I recently took up Bazzite from mint and I love it! After using it for a few days I found out it was an immutable distro, after looking into what that is I thought it was a great idea. I love the idea of getting a fresh image for every update, I think for businesses/ less tech savvy people it adds another layer of protection from self harm because you can’t mess with the root without extra steps.

For anyone who isn’t familiar with immutable distros I attached a picture of mutable vs immutable, I don’t want to describe it because I am still learning.

My question is: what does the community think of it?

Do the downsides outweigh the benefits or vice versa?

Could this help Linux reach more mainstream audiences?

Any other input would be appreciated!

  • lnxtx (xe/xem/xyr)@feddit.nl
    link
    fedilink
    English
    arrow-up
    127
    arrow-down
    1
    ·
    11 days ago

    Immutable, doesn’t mean extreme secure. It’s a false sense of security.
    It could be more secure.
    But during a runtime, it is possible to overwrite operational memory, mask some syscalls, etc.

    That’s my 3 cents.

    • Chewy@discuss.tchncs.de
      link
      fedilink
      arrow-up
      19
      arrow-down
      1
      ·
      11 days ago

      Fully agreed. On almost any atomic distro, /home/user is writeable like usual, so any attacker is able to persist itself by editing ~/.bashrc and putting a binary somewhere.

    • Rusty@lemmy.ca
      link
      fedilink
      English
      arrow-up
      13
      ·
      10 days ago

      I didn’t know that inflation can affect idiomatic expressions.

    • vrighter@discuss.tchncs.de
      link
      fedilink
      arrow-up
      4
      ·
      10 days ago

      it doesn’t allow changes to stuff that needs root access to change. If you have root access you can do anything, including switching images. It is not more secure. It’s not less either

    • xylogx@lemmy.world
      link
      fedilink
      English
      arrow-up
      2
      ·
      10 days ago

      Secure can also mean more resilient. The infosec C-I-A triangle has three legs. Confidentiality, Integrity and Availability. Immutable distros are more resilient and thus offer better availability in the face of attacks or accidents.

  • KrispeeIguana@lemmy.ml
    link
    fedilink
    arrow-up
    65
    arrow-down
    1
    ·
    11 days ago

    It’s definitely great for the mainstream. Think of Linus Sebastian who has somehow broken every OS except for SteamOS.

    It’s not great for me who uses Arch Linux btw with the expectation that if the system doesn’t break on its own, then I will break it myself.

    • D_Air1@lemmy.ml
      link
      fedilink
      arrow-up
      10
      ·
      11 days ago

      Honestly, I would say it isn’t great for anyone who has to do something low level even once. Now that there are open source nvidia kernel drivers that has solved a pretty big issue for most people who would be interested in immutable distros, but there are still many other drivers and issues that your regular user may face.

      One example off the top of my head is that flatpaks specifically can’t ship systemd services if I recall correctly. A lot of wayland apps for thigns like input have to use daemons because of wayland’s security model. Lact for AMD and now Nvidia GPU control, ydotool, or even gui versions of such tools for remapping input.

      Snaps require custom kernel modules that aren’t used outside of ubuntu, so I hesitate to trust them regardless of any of the other issues people have with them.

      This basically leaves appimages which aren’t available for everything and don’t always seem to work at least not as reliably as flatpak. I even tried to package the rstudio forensic software as an appimage myself, so I could have an easy way to use that proprietary piece of software, but I just couldn’t get it to work. I couldn’t get it to work with distrobox either using the official methods they provide to install it on linux. I did get it working in a chroot for some reason, but it had graphical issues. In the end, I made a PKGBUILD for arch and got it working that way.

      The point of all this is that a lot of times people say immutable is great for average, non tech savvy people, but I believe that literally everybody ends up needing to do low level stuff at least once or twice every so often. Which simply isn’t a great experience since you end up having to do layering which throws these theoretical average users right back into the normal complexity of a mutable system, but with even more uncertainty in my opinion.

      Now then with all of these caveats. I do still agree that immutable distros are great for the aforementioned group of people and I know this statement contradicts a lot of what I have described above. The reason why I think they are great for the less tech savvy people however isn’t because of any actual technical merit of the systems design though. Immutable distros are great for people like Linus Sebastion because it limits what they can do. You simply have to accept what is there the same way that you have to on proprietary systems like Mac and Windows. Those systems force you to do things a certain way unlike Linux and that is what people like Linus need because they have no business mucking around with the system to begin with.

      Lastly, all of this only works because devices like the Steam Deck are being run on specific hardware thus guaranteeing there compatibility. This is what we ultimately need. There would be much less need for low level operations to get drivers or change settings to make wifi or audio work right on a billion different devices if these people were buying linux compatible hardware in the first place.

      • patatahooligan@lemmy.world
        link
        fedilink
        arrow-up
        5
        ·
        10 days ago

        These are valid concerns but to me they sound more like lack of tooling rather than inherent disadvantages of immutable distros. Linux distros have not historically been designed from the ground up for immutability and it makes sense that there are issues that aren’t handled optimally. Surely we can come up with clean and simple solutions to basic problems like setting up daemons and drivers if we work on it!

      • chunkystyles@sopuli.xyz
        link
        fedilink
        English
        arrow-up
        5
        ·
        10 days ago

        You can install packages in immutable distros. It’s just not as easy and recommended as a last resort.

        With Universal Blue (Bazzite, Bluefin, Aurora) you can install packages with “layering”. It’s basically modifying the image by adding packages on top of what is shipped by the distro, and those packages get added each time the image is updated.

        The better, more involved solution is to create your own image from the base image. That gives you a lot more control. You can even remove packages from the base image.

      • FooBarrington@lemmy.world
        link
        fedilink
        arrow-up
        2
        ·
        10 days ago

        Weird, I don’t have any issues developing custom systemd services or similar on my Kinoite installation. Packages that need to run on the host system can be layered, everything else is running in distrobox.

      • KrispeeIguana@lemmy.ml
        link
        fedilink
        arrow-up
        2
        ·
        7 days ago

        He can be an asshole, but I believe finding bugs is part of his job.

        Would you rather have him find them and complain to a community who might know what they could be, or someone else who will just complain and buy a MacBook instead?

  • Lettuce eat lettuce@lemmy.ml
    link
    fedilink
    arrow-up
    56
    arrow-down
    1
    ·
    11 days ago

    Immutable distros are great for applications where you want uniformity for users and protections against users who are a little too curious for their own good.

    SteamOS is a perfect use case. You don’t want users easily running scripts on their Steam Decks to install god knows what and potentially wreck their systems, then come to Valve looking for a fix.

    Immutable distros solve that issue. Patches and updates for the OS roll out onto effectively identical systems, and if something does break, the update will fail instead of the system. So users will still have a fully functional Steam Deck.

    If you’re not very technical, or you aren’t a power user and packaged apps like Flatpaks are available for all your software, then go for it. I prefer to tinker under the hood with my computers, but I also understand and except the risk that creates.

    Immutable distros are a valuable part of a larger, vibrant Linux ecosystem IMO.

    • chunkystyles@sopuli.xyz
      link
      fedilink
      English
      arrow-up
      23
      arrow-down
      3
      ·
      10 days ago

      Immutable are the ultimate tinkerer’s distros. It’s just a different way of tinkering. True tinkering in immutable means creating your own image from the base image and that allows you to add or remove packages, change configs, services, etc.

      Example: you create your own image. You decide you want to try something, but you’re being cautious. So you create a new image based on your first with your changes. You try it out and you don’t like it or it doesn’t work for some reason, you can just revert back to you other image.

      Another thing worth mentioning, with these distros, you can switch between images at will. I’m new to Linux as my daily driver desktop OS, and I’ve rebased three times. It’s really cool to be able to do that.

      • priapus@sh.itjust.works
        link
        fedilink
        English
        arrow-up
        14
        ·
        10 days ago

        Don’t know why this would be downvoted. Atomic distro’s are a tinkerers paradise, as all of it can be done fearlessly. I can make stupid changes to configurations that I don’t understand on NixOS, then when things break, simply revert the git commit and rebuild. (Or reboot to the last build if I broke it bad enough).

        • chunkystyles@sopuli.xyz
          link
          fedilink
          English
          arrow-up
          2
          ·
          10 days ago

          Who knows. People are passionate about Linux. And downvoting takes no effort. And people downvote stuff randomly.

          • gubblebumbum@lemm.ee
            link
            fedilink
            English
            arrow-up
            3
            arrow-down
            1
            ·
            10 days ago

            if something makes linux more secure, safer or easier to use then it’ll be hated because people in the linux community are allergic to all those things. Secure boot? they hate it, wayland? they hate it, immutability? they hate it, flatpaks/sandboxed app? they hate it, gnome? they hate it. Even rust is hated by many.

  • kibiz0r@midwest.social
    link
    fedilink
    English
    arrow-up
    29
    arrow-down
    1
    ·
    edit-2
    11 days ago

    NixOS is kinda the best of both worlds, because it does everything in a way that is compatible with an immutable fs, but it doesn’t force you into abiding by immutability yourself.

    You can always opt into immutability by using Impermanence, but I’ve never seen any reason to.

    Edit: That said, the syntax has a steep learning curve and there are tons of annoying edge cases that spawn out of the measures it takes to properly isolate things. It can be a lot to micromanage, so if you’d rather just use your system more than tinker with it, it may not be a good fit.

      • kibiz0r@midwest.social
        link
        fedilink
        English
        arrow-up
        3
        ·
        11 days ago

        I suppose you’re right. It’s just another tool for helping you abide by immutable practices without forcing immutability as an unbreakable rule.

  • Guenther_Amanita 🍄@slrpnk.net
    link
    fedilink
    arrow-up
    27
    ·
    edit-2
    11 days ago
    • You can still apply updates live, e.g. on Bazzite (Fedora Atomic) with the --apply-live tag (or however it’s spelled).
    • The root partition isn’t read only per se, but you have to change it from upstream image instead of the one right now. You can use the uBlue-Builder for example to make your own custom Bazzite spin just for you if you want.
    • Both aren’t inherently secure or insecure. It’s harder to brick your system, yeah, for sure, but you can still fuck up some partitions or get malware. It’s just better because everything is documented, saved, containerised and reproducible.
    • And you can still install system software, e.g. by layering it via rpm-ostree. Or use rootful containers in Distrobox and keep using apt in there.
    • Kroxx@lemm.eeOP
      link
      fedilink
      arrow-up
      4
      ·
      11 days ago

      Distrobox is something I want to start playing with, I like the idea of the containers

      • CCMan1701A@startrek.website
        link
        fedilink
        arrow-up
        1
        ·
        10 days ago

        With Aurora, I was unable to get winehq working without installing it from a distrobox instead. I can now play SimTower on my Linux PC.

    • Madiator2011A
      link
      fedilink
      English
      arrow-up
      4
      ·
      11 days ago

      I run bazzitr and distrobox is amazing. No need to worry about distro when some devs only provides deb only.

  • shekau@lemmy.today
    link
    fedilink
    arrow-up
    24
    arrow-down
    1
    ·
    11 days ago

    Immutable ≠ atomic

    Bazzite is atomic (not immutable), same with Silverblue and other Fedora variants (they’re all atomic, even on their main page it says atomic). It’s kinda misleading ngl

    • Guenther_Amanita 🍄@slrpnk.net
      link
      fedilink
      arrow-up
      9
      arrow-down
      1
      ·
      edit-2
      11 days ago

      Fedora Atomic IS immutable. Rpm-ostree just layers (or hides) stuff on top of the already existing image. If you layer something, e.g. Nvidia drivers, you still download the same image everyone else uses, but basically compile the driver from fresh and put it on top. And that takes time. This is the reason using rpm-ostree to layer stuff is not recommended.

      That’s why uBlue exists for example. It gives you a sane start setup, where all drivers are already built in into the image. And then you can either use the clean base and add your own stuff to create your own image, or use already great ones like Bluefin or Bazzite, where everything you want is already included.

      Atomic just means that every process is either completed without errors, or not at all. This way, you don’t get an half updated and broken system for example in case you loose power. Happened to me quite a few times already, but never with Fedora Atomic.

      Pretty much anything outside of /var/ (even /home/ is placed inside /var/) is read-only, and if you want to modify your install, you have to build your own image. Therefore, it is both immutable AND atomic.

      That’s why I prefer the term “image based”

    • Tgo_up@lemm.ee
      link
      fedilink
      English
      arrow-up
      6
      arrow-down
      1
      ·
      11 days ago

      Isn’t that just their nomenclature for immutable?

      What’s the difference between an atomic distro and an immutable one?

      • priapus@sh.itjust.works
        link
        fedilink
        English
        arrow-up
        2
        ·
        10 days ago

        A distro can be both atomic and immutable, and they often go hand in hand.

        Immutable simply means the core of a distro is read-only, meaning it cannot be modified by usual means. There are still ways to modify these files, but it works differently than in other distros.

        Atomic distros are ones that update atomically. Atomic is used to describe an operation that cannot be cancelled in the middle of it, they either complete, or nothing changes. This means you can’t break things by cancelling an update midway through. Atomic distros also often come with the ability to rollback to the previous build of the system.

        • Tgo_up@lemm.ee
          link
          fedilink
          English
          arrow-up
          1
          ·
          10 days ago

          Doesn’t all immutable distros have updates that can’t be cancelled and that will either complete or not change anything?

          I only just started learning about immutable distros so I may be completely wrong but it’s how I understand them to work when reading about it.

    • priapus@sh.itjust.works
      link
      fedilink
      English
      arrow-up
      3
      ·
      10 days ago

      Immutable ≠ atomic, but they generally come as a package deal. Bazzite, Silverblue, and all those other distro’s that call themselves atomic are also immutable. An atomic distro is just one with atomic updates, and an immutable distro is any distro with a read-only core.

      These distro’s have started mainly calling themselves atomic because they agree that immutable is a poor description that generally confuses users.

  • noodles@sh.itjust.works
    link
    fedilink
    arrow-up
    20
    arrow-down
    1
    ·
    edit-2
    11 days ago

    Secure != stable Immutable distros aren’t always more secure but rather more stable and hard to break Also btw nixos can apply updates without rebooting

      • Chewy@discuss.tchncs.de
        link
        fedilink
        arrow-up
        11
        arrow-down
        2
        ·
        edit-2
        11 days ago

        NixOS is immutable and atomic, but it isn’t image-based.

        Immutable simply refers to how the running system configuration can’t be changed by simply putting a file somewhere (e.g. copy a binary to /bin, which is a bad idea).

        For example, Fedora Atomic and derivatives are image based, although they are more flexible than the A/B types like SteamOS.

        OpenSUSE MicroOS uses btrfs snapshots to apply updates atomically, and is more flexible than most image based immutable distros.

        Edit: But I don’t think those terms have a single definition, so how would you differentiate these terms?

        • ivn@jlai.lu
          link
          fedilink
          English
          arrow-up
          6
          arrow-down
          2
          ·
          11 days ago

          I’m on NixOS right now and just dropped a Chewy in my /bin, only had to sudo touch /bin/chewy.

          • Chewy@discuss.tchncs.de
            link
            fedilink
            arrow-up
            3
            ·
            11 days ago

            Good point. I’ll have to stop using immutable and stay with atomic (and declarative).

            Interestingly /bin and /usr/bin are not in PATH by default, so /bin/chewy can only be executed by its path directly and won’t affect the systems reliability.

          • priapus@sh.itjust.works
            link
            fedilink
            English
            arrow-up
            2
            ·
            10 days ago

            That doesn’t make it not immutable. /bin is not a critical directory in NixOS, only the contents of /nix are, which are immutable. /bin isn’t even part of your path by default.

            • ivn@jlai.lu
              link
              fedilink
              English
              arrow-up
              2
              ·
              10 days ago

              Well that was an approximation to keep it simple and disprove the given example. There are other directories in the root filesystem that are in the path by default, or used in some other critical way (like /etc). Even if they are links to directories in the nix store you can replace the link.

              • priapus@sh.itjust.works
                link
                fedilink
                English
                arrow-up
                1
                ·
                edit-2
                10 days ago

                I understand, but it didn’t really disprove anything. Immutable distro’s protect core components from being modified. /bin is hardly relevant on NixOS, so of course it wouldn’t be made immutable.

                /etc is also generally not considered a core component, and every immutable distro I’ve used left it writable. By default, every binary installed through NixOS is put in /run/current-system/sw/bin, which is immutable. Many other important files are also linked to /run/current-system, which is why the whole directory is immutable. It essentially takes the place of what the root directories would be on an FHS distro.

                I don’t know any other path used in critical ways that is not immutable. The primary paths that immutablility is relevant for in FHS distros are /usr, /lib, /lib64, and /bin. None of these paths are really used on NixOS, besides some files symlinked there for edge cases, like /bin/sh.

                If you were to remove all the symlinks you are able to, the system would still work for the most part. You would lose custom configurations in /etc, but that is true for most immutable distros. Most apps have a default configuration to fallback to.

                The misunderstanding comes from the fact that immutable is a poor description for any OS, which is why many now use atomic instead. Even in immutable distros, many files can still be modified, and things can still be broken if you try hard enough. Still, NixOS definitely falls under the general description of and immutable distro, as the core of the OS is immutable.

          • zwerdlds@lemmy.ml
            link
            fedilink
            arrow-up
            1
            ·
            10 days ago

            At the surface, you can pin the commit you pull packages from, but if you want to go deeper, you can essentially define your own channel and dependent binaries, allowing you to store every aspect of how a generation is built.

            • ivn@jlai.lu
              link
              fedilink
              English
              arrow-up
              1
              ·
              10 days ago

              Yes, or use flakes which gives you a lockfile pinning everything. But this is related to reproducibility, not immutability.

                • ivn@jlai.lu
                  link
                  fedilink
                  English
                  arrow-up
                  1
                  ·
                  10 days ago

                  Isn’t immutability related to the root filesystem being read-only? I can write on my root filesystem, even if it’s mostly links to the store I can replace those links.

      • jamesbunagna@discuss.online
        link
        fedilink
        arrow-up
        2
        ·
        11 days ago

        In your opinion, when can we refer to a distro as being immutable? How do you regard the likes of Fedora Atomic, openSUSE Aeon or Vanilla OS? Are any of these immutable in your opinion?

        • ivn@jlai.lu
          link
          fedilink
          English
          arrow-up
          3
          ·
          11 days ago

          To be honest I don’t know these very well. I only use NixOS. My understanding is that in an immutable distribution the root filesystem is read-only. Granted in NixOS the nix store is immutable and most things in the root filesystem are just links to the nix store, but the root filesystem itself is not read-only.

  • Integrate777@discuss.online
    link
    fedilink
    arrow-up
    17
    ·
    edit-2
    10 days ago

    I heard both flatpak and immutability are obstacles to developers. How bad is it really?

    I’ve had NixOS absolutely refuse to run some compiler toolchain I depended upon that should’ve been dead simple on other distros, I’m really hesitant to try anything that tries to be too different anymore.

    • FooBarrington@lemmy.world
      link
      fedilink
      arrow-up
      10
      ·
      10 days ago

      It would be a problem without distrobox. Since that gives you a normal, mutable OS on top, you don’t even notice the immutability.

    • ivn@jlai.lu
      link
      fedilink
      English
      arrow-up
      8
      arrow-down
      1
      ·
      10 days ago

      I’ve had NixOS absolutely refuse to run some compiler toolchain I depended upon that should’ve been dead simple on other distros, I’m really hesitant to try anything that tries to be too different anymore.

      Yes, some toolchain expect you to run pre-compiled dynamically linked binaries. These won’t work on NixOS, you need to either find a way to install the binary from nix and force the toolchain to use it or run patchelf on it somehow.

    • priapus@sh.itjust.works
      link
      fedilink
      English
      arrow-up
      6
      arrow-down
      1
      ·
      edit-2
      10 days ago

      NixOS likely only refused to run it because you weren’t running it in the Nix way. That’s not a jab or anything, Nix has a huge learning curve and requires doing a lot differently. You’re supposed to use devshells whenever doing development. If you want something to just work, you use a container.

      Whatever issue you ran into most likely had nothing to do with NixOS being immutable, and was probably caused by the non standard filesystem hierarchy, which prevents random dynamically linked binaries from running.

      I’ve never heard of flatpak and immutability being obstacles to developers, in fact I generally hear the opposite. Bluefin is primarily targeted at developers, and some apps, like Bottles, will only officially support the flatpak distribution because of the simplicity and benefits it brings over standard distro packaging.

  • Grangle1@lemm.ee
    link
    fedilink
    arrow-up
    18
    arrow-down
    1
    ·
    11 days ago

    I personally vastly prefer mutable distros for my own system, but I understand the appeal for those who like them. As long as mutable distros remain an option I don’t mind immutable distros.

    • 0x0@programming.dev
      link
      fedilink
      arrow-up
      5
      arrow-down
      4
      ·
      11 days ago

      As long as mutable distros remain an option

      Precisely this, linux is about choice. It’s not like suddenly most distros would change init systems and make it near impossible to choose… oh, wait…
      I prefer mutable and see immutable mostly as lazyness but if people wanna use’em go for it, i’m not pushing mutable down their throats.

      • priapus@sh.itjust.works
        link
        fedilink
        English
        arrow-up
        6
        arrow-down
        1
        ·
        10 days ago

        Linux isn’t about choice, it’s about freedom. Distro’s don’t owe you the choices you want, because the devs have the freedom to make what they want. You also have the freedom to modify them or make whatever distro you want.

  • tisktisk@piefed.social
    link
    fedilink
    English
    arrow-up
    17
    arrow-down
    1
    ·
    11 days ago

    I remain interested in the immutables or atomic distros because I know a lot of smart people that swear by them.

    I also don’t try them just yet because I know a lot of dumb people like me that end up breaking a lot of stuff before quitting them altogether.

    They could be amazing and just not perfected yet or they may be a meme and no one’s proved it outright just yet. Will be lurking this thread either way lool :D

    • chunkystyles@sopuli.xyz
      link
      fedilink
      English
      arrow-up
      3
      ·
      10 days ago

      These distros are great for beginners or less technically savvy. They’re really just harder for people who have been using Linux forever and are very accustomed to the old ways.

    • Kroxx@lemm.eeOP
      link
      fedilink
      arrow-up
      2
      arrow-down
      2
      ·
      11 days ago

      Yeah I think atomic is more appropriate but I’m not exactly sure what the difference is?

      • tisktisk@piefed.social
        link
        fedilink
        English
        arrow-up
        10
        ·
        11 days ago

        Immutable = Read-Only Root FS && Updates entire system image rather than individual files
        Atomic = Updates as single transaction (all or no update) && Containerization w/ Rollback capability

        This is quick summary from quick research pls correct where technically wrong.

        • T0RB1T@lemmy.ca
          link
          fedilink
          arrow-up
          12
          ·
          11 days ago

          If we’re asking what people mean when they use those descriptors, then you’re correct.

          However, literally speaking, in this context, immutable only means read-only, and atomic only means that updates are applied all-at-once or not at all (no weird in-between state if your update crashes halfway through).

          The rest of the features (rollbacks, containerization, and immutable meaning full system image updates) are typically implied, but not explicitly part of the definition.

          • tisktisk@piefed.social
            link
            fedilink
            English
            arrow-up
            4
            ·
            11 days ago

            I knew a real wizard would clarify sooner than later. Much obliged and keep up the good work anon!

        • Kroxx@lemm.eeOP
          link
          fedilink
          arrow-up
          2
          ·
          11 days ago

          That makes sense, bazzite is referred to as atomic (that’s what I meant in the above comment about atomic being more appropriate, forgot to add that context though lol) specifically instead of immutable. Bazzite updates like you said and you can always roll back, thank you for the explanation!

      • ivn@jlai.lu
        link
        fedilink
        arrow-up
        5
        arrow-down
        2
        ·
        11 days ago

        The store is immutable but the system itself definitely isn’t.

          • pr06lefs@lemmy.ml
            link
            fedilink
            arrow-up
            2
            ·
            11 days ago

            Packages in nix are in the store directory, each package in a dir named after the package hash. So you can have 15 versions of firefox installed, for instance, and the different versions go in different folders with different hashnames.

            When it’s time to set up a user env, their specific version of firefox is (conceptually) symlinked into the users profile. When that user executes firefox it gets one out of the 15 versions. Another user may get a different one.

            Anyway, the package store is off limits to users, and a real bad idea to modify for root too.

    • apt_install_coffee@lemmy.ml
      link
      fedilink
      arrow-up
      8
      ·
      edit-2
      11 days ago

      I’d argue it’s closer to a mutable distro than an immutable one.

      Nixos tends to lean on the term reproducible instead of immutable, because you can have settings (e.g files in /etc & ~/.config) changed outside of nix’s purview, it just won’t be reproducible and may be overwritten by nix.

      You can build an ‘immutable’ environment on nix, but rather than storing changes as transactions like rpm-ostree, it’ll modify path in /nix/store and symlink it. Sure, you can store the internal representation of those changes in a git repo, but that is not the same thing as the changes themselves; if the nixpkgs implementation of a config option changes, the translation on your machine does too.

      • jamesbunagna@discuss.online
        link
        fedilink
        arrow-up
        7
        ·
        11 days ago

        Nixos tends to lean on the term reproducible instead of immutable, because you can have settings (e.g files in /etc & ~/.config) changed outside of nix’s purview, it just won’t be reproducible and may be overwritten by nix.

        Interesting. If possible, could you more explicitly draw comparisons on how this isn’t quite the same over on say Fedora Atomic? Like, sure changes of /etc are (at least by default) being kept track of. But you indeed can change it. libostree doesn’t even care what you do in your home folder. Thus, changes to e.g. ~/.config (and everything else in /var[1]) are kept nowhere else by default.


        1. Which happens to be more crowded than on other distros as folders like /opt are actually found here as well.
        • apt_install_coffee@lemmy.ml
          link
          fedilink
          arrow-up
          3
          ·
          11 days ago

          ~/.config is probably a poor comparison on my part; it’s management is actually done by home-manager rather than Nixos proper, and I can’t think of another OS that fills this same role.

          Nixos generates (for example) /etc/systemd/network to a path in /nix/store and symlinks it to it’s appropriate locations. After the files are generated the appropriate /nix/store paths are (re-mounted? Over-mounted? I’m not sure the implementation) made read-only (by default), but anything that isn’t generated is absolutely both mutable and untracked, and that “not tracking everything in /etc” is more what I’m going on about.

          If you use Nixos as intended (when you find that a package is lacking a config option you want, create your own nix option internally) the distro is effectively immutable, but if you use Nixos for anything moderately complex that changes frequently e.g. a desktop os, you eventually run into the choice: become competent enough to basically be a nixpkgs contributor, or abandon absolute immutability.

          I think the first option is worth it, and did go down that route, but it is unreasonable to expect the average Linux consumer to do so, and so something like fedora atomic is going to remain more “immutable” for them than nixos.

          This need to git gud is thankfully lessening with every commit to nixpkgs, and most people can already get to most places without writing their own set of nix options or learning how to parse //random markup language// into nix, but you’ll eventually run into the barrier.

  • jamesbunagna@discuss.online
    link
    fedilink
    arrow-up
    12
    ·
    11 days ago

    what does the community think of it?

    It’s important to note how the Linux community interacts with change. In the past, whenever a change has been significant enough to influence individual workflows, it often provoked strong reactions. This was evident when systemd was introduced and adopted by distros like Arch and Debian. Even though systemd was arguably superior in essential aspects for most users, it failed to meet the needs of at least a vocal minority. Consequently, community endeavors were set up to enable the use of Debian or Arch without systemd.

    Similarly, the introduction of immutable distributions seems to upset some people, though (at least to me) it’s unjustified. Immutable distributions don’t necessarily alter the traditional model. For instance, the existence of Fedora Silverblue doesn’t impose changes on traditional Fedora; let alone Arch or Debian.

    But, overall, most Linux users aren’t bothered by it. Though, they often don’t see a use for themselves. Personally, I attribute this at least in part to existing misconceptions and misinformation on the subject matter. Though, still, a minority[1] (at best ~10%) actually prefers and uses ‘immutable’ distros.

    Do the downsides outweigh the benefits or vice versa?

    Depends entirely on what you want out of your system. For me, they absolutely do. But it’s important to note that the most important thing they impose on the user is the paradigm shift that comes with going ‘immutable’. And this is actually what traditional Linux users are most bothered by. But if you’re unfamiliar with Linux conventions, then you probably won’t even notice.

    As a side note, it’s perhaps important to note that the similarities between traditional distros are greater than the similarities between immutable distros. Also, Fedora Atomic is much more like traditional Fedora than it is similar to, say, openSUSE Aeon or Vanilla OS. Grouping them together as if they are a cohesive group with very similar attributes is misleading. Of course, they share a few traits, but overall, the differences are far more pronounced.

    Therefore, it is a false dichotomy to simply label them as traditional distros versus immutable distros. Beyond these names, which we have assigned to them, these labels don’t actually adequately explain how these systems work, how they interact, how their immutability is achieved (if at all), what underlying technologies they use, or how they manage user interactions. The implications of the above. Etc.

    Could this help Linux reach more mainstream audiences?

    The success of the Steam Deck and its SteamOS are the most striking and clear proof of this. So, yes. Absolutely.


    1. Not accounting SteamOS users.
  • Magiilaro@feddit.org
    link
    fedilink
    arrow-up
    11
    ·
    10 days ago

    I am a huge fan of immutable distributions, not for my personal daily driver but for secondary systems like my living room/home theater PC.