https://www.youtube.com/watch?v=bkYkAk6YcN0
I found this http://armtixlinux.org/
and was wondering about trusting russian packagers to run a SBC os.
Thoughts?
SBCs are mostly developed and built in China (forget rpi, really), so no problems ;)
I am not finding a thoughtful response to my question...
This is because it's not thoughtful question at all. It just shows your personal bias (or maybe it's not personal, but you've been condition to such bias by your media).
I ma using ARMtix on my phone and sometimes I think that it would be better using a distro that actually supports aarch64.
ARMtix and ALARM packages are not signed.
Is there signifacnt lack of performance (compared to something else on the same CPU)?
ALARM packages are signed actually
I see in /etc/pacman.conf:
[extra]
Include = /etc/pacman.d/mirrorlist-archlinuxarm
[alarm]
SigLevel = Optional TrustAll
Include = /etc/pacman.d/mirrorlist-archlinuxarm
Right, extra is signed but I remember that I had to import the key manually because the dev is using old format GPG key.
So pacman won't accept it.
Not sure what's that not signed alarm repo, no package is installed from there.
Somebody told me that they (main ALARM dev) are not responding to anybody since long time.
ALARM is mostly one man project right?
Compared to distros that have aarch64 updates will be slower, less support etc.
In ARMtix for some reason I have old version of dinit-rc and updating it breaks the root-ro service.
Not sure why.
Lack of man power and small user base are what concern me.
I have a PinePhone and it is not mainlined so I need to build a custom image and there are very few users.
Also nice to have packages signed.
So you agree, it was not a thoughtful response?
But... perhaps you could explain why the question was silly since you brought it up?
While Artix doesn't provide arm64 packages, the mere fact that we have a dedicated section for ARMtix (https://forum.artixlinux.org/index.php/board,44.0.html) in our forum should be a indication of the trust we show to its developers.
The (supposed) lead of the project - Kevin - wasn't really seen in any public discussions for a long time, though he still actively commits to the repo. There are at least two other maintainers who commit packages, one of them (graysky) is sometimes seen in pull request discussions.
As of updates, they are mostly taken from Arch upstream however in that case they are build using Arch PKGBUILDs which may lack optimization for aarch64. Same for Artix.
That's strange, all my ARMtix hw uses dinit and i have no issues so far.
thanks for a helpful response
I think it is worth pausing when dealing with random Russian and Chinese developers (among others like North Korea, and Iran). If you want international breath, you need some trust. Obviously, not everyone in Russia and China are black hat hackers. I know nothing about the people mentioned here of the developers. I do have considerable confidence in the Artix development leadership. I don't agree with them all the time but they are proven honest brokers who take the time to think things out.
Actions like that only fuel the conflict
I'm just as random and so is the entire Artix team, which includes people from all around the world (
@mrbrklyn is also loosely part of that team, being a gracious mirror provider). But let me be clear about this: we chose each other based on the common cause and on how well we communicated with each other, not on nationalities or peculiar traits; in other words, we favor
merit, which nowadays is the opposite of
entitlement.
This thread has run its course, I believe, let's stop it here.