洪 民憙 (Hong Minhee)

문제

Nix는 설계 철학상 Nix 언어(순수 함수형 평가 언어)와 Nix store(콘텐츠 주소 기반 저장소)가 별도의 레이어로 분리되어 있다. 그러나 현실에서는 Nix 언어가 store에 대해 특권적 지위를 갖고 있으며, 이 둘 사이에 명시적인 인터페이스 경계가 존재하지 않는다.

특권적 지위의 구체적 양상

• 유일한 공식 진입점: derivation을 생성하고 store에 등록하는 사실상 유일한 경로가 Nix 언어 평가기다. nix build, nix develop 등 CLI 도구도 내부적으로 Nix 평가기를 호출한다.
• 생태계 종속: nixpkgs 전체가 Nix 언어로 작성되어 있고, flake 시스템도 Nix 평가기를 전제한다. 대안 언어는 항상 이등 시민이다.
• 순수성에 대한 신뢰 의존: store의 무결성이 Nix 언어의 순수성(부작용 없음, string context를 통한 의존성 추적 등)에 의존한다. 이는 언어 구현의 정확성을 믿어야 하는 취약한 신뢰 모델이다.

기존 우회 시도의 한계

• Guix: Nix 언어 대신 Guile을 프론트엔드로 사용하지만, nixpkgs를 재사용하지 못하고 생태계를 처음부터 다시 구축해야 했다.
• Tvix: store를 다른 방식으로 구현하려 했지만, 결국 Nix 언어의 호환 평가기를 만드는 데 상당한 비용을 치르고 있다.
• Recursive Nix: 빌드 시점에 다른 언어에서 Nix daemon을 호출할 수 있지만, 최상위 진입점은 여전히 Nix 언어가 쥐고 있다. 탈출구는 생겼지만 그 문을 여는 열쇠는 Nix 언어에 있다.

제안: 모든 언어를 Sandbox 안으로

핵심 아이디어: Nix 언어 평가기를 포함한 모든 프론트엔드 언어를, Nix sandbox 안에서 마운트된 Nix daemon 소켓을 통해서만 store와 상호작용하도록 한다.

구조 변경

[현재]
Nix 언어 평가기 ──(특권적 접근)──▶ Nix Store

[제안]
┌─── Sandbox ────────────────────┐
│  Nix 언어 평가기                  
│  Guile / Python / Rust / ...   │──(daemon 소켓)──▶ Nix Daemon ──▶ Nix Store
│  (네트워크 없음, FS 격리)           
└────────────────────────────────┘

동작 방식

1. 프론트엔드 언어(Nix 포함)는 sandbox 안에서 실행된다. 네트워크 접근 불가, 파일시스템 격리.
2. Store 관련 모든 동작(derivation 등록, store path 조회, 빌드 요청 등)은 sandbox 안에 마운트된 Nix daemon 소켓을 통해서만 수행한다.
3. Daemon이 store의 무결성을 보장하는 유일한 주체가 된다.

이점

1. 신뢰 모델의 단순화

언어의 순수성을 신뢰할 필요가 없다. Sandbox가 커널 레벨에서 격리를 강제하므로, 어떤 언어가 sandbox 안에서 무엇을 하든 store의 무결성은 daemon이 보장한다. 언어 의미론에 의존하는 신뢰보다 OS 레벨 격리에 의존하는 신뢰가 훨씬 견고하다.

2. 언어 간 동등한 지위

Nix, Guile, Python, Rust 등 어떤 언어든 sandbox 안에서 daemon 소켓 프로토콜을 사용하는 것은 동일하다. nixpkgs가 Nix로 작성되어 있다는 것은 생태계의 역사적 선택일 뿐, 아키텍처가 강제하는 것이 아니게 된다.

3. 기존 특수 케이스의 일반화

• IFD(Import From Derivation): 평가 중에 빌드를 트리거하는 특수 케이스가 아니라, sandbox 안에서 daemon에게 빌드를 요청하는 일반적 동작이 된다.
• Recursive Nix: 별도 기능이 아니라 당연한 패턴이 된다.
• 평가와 빌드의 경계가 모호해져도 sandbox가 격리를 보장하므로 문제가 되지 않는다.

요약

현재 Nix 아키텍처에서 언어 레벨의 순수성이 담당하는 보안 역할을, OS 레벨의 격리(sandbox + daemon 프로토콜)로 내리자는 것이 이 제안의 핵심이다. 이를 통해 Nix 언어의 특권적 지위가 제거되고, 모든 프론트엔드 언어가 동등한 조건에서 Nix store를 활용할 수 있게 된다.

@esna 이미 國漢文混用體(국한문 혼용체)로 쓰고 있습니다. 😎

明日からHaze Leeさん（@nebuleto）と一緒に一週間東京に旅行に行くんだ。楽しみ！

지난 며칠 동안 〈F/OSS 史唯(사유): 우리는 LLM을 拒否(거부)할 게 아니라 되찾아 와야 한다〉 및 〈不完全(불완전)한 世上(세상)에서 唯物論的(유물론적)으로 行動(행동)하기: 生產(생산) 手段(수단)으로서의 LLM과 社會的(사회적) 關係(관계)〉를 둘러싸고 사람들과 論爭(논쟁)하며 느낀 點(점)…

西歐圈(서구권) 聯合宇宙(연합우주)에서는 LLM 및 AI 全般(전반)에 對(대)해 情緖(정서)가 매우 안 좋다보니, 애當初(당초) LLM이나 AI의 쓸모 自體(자체)를 否定(부정)하는 境遇(경우)가 많은 듯. 쓸모가 없는 技術(기술)이라면, 그 技術(기술)에서 물을 한 방울만 쓰더라도 浪費(낭비)가 된다. 價値(가치)와 費用(비용)의 셈 自體(자체)가 달라져 버리는 것. 그래서 均衡(균형) 잡힌 論議(논의)를 이루기까지 미리 說明(설명)하고 說得(설득)해야 하는 地點(지점)이 너무 많다.

While I have no ill will toward the “ATmosphere” (Bluesky/AT Protocol), the contrast in funding models is hard to ignore. The fediverse's support from strategic investments in open infrastructure (like NLnet or STF) feels far healthier than ATmosphere's heavy backing from crypto-linked VCs—a sector often fraught with bubbles and social harm. I'm a bit envious of their smooth R&D resources, but I'm ultimately convinced that building on a foundation of digital public goods is the more sustainable path for a truly decentralized web.

@mathieui Thanks for engaging with this. I appreciate the pushback, and I think some of your concerns are worth taking seriously.

That said, I want to clarify something about my position: TGPL (or any specific licensing mechanism) is just one possible avenue among many. The broader argument isn't tied to any single instrument. Regulatory pressure on governments to mandate that models trained on public data be returned to the public, expanded public funding for open research infrastructure, international treaty reform—these are all on the table. The point is strategic pluralism, not a bet on one tool.

On the copyright concern: yes, major players have shown contempt for copyright. But that's precisely why I think purely technical or market-based solutions are insufficient, and why political and legislative pressure matters. The history of generic medicine access is instructive here—no single mechanism won that fight, but the combination of compulsory licensing advocacy, treaty pressure, and public funding reform produced real change over time.

Now, your Luddite parallel: I actually think it argues for my position rather than against it. You're right that the weavers never reclaimed the technology. But the lesson I draw from that isn't “therefore reclamation is impossible.” It's that refusing or destroying the means of production doesn't work. What eventually produced change was organized labor movements that took the existence of that technology as a given and fought over who controls it and under what conditions. That's exactly the kind of struggle I'm advocating for here.

The real question you're raising, I think, is about the subject: is there an organized political force capable of carrying this through? That's a fair and hard question. But it's an argument for building that force, not for abandoning the goal.

@fabrice I hear your concerns about burnout, and as someone who has actually secured STF investment for my project (Fedify), I won't pretend the administrative overhead is non-existent. It's a real challenge.

However, in my experience, that effort is a price well worth paying for the autonomy and long-term value it secures. For me, navigating “administrative fragility” is a manageable hurdle compared to the structural risk of VC influence. It's not about finding a perfect, effortless funding source—it's about choosing which struggles are worth our time to preserve the integrity of the decentralized web.

@mro Valid points. The “Large” in LLM indeed mirrors the “Big” in Big IT—that is precisely the materialist contradiction I'm highlighting. Currently, the scale required for these models forces a centralized, corporate structure.

Regarding productivity: as a developer, I view LLM not just as a “code generator” (where the ±20% debate happens), but as a new layer of interface for complex information. Whether it's asbestos or X-ray, the reality is that the “means” are already being deployed at a massive scale, shaping our digital society.

You mentioned focusing on the ends. I agree. But in our current system, the “ends” are dictated by those who own the “means.” If the means (LLMs) remain a corporate monopoly, the “ends” will always be profit and surveillance.

My argument for socialization isn't about “more software” for the sake of it; it's about reclaiming the power to define the “ends.” We can't democratically decide how to use (or even limit) a technology if we don't own the infrastructure it runs on. Even if we decide to use it “narrowly and carefully” like X-rays, that decision should belong to the public, not a boardroom.

@mro Hi, thanks for the sharp analogy! The X-ray/asbestos comparison is a classic way to view the risks of new tech.

However, my argument for “socialization” stems from the belief that LLMs are a significant productive force. If we view them as “asbestos,” the logical step is a total ban. But if we see them as a “utility” (like electricity), the current corporate monopoly is the real poison.

In a historical materialism framework, the “toxic” side effects we see today—like reckless resource consumption or data exploitation—are often driven by the capitalist mode of production (profit-first scaling). By “liberating” or socializing the material basis of AI, we gain the democratic power to regulate its use and minimize those downsides, turning it into a true public good rather than a corporate hazard.

@fabrice You're right that constant grant-hopping is fragile, and I don't see it as a perfect endgame. However, my point about “healthiness” was less about financial stability and more about the alignment of incentives.

VC money inevitably demands a return on investment, which often leads to extractive business models down the line. I'd rather deal with the administrative “fragility” of public funding than the structural “shackles” of venture capital that might eventually compromise protocol neutrality. AT Protocol's rapid development is impressive, but for me, who owns the infrastructure is just as important as how fast it's being built.

I've been increasingly concerned about the corporate monopoly over frontier LLMs. While many ethically-minded people choose to boycott these models, I believe passive resistance alone cannot break the structural grip of big tech. To truly “liberate” these technologies and turn them into public goods, we need to look beyond moral high grounds and engage with the material basis of AI—specifically compute, data, and the relations of production.

I've written two posts exploring this through the lens of historical materialism. The first piece analyzes why current “open source” definitions struggle with LLMs, and the second discusses what it means to “act materialistically” in our imperfect world. My goal is to suggest a path forward that moves from mere boycotting to a more proactive, structural socialization of AI infrastructure.

If you've been feeling uneasy about the AI landscape but aren't sure if boycotting is the final answer, I'd love for you to give these a read:

• Histomat of F/OSS: We should reclaim LLMs, not reject them
• Acting materialistically in an imperfect world: LLMs as means of production and social relations

#LLM #AI #opensource #historicalmaterialism #histomat #materialism #digitalcommons

While I have no ill will toward the “ATmosphere” (Bluesky/AT Protocol), the contrast in funding models is hard to ignore. The fediverse's support from strategic investments in open infrastructure (like NLnet or STF) feels far healthier than ATmosphere's heavy backing from crypto-linked VCs—a sector often fraught with bubbles and social harm. I'm a bit envious of their smooth R&D resources, but I'm ultimately convinced that building on a foundation of digital public goods is the more sustainable path for a truly decentralized web.

@hyunjoon 아… 생각해 보니 Mastodon은 引用(인용) 權限(권한) 시스템이 있어서 그런 것 같네요.

@hyunjoon 갑자기 딴 얘기인데, 왜 引用(인용) 機能(기능) 안 쓰고 그냥 링크로 거셨나요?

I've been increasingly concerned about the corporate monopoly over frontier LLMs. While many ethically-minded people choose to boycott these models, I believe passive resistance alone cannot break the structural grip of big tech. To truly “liberate” these technologies and turn them into public goods, we need to look beyond moral high grounds and engage with the material basis of AI—specifically compute, data, and the relations of production.

I've written two posts exploring this through the lens of historical materialism. The first piece analyzes why current “open source” definitions struggle with LLMs, and the second discusses what it means to “act materialistically” in our imperfect world. My goal is to suggest a path forward that moves from mere boycotting to a more proactive, structural socialization of AI infrastructure.

If you've been feeling uneasy about the AI landscape but aren't sure if boycotting is the final answer, I'd love for you to give these a read:

• Histomat of F/OSS: We should reclaim LLMs, not reject them
• Acting materialistically in an imperfect world: LLMs as means of production and social relations

#LLM #AI #opensource #historicalmaterialism #histomat #materialism #digitalcommons

以前から、東アジアにもFediConのようなイベントがあればいいなと言い続けてきました。独自のカンファレンスはまだ難しそうですが、小さな一歩として考えていることがあります。

@COSCUP 2026（台北、8月8日〜9日）がコミュニティトラックの提案を受け付けています。FOSDEMのSocial Web devroomのような感じで、Social Webトラックを開けないかなと思っているところです。

まだ構想段階ですが、ActivityPubやフェディバース、ソーシャルウェブ全般に取り組んでいて、発表や共同オーガナイズに興味があるという方がいれば、ぜひ話しかけてください。

https://floss.social/@COSCUP/116152356550445285

#SocialWeb #ActivityPub #fediverse #フェディバース #COSCUP #fedidev

東(동)아시아에도 FediCon 같은 行事(행사)가 있으면 좋겠다는 말을 여러 番(번) 해왔는데요. 獨立的(독립적)인 컨퍼런스는 아직 어렵더라도, 작은 첫걸음으로 생각해보고 있는 게 있습니다.

@COSCUP 2026(臺北(타이베이), 8月(월) 8日(일)–9日(일))이 커뮤니티 트랙 提案(제안)을 받고 있어요. FOSDEM의 Social Web devroom 같은 느낌으로, 거기서 Social Web 트랙을 열 수 있지 않을까 하고 構想(구상) 중입니다.

아직 確定(확정)된 건 아무것도 없지만, #ActivityPub, #聯合宇宙(연합우주), 或(혹)은 소셜 웹 全般(전반)을 다루고 있고 發表(발표)나 共同(공동) 오거나이징에 關心(관심)이 있으신 분이 있다면 이야기 걸어주세요.

https://floss.social/@COSCUP/116152356550445285

#SocialWeb #fediverse #연합우주 #페디버스 #COSCUP #fedidev

I've been saying for a while that we need something like FediCon in East Asia. A dedicated conference is still a stretch, but I've been thinking about a smaller step:

@COSCUP 2026 (Taipei, Aug 8–9) is accepting proposals for community tracks. It might be worth trying to open a Social Web track there—something in the spirit of the Social Web devroom at FOSDEM.

Nothing is decided yet, but if you're working on #ActivityPub, the #fediverse, or anything in the social web space and might be interested in speaking (or co-organizing), I'd love to hear from you.

https://floss.social/@COSCUP/116152356550445285

#SocialWeb #COSCUP #fedidev

그 뭐시냐.... 제가 모임 개최 플랫폼 (대충 https://event-us.kr 혹은 https://connpass.com 같은거) + 지역 기반 리뷰 서비스 (대충 포스퀘어 같은거) 를 만들었는데요.

**당연히, 연합우주 거주민 대상으로 만들어진 서비스이고, 연합우주에 계정이 있다면 누구나 OTP 로그인으로 인증이 가능합니다**

어떻게 만들어나갈지 나름 고민은 많이 해봤고, 내가 생각하는 고민이랑 다른 사람들이 생각하는 수요가 일치하는지 확인도 하고 싶어서 이렇게 공개적인 글을 올립니다.

https://moim.live

많은 관심과 사랑 부탁드리고, 문의사항이나 피드백 있으면 GitHub Issue로 부탁드리겠습니다. GitHub 링크 : https://github.com/moim-social/moim

물론, 다른 창구도 열어둘 여지는 있습니다. 디스코드 채널은.. 당장은 https://fedidev.kr 의 #moim 채널을 이용하지 않을까 싶구요.

@django @nlnet @dansup The FEP for GTS-style comment controls will be coming from me. 👋 Hopefully in the next few weeks. If you scroll down my replies on my profile you can find scattered remarks on progress and remaining work items. There is a Matrix chat - if you want an invite to it, let me know!

Fedifyを使ってFedi版Togetter作るぞ

Fedify使う上で一番克服すべきはTypeScriptなんだよな

以前から、東アジアにもFediConのようなイベントがあればいいなと言い続けてきました。独自のカンファレンスはまだ難しそうですが、小さな一歩として考えていることがあります。

@COSCUP 2026（台北、8月8日〜9日）がコミュニティトラックの提案を受け付けています。FOSDEMのSocial Web devroomのような感じで、Social Webトラックを開けないかなと思っているところです。

まだ構想段階ですが、ActivityPubやフェディバース、ソーシャルウェブ全般に取り組んでいて、発表や共同オーガナイズに興味があるという方がいれば、ぜひ話しかけてください。

https://floss.social/@COSCUP/116152356550445285

#SocialWeb #ActivityPub #fediverse #フェディバース #COSCUP #fedidev

東(동)아시아에도 FediCon 같은 行事(행사)가 있으면 좋겠다는 말을 여러 番(번) 해왔는데요. 獨立的(독립적)인 컨퍼런스는 아직 어렵더라도, 작은 첫걸음으로 생각해보고 있는 게 있습니다.

@COSCUP 2026(臺北(타이베이), 8月(월) 8日(일)–9日(일))이 커뮤니티 트랙 提案(제안)을 받고 있어요. FOSDEM의 Social Web devroom 같은 느낌으로, 거기서 Social Web 트랙을 열 수 있지 않을까 하고 構想(구상) 중입니다.

아직 確定(확정)된 건 아무것도 없지만, #ActivityPub, #聯合宇宙(연합우주), 或(혹)은 소셜 웹 全般(전반)을 다루고 있고 發表(발표)나 共同(공동) 오거나이징에 關心(관심)이 있으신 분이 있다면 이야기 걸어주세요.

https://floss.social/@COSCUP/116152356550445285

#SocialWeb #fediverse #연합우주 #페디버스 #COSCUP #fedidev

I've been saying for a while that we need something like FediCon in East Asia. A dedicated conference is still a stretch, but I've been thinking about a smaller step:

@COSCUP 2026 (Taipei, Aug 8–9) is accepting proposals for community tracks. It might be worth trying to open a Social Web track there—something in the spirit of the Social Web devroom at FOSDEM.

Nothing is decided yet, but if you're working on #ActivityPub, the #fediverse, or anything in the social web space and might be interested in speaking (or co-organizing), I'd love to hear from you.

https://floss.social/@COSCUP/116152356550445285

#SocialWeb #COSCUP #fedidev

I would like to migrate some of my projects to Codeberg, but since Codeberg doesn't seem to support PyPI's Trusted Publishing (yet), I don't think I'll be able to do that...

#OtD 1 Mar 1947 police on the Korean island of Jeju opened fire on left-wingers on a pro-independence demonstration, killing six. In protest, public sector workers on the island launched a general strike, which had never occurred before in Korea https://stories.workingclasshistory.com/article/7710/3.1-shooting-incident

🚀 COSCUP 2026 Call for Participation is now open!

🎤 Community Tracks – Run a open-source agenda with talks, panels, or workshops. Apply by Mar 23. Spots are limited.

🛠 Community Booths – Showcase your project, recruit members, and connect. Apply by Jun 9. First come, first served.

👉 Apply here: https://s.coscup.org/26communityen

#COSCUP2026 #OpenSource #Community