I use Fedora Kinoite daily and find it to be the only OS to make sense really.

I find Fedora CoreOS totally confusing (with that ignition file, no anaconda, no user password by default, like how would I set this up anywhere I dont have filesystem access to?)

But there are alternatives. I would like to build my own hardened Fedora server image that can be deployed anywhere (i.e. any PC to turn into a secure and easy out-of-the-box server).

As modern server often uses containers anyways, I think an atomic server only makes sense, as damn Debian is just a pain to use.

Experiences, recommendations?

  • d_k_bo@feddit.de
    link
    fedilink
    English
    arrow-up
    5
    ·
    8 months ago

    You can use Fedora IoT which is essentially rpm-ostree based Fedora Server. It would be less confusing if it was just named Fedora Atomic Server.

    • Pantherina@feddit.deOP
      link
      fedilink
      English
      arrow-up
      2
      arrow-down
      1
      ·
      edit-2
      8 months ago

      Omg yes thats true. Thanks!

      But CoreOS is also using rpm-ostree, how are they different?

      • d_k_bo@feddit.de
        link
        fedilink
        English
        arrow-up
        2
        ·
        8 months ago

        I didn’t try CoreOS as I didn’t even get how to set it up. As I understand it, it uses a completely different workflow for administering the system compared to regular distros.

        • Pantherina@feddit.deOP
          link
          fedilink
          English
          arrow-up
          1
          arrow-down
          2
          ·
          8 months ago

          Yep, and thats all cloud-first I suppose. It sounds cool but you need to create an ignition file (which sounds very possible) but then you need to get that to a server that doesnt yet have a user account.

          I dont understand anything of that. I dont think mounting a drive with that file is possible everywhere, and how do you setup LUKS?

          Just no. I see if IOT is actually atomic but normal.

          Like, just use a cli installer that can load a file to automate it. Or have a backup user password. There is an issue that addressed this, its old and closed, yeah.