|
1825 Monetary Lane Suite #104 Carrollton, TX
Do a presentation at NTLUG.
What is the Linux Installation Project?
Real companies using Linux!
Not just for business anymore.
Providing ready to run platforms on Linux
|
Show Descriptions... (Show All)
(Two Column)
- [$] The troubles with Boolean inversion in Python
The Python bitwise-inversion (or complement) operator, "~", behavespretty much as expected when it is applied to integers—it toggles everybit, from oneto zero and vice versa. It might be expected that applying theoperator to a non-integer, a boolfor example, would raise a TypeError, but, because thebool type is really an intin disguise, the complement operator is allowed, at least for now. Fornearly 15 years (and perhaps longer), there have been discussions about theoddity of that behavior and whether it should be changed. Eventually,that resulted in the "feature" being deprecated, producing a warning, with removal slated forPython 3.16 (due October 2027). That has led to some reconsideration and thedeprecation may itself be deprecated.
- Two new stable kernels, possible regression
Greg Kroah-Hartman has announced the 6.19.4 and 6.18.14 stable kernels. Shortly after6.19.4 was released Kris Karas reported "getting a repeatable Oops right when networking is initialized, likely when nft is loading itsruleset"; the problem did not appear to be present in 6.18.14. Usersof nftables may wish to hold off on upgrades to 6.19.4 for now. Wewill provide updates as they are available.
Update: Kroah-Hartman has released the 6.19.5 and 6.18.15 kernels with a fix for theregression in 6.19.4 and 6.18.14. All users of netfilter are advisedto upgrade to those versions.
- Security updates for Friday
Security updates have been issued by AlmaLinux (389-ds-base, buildah, firefox, freerdp, golang-github-openprinting-ipp-usb, grafana-pcp, kernel, libpng15, munge, nodejs:20, nodejs:22, podman, protobuf, python-pyasn1, runc, and skopeo), Debian (chromium, nss, and python-django), Fedora (firefox, freerdp, gh, libmaxminddb, nss, python3.15, and udisks2), Oracle (buildah, firefox, freerdp, kernel, libpng, podman, python-pyasn1, skopeo, and valkey), Red Hat (container-tools:rhel8), SUSE (autogen, chromium, cockpit, cockpit-machines-348, cockpit-packages, cockpit-repos, cockpit-subscriptions, crun, docker, docker-compose, docker-stable, erlang, freerdp, frr, glib2, gpg2, kernel, kernel-firmware, libsodium, libsoup, libsoup2, openvswitch, python, python-pyasn1, python-urllib3, python-urllib3_1, python3, qemu, redis7, regclient, and ucode-intel), and Ubuntu (linux-aws, linux-aws-6.8, linux-ibm, linux-ibm-6.8, linux-xilinx, python-authlib, and ruby-rack).
- [$] IIIF: images and visual presentations for the web
The International Image InteroperabilityFramework, or IIIF ("triple-eye eff"), is a small set of standards thatform a basis for serving, displaying, and reusing image data on the web. Itconsists of a number of API definitions that compose with each other toachieve a standard for providing, for example, presentations ofhigh-resolution images at multiple zoom levels, as well as bundling multiple imagestogether. Presentations may include metadata about details like authorship,dates, references to other representations of the same work, copyrightinformation, bibliographic identifiers, etc. Presentations can be furthergrouped into collections, and metadata can be added in the form oftranscriptions, annotations, or captions. IIIF is most popular withcultural-heritage organizations, such as libraries, universities, andarchives.
- Security updates for Thursday
Security updates have been issued by AlmaLinux (freerdp), Debian (firefox-esr and libstb), Fedora (389-ds-base, chromium, firefox, munge, opentofu, python3-docs, python3.14, and vim), Oracle (buildah, containernetworking-plugins, gimp, grafana, grafana-pcp, kernel, podman, runc, and skopeo), Red Hat (go-toolset:rhel8, golang, golang-github-openprinting-ipp-usb, grafana, grafana-pcp, mariadb:10.11, podman, and skopeo), SUSE (cacti, docker-stable, expat, firefox-esr, freerdp, freerdp2, libjxl, libsoup-2_4-1, python-tornado, python-urllib3_1, python3, python311-Django4, python312, python313, python39, and redis), and Ubuntu (ceph, mongodb, protobuf, and rlottie).
- [$] LWN.net Weekly Edition for February 26, 2026
Inside this week's LWN.net Weekly Edition:
Front: New flags for clone3(); Discord replacements; virtual swap spaces; BPF memory protection keys; PostgreSQL's lessons in attracting contributors; 7.0 merge window; Network Time Security. Briefs: OpenSUSE governance; Firefox 148.0; GNU Awk 5.4.0; GNU Octave 11.1.0; Rust in Ladybird; LibreOffice Online; Weston 15.0; RIP Robert Kaye; Quotes; ... Announcements: Newsletters, conferences, security updates, patches, and more.
- Support period lengthened for the 6.6, 6.12, and 6.18 kernels
The stated support periods for the 6.6, 6.12, and 6.18 kernels has been extended.The 6.6 kernel will be supported with stable updates through the end of2027 (for four years of support total), while 6.12 and 6.18 will getupdates through the end of 2028, for four and three years of support.
- [$] No hardware memory isolation for BPF programs
On February 12, Yeoreum Yun posted asuggestionfor an improvement to the security of the kernel's BPF implementation: usememory protection keys to prevent unauthorized access to memory by BPFprograms.Yun wanted to put the topic on the list for discussion at the LinuxStorage, Filesystem, Memory Management, and BPF Summit in May, but thelack of engagement makes that unlikely. They also have a patch set implementingsome of the proposed changes, but has not yet shared that with the mailing list.Yun's proposal does not seem likely to be accepted in itscurrent form, but the kernel hasadded hardware-based hardening options in thepast, sometimes after substantial discussion.
- [$] An effort to secure the Network Time Protocol
The Network TimeProtocol (NTP) debuted in 1985; it is a universally used, openspecification that is deeply important for all sorts of activities wetake for granted. It also, despite a number of efforts, remainsstubbornly unsecured. Ruben Nijveld presented work at FOSDEM 2026 tospeed adoption of the thus-far largely ignored standard for securingNTP traffic: IETF's RFC-8915 that specifies Network TimeSecurity (NTS) for NTP.
- MetaBrainz mourns the loss of Robert Kaye
The MetaBrainz Foundation has announced the unexpected passing ofits founder and executive director, Robert Kaye:
Robert's vision and leadership shaped MetaBrainz and left a lastingmark on the music industry and open source movement. His contributionswere significant and his loss is deeply felt across our globalcommunity.
The Board is actively overseeing a smooth leadership transition andhas measures in place to ensure that MetaBrainz continues to operatewithout interruption. Further updates will be shared in duecourse.
- Security updates for Wednesday
Security updates have been issued by AlmaLinux (grafana and grafana-pcp), Debian (gnutls28), Fedora (chromium and yt-dlp), Oracle (389-ds-base, kernel, munge, and openssl), Red Hat (buildah, containernetworking-plugins, opentelemetry-collector, podman, runc, and skopeo), Slackware (mozilla), SUSE (chromium, cosign, firefox, freerdp, gimp, heroic-games-launcher, kernel, libopenssl-3-devel, libxml2, libxslt, mosquitto, openqa, os-autoinst, openqa-devel-container, openvswitch, phpunit, postgresql14, postgresql15, postgresql16, protobuf, python310, python311-PyPDF2, python36, snpguest, warewulf4, and weblate), and Ubuntu (curl, kernel, linux, linux-gcp, linux-gke, linux-gkeop, linux-intel-iotg, linux-intel-iotg-5.15, linux-kvm, linux-lowlatency, linux-lowlatency-hwe-5.15, linux-nvidia-tegra, linux-oracle, linux-xilinx-zynqmp, linux, linux-gkeop, linux-hwe-6.8, linux-lowlatency, linux-lowlatency-hwe-6.8, linux-oracle, linux-raspi, linux-fips, linux-fips, linux-gcp-fips, linux-gcp, linux-gcp-6.8, linux-gke, linux-oracle-6.8, linux-gcp-fips, linux-ibm, linux-ibm-6.8, linux-intel-iot-realtime, linux-realtime, linux-raspi-realtime, linux-realtime, linux-realtime-6.8, and linux-xilinx).
- Restarting LibreOffice Online
LibreOffice online is a web-based version of the LibreOffice suite that canbe hosted on anybody's infrastructure. This project was put into stasis back in 2022, a move marked bysome tension with Collabora, a major LibreOffice developer that has its own online offering. Now,the Document Foundation has announceda new effort to breathe life into this project.
We plan to reopen the repository for LibreOffice Online at The Document Foundation for contributions, but provide warnings about the state of the repository until TDF's team agrees that it's safe and usable – while at the same time encourage the community to join in with code, technologies and other contributions that can be used to move forward.
Meanwhile, thispost from Michael Meeks suggests that the tension around onlineversions of LibreOffice has not abated.
- GNU Awk 5.4.0 released
Version5.4.0 of GNU awk(gawk) has been released. This is a major release with a change ingawk's default regular-expression matcher: it now uses MinRXas the default regular-expression engine.
This matcher is fully POSIX compliant, which the current GNU matchersare not. In particular it follows POSIX rules for finding the longestleftmost submatches. It is also more strict as to regular expressionsyntax, but primarily in a few corner cases that normal, correct,regular expression usage should not encounter.
Because regular expression matching is such a fundamental part ofawk/gawk, the original GNU matchers are still included in gawk. In orderto use them, give a value to the GAWK_GNU_MATCHERS environment variablebefore invoking gawk.
[...] The original GNU matchers will eventually be removed fromgawk. So, please take the time to notice and report any issues in theMinRX matcher, so that they can be ironed out sooner rather than later.
See the release announcement for additional changes.
- Firefox 148.0 released
Version148 of Firefox has been released. The most notable change in thisrelease is the addition of a "Block AI enhancements" option thatallows turning off "new or current AI enhancements in Firefox, orpop-ups about them" with a single toggle.
With this release, Firefox now supports the TrustedTypes API to help prevent cross-site scripting attacks as well asthe SanitizerAPI that provides new methods for HTML manipulation. See the releasenotes for developers for changes that may affect web developers orthose who create Firefox add-ons.
- [$] As ye clone(), so shall ye AUTOREAP
The facilities provided by the kernel for the management of processes haveevolved considerably in the last few years, driven mostly by the advent ofthe pidfd API. A pidfd is a filedescriptor that refers to a process; unlike a process ID, a pidfd is anunambiguous handle for a process; that makes it a safer, more deterministicway of operating on processes. Christian Brauner, who has driven much ofthe pidfd-related work, is proposingtwo new flags for the clone3()system call, one of which changes the kernel's security model in asomewhat controversial way.
- AMD Prepares Linux For Instruction-Based Sampling Improvements With Zen 6
A set of patches recently posted to the Linux kernel mailing list have now been queued up to a tip/tip.git branch for planned introduction in Linux 7.1. These patches are for enhancing the Linux perf subsystem support for AMD Instruction-Based Sampling (IBS) improvements with next-gen Zen 6 processors...
- Switching location of default libvirt's pool on Debian forky
Google's AI Assistant brief report some times shows up the command following below : If you need to redefine, use virsh pool-define-as --name default --type dir --target /new/path/libvirt/images, some time skips it. However, "Dive deeper in AI mode" always point to this command. Same procedure may be also performed via Virt-manager GUI with option "preferences" =[he]gt[/he] XML editing enabled and manually editing path to default pool and restarting daemon libvirtd.
- LLMs killed the privacy star, we can't rewind, we've gone too far
You'll find these days that there's no hiding placeAdd privacy to the list of potential casualties caused by the proliferation of AI, because researchers have found that large language models (LLMs) can be used to deanonymize internet users – even those who use pseudonyms – more efficiently than human sleuths.…
- Mesa Developers Trying To Reach A Consensus On AI Policy
If all goes well, Mesa developers are hoping to reach a consensus or at least some common ground on an AI policy in March. Mesa is the latest open-source project making considerations around the growing activity around AI coding agents and the like and how to deal with them for this project that is crucial to the Linux desktop and open-source 3D graphics drivers at large...
- M5Stack Unit PoE-P4 Pairs RISC-V ESP32-P4 and 802.3at PoE in 64mm Module
M5Stack has introduced the Unit PoE-P4, a compact PoE-powered Ethernet controller built around Espressif’s ESP32-P4 SoC. The module integrates 16MB Flash, 32MB PSRAM, a 10/100 Ethernet PHY, dual MIPI interfaces, and USB connectivity in a 64 × 24 mm form factor. The board is based on the ESP32-P4NRW32, featuring a dual-core 32-bit RISC-V processor […]
- Anthropic's Claude Leaps to #2 on Apple's 'Top Apps' Chart After Pentagon Controversy
Anthropic's Claude AI assistant "jumped to the No. 2 slot on Apple's chart of top U.S. free apps late on Friday," reports CNBC:The rise in popularity suggests that Anthropic is benefiting from its presence in news headlines, stemming from its refusal to have its models used for mass domestic surveillance or for fully autonomous weapons... OpenAI's ChatGPT sat at No. 1 on the App Store rankings on Saturday, while Google's Gemini was at No. 3... On Jan. 30, [Claude] was ranked No. 131 in the U.S., and it bounced between the top 20 and the top 50 for much of February, according to data from analytics company Sensor Tower... [And Friday night, for 85.3 million followers] pop singer Katy Perry posted a screenshot of Anthropic's Pro subscription for consumers, with a heart superimposed over it. Friday Anthropic posted "We are deeply grateful to our users, and to the industry peers, policymakers, veterans, and members of the public who have voiced their support in recent days. Thank you. "
Read more of this story at Slashdot.
- Silicon Valley's Ideas Mocked Over Penchant for Favoring Young Entrepreneurs with 'Agency'
In a 9,000-word expose, a writer for Harper's visited San Francisco's young entrepreneurs in September to mockingly profile "tech's new generation and the end of thinking." There's Cluely founder Roy Lee. ("His grand contribution to the world was a piece of software that told people what to do.") And the Rationalist movement's Scott Alexander, who "would probably have a very easy time starting a suicide cult..."Alexander's relationship with the AI industry is a strange one. "In theory, we think they're potentially destroying the world and are evil and we hate them," he told me. In practice, though, the entire industry is essentially an outgrowth of his blog's comment section... "Many of them were specifically thinking, I don't trust anybody else with superintelligence, so I'm going to create it and do it well." Somehow, a movement that believes AI is incredibly dangerous and needs to be pursued carefully ended up generating a breakneck artificial arms race. There's a fascinating story about teenaged founder Eric Zhu (who only recently turned 18):Clients wanted to take calls during work hours, so he would speak to them from his school bathroom. "I convinced my counselor that I had prostate issues... I would buy hall passes from drug dealers to get out of class, to have business meetings." Soon he was taking Zoom calls with a U.S. senator to discuss tech regulation... Next, he built his own venture-capital fund, managing $20 million. At one point cops raided the bathroom looking for drug dealers while Eric was busy talking with an investor. Eventually, the school got sick of Eric's misuse of the facilities and kicked him out. He moved to San Francisco. Eric made all of this sound incredibly easy. You hang out in some Discord servers, make a few connections with the right people; next thing you know, you're a millionaire... Eric didn't think there was anything particularly special about himself. Why did he, unlike any of his classmates, start a $20 million VC fund? "I think I was just bored. Honestly, I was really bored." Did he think anyone could do what he did? "Yeah, I think anyone genuinely can." The article concludes Silicon Valley's investors are rewarding young people with "agency". Although "As far as I could tell, being a highly agentic individual had less to do with actually doing things and more to do with constantly chasing attention online." Like X.com user Donald Boat, who successfully baited Sam Altman into buying him a gaming PC in "a brutally simplified miniature of the entire VC economy." (After which "People were giving him stuff for no reason except that Altman had already done it, and they didn't want to be left out of the trend.")Shortly before I arrived at the Cheesecake Factory, [Donald Boat] texted to let me know that he'd been drinking all day, so when I met him I thought he was irretrievably wasted. In fact, it turned out, he was just like that all the time... He seemed to have a constant roster of projects on the go. He'd sent me occasional photos of his exploits. He went down to L.A. to see Oasis and ended up in a poker game with a group of weapons manufacturers. "I made a bunch of jokes about sending all their poker money to China," he said, "and they were not pleased...." "I don't use that computer and I think video games are a waste of time. I spent all the money I made from going viral on Oasis tickets." As far as he was concerned, the fact that tech people were tripping over themselves to take part in his stunt just confirmed his generally low impression of them. "They have too much money and nothing going on..." Ever since his big viral moment, he'd been suddenly inundated with messages from startup drones who'd decided that his clout might be useful to them. One had offered to fly him out to the French Riviera. The author's conclusion? "It did not seem like a good idea to me that some of the richest people in the world were no longer rewarding people for having any particular skills, but simply for having agency."
Read more of this story at Slashdot.
- Sam Altman Answers Questions on X.com About Pentagon Deal, Threats to Anthropic
Saturday afternoon Sam Altman announced he'd start answering questions on X.com about OpenAI's work with America's Department of War — and all the developments over the past few days. (After that department's negotions had failed with Anthropic, they announced they'd stop using Anthropic's technology and threatened to designate it a "Supply-Chain Risk to National Security". Then they'd reached a deal for OpenAI's technology — though Altman says it includes OpenAI's own similar prohibitions against using their products for domestic mass surveillance and requiring "human responsibility" for the use of force in autonomous weapon systems.) Altman said Saturday that enforcing that "Supply-Chain Risk" designation on Anthropic "would be very bad for our industry and our country, and obviously their company. We said [that] to the Department of War before and after. We said that part of the reason we were willing to do this quickly was in the hopes of de-esclation.... We should all care very much about the precedent... To say it very clearly: I think this is a very bad decision from the Department of War and I hope they reverse it. If we take heat for strongly criticizing it, so be it." Altman also said that for a long time, OpenAI was planning to do "non-classified work only," but this week found the Department of War "flexible on what we needed..." Sam Altman: The reason for rushing is an attempt to de-escalate the situation. I think the current path things are on is dangerous for Anthropic, healthy competition, and the U.S. We negotiated to make sure similar terms would be offered to all other AI labs. I know what it's like to feel backed into a corner, and I think it's worth some empathy to the Department of War. They are... a very dedicated group of people with, as I mentioned, an extremely important mission. I cannot imagine doing their work. Our industry tells them "The technology we are building is going to be the high order bit in geopolitical conflict. China is rushing ahead. You are very behind." And then we say "But we won't help you, and we think you are kind of evil." I don't think I'd react great in that situation. I do not believe unelected leaders of private companies should have as much power as our democratically elected government. But I do think we need to help them. Question: Are you worried at all about the potential for things to go really south during a possible dispute over what's legal or not later on and be deemed a supply chain risk...? Sam Altman: Yes, I am. If we have to take on that fight we will, but it clearly exposes us to some risk. I am still very hopeful this is going to get resolved, and part of why we wanted to act fast was to help increase the chances of that... Question: Why the rush to sign the deal ? Obviously the optics don't look great. Sam Altman: It was definitely rushed, and the optics don't look good. We really wanted to de-escalate things, and we thought the deal on offer was good. If we are right and this does lead to a de-escalation between the Department of War and the industry, we will look like geniuses, and a company that took on a lot of pain to do things to help the industry. If not, we will continue to be characterized as as rushed and uncareful. I don't where it's going to land, but I have already seen promising signs. I think a good relationship between the government and the companies developing this technology is critical over the next couple of years... Question: What was the core difference why you think the Department of War accepted OpenAI but not Anthropic? Sam Altman: [...] We believe in a layered approach to safety--building a safety stack, deploying FDEs [embedded Forward Deployed Engineers] and having our safety and alignment researcher involved, deploying via cloud, working directly with the Department of War. Anthropic seemed more focused on specific prohibitions in the contract, rather than citing applicable laws, which we felt comfortable with. We feel that it it's very important to build safe system, and although documents are also important, I'd clearly rather rely on technical safeguards if I only had to pick one... I think Anthropic may have wanted more operational control than we did... Question: Were the terms that you accepted the same ones Anthropic rejected? Sam Altman: No, we had some different ones. But our terms would now be available to them (and others) if they wanted. Question: Will you turn off the tool if they violate the rules? Sam Altman: Yes, we will turn it off in that very unlikely event, but we believe the U.S. government is an institution that does its best to follow law and policy. What we won't do is turn it off because we disagree with a particular (legal military) decision. We trust their authority. Questions were also answered by OpenAI's head of National Security Partnerships (who at one point posted that they'd managed the White House response to the Snowden disclosures and helped write the post-Snowden policies constraining surveillance during the Obama years.) And they stressed that with OpenAI's deal with Department of War, "We control how we train the models and what types of requests the models refuse."Question: Are employees allowed to opt out of working on Department of War-related projects? Answer: We won't ask employees to support Department of War-related projects if they don't want to. Question: How much is the deal worth? Answer: It's a few million $, completely inconsequential compared to our $20B+ in revenue, and definitely not worth the cost of a PR blowup. We're doing it because it's the right thing to do for the country, at great cost to ourselves, not because of revenue impact... Question: Can you explicitly state which specific technical safeguard OpenAI has that allowed you to sign what Anthropic called a 'threat to democratic values'? Answer: We think the deal we made has more guardrails than any previous agreement for classified AI deployments, including Anthropic's. Other AI labs (including Anthropic) have reduced or removed their safety guardrails and relied primarily on usage policies as their primary safeguards in national security deployments. Usage policies, on their own, are not a guarantee of anything. Any responsible deployment of AI in classified environments should involve layered safeguards including a prudent safety stack, limits on deployment architecture, and the direct involvement of AI experts in consequential AI use cases. These are the terms we negotiated in our contract. They also detailed OpenAI's position on LinkedIn:Deployment architecture matters more than contract language. Our contract limits our deployment to cloud API. Autonomous systems require inference at the edge. By limiting our deployment to cloud API, we can ensure that our models cannot be integrated directly into weapons systems, sensors, or other operational hardware... Instead of hoping contract language will be enough, our contract allows us to embed forward deployed engineers, commits to giving us visibility into how models are being used, and we have the ability to iterate on safety safeguards over time. If our team sees that our models aren't refusing queries they should, or there's more operational risk than we expected, our contract allows us to make modifications at our discretion. This gives us far more influence over outcomes (and insight into possible abuse) than a static contract provision ever could. U.S. law already constrains the worst outcomes. We accepted the "all lawful uses" language proposed by the Department, but required them to define the laws that constrained them on surveillance and autonomy directly in the contract. And because laws can change, having this codified in the contract protects against changes in law or policy that we can't anticipate.
Read more of this story at Slashdot.
- Duolingo Grows, But Users Disliked Increased Ads and Subscription Pushes. Stock Plummets Again
Friday was "a horrible day" for investors in Duolingo, reports Fast Company. But Friday's one-day 14% drop is just part of a longer story. Since last May, Duolingo's stock has dropped 81%. Yes, the company faced a social media backlash that month after its CEO promised they'd become an "AI-first" company (favoring AI over human contractors). And yes, Duolingo did double its language offerings using generative AI. But more importantly, that summer OpenAI showed how easy it was to just roll your own language-learning tool from a short prompt in a GPT-5 demo, while Google built an AI-powered language-learning tool into its Translate app. And yet, Friday Duolingo's shares dropped another 14%, after announcing good fourth quarter results but an unpopular direction for its future. Fast Company reports:On the surface, many of the company's most critical metrics saw decent gains for the quarter, including: — Daily Active Users: 52.7 million (up 30% year-over-year) — Paid Subscribers: 12.2 million (up 28% year-over-year) — Revenue: $282.9 million (up 35% year-over-year) — Total bookings: $336.8 million (up 24% year-over-year) The company also reported its full-year 2025 financials, revealing that for the first time in its history, it crossed the $1 billion revenue mark for a fiscal year. But the Motley Fool explains that Duolingo's higher ad loads and repeated pushes for subscription plans "generated revenues in the short term, but made the Duolingo platform less engaging. Ergo, user growth decelerated while revenues rose." Thursday Duolingo announced a big change to address that, including moving more features into lower-priced tiers. Barron's reports:D.A. Davidson analyst Wyatt Swanson, who rates Duolingo stock at Neutral, posited that the push to monetize "led to disgruntled users and a meaningful negative impact to 'word-of-mouth' marketing." Duolingo has guided for bookings growth between 10% and 12% in 2026, compared with the 20% rate the company would have expected to see "if we operated like we have in past years...."If stock reaction is any indication, investors are concerned about Duolingo's new focus.
Read more of this story at Slashdot.
- New 'Star Wars' Movies Are Coming to Theatres. But Will Audiences?
"The drought of upcoming Star Wars movies is coming to an end soon," writes Cinemablend. In May the The Mandalorian and Grogu opens, and one year later there's the release of the Ryan Gosling-led Star Wars: Starfighter. But "there are some insiders who already believe that Starfighter will be a bigger hit than The Mandalorian and Grogu..."According to unnamed sources who spoke with Variety, there's a "sense" that Star Wars: Starfighter, which is directed by Deadpool & Wolverine's Shawn Levy, will be a more satisfying viewing experience. These same sources are allegedly impressed by the early footage they've seen of Ryan Gosling's performance and also suggested that Levy has "recaptured the franchise's spirit of fun." Furthermore, the article states that there's concern that because The Mandalorian and Grogu is spinning out of a streaming-exclusive series, it might not have as much appeal to people who aren't already fans of The Mandalorian... Star Wars: Starfighter, on the other hand, will be accessible to everyone equally. It's set five years after The Rise of Skywalker, which is an unexplored period for the Star Wars franchise onscreen. It's also expected that most, if not all of its featured characters will be brand-new, so no knowledge of past adventures is required. Slashdot reader gaiageek reminds us that 2027 will also see a special 50-year anniversary event in movie in theatres: a "newly restored" version of the original 1977 Star Wars.
Read more of this story at Slashdot.
- US Threatens Anthropic with 'Supply-Chain Risk' Designation. OpenAI Signs New War Department Deal
It started Friday when all U.S. federal agencies were ordered to "immediately cease" using Anthropic's AI technology after contract negotiations stalled when Anthropic requested prohibitions against mass domestic surveillance or fully autonomous weapons. But later Friday there were even more repercussions... In a post to his 1.1 million followers on X.com, U.S. Secretary of War Pete Hegseth criticized Anthropic for what he called "a master class in arrogance and betrayal as well as a textbook case of how not to do business with the United States Government or the Pentagon."Our position has never wavered and will never waver: the Department of War must have full, unrestricted access to Anthropic's models for every LAWFUL purpose in defense of the Republic... Cloaked in the sanctimonious rhetoric of "effective altruism," [Anthropic and CEO Dario Amodei] have attempted to strong-arm the United States military into submission — a cowardly act of corporate virtue-signaling that places Silicon Valley ideology above American lives. The Terms of Service of Anthropic's defective altruism will never outweigh the safety, the readiness, or the lives of American troops on the battlefield. Their true objective is unmistakable: to seize veto power over the operational decisions of the United States military. That is unacceptable... In conjunction with the President's directive for the Federal Government to cease all use of Anthropic's technology, I am directing the Department of War to designate Anthropic a Supply-Chain Risk to National Security. Effective immediately, no contractor, supplier, or partner that does business with the United States military may conduct any commercial activity with Anthropic... America's warfighters will never be held hostage by the ideological whims of Big Tech. This decision is final. Meanwhile, Anthrophic said on Friday that "no amount of intimidation or punishment from the Department of War will change our position." (And "We will challenge any supply chain risk designation in court.")Designating Anthropic as a supply chain risk would be an unprecedented action — one historically reserved for US adversaries, never before publicly applied to an American company. We are deeply saddened by these developments. As the first frontier AI company to deploy models in the US government's classified networks, Anthropic has supported American warfighters since June 2024 and has every intention of continuing to do so. We believe this designation would both be legally unsound and set a dangerous precedent for any American company that negotiates with the government... Secretary Hegseth has implied this designation would restrict anyone who does business with the military from doing business with Anthropic. The Secretary does not have the statutory authority to back up this statement. Anthropic also defended the two exceptions they'd requested that had stalled contract negotiations. "[W]e do not believe that today's frontier AI models are reliable enough to be used in fully autonomous weapons. Allowing current models to be used in this way would endanger America's warfighters and civilians. Second, we believe that mass domestic surveillance of Americans constitutes a violation of fundamental rights." Also Friday, OpenAI announced that "we reached an agreement with the Department of War to deploy our models in their classified network."OpenAI CEO Sam Altman emphasized that the agreement retains and confirms OpenAI's own prohibitions against using their products for domestic mass surveillance — and requires "human responsibility" for the use of force including for autonomous weapon systems. "The Department of War agrees with these principles, reflects them in law and policy, and we put them into our agreement. We also will build technical safeguards to ensure our models behave as they should, which the Department of War also wanted. "We are asking the Department of War to offer these same terms to all AI companies, which in our opinion we think everyone should be willing to accept. We have expressed our strong desire to see things de-escalate away from legal and governmental actions and towards reasonable agreements. We remain committed to serve all of humanity as best we can. The world is a complicated, messy, and sometimes dangerous place.
Read more of this story at Slashdot.
- Antarctica's Massive Neutrino Observatory Gets an Upgrade
There's already 5,000 sensors embedded in Antarctica's ice to look for evidence of neutrinos, reports the Washington Post. But in November scientists drilled six new holes at least a mile and a half deep and installed cables with hundreds more light detectors — an upgrade to the massive 15-year-old IceCube Neutrino Observatory to detect the charged particles produced by lower-energy neutrinos interacting with matter:When they do, the neutrinos produce charged particles that travel through the ice at nearly the speed of light, creating a blue glow called Cherenkov radiation... "Within the first couple years, we should be making much better measurements," [said Erin O'Sullivan, an associate professor of physics at Uppsala University in Sweden and a spokesperson for the project.] "There's hope to expand the detector, by an order of magnitude in volume, so the important thing there is we're not just seeing a few neutrino point sources, but we're starting to be a true telescope. ... That's really the dream." The scientists spent seven years planning the upgrade, according to the article. "To drill holes a mile and a half deep takes about 30 hours, and 18 more hours to return to the surface," the article points out. "Then, the race begins because almost immediately, the hole starts to shrink as the water refreezes." ("If it takes too much time, the principal investigator says, "the instruments don't fit in anymore!")
Read more of this story at Slashdot.
- 'World's Largest Battery' Soon At Google Data Center: 100-Hour Iron-Air Storage
Interesting Engineering reports:US tech giant Google announced on Tuesday that it will build a new data center in Pine Island, Minnesota. The new facility will be powered by 1.9 gigawatts (GW) of clean energy from wind and solar, coupled with a 300-megawatt battery, claimed to be the 'world's largest', with a 30-gigawatt-hour (GWh) capacity and 100-hour duration... The planned battery would dwarf a 19 GW lithium-ion project in the UAE... Form Energy's batteries work very differently from most large batteries today. Instead of using lithium like the batteries in electric cars, they store electricity by making iron rust and then reversing the rusting process to release the energy when needed... Form's iron-air batteries are heavier and less efficient than their counterparts; they can only return about 50% to 70% of the energy used to charge them, while lithium-ion batteries return more than 90%. However, Form's batteries have one distinct advantage. They are cheaper than lithium-ion batteries, costing about $20 per kilowatt-hour of storage, which is almost three times as cheap... It will store 150 MWh of electricity and can supply to the grid for up to 100 hours, delivering about 1.5 MW at peak output. Thanks to long-time Slashdot reader schwit1 for sharing the article.
Read more of this story at Slashdot.
- After US-Israel Attacks, 90 Million Iranians Lose Internet Connectivity
CNN reports that images from Iran's capital "have shown cars jammed along Tehran's street, with heavy traffic on major roads after today's wave of attacks by the US and Israel." And though Iran has a population of 93 million, the attacks suddenly plunged Iran into "a near-total internet blackout with national connectivity at 4% of ordinary levels," according to internet monitoring experts at NetBlocks. CNN reports:Since Iran's brutal crackdown earlier this year, the regime has made progress to allow only a subset of people with security clearance to access the international web, experts said. After previous internet shutdowns, some platforms never returned. The Iranian government blocked Instagram after the internet shutdown and protests in 2022, and the popular messaging app Telegram following protests in 2018. The International Atomic Energy Agency announced an hour ago that they're "closely monitoring developments" — keeping in contact with countries in the region and so far seeing "no evidence of any radiological impact." They're also urging "restraint to avoid any nuclear safety risks to people in the region." UPDATE (1 PM PST):Qatar, Bahrain and Kuwait "are shifting to remote learning starting Sunday until further notice following Iranâ(TM)s retaliatory strikes on Saturday," reports CNN.
Read more of this story at Slashdot.
- America's Teenagers Say AI Cheating Has Become a Regular Feature of Student Life
Tuesday Pew Research announced their newest findings: that 54% of America's teens use AI help with schoolwork:One-in-five teens living in households making less than $30,000 a year say they do all or most of their schoolwork with AI chatbots' help. A similar share of those in households making $30,000 to just under $75,000 annually say this. Fewer teens living in higher-earning households (7%) say the same." "The survey did not ask students whether they had used chatbots to write essays or generate other assignments..." notes the New York Times. "But nearly 60% of teenagers told Pew that students at their school used chatbots to cheat 'very often' or 'somewhat often.'" Agreeing with that are the Pew Researchers themselves. "Our survey shows that many teens think cheating with AI has become a regular feature of student life." One worried teenager still told the researchers that AI "makes people lazy and takes away jobs." But another teenager told the researchers that "Everyone's going to have to know how to use AI or they'll be left behind." Thanks to long-time Slashdot reader theodp for sharing the article.
Read more of this story at Slashdot.
- Startup Plans April Launch for a Satellite to Reflect Sunlight to Earth at Night
A start-up called Reflect Orbital "proposes to use large, mirrored satellites to redirect sunlight to Earth at night," reports the Washington Post, "with plans to bathe solar farms, industrial sites and even entire cities in light that could, if desired, reach the intensity of daylight...." Slashdot noted their idea in 2022 — but Reflect Orbital now expects to launch its first satellite in April, according to the article. "But its grand vision is largely 'aspirational,' as its young founder, Ben Nowack, told me..."Reflect Orbital's Nowack describes a scene right out of sci-fi: An extremely bright star appears on the northern horizon and makes its way across the sky, illuminating a 5-kilometer circle on Earth, then setting on the southern horizon about five minutes later, just as another such "star" appears in the north. To make the night even brighter, a customer could make 10 "stars" appear at once in the north by ordering them on an app. Two such artificial stars are in development in Reflect Orbital's factory. Nowack showed them to me on a Zoom call. The first to launch is 50 feet across, but he plans later to build them three times that size. If all goes according to plan, he'll have 50,000 of them circling the Earth in 2035 at an altitude of around 400 miles. Nowack plans to start selling the service "in mostly developing nations or places that don't have streetlights yet." Eventually, he thinks, he can illuminate major cities, turn solar fields and farms into round-the-clock operations for any business or municipality that pays for it. He likened his technology to the invention of crop irrigation thousands of years ago. "I see this as much the same thing," he said, arguing that people would no longer have to "wait for the sun to shine." The article adds that Elon Musk's SpaceX "wants to launch as many as a million satellites to serve as orbiting data centers — 70 times the number of satellites now in orbit." (America's satellite-regulation Federal Communications Commissiongrants a "categorical exclusion" from environmental review to satellites on the grounds that their operations "normally do not have significant effects on the human environment.") The public comment periods for the two proposals close on March 6 and March 9.
Read more of this story at Slashdot.
- Google Quantum-Proofs HTTPS
An anonymous reader quotes a report from Ars Technica: Google on Friday unveiled its plan for its Chrome browser to secure HTTPS certificates against quantum computer attacks without breaking the Internet. The objective is a tall order. The quantum-resistant cryptographic data needed to transparently publish TLS certificates is roughly 40 times bigger than the classical cryptographic material used today. Today's X.509 certificates are about 64 bytes in size, and comprise six elliptic curve signatures and two EC public keys. This material can be cracked through the quantum-enabled Shor's algorithm. Certificates containing the equivalent quantum-resistant cryptographic material are roughly 2.5 kilobytes. All this data must be transmitted when a browser connects to a site. To bypass the bottleneck, companies are turning to Merkle Trees, a data structure that uses cryptographic hashes and other math to verify the contents of large amounts of information using a small fraction of material used in more traditional verification processes in public key infrastructure. Merkle Tree Certificates, "replace the heavy, serialized chain of signatures found in traditional PKI with compact Merkle Tree proofs," members of Google's Chrome Secure Web and Networking Team wrote Friday. "In this model, a Certification Authority (CA) signs a single 'Tree Head' representing potentially millions of certificates, and the 'certificate' sent to the browser is merely a lightweight proof of inclusion in that tree." [...] Google is [also] adding cryptographic material from quantum-resistant algorithms such as ML-DSA (PDF). This addition would allow forgeries only if an attacker were to break both classical and post-quantum encryption. The new regime is part of what Google is calling the quantum-resistant root store, which will complement the Chrome Root Store the company formed in 2022. The [Merkle Tree Certificates] MTCs use Merkle Trees to provide quantum-resistant assurances that a certificate has been published without having to add most of the lengthy keys and hashes. Using other techniques to reduce the data sizes, the MTCs will be roughly the same 64-byte length they are now [...]. The new system has already been implemented in Chrome.
Read more of this story at Slashdot.
- Rubin Observatory Has Started Paging Astronomers 800,000 Times a Night
On February 24th, the Vera C. Rubin Observatory activated its automated alert system, sending out roughly 800,000 real-time notifications flagging asteroids, supernovae, flaring black holes and "other transient celestial events," reports Scientific American. And this is only the beginning -- that number is projected to climb into the millions as it continues scanning the ever-changing sky. From the report: The astronomical observatory equipped with world's largest camera hit a key milestone on February 24, when a complex data-processing system pushed hundreds of thousands of alerts out to scientists eager to pore over its most exciting sightings. The Vera C. Rubin Observatory began operations last year, capturing stunning, panoramic time-lapse views of the cosmos with ease. Rubin's first images, based on just 10 hours of observations, let space fans zoom seemingly forever into an overwhelmingly starry sky. But watchful astronomers were always awaiting the next step: the system that would automatically alert them to the most promising activity in the overhead sky amid the 1,000 or so enormous images that Rubin's telescope captures every night. "We can detect everything that changes, moves and appears," said Yusra AlSayyad, an astronomer at Princeton University and Rubin's deputy associate director for data management, to Scientific American last summer. "It's way too much for one person to manually sift through and filter and monitor themselves." So even as they were designing and building the Rubin Observatory itself, scientists were also designing an alert system to help astronomers navigate the flood of data. As soon as the telescope began observations, the team started constructing a static reference image of the entire sky in impeccable detail. Now the data processing systems that support the observatory are starting to automatically compare every new Rubin image to the corresponding section of that background template. The systems identify all of the differences, each of which is individually flagged. The algorithms can also distinguish between a potential supernova and a possible newfound asteroid, for example. Alerting the scientific community is the final, crucial step. Astronomers -- as well as members of the public -- can sign up for notifications based on the type of sighting they're interested in and the brightness of the observation in question. And now that the alerts system has gone live, users receive a tiny, fuzzy image with some astronomical metadata of each observation that fits their criteria -- all just a couple of minutes after Rubin captures the original image.
Read more of this story at Slashdot.
- Southern California Air Board Rejects Pollution Rules After AI-Generated Flood of Comments
Southern California's air quality board rejected proposed rules to phase out gas-powered appliances after receiving more than 20,000 opposition comments generated through CiviClick, "the first and best AI-powered grassroots advocacy platform." Phys.org reports: A Southern California-based public affairs consultant, Matt Klink, has taken credit for using CiviClick to wage the opposition campaign, including in a sponsored article on the website Campaigns and Elections. The campaign "left the staff of the Southern California Air Quality Management District (SCAQMD) reeling," the article says. It is not clear how AI was deployed in the campaign, and officials at CiviClick did not respond to repeated requests for comment. But their website boasts several tools, including "state of the art technology and artificial intelligence message assistance" that can be used to create custom advocacy letters, as opposed to repetitive form letters or petitions often used in similar campaigns. When staffers at the air district reached out to a small sample of people to verify their comments, at least three said they had not written to the agency and were not aware of any such messages, records show. But the email onslaught almost certainly influenced the board's June decision, according to agency insiders, who noted that the number of public comments typically submitted on agenda items can be counted on one hand. The proposed rules were nearly two years in the making and would have placed a fee on natural gas-powered water heaters and furnaces, favoring electric ones, in an effort to reduce air pollution in the district, which includes Orange County and large swaths of Los Angeles, Riverside and San Bernardino counties. Gas appliances emit nitrogen oxides, or NOx -- key pollutants for forming smog. The implications are troubling, experts said, and go beyond the use of natural gas furnaces and heaters in the second-largest metropolitan area in the country.
Read more of this story at Slashdot.
- OpenAI Fires an Employee For Prediction Market Insider Trading
An anonymous reader quotes a report from Wired: OpenAI has fired an employee following an investigation into their activity on prediction market platforms including Polymarket, WIRED has learned. OpenAI CEO of Applications, Fidji Simo, disclosed the termination in an internal message to employees earlier this year. The employee, she said, "used confidential OpenAI information in connection with external prediction markets (e.g. Polymarket)." "Our policies prohibit employees from using confidential OpenAI information for personal gain, including in prediction markets," says spokesperson Kayla Wood. OpenAI has not revealed the name of the employee or the specifics of their trades. Evidence suggests that this was not an isolated event. Polymarket runs on the Polygon blockchain network, so its trading ledger is pseudonymous but traceable. According to an analysis by the financial data platform Unusual Whales, there have been clusters of activities, which the service flagged as suspicious, around OpenAI-themed events since March 2023. Unusual Whales flagged 77 positions in 60 wallet addresses as suspected insider trades, looking at the age of the account, trading history, and significance of investment, among other factors. Suspicious trades hinged on the release dates of products like Sora, GPT-5, and the ChatGPT Browser, as well as CEO Sam Altman's employment status. In November 2023, two days after Altman was dramatically ousted from the company, a new wallet placed a significant bet that he would return, netting over $16,000 in profits. The account never placed another bet. The behavior fits into patterns typical of insider trades. "The tell is the clustering. In the 40 hours before OpenAI launched its browser, 13 brand-new wallets with zero trading history appeared on the site for the first time to collectively bet $309,486 on the right outcome," says Unusual Whales CEO Matt Saincome. "When you see that many fresh wallets making the same bet at the same time, it raises a real question about whether the secret is getting out." [...] Though this is the first confirmed case of a large technology company firing an employee over trades in prediction markets, it's almost certainly not the last. Opportunities for tech sector employees to make trades on markets abound. "The data tells me this is happening all over the place," Saincome says.
Read more of this story at Slashdot.
- SaaS-pocalypse chatter is doomster pr0n. It would be nice if enterprise IT were boring again
Lost among the investor froth, someone has to do all the boring stuff. And they'll probably be around for the next spin of the hype cycle
Opinion Say goodbye to the SaaS-pocalypse theory, which posits that advances in AI will bring the software-as-a-service market to its knees. Say hello to "a feedback loop with no natural brake." Or doomster porn, as others would have it.…
- Double whammy: Steaelite RAT bundles data theft, ransomware in one evil tool
Credential and cryptocurrency theft, live surveillance, ransomware - an attacker's Swiss Army knife
A new remote access trojan (RAT) being sold on cybercrime networks enables double extortion attacks on Windows machines by bundling ransomware and data theft, along with credential and cryptocurrency stealers, live surveillance, and a whole host of other illicit capabilities, all controllable from a centralized dashboard.…
- Trump orders purge of 'woke' Anthropic from government
Without a single 'You're Fired' joke
updated President Trump has escalated Anthropic's dispute with the Defense Department with a social media post ordering the entire federal government purge the company's software from its systems. …
- Harvard boffins finally crack the mystery of squeaky sneakers
Are they shoe-ins for an award? Hard to say
It is a sound evocative of high school: the characteristic squeak of sneakers on a basketball court. UK readers may, however, be familiar with the same sound from their trainers while playing badminton.…
- French DIY etailer ManoMano admits customer data stolen
Crooks claim they helped themselves to over 37M accounts during January hit on subcontractor
French online marketplace ManoMano is warning customers their personal data was siphoned off after a cyberattack hit one of its customer support subcontractors – and criminals are already claiming the haul is far larger than the company's carefully worded notice suggests.…
- Japan's Rapidus lands $1.7B to chase 2nm chip production by 2027
Government and 32 private-sector backers fund push to take on TSMC and Samsung at leading-edge nodes
Japan's fledgling foundry biz Rapidus has secured funding of $1.7 billion to help it progress to mass production of 2nm semiconductors by 2027, making it a potential rival for Taiwan's TSMC.…
- 50 GW of datacenter demand queues up for UK grid access
To put that into perspective, 45 GW was peak electricity use for Britain so far this year
About 140 datacenters are in the queue to be connected to Britain's power grid, and their combined energy requirements are estimated to be more than the current peak electricity use for the entire country.…
- Sopra Steria sues UK government over £958M Capita outsourcing award
French firm claims DWP failed to identify rival's bid was 'abnormally low' and alleges govt breached procurement rules
Sopra Steria is suing the UK government, alleging it accepted a bid from rival Capita for an outsourcing contract worth up to £958.7 million that it failed to recognize as too low to comply with procurement rules.…
- Mondelēz picks Celonis as process backbone for SAP overhaul
Snack giant opts for vendor-neutral process mining as it shifts from ECC to S/4HANA
In the middle of a mammoth migration off SAP's legacy ERP systems, global snack giant Mondelēz has found an alternative to the German vendor's tech as the main platform for understanding its complex, fragmented business processes.…
- UK copper fired after faking keyboard taps using photo frame
Typing 8x more than your peers? You better have the work to show for it
Avon and Somerset Police this week confirmed a former officer was dismissed after she was found weighing her laptop keyboard down with photo frames to simulate activity.…
- Engineer held hostage by client who asked for the wrong fix
I was no longer field support. I was collateral
On Call Friday has arrived, bringing a promise of fleeting freedom – and a new instalment of On Call, The Register's reader-contributed column that retells your tales of tech support incidents that became memorable for all the wrong reasons.…
- Anthropic to Pentagon: Autonomous weapons could hurt US troops and civilians
AI upstart won’t remove Claude’s guardrails to stay onside with Dept. of War
Anthropic has fired back at the US Department of War, arguing that it can’t agree to Uncle Sam’s contract demand to remove guardrails on its AI in part because the tech can’t be trusted not to harm American civilians and warfighters.…
- Burger King turns to AI to flame broil employees who aren't friendly enough
Because nothing says hospitality like a bot counting your pleases
The bot’s nagging will continue until morale improves. Burger King is rolling out a new employee-facing AI that, among other things, will listen to employees’ customer interactions to ensure they’re being friendly enough - as if working in fast food weren’t hard enough already.…
- AI models suck slightly less at math than they did last year
Latest ORCA test results out
exclusive Current-day LLMs are prediction engines and, as such, they can only find the most likely solution to problems, which is not necessarily the correct one. Though popular models have mostly become better at math, even top performer Gemini 3 Flash would receive a C if assessed with a letter grade.…
- Anthropic launches new marketing blog, pretends it's being 'written' by 'retired' LLM
Pretending the software is sentient makes it sound more powerful
As with any piece of obsolete software, you might expect an outdated AI model to just be switched off. Anthropic, however, argues that simply pulling the plug has downsides. After “retirement” interviews, Claude Opus 3 said it wanted to keep sharing its “musings,” so Anthropic suggested a blog.…
- Rapid AI-driven development makes security unattainable, warns Veracode
Report claims more vulnerabilities created than fixed as remediation gap widens
Veracode has posted its annual State of Software Security report, based on data from 1.6 million applications tested on its cloud platform, finding that more vulnerabilities are being created than are being fixed, and that high-velocity development with AI is making comprehensive security unattainable.…
- Top cloud providers to outspend Ireland's GDP on AI in 2026
TrendForce says eight hyperscalers are set to pour $710B into servers and infrastructure
The big cloud operators are ramping up investment in AI servers and infrastructure to meet demand for AI development and deployment, exacerbating the memory shortage caused by their insatiable growth.…
- Debian 14 will drop Gtk2 – unless Ardour rides to the rescue
Many dependent apps, including FreePascal and Lazarus, face the chop
Version 2 of the widely used Gtk toolkit will be dropped from the next Debian release. The problem is that many things still need it, including FreePascal and its Lazarus IDE.…
- Moon's mighty magnetic field was a 5,000-year titanium blip
So say Oxford boffins who found 'bias' related to Apollo rock samples created false impression
Scientists at the University of Oxford say they may have cracked the puzzle of the Moon's magnetic field and settled a debate that has raged since the Apollo missions returned with rock samples.…
- Britain's creaking courts to use Copilot for transcriptions
Ministry of Justice wowed by Ontario's paperless system, announces £12M for AI unit
The British government will expand the use of AI in courts in England and Wales as part of plans to make them work faster, justice minister David Lammy has told a Microsoft AI event.…
- Microsoft 'cooperating' with Japanese antitrust probe
It looks like the same cloudy software licenses that offend Europe may be in play – along with a cute little monster
Microsoft is "fully cooperating" with a probe by Japan's Fair Trade Commission, which wants to know if the software giant has violated the nation's anti-monopoly laws.…
- Claude collaboration tools left the door wide open to remote code execution
Anthropic fixed the flaws – but the AI-enabled attack surfaces remain
Security vulnerabilities in Claude Code could have allowed attackers to remotely execute code on users' machines and steal API keys by injecting malicious configurations into repositories, and then waiting for a developer to clone and open an untrustworthy project.…
- LLMs killed the privacy star, we can't rewind, we've gone too far
You'll find these days that there's no hiding place
Add privacy to the list of potential casualties caused by the proliferation of AI, because researchers have found that large language models (LLMs) can be used to deanonymize internet users – even those who use pseudonyms – more efficiently than human sleuths.…
- AIs are happy to launch nukes in simulated combat scenarios
Claude, ChatGPT, and Gemini all had different personalities and reasoning tactics, but the endgame was the same
Today's hottest bots have yet to learn that, when it comes to global thermonuclear war, the only way to win is not to play. So please don't hand them the codes. …
- Security: Why Linux Is Better Than Windows Or Mac OS
Linux is a free and open source operating system that was released in 1991 developed and released by Linus Torvalds. Since its release it has reached a user base that is greatly widespread worldwide. Linux users swear by the reliability and freedom that this operating system offers, especially when compared to its counterparts, windows and [0]
- Essential Software That Are Not Available On Linux OS
An operating system is essentially the most important component in a computer. It manages the different hardware and software components of a computer in the most effective way. There are different types of operating system and everything comes with their own set of programs and software. You cannot expect a Linux program to have all [0]
- Things You Never Knew About Your Operating System
The advent of computers has brought about a revolution in our daily life. From computers that were so huge to fit in a room, we have come a very long way to desktops and even palmtops. These machines have become our virtual lockers, and a life without these network machines have become unimaginable. Sending mails, [0]
- How To Fully Optimize Your Operating System
Computers and systems are tricky and complicated. If you lack a thorough knowledge or even basic knowledge of computers, you will often find yourself in a bind. You must understand that something as complicated as a computer requires constant care and constant cleaning up of junk files. Unless you put in the time to configure [0]
- The Top Problems With Major Operating Systems
There is no such system which does not give you any problems. Even if the system and the operating system of your system is easy to understand, there will be some times when certain problems will arise. Most of these problems are easy to handle and easy to get rid of. But you must be [0]
- 8 Benefits Of Linux OS
Linux is a small and a fast-growing operating system. However, we can’t term it as software yet. As discussed in the article about what can a Linux OS do Linux is a kernel. Now, kernels are used for software and programs. These kernels are used by the computer and can be used with various third-party software [0]
- Things Linux OS Can Do That Other OS Can�t
What Is Linux OS? Linux, similar to U-bix is an operating system which can be used for various computers, hand held devices, embedded devices, etc. The reason why Linux operated system is preferred by many, is because it is easy to use and re-use. Linux based operating system is technically not an Operating System. Operating [0]
- Packagekit Interview
Packagekit aims to make the management of applications in the Linux and GNU systems. The main objective to remove the pains it takes to create a system. Along with this in an interview, Richard Hughes, the developer of Packagekit said that he aims to make the Linux systems just as powerful as the Windows or [0]
- What’s New in Ubuntu?
What Is Ubuntu? Ubuntu is open source software. It is useful for Linux based computers. The software is marketed by the Canonical Ltd., Ubuntu community. Ubuntu was first released in late October in 2004. The Ubuntu program uses Java, Python, C, C++ and C# programming languages. What Is New? The version 17.04 is now available here [0]
- Ext3 Reiserfs Xfs In Windows With Regards To Colinux
The problem with Windows is that there are various limitations to the computer and there is only so much you can do with it. You can access the Ext3 Reiserfs Xfs by using the coLinux tool. Download the tool from the official site or from the sourceforge site. Edit the connection to “TAP Win32 Adapter [0]
- Run this random script in the terminal to block Apple�s macOS Tahoe update notification spam
Are you not at all interested in upgrading to macOS Tahoe, and getting annoyed at the relentless notification spam from Apple trying to trick you into upgrading? The secret? Using device management profiles, which let you enforce policies on Macs in your organization, even if that organization! is one Mac on your desk. One of the available policies is the ability to block activities related to major macOS updates for up to 90 days at a time (the max the policy allows), which seems like exactly what I needed. Not being anywhere near an expert on device profiles, I went looking to see what I could find, and stumbled on the Stop Tahoe Update project. The eventual goals of this project are quite impressive, but what they�ve done so far is exactly what I needed: A configuration profile that blocks Tahoe update activities for 90 days. ↫ Rob Griffiths All you need to do is clone a random GitHub repository, set all its scripts to executable, generate two random UUIDs, insert those UUIDs into one of the scripts in the GitHub project folder you just cloned, run said script, open System Settings and go to Privacy 8 Security > Profiles, install the profile the script created, click install in two different dialogs, and now you have blocked Apple�s update notification spam! Well, for 90 days that is. I honestly don�t understand how normal people are supposed to use macOS. The amount of weird terminal commands you need just to change basic settings is bewildering. macOS definitely isn�t ready for the desktop if they expect users to use the terminal for so many basic tasks. I�m glad I�m using Linux, where I don�t have to deal with the terminal at all.
- The Windows 95 user interface: a case study in usability engineering
If this isn�t catnip to the average OSNews reader, I don�t know what is. Windows 95 is a comprehensive upgrade to the Windows 3.1 and Windows for Workgroups 3.11 products. Many changes have been made in almost every area of Windows, with the user interface being no exception. This paper discusses the design team, its goals and process then explains how usability engineering principles such as iterative design and problem tracking were applied to the project, using specific design problems and their solutions as examples. ↫ Kent Sullivan This case study was written in 1996 by Kent Sullivan, who joined the Windows 95 user interface team in 1992. I consider the second half of the �90s as the heyday of user interface design, with Windows 9x, Apple�s Platinum in Mac OS 8 and 9, and BeOS� Tracker/Deskbar as the absolute pinnacles of user interface design. Coincidentally, this also seems to mark the end of a more scientific, study-based approach to designing graphical user interfaces. Reading through this particular case study for Windows 95 feels almost quaint. Where are the dozens of managers pushing for notification spam, upsells, and dark patterns to enable expensive data-hoarding services? Why are none of the people mentioned in the study talking about sneaky ways to secretly and silently convert your local account to an online account? Where are all the AI! buttons? Why is there n chapter on how to trick people into enabling telemetry data? The user interfaces of the late �90s were the last ones designed by people who actually cared, by people who approached the whole process with the end user in mind, rooted in scientific data collected by simply looking at people use their ideas. They were optimised for the user as best they could, instead of being optimised for the company�s bottom line. It�s been downhill ever since.
- Bootc and OSTree: modernizing Linux system deployment
Bootc and OSTree represent a new way of thinking about Linux system deployment and management. Building on container and versioning concepts, they offer robust and modern solutions to meet the current needs of administrators and developers. ↫ Quentin Joly Slowly, very slowly, I�ve been starting to warm up to the relatively new crop of immutable Linux distributions. As a heavy Fedora user, opting for Fedora�s atomic distributions, which use bootc and OSTree, seems like the logical path to go down if I ever made the switch, and this article provides some approachable insights and examples into how, exactly, it all works, and what benefits it might give you. It definitely goes beyond what I as a mere desktop user might encounter, but if you�re managing a bunch of servers or VMs in a more professional setting, you might be interested, too. I�m still not convinced I need to switch to an immutable distribution, but I�d be lying if I said some of the benefits didn�t appeal to me.
- Windows Server Insider builds can now boot from ReFS
The file system of the Windows operating system is NTFS, whether you�re running it on a desktop/laptop or server. It�s the only file system Windows can run on and boot from, at least officially, so you�re not even given a choice of file systems for the boot volume like you are on, say, desktop Linux. That�s about to change, though: Microsoft has finally announced that Windows Server will be able to boot from ReFS. We’re excited to announce that Resilient File System (ReFS) boot support is now available for Windows Server Insiders in Insider Preview builds. For the first time, you can install and boot Windows Server on an ReFS-formatted boot volume directly through the setup UI. With ReFS boot, you can finally bring modern resilience, scalability, and performance to your server’s most critical volume — the OS boot volume. ↫ chcurlet-msft at Microsoft�s Tech Community Without diving too much into the weeds, ReFS can roughly be seen as Microsoft�s answer to modern file systems like ZFS and Btrfs, with comparable design goals and feature sets. It�s been around since 2012, but only for Windows Server, and with every Windows Server release since, the company has improved performance, added new features, and fixed bugs. Now, in 2026, it seems Microsoft thinks ReFS is ready to be used as a bootable file system for Windows Server. If you want to try this for yourself, you need to be a Windows Insider and make sure you have Windows Server build 29531.1000.260206-1841 or newer. During installation, the Windows installer will ask you to choose between NTFS and ReFS; the rest of the installation process will be pretty much the same as before. Now all we need is to wait for ReFS to become an option on client versions of Windows too, which would mark � arguably � only the second time in history Windows transitioned from one default filesystem to the another.
- US lawmakers push for age verification at the operating system level
Encryption backdoors, social media bans for children, creepy age verification for applications � what will they think of next? The latest brilliant idea by US lawmakers sure is a hell of a doozy: legally mandated age verification in every single operating system. Colorado�s SB26-051, introduced last month, would require operating systems to register the owner’s age, which third-party apps can then leverage to determine if the user is an adult. The bill calls for the device owner to register their birthdate or age, but for the purposes of creating an “age bracket,” which can then be shared to an app developer through an API to learn their age range, according to BiometricUpdate.com. Ball also said the legislation was based on California�s bill AB 1043, which was passed last year. It too requires OS makers to create a way for the device owner to register their age bracket, which can then be shared to app developers over an API. The California law starts to take effect January 1, 2027. ↫ Michael Kan at PCMag Age verification to protect children sounds innocent enough, but if you have more than two brain cells to rub together it�s crystal clear that what we�re really looking at is the true end of privacy and online anonymity. If age verification is only used by certain applications, it�s easy enough to avoid them, but if it becomes part of Windows, desktop Linux, Android, it�s truly game over. Nobody will be anonymous online ever again, and nobody will have any sense of privacy left when opening up their computer. Worse yet, if you do end up using an operating system that doesn�t adhere to this law, or you hack out or circumvent the age verification nonsense, you�ll automatically become an easy target for law enforcement. Clearly, if you circumvent age verification, you must be up to no good, right? Of course, as we�ve seen in countries with heavily deteriorating democracies and freedoms, like the US or Hungary, even merely opposing the government will be classified as up to no good!, and let�s not even get started about the various minorities these countries are actively trying to eradicate. If something like this is enshrined in law in your country, you�re fucked.
- Jails for NetBSD
FreeBSD has its jails technology, and it seems NetBSD might be getting something similar soon. Jails for NetBSD aims to bring lightweight, kernel-enforced isolation to NetBSD. The system is intended to remain fully NetBSD-native. Isolation and policy enforcement are integrated into the kernel’s security framework rather than implemented in a separate runtime layer. It does not aim to become a container platform. It does not aim to provide virtualization. ↫ Matthias Petermann It has all the usual features you have come to expect from jails, like resource quota, security profiles, logging, and so on. Processes inside jails have no clue they�re in a jail, and using supervisor mode, jails are descendent from a single process and remain visible in the host process table. Of course, there�s many more features listed in the linked article. It�s in development and not a default part of NetBSD at this time. The project, led by Matthias Petermann, is developed out of tree, with an unofficial NetBSD 10.1 ISO with the jails feature included available as well.
- Genode OS Framework 26.02 released
The Genode OS Framework 26.02 has been released, and its tentpole improvement is the completion of moving configuration from XML to the new human-inclined data syntax, as we talked about a few months ago. The project has been working on this for years, and now that the tooling, documentation, and so on have been added this release cycle, they�re ready to make the switch. On top of that, they also made the move from GitHub to Codeberg, but that�s certainly not all. The technical topics of the release revolve around the progressive update of our Linux device-driver environment (DDE-Linux) to kernel version 6.18, usability improvements of the Goa SDK, input-event processing, and code rigidity. Feature-wise, version 26.02 further cultivates the genode-world repository as designated place for ported 3rd-party software, adding the port of Git as stepping stone on our way towards self-hosted development on Sculpt OS. ↫ Genode OS Framework 26.02 release notes Be sure to read the entire release notes for much more detailed information, as well as a ton of things not mentioned yet.
- Linuxulator on FreeBSD feels like magic!
You may not be aware that FreeBSD has a pretty robust set of tools to run Linux binaries, unmodified. The result? A fast, smooth, fully-featured remote development experience on FreeBSD running Linux binaries transparently via the Linuxulator. It genuinely feels like magic. More importantly, it’s a testament to how stable the Linux ABI itself is and how well FreeBSD’s Linuxulator implements it. This setup completely changed how I work with FreeBSD, and it finally removed one of the biggest friction points in my workflow. ↫ Hayzam Sherif FreeBSD�s Linux compatibility does kind of feel like magic. There�s people running Steam and Steam games on FreeBSD using these very same technologies, and while it�s far from perfect, it works for quite a few games without any issues. It�d be great is Steam ever made it to FreeBSD natively, but sine that�s probably not going to happen any time soon, it�s great to see that those of us using FreeBSD can still play at least some Steam games just fine.
- US orders diplomats in the EU to fight data sovereignty initiatives
It seems the widespread efforts in Europe to drastically reduce its dependency on US technology companies is starting to worry some people. President Donald Trump�s administration has ordered U.S. diplomats to lobby against attempts to regulate U.S. tech companies� handling of foreigners� data, saying in an internal diplomatic cable seen by Reuters that such efforts could interfere with artificial intelligence-related services. Experts say the move signals the Trump administration is reverting to a more confrontational approach as some foreign countries seek limits around how Silicon Valley firms process and store their citizens� personal information � initiatives often described as data sovereignty! or data localization.! ↫ Raphael Satter and Alexandra Alper at Reuters It�s going to take time, but untangling the EU from the US � especially technologically and militarily � is worth the effort. I�ll gladly pay more taxes to make this happen.
- Never buy a .online domain!
I’ve been a .com purist for over two decades of building. Once, I broke that rule and bought a .online TLD for a small project. This is the story of how it went up in flames. ↫ Tony S. An absolute horror story about Google�s dominance over the web, in places nobody really talks about. Scary.
- You can add a menu bar to KDE title bars with this tool, for some reason
Only a few days ago we talked about the concept of client-side decorations, and how more and more desktop environments and operating systems � specifically GNOME and macOS � are putting more and more buttons, menus, and other widgets inside title bars. How about we take this concept a step further? This hides the AppMenu icon button and draws the menu in the title bar. It also includes a search button to find actions. It works on both X11 and Wayland. On Wayland, GTK apps don�t export the menu in a KDE-friendly way. You need to start them with GDK_BACKEND=x11 environment variable or you can try the experimental appmenu-gtk-module-wayland (GTK3 only). ↫ material-decoration�s GitHub page So this little tool allows you to add an application�s menu bar (file, edit, view, etc.) to the titlebar of a KDE application. The way it works is that it adds an optional widget to KDE�s System Settings > Colors 8 Themes > Window Decorations > Configure Titlebar Buttons0, alongside regular staples like close, minimise, maximise, etc. You can then freely add said menu bar! to the title bar of your applications. There�s some configuration options, too. For instance, you can disable the search button, or turn the entire menu bar into a hamburger menu instead. It looks weird, and I�m definitely not the target audience for this, but I do find it intriguing. I�ve never seen anything like this before, and I doubt many people will like it since it takes up so much space if you don�t opt to use the hamburger menu option. That being said, I�m fairly sure KDE and Kwin allow you to edit the titlebars of specific applications and specific windows, which does open some interesting possibilities for, say, applications or windows which you always have maximised or whatever. There�s an AUR package for Arch users, but everyone else will have to build it themselves.
- New Windows update adds Sysmon to Windows
Microsoft released an optional cumulative update for Windows 11, and for once, it actually includes something many of you might actually like: it adds Sysmon from Sysinternals to Windows natively, so you no longer have to install it manually. Here�s a refresher on what, exactly, Sysmon does. System Monitor (Sysmon) is a Windows system service and device driver that, once installed on a system, remains resident across system reboots to monitor and log system activity to the Windows event log. It provides detailed information about process creations, network connections, and changes to file creation time. By collecting the events it generates using Windows Event Collection or SIEM agents and subsequently analyzing them, you can identify malicious or anomalous activity and understand how intruders and malware operate on your network. The service runs as a protected process, thus disallowing a wide range of user mode interactions. ↫ Mark Russinovich and Thomas Garnier After installing the optional cumulative update in question, KB5077241, you can install Sysmon as an optional Windows component. Of course, this is Microsoft we�re talking about, so it�s not quite as straightforward as you�d think. In Windows 11, there�s two places to add optional Windows features, and in the case of Sysmon, you have to go to the old Windows features dialog instead of the new View or edit optional features one. And also, don�t forget to first remove the old Sysmon from Sysinternals in case you have it installed. After installation, run sysmon -i as an administrator to enable the feature.
- If you�ve been holding on to a phone for a while, current phones are really disappointing
This must be a universal experience at this point for people who aren�t swayed by the latest and greatest marketing hype around new phone models: there�s just nothing out there that fits one�s needs. When I walked into a phone shop, I expected to witness with amazement how much technology has advanced in the present day compared to my eight-year-old model, and for the power of marketing to mind control me into buying a new phone that would bring all sorts of benefits to my life. But instead, I felt disappointed that I�d be forced to choose between two suboptimal devices, either of which would be a compromise compared to what I already have. I felt frustrated that my OnePlus 5T, which still meets my needs and is working wonderfully (apart from the volume buttons), is being taken from me by the 3G shutdown. ↫ Cadence It�s remarkable how a market that was once rife with competition and choice, has now been reduced to well I guess I�ll settle for this one then in such a short time frame. There�s barely any competition, the number of device makers in (western or western-adjacent) countries has dropped to two, maybe three, and all of them are making what is essentially the exact same device with only the smallest of differences between them. For most average, normal people, it�s some model by either Samsung or Apple. There�s definitely more choice once you�re willing to leave local stores (and thus, easy and quick repairs) behind, but most normal people who just want a phone aren�t going to do that. You can also spend like twice or thrice the amount of money to get some foldable thing, but again, if you�re just looking for a bog-standard normal-person phone, that�s not a realistic option either. Smaller devices, headphone jacks, SD card slots � so many things have just disappeared from the face of the earth for most people, something that will definitely come as a huge, unpleasant surprise if you�ve been happy with an older phone that just had those things. It�s like driving the same car for a decade and needing a new one, but you can only choose between a Toyota and a Volkswagen that look and feel entirely the same. And also the seats are now candles, door handles are gone, and there�s no trunk.
- The age-verification trap: verifying user’s ages undermines everyone’s data protection
Social media is going the way of alcohol, gambling, and other social sins: Societies are deciding it’s no longer kid stuff. Lawmakers point to compulsive use, exposure to harmful content, and mounting concerns about adolescent mental health. So, many propose to set a minimum age, usually 13 or 16. In cases when regulators demand real enforcement rather than symbolic rules, platforms run into a basic technical problem. The only way to prove that someone is old enough to use a site is to collect personal data about who they are. And the only way to prove that you checked is to keep the data indefinitely. Age-restriction laws push platforms toward intrusive verification systems that often directly conflict with modern data-privacy law. This is the age-verification trap. Strong enforcement of age rules undermines data privacy. ↫ Waydell D. Carvalho The answer to the dangers of social media is not to ban social media use among minors, for a whole variety of reasons. There�s data privacy, as the linked article goes into, but there�s also the fact that for a lot of people, including minors, who live in regressive, backwards environments and/or are victims of abuse, social media is their only support network. Cut them off from social media, and you cut them off from the very people who can save them from further abuse. The problem isn�t social media in and of itself � it�s profit-seeking social media. Companies like Facebook and TikTok spend billions to hyper-optimise and hyper-target vulnerable people, much like how tobacco companies and drug dealers do, to feed and worsen their addiction because keeping people addicted is how they maximise profits. The solution to the dangers of corporate social media is to strictly regulate their behaviour, something we already do with countless dangerous products and services. I�m obviously not qualified to come up with specific measures that would need to be taken, but I think we can all agree that whatever corporate social media have been and are doing is dangerous, unethical, should be stopped.
- GTK-NoCSD: an LD_PRELOAD library to disable CSDs
While Libadwaita applications running in a GNOME desktop environment look great and nicely consistent, they look utterly out of place and jarring when run in Xfce, Pantheon, KDE, and others. The biggest reason for this is GNOME�s insistence on using client-side decorations, which feel at home inside a GNOME environment, but out of place in environments that otherwise do not use them. On top of that, Libadwaita�s/GNOME�s CSDs can interfere with non-GNOME window managers and their functionality, causing a whole host of problems. But what if you could turn CSDs off? GTK-NoCSD is an LD_PRELOAD library to disable CSD in GTK3/4, LibHandy, and LibAdwaita apps. CSD is client side decoration, there is also server side decoration, SSD, both serving as the titlebar of windows. GTK3 adopted CSD, where this thick headerbar is used with application controls embedded.This continued into the platform library, LibHandy, then into GTK4 and the platform library of that, LibAdwaita. This looks good on Gnome and makes these applications alike, but looks off everywhere else and can potentially break window managers and remove window manager provided functionality. This library restores the server side decoration, getting back the window manager titlebar, and moves the controls from the CSD to under it, into the window content. ↫ GTK-NoCSD�s Codeberg page This isn�t the first attempt at such a solution, and certainly won�t be the last, and I�m glad they exist. Do note that if you decide to use this library, any problems or bugs you run into in an application �modified� by it should never be reported to the application�s developer, but to the developer of this library. If you encounter a bug in an application modified by this library, test the application in its unmodified state to ensure it�s actually a bug in the application before reporting it to the application�s developer. Developers who choose to use client-side decorations are not responsible for bugs and issues arising from you removing the CSD. Keep that in mind. That being said, whatever pixels appear on your screen is entirely up to you as a user, and you have the right to theme, alter, butcher, or mangle whatever application is running on your computer. If you dislike the way CSDs look and feel on your computer, you can opt to resort to a solution like this one, and that�s entirely fair game. There�s packages for Arch, Fedora, and Gentoo, and of course, you can build it yourself. As for my personal opinion � well, let�s just say I prefer KDE for many, many reasons, and my disdain for CSDs is certainly one of them. Call me old-fashioned and out-of-touch, but I like the classic distinction between titlebar, menubar, and toolbar.
- OpenBSD: anatomy of bsd.rd
Every OpenBSD admin has booted bsd.rd at least once — to install, upgrade, or rescue a broken system. But few people stop to look at what’s actually inside that file. It turns out bsd.rd is a set of nested layers, and you can take it apart on a running system without rebooting anything. That’s what we’ll do here. We’ll go from the raw gzip file all the way down to the miniroot filesystem, exploring each layer with standard tools. Everything is documented in the man pages — we’re just following the trail. ↫ Wesley Mouedine Assaby What am I supposed to add here?
- Linux 7.0 Is Coming: What to Expect from the Next Major Kernel Release
by George Whittaker
Excitement in the open-source world is rising as the Linux kernel project moves toward the next major release: Linux kernel 7.0. While a major version number might sound like a dramatic overhaul, the reality is a lot more steady progress, and that’s part of what makes the Linux kernel so reliable and trusted. The first release candidate (RC1) for Linux 7.0 has already been published, and developers are entering the final stretch toward a stable release expected around mid-April 2026.
An Evolution, Not a Revolution
Linus Torvalds, the creator and lead maintainer of the Linux kernel, officially confirmed that the next version after Linux 6.19 will be dubbed Linux 7.0. In the announcement, he made clear that the jump to “7.0” isn’t tied to any monumental architectural upheaval, it’s a practical naming decision made partly to keep version numbers manageable.
That tradition continues a long-standing pattern: kernel series are often numbered until they reach higher minor versions (like 6.19), and then the major number increments, even if the changes are incremental and largely additive rather than breaking.
Inside the 7.0 Development Cycle
The Linux 7.0 cycle opened with the merge window, during which new code from contributors around the world is accepted. With the release candidate phase now underway, the focus has turned toward stabilization and testing.
The 7.0-rc1 announcement notes that this cycle saw a “smooth” merge window with relatively few major boot failures reported on the lead developer’s own test machines, a good sign for the kernel’s broad hardware support.
Expected Improvements
While the final changelog for the stable 7.0 kernel will only be known when it ships, several themes stand out from early previews and reporting:
1. Broad Hardware Enablement
Driver updates make up a significant portion of the changes so far, helping Linux support the latest CPUs and SoCs from vendors like Intel, AMD, and Qualcomm. Early testing indicates enablement for new families such as Intel Nova Lake and AMD Zen 6, which will be important for next-generation laptops, desktops, and servers.
2. Performance and Responsiveness
Kernel maintainers and community reports suggest that performance improvements are part of the 7.0 trend. Although specifics are still emerging, the kernel’s scheduler and memory management subsystems tend to see ongoing optimization as workloads diversify.
Go to Full Article
- Gentoo Charts a New Path: Moving Away from GitHub Toward Codeberg
by George Whittaker Introduction
The Gentoo Linux project has begun transitioning parts of its infrastructure away from GitHub and toward Codeberg, a Git hosting platform built on open-source principles. The move reflects growing concerns within parts of the open-source community about centralized hosting, proprietary AI integrations, and long-term platform independence.
While Gentoo has used GitHub for collaboration and code hosting in recent years, maintainers are now signaling a preference for a platform that aligns more closely with their philosophical roots.
Why the Shift?
One of the underlying motivations behind the move involves concerns around Microsoft’s expanding integration of AI tools like Copilot into GitHub’s ecosystem. While Copilot is optional and not mandatory for users, its presence has sparked debate within open-source communities about:
Code usage for AI model training
Transparency around data handling
Vendor control over open-source workflows
The long-term independence of community projects
Gentoo, a distribution known for its strong emphasis on freedom, customization, and user control, appears to be taking a cautious approach by diversifying its infrastructure.
Why Codeberg?
Codeberg is a community-driven Git hosting service powered by Forgejo, a fully open-source Git platform. Unlike GitHub, Codeberg operates as a non-profit organization and positions itself as an ethical alternative focused on transparency and sustainability.
Key characteristics include:
Open-source infrastructure
No proprietary AI tooling baked into the platform
Community governance model
Emphasis on privacy and minimal tracking
For a project like Gentoo, deeply rooted in open-source philosophy, these factors carry weight.
What This Means for Gentoo Users
For end users, the transition may not immediately change how Gentoo is installed or maintained. However, it could affect:
Where source code repositories are officially hosted
Where developers submit patches and pull requests
Contribution workflows for maintainers
Over time, the move could also reduce dependency on large corporate platforms, ensuring Gentoo retains autonomy over its infrastructure.
A Broader Trend in Open Source
Gentoo is not alone in reassessing its hosting platforms. Across the open-source world, projects have increasingly explored alternatives such as:
Codeberg
SourceHut
Self-hosted Git solutions
Go to Full Article
- AsteroidOS 2.0 Launches: A Community-Driven Linux Revival for Smartwatches
by George Whittaker
The open-source wearable ecosystem just received a major upgrade. AsteroidOS 2.0 has officially been released, bringing new life to Linux-based smartwatches and giving aging hardware a fresh purpose. Built by a passionate community of developers, AsteroidOS continues to push the idea that wearable technology can remain open, customizable, and free from vendor lock-in.
For users who prefer control over their devices, and for those with older smartwatches gathering dust, AsteroidOS 2.0 represents a compelling alternative to proprietary smartwatch platforms.
What Is AsteroidOS?
AsteroidOS is an open-source operating system designed specifically for smartwatches. Originally developed as a replacement for discontinued or unsupported Android Wear devices, the project has grown into a full Linux-based wearable platform.
Unlike closed smartwatch systems, AsteroidOS emphasizes:
Privacy-first design
Minimal background tracking
Full user control
Community-driven development
It runs on supported legacy devices and allows users to repurpose smartwatches that manufacturers have long abandoned.
What’s New in AsteroidOS 2.0
Version 2.0 is one of the most significant updates in the project’s history. While the philosophy remains the same, this release introduces meaningful improvements across usability, performance, and compatibility.
Modernized Interface
AsteroidOS 2.0 brings a refreshed UI that feels smoother and more intuitive. Navigation between apps and watch faces is more fluid, and animations have been optimized for improved responsiveness on older hardware.
Improved Power Management
Battery life is critical on wearables. The new release refines power-saving behaviors and background process handling, helping extend usage time between charges, especially important for devices with aging batteries.
Enhanced Bluetooth Connectivity
Connectivity improvements allow more reliable pairing with companion apps, notifications, and syncing features. Stability and compatibility with modern smartphones have been strengthened.
Updated Core Stack
Under the hood, AsteroidOS 2.0 ships with updated components from the Linux ecosystem, ensuring better hardware compatibility and security fixes.
Go to Full Article
- LibreOffice 26.2 Arrives: Faster Performance, Sharper UI, and Better Compatibility
by George Whittaker
The Document Foundation has officially released LibreOffice 26.2, the latest major update to the widely used open-source office suite. With improvements spanning performance, user interface refinements, document compatibility, and accessibility, this version continues LibreOffice’s mission to provide a powerful, community-driven alternative to proprietary office software.
LibreOffice 26.2 is available for Linux, Windows, and macOS, offering consistent functionality across platforms while keeping full control in the hands of users.
What’s New in LibreOffice 26.2
While LibreOffice updates often focus on incremental refinement rather than radical redesign, version 26.2 introduces several meaningful enhancements that improve daily workflows.
Improved Performance and Stability
Performance remains a priority. LibreOffice 26.2 includes:
Faster document loading, especially for large spreadsheets and presentations
Reduced memory usage in complex Calc files
Improved stability when handling heavily formatted documents
These optimizations make the suite feel more responsive across both modern systems and older hardware.
Enhanced Microsoft Office Compatibility
Compatibility continues to improve with each release. LibreOffice 26.2 delivers:
More accurate rendering of DOCX, XLSX, and PPTX files
Better support for advanced formatting and tracked changes
Improved handling of embedded objects and charts
For users collaborating with Microsoft Office users, these refinements reduce formatting surprises and make document exchange smoother.
Refined User Interface
LibreOffice 26.2 builds upon its modern UI framework with:
Polished icon themes and improved scaling on high-resolution displays
Better dark mode integration across platforms
Smoother transitions in NotebookBar layouts
Improved accessibility for keyboard navigation and screen readers
The result is a cleaner, more cohesive experience without disrupting long-time users.
Writer Improvements
LibreOffice Writer gains several practical enhancements:
More reliable footnote and endnote management
Improved table formatting controls
Expanded language and grammar tool integration
These updates benefit users creating academic papers, reports, and long-form documents.
Calc Enhancements
Spreadsheet users will notice:
Go to Full Article
- GOG Moves Toward Native Linux Support: A Major Shift for DRM-Free Gaming
by George Whittaker
In a development that has energized the Linux gaming community, GOG (Good Old Games) has officially confirmed that it is working on native Linux support. While GOG has long provided Linux installers for select titles, this announcement signals something more substantial: deeper platform integration and a renewed commitment to Linux as a first-class gaming environment.
For Linux users who value DRM-free software and ownership rights, this could be a significant turning point.
Why This Matters
GOG has built its reputation on offering DRM-free games that users truly own, free from online activation requirements and restrictive launchers. However, Linux users have historically faced a mixed experience:
Some games included native Linux builds
Others required manual setup through Wine or Proton
The GOG Galaxy client itself lacked native Linux support
While community tools like Heroic Games Launcher and Lutris filled the gap, the absence of official Linux support for the Galaxy ecosystem left many users dependent on workarounds.
Now, with GOG confirming active development of native Linux support, that gap may finally begin to close.
What Native Support Could Include
Although full details have yet to be finalized, “native support” could realistically mean several improvements:
An official GOG Galaxy client for Linux
Better integration with Proton or Wine when needed
Unified cloud saves and achievements on Linux
Streamlined game installation and updates
Official support channels for Linux users
If implemented properly, this would allow Linux gamers to enjoy the same ecosystem experience as Windows users without third-party bridges.
The Timing Makes Sense
The announcement comes at a moment when Linux gaming is stronger than ever:
The Steam Deck has normalized Linux as a gaming platform
Proton compatibility has reached impressive levels
Vulkan drivers and Mesa development continue advancing
Distros like Bazzite and Nobara are built specifically for gaming
With more gamers exploring Linux in 2026, GOG’s move may be both strategic and overdue.
What It Means for the Linux Gaming Ecosystem
If GOG delivers robust native support, several ripple effects could follow:
Increased confidence from developers to release Linux builds
More competition in the Linux game storefront space
Improved DRM-free game adoption among Linux users
Go to Full Article
- Linux Kernel Runtime Guard Reaches 1.0: A Major Milestone for Runtime Kernel Security
by George Whittaker
The Linux security landscape just reached an important milestone. Linux Kernel Runtime Guard (LKRG) has officially hit version 1.0, marking its transition from a long-running experimental project into a mature, production-ready security tool. For administrators and security-conscious users, this release reinforces LKRG’s role as a powerful additional layer of defense for Linux systems.
After years of development, testing, and real-world use, the 1.0 release signals confidence in LKRG’s stability, compatibility, and long-term direction.
What Is LKRG?
LKRG is a loadable kernel module designed to protect the Linux kernel at runtime. Instead of relying solely on compile-time hardening or static security features, LKRG actively monitors the kernel while the system is running. Its goal is to detect unauthorized changes, suspicious behavior, and exploit attempts that target kernel internals.
Because it operates at runtime, LKRG complements existing protections like SELinux, AppArmor, and kernel hardening options rather than replacing them.
Why the 1.0 Release Matters
Reaching version 1.0 is more than a symbolic version bump. It reflects years of refinement and signals that the project has reached a level of maturity suitable for broader adoption.
With this release, LKRG offers:
Stable behavior across a wide range of kernel versions
Improved reliability under real-world workloads
Cleaner internal architecture and reduced overhead
Confidence for system administrators deploying it in production environments
For security tooling, especially something operating inside the kernel, stability and predictability are critical, and the 1.0 milestone acknowledges that standard.
How LKRG Protects the Kernel
At a high level, LKRG continuously checks the integrity of critical kernel structures and execution paths. It looks for signs that something has altered kernel memory, process credentials, or execution flow in unexpected ways.
When suspicious activity is detected, LKRG can:
Log warnings or alerts
Block the offending action
Trigger defensive responses based on configuration
This makes it particularly useful for detecting privilege-escalation exploits and post-exploitation activity that might otherwise go unnoticed.
Who Should Consider Using LKRG?
LKRG is especially relevant for:
Servers and cloud hosts exposed to untrusted workloads
Enterprise systems with strict security requirements
Go to Full Article
- A Pillar of the Linux Kernel: Greg Kroah-Hartman Honored with European Open Source Award
by George Whittaker
The open-source community is celebrating a well-deserved recognition. Greg Kroah-Hartman, one of the most influential figures in the Linux ecosystem, has been awarded the European Open Source Award, honoring decades of sustained contributions that have shaped Linux into the stable, trusted platform it is today.
For anyone who relies on Linux, whether on servers, desktops, embedded devices, or cloud infrastructure, this award highlights the quiet but essential work that keeps the ecosystem reliable.
A Steward of Stability
Greg Kroah-Hartman is best known for his role as the maintainer of the Linux kernel’s stable branches. While new kernel features often grab headlines, the stable kernels are where real-world systems live. They receive carefully vetted fixes for security issues, regressions, and bugs, without introducing disruptive changes.
That responsibility requires deep technical knowledge, discipline, and trust from the community. Kroah-Hartman has carried it for years, ensuring that Linux remains dependable across millions of systems worldwide.
Beyond the Stable Kernel
His impact extends far beyond stable releases. Over the years, Kroah-Hartman has contributed heavily to:
Driver development, helping hardware vendors integrate cleanly with Linux
Kernel infrastructure improvements, making long-term maintenance sustainable
Developer documentation, including the widely respected Linux Kernel in a Nutshell
Mentorship, guiding new contributors through the notoriously complex kernel process
These efforts help keep Linux open not just in license, but in practice, accessible to new developers and maintainable at scale.
Why This Award Matters
The European Open Source Award recognizes individuals whose work benefits society through openness, collaboration, and technical excellence. Kroah-Hartman’s work exemplifies that mission.
Linux doesn’t succeed because of flashy features alone. It succeeds because:
Bugs are fixed responsibly
Security issues are handled quietly and quickly
Compatibility is preserved across years and hardware generations
Those outcomes don’t happen by accident. They’re the result of sustained, meticulous stewardship, exactly the kind of work this award celebrates.
Go to Full Article
- Inside the Linux Kernel Runtime Guard (LKRG): A New Layer of Kernel Integrity Protection
by George Whittaker
In an era where security threats continually evolve, protecting the heart of an operating system, the kernel, has never been more critical. One tool gaining traction in the Linux world is the Linux Kernel Runtime Guard (LKRG), a specialized security module designed to detect and respond to attacks targeting the kernel while the system is running. This project recently reached its first stable milestone with version 1.0.0, marking a major step forward for runtime protection on Linux systems.
What Is LKRG?
LKRG (short for Linux Kernel Runtime Guard) is a loadable kernel module that continuously monitors the health and integrity of the Linux kernel while it’s running. Unlike many security features that rely on compile-time patches or static defenses, LKRG acts at runtime, watching for signs of unauthorized changes or exploit attempts and taking configurable action when something suspicious is detected.
Because LKRG is a module rather than a patch to the kernel source, it can be built and used across a variety of distributions and kernel versions without needing to recompile the core kernel itself. It supports a wide range of architectures, including x86-64, 32-bit x86, ARM64, and 32-bit ARM, and has been tested on kernels from older enterprise releases all the way up to recent mainline versions.
How LKRG Works
At its core, LKRG performs runtime integrity checks on critical parts of the kernel and system state. It validates the kernel’s code, data, and metadata against expected values and monitors for unexpected changes that could be indicative of an exploit. The module also watches key process attributes and credentials to help spot unauthorized privilege escalation attempts.
Unlike compile-time defenses such as address space layout randomization (ASLR) or static code hardening, LKRG is designed to observe and react while the kernel is executing, a concept sometimes referred to as “post-detection” security. This complements other layers of defense rather than replacing them.
Version 1.0: A Milestone Release
After several years of development, with the first public release appearing back in 2018, LKRG has finally reached its 1.0 release, signaling maturity and broader real-world readiness. This milestone brings a suite of improvements, including:
Broader Kernel Compatibility: Support extending to recent kernel series such as Linux 6.17, while maintaining compatibility with older, long-lived versions.
Go to Full Article
- Official Firefox RPM Package Now Available for Fedora-Style Linux Distributions
by George Whittaker
Mozilla has taken a notable step toward improving Firefox distribution on Linux. An official Firefox RPM package is now available directly from Mozilla for Fedora-style distributions, including Fedora, RHEL-compatible systems, and related derivatives. This move gives users a new, upstream-supported option for installing and maintaining Firefox without relying solely on distro-maintained builds.
What’s Changed
Until now, users on RPM-based systems typically installed Firefox through their distribution’s repositories. While those packages are usually well-maintained, they can sometimes lag behind Mozilla’s release schedule or include distro-specific patches.
With the new official RPM, Mozilla provides:
A Firefox build maintained directly by Mozilla
Faster access to new releases and security updates
A consistent Firefox experience across RPM-based distros
Reduced dependency on downstream packaging delays
This mirrors the approach Mozilla already uses for official DEB packages and tarball releases, bringing parity to RPM-based ecosystems.
Who Benefits Most
This new packaging option is especially useful for:
Fedora users who want Firefox updates the moment Mozilla releases them
Developers and testers who need predictable, upstream Firefox behavior
Enterprise or workstation users running Fedora-derived systems who prefer vendor-supplied binaries
Users who want to avoid Flatpak or Snap for their browser
Distributions that prioritize stability over immediacy may still ship older versions, but the official RPM gives users a clear choice.
How It Works
Mozilla hosts a signed RPM repository that integrates cleanly with dnf-based systems. Once added, Firefox updates arrive through the standard system update process, just like any other RPM package.
Key characteristics include:
GPG-signed packages from Mozilla
Automatic updates via dnf upgrade
No repackaging or third-party rebuilds
Compatibility with Fedora and compatible RPM distros
Users can choose between the distro-provided Firefox or Mozilla’s upstream RPM without conflict, as long as only one source is enabled.
Why This Matters for Linux Users
This change reflects a broader trend: upstream projects taking more responsibility for how their software reaches users. For Firefox, that means:
Go to Full Article
- Top Linux Gaming Distributions for 2026: Play Better on Open Source
by George Whittaker Introduction
Gaming on Linux has never been better. Thanks to advances in compatibility layers like Proton, drivers, and distro-level optimizations, Linux now supports thousands of games, from AAA titles to indie favorites, with performance that rivals Windows in many cases. As we head into 2026, certain Linux distributions have risen to the top as the most gamer-friendly, offering build-ins, drivers, and tooling that make playing on open-source systems smoother and more fun.
In this article, we’ll look at the best Linux gaming distros for 2026, what sets each one apart, and who they’re best suited for, whether you’re a seasoned Linux gamer or someone switching from Windows or macOS.
1. SteamOS (SteamOS 5 / “Holo”)Why It’s Great
SteamOS remains the top choice if games are your priority. Developed by Valve, SteamOS is designed specifically for gaming hardware and integrates tightly with:
Steam and Proton for Windows game compatibility
Controller-first navigation, perfect for living-room play
Competitive performance out of the box
Fast boot and automatic updates
SteamOS continues evolving with better hardware support, especially for handheld PCs and Steam Deck-style form factors.
Best For
Dedicated gaming PCs
Steam Deck and SteamOS handhelds
Users who want a console-like experience
2. Pop!_OS (Gaming Edition)Why It’s Great
Created by System76, Pop!_OS is known for a smooth performance-oriented desktop and excellent driver support. The Gaming Edition (or the gaming-optimized install profile) comes with:
Automatic NVIDIA and AMD driver detection
Integrated Proton and Steam packages
Built-in support for auto-tiling and hybrid graphics
Excellent keyboard/mouse + gamepad support
Pop!_OS also excels on laptops with hybrid GPUs because of its dedicated power profiles and intelligent GPU switching.
Best For
Desktop gamers who want a traditional desktop + gaming setup
Users with NVIDIA GPUs
Hybrid GPU laptops
Go to Full Article
|
