NixOS is probably the or one of the distributions where you need docker the least.
That’s not to say you shouldn’t use it, but it makes less sense to me than on other systems, and you lose out on some of the good stuff from what I understand (no module system configuration for imported docker containers for example? I have never tried this).
You can already manage your dependencies very accurately with Nix, no need to ship them all in a container; and if you use containers for isolation, there are stronger mechanisms available, e.g. MicroVM.nix.
Podman provides stronger isolation than nixos-containers because the latter only supports rootful containers. Losing access to nixos modules is a disadvantage, altough most services I’d use podman containers for don’t have any modules anyway.
E.g. I’ve used nixos container as a stop gap to use a major beta, because I didn’t manage to adapt the nixos package accordingly.
NixOS is probably the or one of the distributions where you need docker the least.
That’s not to say you shouldn’t use it, but it makes less sense to me than on other systems, and you lose out on some of the good stuff from what I understand (no module system configuration for imported docker containers for example? I have never tried this).
You can already manage your dependencies very accurately with Nix, no need to ship them all in a container; and if you use containers for isolation, there are stronger mechanisms available, e.g. MicroVM.nix.
I know. I pasted this from Reddit. We have like 0 articles here. In fact, if you’re doing it this way, you are doing it wrong.
Podman provides stronger isolation than nixos-containers because the latter only supports rootful containers. Losing access to nixos modules is a disadvantage, altough most services I’d use podman containers for don’t have any modules anyway.
E.g. I’ve used nixos container as a stop gap to use a major beta, because I didn’t manage to adapt the nixos package accordingly.