This should allow ~~average~~non-technical users to keep up with development, without reading Github comments or knowing how to program.
;)
Your browser cannot block server-side abuse of your personal data. These consent forms are not about cookies; they're about fooling users into consenting to abuse of their personal data. Cookies are just one of many many technological measures required to carry out said human rights abuse.
Do you have a better source than a 5 y/o comment in an issue?
Freetube won't have anything to do with h265 as youtube does not serve that format in any way.
TS is a lot easier to set up than WG and does not require a publicly accessible IP address nor any public whatsoever. It's not really comparable to setting WG up yourself; especially w.r.t. security.
As it says on the website, this is still in development and not actually ready for use by mere mortals quite yet. It hopefully will be at some point though as that is its explicit goal.
It's a central server (that you could actually self-host publicly if you wanted to) whose purpose it is to facilitate P2P connections between your devices.
If you were outside your home network and wanted to connect to your server from your laptop, both devices would be connected to the TS server independently. When attempting to send IP packets between the devices, the initiating device (i.e. your laptop) would establish a direct wireguard tunnel to the receiving device. This process is managed by the individual devices while the central TS service merely facilitates communication between the devices for the purpose of establishing this connection.
If you're worried about that, I can recommend a service like Tailscale which does not require permanently open ports to the outside world, offering quite a bit more security than an exposed traditional VPN server.
Good luck packaging new stuff
Packaging is generally hard on any distro.
Compared to a traditional distro, the packaging difficulty distribution is quite skewed with Nix though as packages that follow common conventions are quite a lot easier to package due to the abstractions Nixpkgs has built for said conventions while some packages are near impossible to package due to the unique constraints Nix (rightfully) enforces.
good luck creating new options
Creating options is really simple actually. Had I known you could do that earlier, I would have done so when I was starting out.
Creating good options APIs is an art to be mastered but you don't need to do that to get something going.
good luck cross-compiling
Have you ever tried cross-compiling on a traditional distro? Cross-compiling using Nixpkgs is quite easy in comparison.
actually good luck understanding how to configure existing packages
Yeah, no way to do so other than to read the source.
It's usually quite understandable without knowing the exact details though; just look at the function arguments.
Also beats having no option to configure packages at all. Good luck slightly modifying an Arch package. It has no abstractions for this whatsoever; you have to copy and edit the source. Oh and you need to keep it up to date yourself too.
Gentoo-like standardised flags would be great and are being worked on.
good luck getting any kind of PR merged without the say-so of a chosen few
Hi, one of the "chosen few" here: That's a security feature.
Not a particularly good one, mind you, but a security feature nonetheless.
There's also now a merge bot now running in the wild allowing maintainers of packages to merge automatic updates on their maintained packages though which alleviates this a bit.
have fun understanding why some random package is being installed and/or compiled when you switch to a new configuration.
It can be mysterious sometimes but once you know the tools, you can directly introspect the dependency tree that is core to the concept of Nix and figure out exactly what's happening.
I'm not aware of the existence of any such tools in traditional distros though. What do you do on i.e. Arch if your hourly shot of -Syu goes off and fetches some package you've never seen before due to an update to some other package? Manually look at PKGBUILDs?
Steam is its own package manager and native games usually assume that an FHS-conformant is present. Neither of those mesh well with Nix notoriously has nothing comparable to an FHS and usually requires everything to be defined in its terms.
Because the only way to have a functioning NixOS system is to have it be reproducible. That's the only way it works; Nix is reproducible by design.
The ability to reproduce a system implies the ability to replicate it.