set up auto update for my kid systems for
like five minutes I considered like a bandwidth limiter of some kind like a way to say don't
use more than X you know megabits or whatever I don't know if I don't know if
it was possible because I never like I said I just looked into for five minutes could that be
something that would be achievable would that have to be its like own separate update script
yeah I mean you'd have to make sure that you like you could definitely apply that kind of stuff
with traffic control or other setups on Linux you just I think the sandboxing be would be what
you need to make sure because if you're using like multi-user nix then you're actually just talking
to a demon that wouldn't be running under your sandbox unless you specifically config you know
or like so I think it might be kind of tricky if you didn't want to apply that rate limiting
globally. There is a way
to indicate networks. True, yeah.
You could not do
it if you can sort of detect
the metadata from the system
am I on Wi-Fi or do I do
a speed test or, you know, check
what ISP you're on.
Or the actual
system metadata, depending on how good that is.
Okay, I have a couple of suggestions.
I want to bounce off you guys.
I don't know if this is creepy.
But let's say
Ali Mike has a fleet size of
200
and these are, I'm just guessing
on numbers, but these are almost
exclusively people that are
using it for word processing,
web browsing, email,
tasks that are refurbished like Dell
would be perfect for.
And I wonder, is it creepy?
I think you'd have to get user
permission, but is there
a space here for some kind of
monitoring?
So you know what systems haven't been
updated an X amount of days or maybe monitor rollbacks in the log to see which if anybody's
having to roll back which would maybe indicate a problem is that what do you think i just think when
when you're at five systems 10 systems no big deal when you're at 200 systems and you're doing
channel-based updates i don't know it's like feels like you might want some kind of
observation on how that all is going what do you think is there a way to
to do that that isn't creepy?
Yeah, I mean, as long as you're up front about it and maybe you provide a way to disable it,
I do like the idea, like, you get little Pings Home as auto updates or reboots or stuff
become successful.
But that said, I don't know what the support, does that create more of like a bonus on
support when you kind of are just like, look, I'm doing my best, and I'm putting these out there,
but hey, don't call me.
I don't know what the level of personal support.
Mike wants to be putting out. Or would you just use it as like development metrics for like,
oh boy, that last one didn't go well. I might need to tell folks. Yeah. That's what I was wondering.
It's like, does Mike develop this into a business one day? I mean, if you get enough users,
you could. And then maybe you do want observation. You know, you want some sort of monitoring.
And I also think feature flags. Because as you get more users, you just, you just collect all these
edge cases. And so you might want a really simple way, like one file somebody can go into on
their system and just disable certain features, like maybe auto updates or flat packs or whatever,
like some simple way for them to go in and just say, on this system, we don't want auto updates
for some reason. Because you're always going to have these edge cases. So I think that could be
useful. Or, you know, you just accept that Mac and Windows update whenever they want. So we get to, too.
Maybe. Okay, but the elephant in the room, and he said it when he wrote in, is that he's using channels, which means everything he's putting out there is hard-coded to a specific version of NixOS. In this case, 2505, which came out in May, obviously. And those do have end-of-life dates. So the fleet has to be migrated to the next channel. And that's kind of like doing a Fedora distro upgrade or a Debian distro upgrade in some senses. It can be a larger set of changes.
than a standard update.
And I wonder, Wes, if this doesn't call for a solution where his mic may be sitting in front of that stuff, like, if he's not going to do a flake, how could he better handle a channel-based system?
Or is it just use flakes?
Yeah, yeah, I'm not the person to ask.
I don't use channels at all.
No, I mean, I think it does mean you have more, you know, imperative stuff to manage on the machine.
I do you think you could get where you want to go eventually with flakes and probably, ultimately,
have a better time.
I think you can kind of tell there's a lot here.
I mean, if you just look around in this repo, right, there's a lot of different.
There's update.sh, there's install.sh.
And within the config, there's a lot of different scripts kind of like keeping everything
together, but that you are going to do more of that composition locally with the channel
because it isn't as hermetically tied together as the flake does probably mean, you know,
Mike's got to make sure he's got plenty of good test machines ready to go to, like,
verify that everything that is possible
and maybe it's more complicated
if you do have too many of those feature flags
like make sure all versions of your config
are going to successfully be able to build
with the updated channel
and then like how do you stage that rollout
is it just one push that you do
some people get it before others
all that kind of stuff
yeah staged rollouts could be helpful too
you know if you have a particular group of savvy users
but I don't know if there's any like plumbing in here
for you know that that's a lot more stuff to
I didn't see it, but I'm suggesting maybe it should be added.
One thing Mike could look at.
There's a lot of, like I was mentioning, a lot of scripts in here.
You may or may not want this, but you're using packages.
RightScript, which is great.
There is also Right Shell application, which kind of just does like a little more stuff.
Like in particular, there's one of these scripts in here where Mike is manually setting like a bunch of path stuff and exports and Bash Set-EU.
and if you use right shell application,
it kind of sets some decent batch stuff for you,
and it even runs shell check automatically
to make sure you're not doing anything bad
or half broken in a bash script for you.
Well, now you tell me.
It's not always what you want, right?
Sometimes you want something more minimal,
and that might be what's going on here.
I'm not trying to say he's doing anything wrong or anything,
or just say, hey, this exists if it is more convenient for you.
I do like, though, like, I don't know if you notice,
like, okay, we're installing some stuff,
but we're even taking the time to make a,
extra little desktop icon and desktop item for Zoom so that it can, I guess it's installed
by a flat pack, but this makes sure that you get like a nice little Knicks native integration
for it, which is a nice touch.
You can't actually declare that desktop file.
You don't actually have to have a bash script creating that dot desktop file.
Oh, it is, it's not a bash script.
It's like a Nix native.
Oh, okay, okay.
All right.
I thought you were saying it was a bash script.
All right, that's pretty good then.
I'm feeling pretty good.
Bren, how are you feeling going over this?
I mean, it looks great.
It's evolved quite a bit.
But since the last time I looked at this quite several months ago, one thing I'm noticing that I didn't notice before is another script, of course, but this one's called Power Wash. Have you seen this one?
Yeah.
I think it does exactly what you probably think it does, which is just cleans that system in every way you could think.
But he's making some, like, custom directories here and just kind of bringing the system back to an original factory state.
And that might be nice for this kind of system because it could get packed.
from one user to another as people are done with the system,
and they think, well, this was great for me.
I could give it to, I don't know, my granddaughter or a friend, something like that.
So good thinking there.
I'm sure he uses it when he's setting these things up quite a lot.
I would like Mike to write back in and tell us where this goes in two years.
Because if you think about maybe a little bit of metrics or observability,
and if you were to build a flakes.
Yeah, a sprinkle of flakes, and you were to build a little bit of support services around this, a guy could have a pretty good second income stream.
And obviously, they're a sponsor of the show, but I almost wonder if this wouldn't be the perfect use case for Nebula to provide the back-in securely in a way that wouldn't be too hard to manage.
And you could provide through that all of the things I just talked about, the observability, the monitoring, but you could also offer secure backups, assuming you wanted to get into this.
You could offer more proactive monitoring if you wanted to get into that.
And you could even offer like a Next Cloud's quote unquote secure storage that never touches the public internet.
You know, it goes from their machine over Nebula to your hosted infrastructure.
I don't know if you ever want to take it that direction.
But I feel like when you're getting to this amount of systems, you're going to have people that their work depends on this.
And they might actually be looking for that kind of support.
I'm a little concerned about the channel stuff.
I will just be honest with you.
I just think that's going to be tricky.
and then if you combine that without kind of staged rollouts
or the observability of failed updates
that to me is hard to make it a five out of five
even though I love this idea a five out of five
I'm leaning four
but I could be talked out of it
if the committee has a different opinion
no I think four is reasonable also we've got cinnamon
but there's no hyperland option so I don't think it's ready for you to use it
so that's probably where some of your motivations coming from
it's such a cool project though
oh yeah it really is and you can tell how scrappy
and just like how far Mike has gotten this to work
how reliable it seems to be I mean like and really
if you look at it right like it's not even 300 lines of stuff
in this file like it's not it's not super complicated
it's not a crazy thing to try to maintain I'm very impressed
well done all right so Radick comes in
with his configuration he says it's a complete
production ready Nix OS configuration
for self-hosting 20-plus services with enterprise-grade security,
automated backups, and zero-trust networking.
Perfect for home lab enthusiasts, privacy-conscience users,
and anyone wanting to self-host their digital life with minimal maintenance.
Disclaiming with the entire project was Vibe Engineered.
Well, one way you can tell,
I don't know if it's better or worse than the one you have and you are repo.
Oh, here we go.
Well, I don't know if you notice there's a file in here that almost,
looks like a command.
Yeah, I love that.
That's a good sign.
Yeah.
Yeah, that Udo-U-Postgres.
I love that.
I think it might have been pseudo to start with, but...
Yeah.
Yeah.
Yeah.
That's good stuff.
That was just yesterday, too.
So that's easily two stars just right there for that.
Oh.
No, no, I don't.
I mean, in a good way.
I'm going like adding stars on, right?
That's the baseline.
Oh, okay.
All right.
Okay.
I mean, let's talk about what's going on here.
Holy crap.
20 plus services.
He's not kidding.
And I see some of my favorites in there, my favorite rars and my jellyfin.
I love what I'm seeing there.
He's got an architecture diagram.
Oh, yeah.
He's polling in Azure for backups and DNS management to handle all of that.
And I believe I'm not positive, but I'd like your eyes on this, West.
I think instead of installing Postgres like 20 times and Redis 10 times, he's got one instance of Postgres and one instance of Redis.
And then everything's configured to use that, which is something you don't know.
often see on people's like docker home labs
you'll often see you know five
copies of Postgres running on somebody's
system and he solved that problem
it does make it a central point of failure
obviously yeah pros and cons
but it is um you don't
you don't actually need separate servers
depending on what you're doing so my man
I like that there are a lot of there's a lot of stuff
in here it's I mean it's he's got
weekly automatic backups which is
really great I would challenge
him to
consider adding file system
snapshots before his automatic updates and you know just have an extra or maybe kick off his
automatic because he has automated backups maybe run that job right before you do your
automatic updates so that way you have a really nice fresh point in time if something does go
wrong I'm impressed the integration with SOPs especially for a vibe coded setup you know like
getting secrets tying that together not leaking secrets into your repo that's yeah that is all
stuff that takes time and fiddling and fuss to really validate.
So he's got the R-Stack, broken out, audio bookshelf, you know, every major service like
Next Cloud and Jellyfin and Image are all broken out to their own Nix file.
A pretty pragmatic balancing here of native Nix OS services as well as a lot of containers,
right?
So like here's search XNG and Open WebUI, both running as OCI containers, which is great
because I think sometimes it's easy to forget that, you know, you don't have to, you can pick
choose. Like, use the Nix module if you want, run it in a container, either, you know, imperatively or
declaratively, it all works great. So do what works for you. I may be aping some of this R stack.
This is looking really good. I do like to see all of this. Like, I don't know if this was a
deliberate choice or not, but for instance, image is being run as a container, not through
the module. Yeah. Yeah, I wonder, and I bet you that is. I wonder if there's any hard
work acceleration issues there. Probably not. I'm sure he's probably safe. solve
that. I would say, like, if you wanted, like, to unlock, like, the next level of cool for
the setup would be automated restore testing into, like, a, you know, a stupid container
or a throwaway VM. Because you're doing the automated backups. How do you know they work?
Wouldn't that be something? If you could vibe that up, where once a month or something,
you do a restore from your last backup? Oh, that'd be killer.
And see if it actually works. Because that's, I love that you have all this. I verified your
backing up your app data. I'm pretty sure. I assume you're backing up your Postgres and your
Redis. I would imagine if you're running 20 databases on those things. I didn't see you ever
testing it. And that could be something you're doing manually, obviously. But why not give
a shot at automating that? You're so close. You're so close with everything. I don't want
to do like grading on a curve, but for a vibe setup, this is pretty top notch for a vibe
setup. There's another one we're going to see in this category as we go on here. And, you know,
just with our recent episodes and everything else, it does, boy are we at a point for
vibin with NixOS. It's really come a long way, which is great. I mean, it's just a superpower.
I will say you might consider getting your Vibe tool to add an auto formatter. I notice nothing
crazy, but just like in your flake, there's some stuff where some of the indentation and stuff,
which doesn't break anything because it's, Nick's not Python or YAML or whatever, but it should
be something easy for it to do to be able to, you know, easily format and keep everything looking pretty
for you.
And I also think
this is why I'm not sure
I want to get out of five
out of five
because I think there might
be some dock drift
which is really easy
when you're moving.
I do like your
architecture diagram though.
Boy, this was a really tough one.
This was really tough.
Yeah, that is one thing
you kind of have to balance too
is it's really easy to get
the LLM to spew out
a lot of the docks.
Then they drift.
Keeping them up to date
is a whole other challenge
and so sort of like
which ones are essential
for like I really do want this
and this is going to help me
continue to build
and which of these are like
just dead way
that I ultimately got to carry around
and I could rediscover easily.
Yeah, I think he's got like some code examples
that reference like old versions of stuff in there.
I mean, there's just a little bit of drift.
So I don't know if it's a five out of five,
but I feel like it could be a four out of five.
Again, I mean, we're being pretty generous.
I don't know.
I think some people would knock it down.
Yeah, we'll give Claude one star
and then the rest of the config gets four.
Okay.
All right, there you go.
There you go.
But better than I would have thought.
I got to say, Radick, better than I would have thought.
well done and and nicely done on focusing on a home lab with all of the essential great
home lab services somebody listening even if you're not interested in deploying all of this you
might want to just look through his config and get some ideas for some great home lab services
they're really good all right we're about to round it out and one of our last ones comes from
brandon w he says i've slowly been migrating my computing life to declarative configurations
As part of that, I've switched my Mac to Nix Darwin, as well as my Home Lab to Docker Compose and NixOS.
I just finished NixOS this weekend on two of the four hosts and only locked myself out of SSAH three times.
Hey, under five.
I've done. I've done.
See, star for that.
Boom.
Star for that.
All right.
All right.
I wanted to send in my Infra repo and my Nix Darwin configs for the config confessions.
I'm most proud of my home lab deployment system using Ancible Places.
books, one password for secrets, just GitHub actions, and the renovate bot for updates.
Any suggestions would be appreciated in howdies from Texas.
So yeah, he sent us two configs, the Home Lab and the Mac.
So why don't we start with looking at the old Home Lab?
I do like that.
He's broken them out like that.
Also, he was committing as of this morning when I was checking in on this.
In active development.
I love that.
Yeah, yeah, yeah.
He's got his hosts broken out here.
He's got an explanation of his tail scale and Ansible setup and secrets management.
I don't see a quick getting started, but this is pretty solid documentation.
You know, description of the home lab systems, the Linode, and I do like this.
So this is winning a point with me.
He's running a Linode exit node to forward certain critical, as he puts it, mission critical data through this Linode exit node.
Love seeing that setup.
That's worked really well for us, too.
Yeah, you can tell there's a lot.
I like seeing a polygot repo like this, right?
Like, there's a lot of stuff working together.
There's obviously Nick's stuff that we'll be taking a look at.
But also, as you mentioned, right, we've got Ancible Playbooks.
And part of what that's doing is deploying a bunch of composed YAML files that are also in here that look really nice.
I mean, like, pretty well-stated, you know, traffic, up-Tem Kuma, Portainer.
We've got bind run.
And, like, there's just, there's a lot of serious networking thought that has gone into this, which is great.
Hmm.
Yeah, I think you hear that, Brandon.
I think he's impressed.
I think he likes it
I love seeing an image in there
Docker with traffic
and using tags it looks like
did you notice that there's two separate
domains that get routed with custom split
DNS servers there's a personal services
one and the family one
he's got the split brain DNS
fancy but the good
kind I have an observation in question
here in the NXOS
folder I'm seeing a hardware configuration
dot Nix it was under my impression
that you generally didn't want to
version track that because it's being created on each system independently.
What are your thoughts on that, Wes?
I mean, you can recreate it.
I think if you do track it, there's nothing necessarily wrong with tracking it.
You just need to know that only deploy it to the ones that are relevant.
And then it's on you to make sure that you update it
if you are actually changing something with your hardware.
Fair enough.
all right so where brandon scores a w with me is uh on the mac stuff surprisingly he's got a command
to get started right at the top of the read me you know so you get a new mac or you reinstall macOS
you're not spending 10 minutes you're copying and pasting that's a w i know this is how it works
on macOS but it's just funny to me to see brew defined by nix you know that's funny but then what
was even crazier to me was to see the mac apps i'm going to link this in the show notes
specifically people want to see this because it's just bonkers to see mac apps getting installed
by nix chromium discord spark notion spotify visual studio code
xcode huh you can install xcode with nix would you even believe it so that's that to me
is the first time i've ever actually seen that i know i know people like our buddy alex does this but
never really dug through the config it is pretty great what you can do you can do you can
disable the DS stores.
Yeah, right.
It's one of those things where it's like, boy, I hope I don't need to do this again,
but it is probably exactly what I would end up doing where I forced back onto that platform.
So it's great having these in our tool chest to, like, pull from in the future also.
I'm amazed at MacOS lets you do some of this.
You can set Keybines through Nix in MacOS.
You can set MacOS keybines.
What a world.
Talk about making the Mac way more manageable.
So that to me brought this up a couple of points right there because it's well done.
he's got the quick get started stuff you know how i love that overall it's the most interesting
in that it's x86 it's m series mac it's ancible it's nix and it's docker compose in all
and one and yet it it seemingly is working really well together and he's got not only individual
workstations but he's got a home lab setup out of it too so it sucks i say one star no
Too much non-mix, negative points.
Right.
We're going to actually ask, we're going to flag this at GitHub so if they can delete it for us.
Bro, was it even vibes?
Bro.
Yeah.
Thoughtful, long-term development and use.
Yeah.
Was committed, you were still working on it this morning as we're prepping the show.
Okay, so I think when you think it's a five out of five.
I think this is a five out of five.
So this is our first five out of five for the second segment.
But I think it's fair.
It goes to Brandon.
It's really neat.
It's really neat to see the HomeLab and the Mac all broken out using some of our favorite apps, some of our favorite technology stacks.
Well done, sir, five out of five.
All right, gentlemen, and our last config confession came in just last night from Bearded Tech,
and he has vibe-coded a NixOS router.
He says it's declarative NixOS configuration that transforms a standard PC into a full-featured network router with integrated secrets management.
and it has multiple WAN types
that supports obviously being a DHCP server
it can be a PPOE server if you need
it also has PPPTP support
land bridging to combine multiple
Ethernet ports into one network
it has a DNS server DHCP
obviously a firewall with NAT support
and then in their port 40
and like he said
secret management as well
but the thing
that is really impressive
is Bearded Tech has made this
so approachable
for anybody that just wants to take a PC
and turn it into a NixOS router.
He did the right thing,
and he just put a curl right into pseudo-bash
in the quick start,
and you can just get rocking.
You know how we always suggest you do that,
of course, I'm being ironic,
but if you trust the person,
he does actually tell you everything
it's going to do in there.
But you boot from the NixOS installer,
and then you just run this command,
and it does everything else.
And then the other thing he thought of,
because this is how it is in router life,
is if you come back to one of these boxes
you've deployed two years down the road
and it's all decrepit and out of date
he's got a quick refresher command
you again
slam that thing right into pseudobash
and you've got a completely
refreshed router good to go
again he's got documentation
for the individual setup guide
router configs secrets management troubleshooting
the development he tells you what you need
I mean this is
top notch
this is really a great idea
especially because I want to run a NixOS router here at the studio.
How do you feel about a vibe-coded router, though, Chris?
I don't love that idea.
I mean, if it builds and it routes the packets,
well, it's not like he's going to vibe like a, you know, a back door into it, right?
I mean, it's...
How do you know?
I mean, it is one of those things that you can test it, right?
Like, you know if you break it because your packets don't route anymore.
to the extent that you can easily test
all of the stuff that your router's doing,
I think it makes a pretty good use case in that sense.
I don't think I see any
like crazy routing stuff
in terms of like custom IP tables
or NF tables or anything like that.
But I do see like PPOE going on
and some bridges being configured.
There's some nice stuff in here.
Like router config.nix,
which is just a declarative file
describing the networking.
I like that a lot.
You might consider,
because of vibe coded, one, just impressive speed.
I think it started on the seventh with the initial commit.
It's the ninth as we record, and there's already been like 50-some commits or something.
Although, if you're getting vibe commits, they're kind of verbose.
You might tweak your setup to...
Agreed.
I don't follow like conventional commit standards if you like that one, or just at least
have a quick summary single line and then put more of the detail below.
to sort of match what a lot of Git software thinks,
but that's like a minor nitpick.
It was one of mine, too.
It was kind of annoying looking through the,
and I know this problem.
You know, they are very, like just exactly what Wes said.
So I kind of agree on that.
And it was sort of a bit much there.
It is nice.
So there's like a dev shell.
There's a formatter.
Got SOPs going in here for secrets,
which is very forward thinking.
Yeah.
I noticed that he recently swapped out
tectidium for Blocky DNS.
I'd be curious to know.
know more about that.
Yeah, I would be curious to hear how that's working for you,
which things you like or don't like about either one of them.
I've looked at Blocking a little bit, although I've never actually really tried it,
except like...
Yeah, same.
Briefly.
I do like that it has a lot of metrics built in, though.
I know, yeah, and I know it also, you know, has some ad blocking of malware built in and stuff like that, too.
So that's all pretty good.
I like, I don't love the way the commits.
The other thing that I would love to see is, I don't know how you would not pick favorites.
here, but the VPN options are pretty 1997.
You know, it's like this is, I was doing PPOE connections, literally like on NT4 boxes.
Not the people don't use them.
I'm not saying they don't.
I would also love to see some more modern options built in, you know, tail scale or a
nebula or what I would really love is some way for the user to pick.
And then you just get that.
Like maybe you're a netbird person, maybe you're a nebula person.
And then you're just going and you say, I'm a nebula person.
And then it sets up with Nebula or whatever.
Because the VPN options are, I'm never using that stuff in 2025 if I'm set up a new router.
If I am going into an organization that has a historic setup, you know, maybe you might even call it tech debt,
I can understand why they're doing it.
But if I'm, you know, installing a vibe-coded NixOS router on my PC at home, I don't want to use PPPOE or PPP, right?
So that's just one thing I would add, maybe.
I'd love to see some backups built into this, too.
I think backups could be really good.
I mean, but like you said, Wes, going from zero to actual functional system in a couple of days.
And to have the quick start on just a, you know, you boot off of the NixOS live system and then run this script.
Oh, when you come back in a couple of years, run this script to refresh it.
Assuming that works, that's great.
That's exactly what you want with this kind of stuff.
I do like that, too, as a, you know, oh, no, that box died.
Well, thankfully, I just run the script, clone things down.
I've got my router back in, you know, 10 minutes instead of a couple of hours.
All right, gentlemen, should we allow a last-minute contender in?
Let's do it.
Okay, all right.
We've got to give Bearded Tech a score before we move on.
And I'm going for, can we do points?
I feel like a 3.5 or a 4.
It's really close, though.
I think four because there's some fancy scripts in here.
All right, all right.
All right, Brent, tell us about our last-minute contender that came in live on the show.
Yes, we have someone in the Matrix chat, DeDrill, who said, oh, I got a config.
Maybe you guys can have a look at this one.
So this has been a totally fresh config for all of us.
So I think we should dive in.
Coming in fresh.
First thing I'm noticing, just right off the top.
Well, we got some systems here.
But I like, the systems are broken into two categories.
Do you see this, Wes?
You see these two categories of systems here?
You got the Nix OS systems, and then you have the systems that still need to be Nixed.
There's nothing else.
That's pretty good.
And you got the structure in here and all of that.
I'm also noticing, just a couple of things, is pretty recent commits.
As of 29 minutes ago, actually.
that's what are you are you listening to the show or not
it's so organized I am
yeah he's in the mumble room
so you're in the mumble room
do you want to just tour us through here
yeah tell us about your system yeah why not
sure so the most recent commits there
I made a quick read-me update
and a flake-lock
action update
so if you basically jump back to the route
I essentially have
things broken out
I attempted to recently do a major refactoring
and make things a lot more modularized.
Modularized, however you said.
Right.
But basically, I got hosts.
Right now I'm purely running NixOS.
I don't have any Macs, but basically in the host,
under NixOS, I have the different configs.
I have a couple special.
Actually, if you want to look at the modules,
there is a host spec module that,
I have borrowed from someone else I found online and then tweaked it to my own needs.
I want to say it's actually right in the root there.
Yeah, this host spec.
Yep.
Yep.
Nick's there, huh?
Yeah, so basically that creates a host spec and then creates just a bunch of variables that you can call throughout.
This file is actually imported within each host, so I can reuse a lot of the same variables
without messing up any other hosts itself.
but starts off just with some basic
specifying primary username,
a secondary username.
It's basically just myself
and then a couple of the systems
are also used by my wife.
Got to make sure you get a llama installed.
I see that.
You know, I have a couple,
you know,
I break it down.
If it's a workstation,
it adds a desktop interface to it.
If it's gaming,
it does another layer on top of that.
Couple services specified there.
I really like this.
I mean,
I'm coming in fresh,
but what I'm seeing,
I really like the way you have
the module's workstation laid out,
the audio.nix, the Bluetooth.nix,
the fonts.tnix, the fonts.tnix,
invidia.com.
This is really well structured.
Quite a lot of helpers here in the Just file, too.
Like, it shows you're definitely using this stuff and maintaining it,
and you've got commands that you actually need to run
and have helpfully stashed them away, which is nice.
Yeah, I borrowed that off from someone else,
and honestly, I need to go through it and use it a lot more
because I really don't use just the way that I should.
I was curious about one of these here.
I'm not sure if you're using it currently, but you have a just command for creating an ISO.
It says build an ISO image for installing new systems and create a SIM link for QMU usage.
Is that something you're using actively?
And if so, how to go?
I have not built that in yet.
So that was actually a carryover.
I got to give credit to Emergent Mind on that because that's part of what I had ripped off of him.
So it's an intention that I plan on going.
basically building a minimal ISO that I can use for spinning up new systems.
It'll already have some of the basic tools that I want in it
rather than having to use the customer installer all the time.
Because realistically, with Nix, if you have a config,
all you get to do is get into a system that has Nix on it,
whether it be a minimal ISO or whatever,
grab your Flaco to GitHub and let it build.
Yeah, exactly, right?
Well, good.
The fact that you haven't used everything makes this like a real person's config, because before it was almost suspiciously good.
Yeah, yeah. Okay. And the Raspberry Pi, that's on the to-do list for 2016, huh?
From 2016?
Yeah, Radz. I've noticed. So, not done?
Well, it's my Raspberry Pi 3. I have my 4 already nixified.
So it's just a matter of actually going down in the basement, grabbing it, and, you know, putting the image on the SD card.
which sounds simple enough, but it's a timing.
No, no.
I've got a couple of, from 2016, I'm going to get this running too on my project list, so I totally understand.
But this is a, I feel like this is a top tier setup, even if it's not fully implemented.
It's well done, it's well thought out, it's well structured.
Do we have a reason not to give this a five out of five?
I defer to the committee, but that's the way I'm inclined.
I thought we were going six.
Oh, whoa.
Can we do that?
for the very last one, I think we have to.
Brent, you'd have to co-sign.
I mean, are there even rules of this contest?
I say go for it.
All right, there we go.
Six out of five.
I don't know how that's possible.
If you want to take a look at that lib,
one of the cool things that I saw in someone else's config and borrowed
is actually an importing method for those files.
Okay.
So without being able to rip through it,
often enough.
So I actually have in there,
I have a relative to root.
I have a scan path and a recursively import
that I just recently did.
I haven't built that out yet
to actually utilize it in many places.
But the scan paths
or the relative to root is realistically
kind of one of the key pieces I use.
So if you actually go back into the modules
and look at any of those default files,
I'm sorry, those actually I'll use the scan path.
So I'm not actually
specifying all of those
files. By default,
I'm specifying.
So, I mean, even that default
nix there, I'm pretty sure has it
in. But when I'm importing, I'm
basically doing a one-line importer.
Yeah, third line, or line
11 out of their, scan paths,
dot. So, and then that function
has built into it, filtering out
to directories and dot nix
files. And then within each directory
has a default. Dot nix that would run
the same scanpaths file.
again or line again and it would import all of the files that are adjacent to that that is great so
you got custom nixlib that see i stand by my six out of five for sure all right i mean i figured
if you were going to give me a six i had to you know throw some extra little yeah well and you know
what you didn't even because we were impressed so much you didn't even get docked for uh for missing
the deadline which we didn't really set a deadline so i was going to say i sent it i technically sent
it in friday night oh okay oh okay all right through the
a Linux Unplug website.
I see how it is.
All right.
Well done.
And we will link to these configs
and the show notes
if you want to get some ideas
for yourself.
Unraid.
Dot net slash unplugged.
You want to build your dream server?
Well, unraid 7.2 makes it easier
than ever.
The new 7.2.
Dot O stable is here.
I've been telling you it's going to be a good one.
Fully responsive web gooey.
And Unraid now works beautifully
across all your devices.
You got your phones, you got your tablets,
you got your desktop.
Picture it.
You're sitting there with your tablet on your couch,
managing your ZFS raid, right?
I love that they're working on this stuff.
And they didn't ask me to say this.
So, so thrilled to see them
roll out this Open API.
It's officially here.
It's open source.
It's fully integrated, secure,
programmable access to your Unraid box.
People are already using this
in the community to build dashboards and automation.
External apps are going to be able to use this.
And there's even going to be ways to pipe into external authentication, like OIDC and stuff like that.
You know, you're ODICs.
That's not how you say it.
Don't say it like that.
Also, I believe in 7.20, check in my notes here.
It looks like ZFS, Rade Zad expansion support.
Boom!
Is here.
That's great to see.
You can now grow your ZFS, or some say Z-FS pools, without having to start over.
Unraid 7.2 also introduces support for extended 2, 3, 4, and your NTFS, and extended fat.
You know, the NTFS thing is nice, right?
You got an old disc laying around with some family data on it.
I do, actually.
Gramp's photos.
Grandpa's photos are on NTFS.
So I'm really happy to see UnRate support that.
This is what's so nice is they just keep iterating on this.
They've already had 25,000 downloads of Unraid 7.2.
So that's the other thing.
People are trying this, testing, this, billing on this.
It's a really great community.
Go unleash your hardware, use what you've got today, build your dream system, take advantage of the applications we talk about, their community store is packed, and get a free 30-day trial at unrayed.net slash unplugged.
It's the OS that grows with your skills.
Unraid 7.2 with that new API, new responsive web UI, and now we can get Grandpa's photos.
Unraid.net slash unplugged.
Well, we have a boost here.
It is a live boost, and it is also a live baller boost.
Now, Derivation Dingus sent in a live boost for 100,000 sets.
Oh, are you serious?
All right, thank you.
That's great.
Dervation says here, I boosted in asking for this episode the last time, but episode two landed on my anniversary weekend, and while I've been making big changes to my configs, I just ran out of time to send my config in this time.
So I'm listening live and loving it while doing my Sunday chores, and please consider this boost a request for Config Convessions Episode 3.
Okay.
Well, we'll have to get a few plus ones on that, because, you know, we have to space it out, too, but sorry you couldn't make it.
Great. Really appreciate the boost.
But, you know, you get at least one or two stars for having your life priorities properly in order.
Listen to Live and boosting really brought up the average for this episode because we were kind of lagging for this episode, too.
So it made a big difference.
Yes.
Happy anniversary.
I meant being able to resist just messing with their next config and paying attention to their spouse and chores.
Like, that's pretty impressive.
Oh, okay.
All right.
I thought you meant he was listening to us, which is.
Oh, that too, though.
Yeah, you're right.
That too.
Thank you for that baller boost.
Nykoff comes in with 22,22 sets.
That's a big old Mick Duck.
Things that are looking up for all but duck.
No message, just value though, which we appreciate.
This old duck still got it.
Thank you very much, Nykoff.
Turd Ferguson comes in with 21,000 sats.
Turd Ferguson!
I have no config to send in.
You see, boys, where I'm going, you don't need a config file.
It's the future.
Yeah, okay. All right, Doc Brown. Okay. I see what you did that. It's just like so post vibe that, you know, you don't even really need to keep a static config. You just constantly revive on demand for whatever you need at any moment. I don't.
Yeah, clearly the future is dynamically vived configs as the system boots. What can go on?
And that way, you can, you can like, it's like a SaaS and you pay per minute because you're live streaming your config from like a cloud server.
Well, you need to pre-render, right? And you want to have it globally available.
That's true. Yeah, you know, you want to fail or it.
So that's probably 90 bucks a month, I would imagine.
Easy.
Yeah.
But you got to pay with, you know, some sort of zero trust.
Token, some ZK roll up ERC 20 token.
Yeah, that'd be great.
Thank you, Tert.
Appreciate that boost.
Of course, you're going to like this next booster.
4,590 SATs from BTC is my 401K.
Oh, my God.
This drawer is filled with broolopes.
All right, all right.
Okay.
This one comes from Cast.
automatic elevation boost, boosting from my mountain home.
The sad amount is my current elevation.
Wow.
Love it.
Also, plus one for config confessions.
I've yet to truly commit to NixOS, and these confessions help set us Nix noobs on the right path.
I like hearing that.
Oh, good.
There's also some Ansible and geeks in there.
Yes, because it can also be a little intimidating, I think, right?
Like, you see these complicated, big, well-set-up configs and be like, how am I ever going to get there?
But I like that attitude.
I like the like, oh, look, there's all this stuff I can copy from.
And, you know, you don't have to go from zero to vibe to giant config.
There's lots of nice little middle grounds in the way.
Also, BTC, I have a question.
Your elevation boost there is that feet or meters or furlongs?
What do we got here?
4590.
Let us know.
Yeah.
And is it snowing already?
I imagine at 4,000, it probably is snowing already.
Because I've got friends that live at like 7,000 in Arizona, and it is already fall in.
on snowing for them. So I bet you're
I like this idea of an elevation boost
and see like how high can we go, right?
Yeah, but some of them are like mine.
Mine's like 180.
Yeah, us. The sea level folks
are not going to do well here.
Plus or minus the error bar too, right?
I guess. Oh, yeah, right? Yeah.
It's got to get above 2,000 stats to get right on the year, I suppose.
But thank you for that boost. That's a great idea.
So hangs here with 3,333s.
I don't understand what the heck is going on here.
I bet you that's a reference.
So, Hank says, I'm kind of getting a bit tired of using Nix.
The documentation problem doesn't seem to be making any progress.
And a side effect of the drama has been that a lot of work, both around Flakes, and the general stuff is stalled.
I just had a situation come up where I couldn't reason about my config, and there's no documentation I can look up.
My three-way brain split of Nix, Nix OS, and Nix packages is getting untenable.
Not to mention the whole deal is a tangle of shell and pearls grips.
But alas, what alternatives do I have?
Geeks is still a bit obscure, and I'm unsure of the reliability there.
Getting a gosh darn PhD in comp science, and Nick documentation is still too much.
And I just spent a hot minute finding the non-existent boost button on the member feed.
Yeah, I know. I'm sorry about that.
It's a problem with private feeds versus public feeds.
He says maybe we could vibe code a fix.
The issue is, right, it's like per app, so we have to make some PRs for a bunch of these apps.
You know, I do hear the complaint about the Nix documentation a lot.
I would be curious, because you sound like you're using Nix at a fairly sophisticated level.
And it's true that, like, there could be better docs or more docs.
But I sort of find, like, once I know a system to, like, that point, I'm sort of just kind of in the code anyway.
So for me, like, the docs problem hasn't been as bad because I just assume for anything I'm going to use,
I'm probably going to go read at least the module code.
Maybe it gets more tangled if you're like into like Nix packages,
build time helper frameworks for dot net packages or something.
So I'd be curious to know like which particular areas are really falling down.
I do sympathize.
I've seen a lot of stuff on the NixOS subreddit.
Like I hate NixOS, but I hate it less than everything else.
Wow.
That's rough.
I don't feel that way.
But like I think I can get the, you know, there are definitely paper cuts, frustrations,
but it's also, it's hard to quit once you're there.
That's true. That's true. Okay. Good luck. Keep us posted, sir.
Doornail 7887 comes in with a row of ducks.
AlbiHub deep dive question.
Oh, here we go. And it's a suggestion, actually.
All right, I'm going to get my notepad out, Wes.
AlbiHub deep dive suggestion. After setting it up myself,
the channel's thing is really still confusing to me.
I was surprised to find out I had to type 150K SATs just to open a channel to send a small amount.
Forget the tech barrier to entry.
The upfront cost seems like it might be a bigger barrier.
Any advice to reduce that barrier?
Maybe the JB node would be open to supporting small channels for newbies?
So this is, I think, the tricky part of setting up your own node and why services like Fountain just do all of this for you, right?
is the way lightning works is it's an open source protocol and it's a peer-to-peer system and the peers are these channels between nodes.
And the reason why the liquidity gets locked up, the 150K in your case, is that way it's a guarantee that the amounts can be sent across those channels instantly.
The funds are essentially guaranteed in there.
So that is tricky and I agree with you.
And so I don't think it's for everybody.
I think it's for people that like to mess with computers.
and I think it's also for people that might use it with multiple applications.
If your only application is boosting, I just don't know if it's worth it.
It's a lot, yeah, it's a lot to invest both time, operations, in terms of all the software and running it.
And then, yeah, as you're finding out, it's very true, it is like if you, especially if you don't already have, like, a pile of Bitcoin hanging around, you definitely need some capital to fully fund a nodes liquidity.
And it's worth calling that out.
there are ways to buy channel liquidity for pretty cheap.
Like, you don't have to spend the entire money.
There are liquidity providers, and there's some included in Albi,
that you can commit, you know, $15, and you get $150K channel or something like that.
It is worth noting that a lot of those, some of them are a single payment, some are like a monthly payment.
And then if you do a single payment, often they'll keep them open, but they might close them if you don't use them.
Yeah, yeah.
And then about the node, our node, that would,
not be a huge help because our node isn't particularly well established or well connected.
You really want to be connected to nodes that have a good network graph.
And there's like Ambrosia and something, there's sites that help you find that network
graph.
The Albi Hub ecosystem is growing because Albi supports something called Noster Wallet Connect.
And it's an unfortunate name because it invokes Noster.
But what it really is is a secure way to connect into these things.
And you're going to find more apps in the next couple of months that you've never experienced.
are about to announce support for that.
And it's going to make Alba even more useful.
So it could be worth it there.
It's a great question.
And channels is, I think, one of the things we have to spend some time on for sure.
Appreciate that boost.
Well, we have a boost here from Mick ZP for 10,000 sats.
It's over 9,000!
They say I couldn't agree more with you on AI and LLMs from last episode.
I work primarily as a sysadmin at an R1 university.
and I'm heavily using Claude for projects with software
I'm just not familiar with what researchers want.
I also have the exact same experience regarding a Nick card
that Claude was able to solve.
The biggest problem in this space is its explosive growth
and the fantasy money flowing between companies.
The circular deals.
Yeah.
Yeah, I mean, I think it's pretty reasonable to expect
some of that's going to fade out, maybe a lot of it.
But things like the functionality you just covered
will probably still stand.
And I don't think we'll have to have big tech frontier models for a lot of that,
which I'm really excited about.
Some of the stuff you will.
But that particular use case, I don't think so so much.
Thanks for the, you know, field report, Nick Zip.
Give us some updates on how it goes.
Appreciate that.
All right.
Next boost comes from the Muso with 5,000 sats.
The traders love the ball.
I previously had printing problems on Nix as well, and it took me ages to work it out.
I could find the printer on the network, but the driver,
just couldn't be determined, so I couldn't print, even if I chose the driver in the UI.
I solved my problem by making sure services.avahi. n-s-M-D-N-S-4, as well as Avahi itself, was enabled.
You may also need N-S-M-D-N-S-6 if your printer uses or requires IPV-V-V-V-V-V-V-V-I, and your network also has IPV-V-V-V-H-I is what Apple used to call bonjour.
sort of auto dns discovery where things find each other and a lot of devices use it now.
So you should probably have that on all your desktops if you're working with things like printers.
But thank you Muso for letting us know.
That could be helpful for other people out there.
Yeah, this is one of those.
I love it.
Yeah, even without a link to config, you're getting Nix tips.
And then this is exactly one of those things where like, okay, there's probably stuff, right?
Maybe other distros automatically enable this because they just turn printing on for you no matter what.
Yeah.
On Nix, you're going to have to figure out that you need it.
But then the plus side is once you do, it sticks in your config forever,
so you don't have to re-figure that out.
So pros and cons.
Yeah, yeah, yeah, that's a good one.
And I guarantee you like Ubuntu, they're just probably installing that.
They're just installing that.
Just taking care of it.
Fuzzy Miss Bourne comes in with a row of ducks.
Enanceable repo for config confessions.
I should probably go back and do some streamlining, but overall, it's served me well.
Ah, we didn't get this in.
We did check the boost, but I checked them on Thursday.
I check them on Thursday.
So, all right, we'll put this in the, if we do a version three.
Yeah, let's add it on the pile.
Thank you, Fuzzy.
Thank you, Fuzzy.
We'll take a look at that after the show.
Well, WR.T.54G boosted in a row of ducks.
I'm sending in some of my very first satsch to the show that helped me stay up to date and interested in Linux as I started my IT career.
So thank you.
Oh, wow.
That's amazing.
Oh, thank you.
That's fantastic.
Thank you, WRT.
And, yeah, stick with Fountain.
You're going to see some impressive stuff coming soon.
Appreciate the boost.
User 75 came in with 2,09 stats.
Coming in hot with the boost.
Long time, listener, love the show.
This is my Nix config.
Oh, no!
To be considered on the show.
Also, I don't want to give you my real postal code.
So here's one that's nearby.
O-O-S.
Oh, Postal Code.
I hope you got the map.
Hope you got the map.
Westpane here it is the postal code nearby 4-1-830 yes zip code is a better deal dash
050 if you need it um that should be a pretty easy to find on your map there westpane just
you did bring it right oh good i thought you didn't have it there for a second well of course
i keep it in my back box i have a zip code question here yeah sure i'm used to those first
numbers but what's with the dash numbers dash 050 is zip time you need a little more
accuracy sometimes.
What?
Was this like some kind of add-on or 2.0 or something?
You don't have that up in the connects?
You don't have like a little extra sometimes like when you're shipping?
No, no.
We use like, you know, alpha numeric and so you have enough precision?
Hmm.
Why would you want to go mixing letters and numbers when you could just have a nice clean
numbers?
Yeah, it's actually really annoying to type into fields whenever you need to fill in your address,
I've got to say.
Right?
I can bang that out on a 10 key in two seconds.
Boom, boom, boom, boom.
Right?
Okay, well, I'm going to guess here, and I did have to pull out my unfortunately little used southern map module.
Okay.
But I believe this is a Brazilian postal code located in the Patuba neighborhood of Salvador in the state of Bahia.
Really?
Wow.
I hope that's right, because that's super neat.
Thank you, user 75.
where it's currently 81 degrees with the wind from the east, 16 miles per hour.
Oh, man.
That map of yours.
Nice little breeze.
Yeah.
That's a good point.
That's really impressive.
Can we get a little map check for you there, Brent?
Oh.
Does your map do that?
Where am I?
Let me just pull out my map here and try to locate myself.
Can we get the...
Smoke if you got it?
Do you hear my map?
I don't know if you can hear my map.
I don't hear it.
You put out, yeah, there you go.
Get it closer to the mic.
Yeah, it might take a little bit.
Is that like a mylar map?
What is that made out?
Yeah.
It's like what they make their money out of.
It's colored.
Yeah, it is pretty colors, that's for sure.
It just doesn't feel real in the hands.
What?
How can you feel that?
I'm way over here.
Oh, ha, ha, ha, ha.
Okay.
All right.
Okay, I don't have an exact postal code,
But I have a nearishly postcode for you, if that works.
Okay.
All right.
Do you have more than just a 10 key?
Just, no, just tell us your weather, Brent.
For God, thanks.
Oh, I thought you wanted.
Which one is your word.
God.
So angry.
All right.
GLA comes in with 3,600 sats.
Fun will now commit.
Hello, everyone.
Longtime listener here.
It's snowing.
There you go.
Love all the J.B.
Shows.
Although I'm boosting for my Albi Hub.
I can't wait for that AlbiHub special.
Cheers from Mexico to my known postal code,
multiply by 10 oh my gosh
another postal code
whoa I'm gonna have to get out the
analog mechanical calculator
for my net you take the
3,600 and then you multiply it by the
10 and you have
well it would be a really great boost but you also
have his zip code I don't know if
you've got you
yes zip code is a better deal
there you go
careful
careful please
I know sharp edges
I don't get workers gone
Did you imagine trying to explain that?
Yeah, tell him the doctor.
How did you get this injury?
Well, you see, my buddy West was unfolding this map because somebody boosted in their zip code.
Yeah, that, yeah.
Okay, I believe I have located.
I had to do some scanning.
I got a paper cut myself here on the, on the stupid meat slicing module.
But this would be a postal code in Guana, Huato, where it is in Mexico, where it's
pleasant 77 degrees with less wind at 11 miles per hour.
That is great.
Also from the east, though.
We're getting a lot of east wind today.
Thank you.
Thank you.
And it's nice to hear from you out there.
I love it.
We're getting some around the world boosts.
That's always pretty fun.
Thank you for listening.
It really makes this feel special.
Yes, and taking the time to get the boost stuff set up,
I know it can be a bit of a journey.
And I love to see how many of you are taking on the AlbiHub challenge because
you really get a sense.
You get a sense of what the challenges are, but then it starts to click, too,
the more you use it.
And then, of course, thank you, everybody who's
stream sats or boosted under our 2,000-sat cutoff.
We did have 28 of you stream sats as you listen,
and you collectively all together stacked 23,000, 876 sets for the show.
When you combine it with our boosters, and of course we had that baller boost
that brought up our average, our total stats for this episode,
episode 640 of your unplugged program, stacked 203,639 sets.
Thank you, everybody.
If you would like to support the show with a boost, Fountain FM makes it easier,
and it's going to get even easier really soon.
Not that I know, but I'm just saying.
Also, you can set up an Albi Hub,
and then there's a whole ecosystem of applications.
You can plug it in and boost the show with open source money.
A huge thank you to our members,
our Jupiter Party, and our core contributors
who put that support on autopilot
and support us every episode.
You are our foundation, and we appreciate you.
Details at LinuxUMPLug.com slash membership.
All right, gentlemen, we do have some picks before we go.
And one of our first picks is from the community.
Sultros now has Sultras OS and a website.
His immutable Linux designed for gaming and development.
He's got a couple of release tracks now,
an LTS that follows Fedora's stable releases,
and then an unstable that tracks upcoming,
upcoming features, you know, beta, alpha channel stuff,
uh, with still some guardrails in place.
And it has a beautiful website now.
He's, he's really, I think really knocked it out of the park.
And, uh, it, I tried this for a little bit on my next book and loved it.
He's got a cosmic version, plasma version, Gnome.
And a hyper-vibed hyperland version coming very soon.
Oh, ho.
As well as a plasma big screen and enlightenment.
Yeah.
That is, this is becoming a full-time thing.
it sounds like it is he's also working on the server edition uh i mean wow really watching
him go here it's really something so check it out at soltrose that's s o l-tr-os dot dev it's pretty
neat to see one of our community members uh working on something like that nice looking website too
this is slick i yeah i echo that he's done so good six out of five i think i mean i think this is
a head of hyper vibe now and i don't mean to be i know i mean i feel a little personally
Because I've been helping, but it's the lead.
For sure, definitely.
Okay, now a couple of different picks to help you do the same job,
depending on the scale that you need.
The first one we're going to mention is parabolic.
And parabolic lets you download Vigia and Aja from the web.
And it's a nice graphical front end to the YouTube DLP client.
And it gives you some options and features.
Also helps you support multiple downloads at the same time.
It makes it really easy to pick if you want.
an MP4, a WebM, or Opus, or a Flack, or whatever it is that they might have.
And it also will help you grab the metadata and subtitles if you need that for the video as well.
And it's available as a package, and it's also available on Flat Hub.
It's called Parabolic.
That's the part that stood out to me is the sub.
Not all of these tools make the subs and like that kind of stuff super easy.
So this seemed like, I mean, you don't have to be like me who constantly runs YT, DLP from Nix Packages on Stable without even caching it locally.
So if you want an easier time, use parabolic plus, isn't that a cute name?
I know it's a little silly, but just like a parabolic dish, it's like receiving all of your content from the internet.
A good icon, too.
Makes for a good icon.
And it's GPL, three.
So nice and easy.
Mostly C++, we don't get too many of those.
But there you go.
Should be fast.
Interesting.
Now, so that's on the desktop scale.
Maybe you're a little more industrial scale on your needs here.
And this is where, and you can tell what they're trying to invoke with this.
This name YouTube R or Utah comes in.
It's a self-hosted web app that automates downloading and organizing
and scheduling YouTube channel content with support for Plex, Cody, Mb, and Jellyfin, info.
And I think what stands out to me is unlike PinchFlat, which I use for a similar task,
you could have a web UI on your network and you could just grab one-off videos or you could do automated stuff.
And it can do channel archiving.
There is also, I think, a really nice office.
option in here for parents that are trying to curate the YouTube experience for their kids.
There's some family-friendly curated options in here that I think are a really great option.
And then you just play the videos back through Jellyfinnerplex.
And they never go on YouTube.
And it is designed to download all of the extra info you need.
So that way you have all of the nice looking display in your media player of choice.
It's a really, really nice UI, too.
I think the UI is top-notch.
pinch flat's pretty great, but it does work a little better as sort of infrastructure where it's like, well, I know I have these channels that I always want you to like populate, whereas this does seem a little more, a little more friendly for ad hoc stuff that maybe you want to grab a couple of videos. You don't want to follow them. You don't need to download all the last three weeks, that kind of thing.
Yeah, or maybe like one live stream you know is coming up and you want to grab it. This is great for that. This will do that. So it's U-T-R-R-U-T-R-U-T-R-U-T-R-U-T-R. And did I grab the license for that when I'm?
made a note of the...
It's the I-S-C license.
Oh, very good.
I did not make a note of it,
but thank you for grabbing that.
Yeah, it looks like it's a lot of JavaScript and type script,
and then a little bit of Docker and a little bit of shell script.
Yeah, they do have some Docker Compose example file,
so that's probably the easiest way to get started
if you do want to give it a try.
Indeed, we'll have links to that in our show notes.
Again, Linuxunplug.com slash 640.
Now, if you made it this far, you might already know,
but, Wes, we have some pro features
for people that maybe they're going to revisit an episode
or maybe there's a topic they want to replay
or a topic they want to skip.
We have it already for them,
either in the podcasting 1.0 client
or even more so on the two clients.
Tell them all about it.
Yeah, that's right.
We use the Apple approved podcasting 2.0 tags in our feed,
and that means we have both transcripts and chapters.
So chapters for the high granularity,
skip around at the high-level content,
transcripts for when you want to know exactly
what we said and when we said it.
So the reference Wes is making there is Apple announced they're adopting yet another
podcasting, two-to-do feature, which I think this is like the third one, that they've
onboarded now.
And so the chapters and the transcript standards that we have been using now for a couple of
years are being adopted by one of the largest podcast clients in the world.
And all of our episodes for the last few years are just going to have all of that information.
They'll just be turned on for Apple Podcast listeners when they get their app update.
And there's a bunch of great apps, new podcast apps, if you want to switch to a 2.0 app.
So that way you can listen to us live.
And you get all the stuff Wes was just talking about and instant updates when we update.
Expect more from your podcasts, from your podcast apps, and from your podcast feeds.
We can do better.
That's right.
That's right.
We try.
We'd love it if you joined us live next Sunday.
We'll do it live.
It's a Tuesday on a Sunday at 10 a.m. Pacific, 1 p.m. Eastern.
See you next week.
Same bad time.
Same bad station.
All right, everything we talked about today, linked at Linuxunplug.com slash 640.
Mumble Room Infoes over their Matrix Info membership, contact, all of that.
Thanks so much for joining us.
See you next week.
Thank you.