Comment on Should I move to Docker?
purelynonfunctional@programming.dev 10 months agoThe Nix daemon itself still uses root at build/install time for now. NixOS doesn’t have any built-in sandboxing for running applications à la Docker, though it does have AppArmor support.
Gooey0210@sh.itjust.works 10 months ago
You don’t need to build/install with root, you can do home-manager
And for isolation there’s one good module, I forgot its name
And if just easier but less reproducible, you can do the containers, but with nixos’ podman, and this is of course builtin