kgz has quit [Ping timeout: 250 seconds]
kgz has joined #nixos-security
periklis has joined #nixos-security
kgz has quit [Ping timeout: 245 seconds]
kgz has joined #nixos-security
lejonet has quit [Ping timeout: 252 seconds]
pie_ has joined #nixos-security
pie_ has quit [Ping timeout: 250 seconds]
florianjacob has quit [Ping timeout: 264 seconds]
tokudan[m] has quit [Ping timeout: 252 seconds]
jpo-joyent has quit [Ping timeout: 252 seconds]
timokau[m] has quit [Ping timeout: 268 seconds]
pie_ has joined #nixos-security
pie__ has joined #nixos-security
pie_ has quit [Read error: Connection reset by peer]
pie__ has quit [Ping timeout: 250 seconds]
pie_ has joined #nixos-security
tilpner has quit [Quit: WeeChat 2.4]
pie_ has quit [Read error: Connection reset by peer]
pie__ has joined #nixos-security
tilpner has joined #nixos-security
pie__ has quit [Ping timeout: 250 seconds]
pie_ has joined #nixos-security
periklis has quit [Remote host closed the connection]
ckauhaus has quit [Quit: WeeChat 2.2]
<pie_> if only nix had a type system / capabilities / proof carrying code :P
<gchristensen> Nix does have capabilties and proof carrying
<gchristensen> Nix follows the principle of least authority, and requires you provide proof you can build something before you can use it
<gchristensen> (proof you can build something == the instructions to build it, can't access the output without convincing nix you know how to build it)
pie_ has quit [Ping timeout: 240 seconds]
pie_ has joined #nixos-security
<pie___> i guess you could consider some "unconstructible" hashes and take them as inputs
<pie___> hm
<gchristensen> hrm?
pie_ has quit [Ping timeout: 252 seconds]
lassulus has quit [*.net *.split]
ekleog has quit [*.net *.split]
lrvick has quit [*.net *.split]
ekleog has joined #nixos-security
lrvick has joined #nixos-security
lassulus has joined #nixos-security