turnipjs@lemmy.ml to linuxmemes@lemmy.world · 5 months agoHave you tried NixOS?lemmy.mlimagemessage-square125fedilinkarrow-up1830arrow-down119
arrow-up1811arrow-down1imageHave you tried NixOS?lemmy.mlturnipjs@lemmy.ml to linuxmemes@lemmy.world · 5 months agomessage-square125fedilink
minus-squareivn@jlai.lulinkfedilinkarrow-up18arrow-down1·5 months agoIt build in a sandbox, but it’s not run in a sandbox.
minus-squareVilianlinkfedilinkarrow-up2arrow-down3·5 months agoI don’t understand, if you run a program inside the sandbox and the program ask for a library, the kernel need to map the library from inside the sandbox to the program, that overhead that I’m talking about
minus-squareLaser@feddit.orglinkfedilinkarrow-up22arrow-down1·5 months agoThis is not how NixOS works. Programs directly link against libraries in the store. There is no sandbox by default when running the binaries.
minus-squareivn@jlai.lulinkfedilinkarrow-up17·5 months agoBut it’s not run in a sandbox. I’m not sure where you get this from.
It build in a sandbox, but it’s not run in a sandbox.
I don’t understand, if you run a program inside the sandbox and the program ask for a library, the kernel need to map the library from inside the sandbox to the program, that overhead that I’m talking about
This is not how NixOS works. Programs directly link against libraries in the store. There is no sandbox by default when running the binaries.
But it’s not run in a sandbox. I’m not sure where you get this from.