Operating Systems

The author details their migration from the Apple ecosystem to GrapheneOS on a Google Pixel 9a. They explore the system's focus on privacy and security, providing a practical guide on installation via web flasher, managing sandboxed Google services, using open-source app aggregators like Obtainium and Aurora Store, and configuring advanced user profiles and permissions.

For 'I love Free Software Day,' the author expresses gratitude to the maintainers of Free Software documentation, specifically highlighting the ArchWiki. Recognized as a premier resource for GNU/Linux users, the ArchWiki provides essential configuration tips and tools analysis, gaining praise even from figures like Edward Snowden for its reliability and role in promoting software freedom.

Todd C. Miller, who has maintained the foundational sudo utility for over 30 years, is actively seeking a financial sponsor following the end of corporate backing from Quest Software in early 2024. Despite the critical nature of this tool for Unix and Linux security, maintenance is currently performed on a voluntary basis, slowing development to a focus on bug fixes rather than new features. The situation highlights a systemic issue in open-source where vital infrastructure depends on solitary individuals. While Miller remains committed to preventing a security compromise like the xz utils backdoor, he acknowledges the rise of sudo-rs, a memory-safe Rust implementation, as a potential successor. This case underscores the urgent need for sustainable funding models for essential open-source projects to prevent maintainer burnout.

California's Assembly Bill No. 1043 requires operating system providers to include age verification during account setup starting January 1, 2027. The law mandates sharing age brackets with developers via an API. While Windows already complies, the law faces criticism regarding its impact on privacy and its enforceability within the Linux community.

The maintainer of sudo, who has managed the project for over 30 years, is currently seeking a sponsor to fund the continued maintenance and development of this critical utility. Sudo is a ubiquitous tool in the Unix and Linux ecosystems, essential for managing administrative privileges securely. In addition to his extensive work on sudo, the developer has a history of contributing to major open-source projects, including significant contributions to ISC cron and active involvement in the OpenBSD community. This appeal highlights the ongoing challenges of funding essential open-source infrastructure that the global technology industry relies upon daily. Potential sponsors or organizations interested in supporting the future of sudo are encouraged to reach out to ensure the tool remains secure and well-maintained.

AsteroidOS 2.0 has been released, introducing Always-on-Display, new launcher styles, and significant performance optimizations for smoother animations. The update expands support to more watches, improves battery life, and integrates better synchronization through clients like Gadgetbridge. This version also marks the arrival of a community repository for apps, watchfaces, and games.

BreezyBox is an innovative open-source project that transforms the ESP32-S3 microcontroller into a functional, instant-on mini-computer. Developed as a lightweight alternative to resource-heavy operating systems used on hardware like Raspberry Pi, BreezyBox leverages the ESP-IDF framework to provide a shell environment, terminal commands, and an application installer. It captures the nostalgic experience of DOS-era computing while utilizing modern features like dynamic ELF loading and wireless connectivity. This component acts as a userland layer running on FreeRTOS, offering tools such as virtual terminal emulation and filesystem management. By focusing on efficiency and elegant design, it encourages the maker community to build cyberdecks, retro-style portable PCs, and custom embedded tools without the overhead of a full Linux-based desktop OS.

FOSDEM 2026 underscored a pivotal shift in the open-source community, moving beyond software freedom toward digital sovereignty and European technological independence. The event highlighted a transition from centralized platforms to self-hosted, resilient infrastructure. Key technical sessions explored memory-safe virtualization with Rust-VMM, minimalist operating systems like SmolBSD, and community-driven networking through DN42 and FlipFlap. While the conference remains a vital hub for innovation and community connection, its growing scale presents logistical challenges. The increasing density of attendees reflects the heightened importance of open source in the current political and economic climate, though it necessitates careful evolution to maintain accessibility and the spirit of grassroots experimentation.

This content highlights a critical discrepancy in Apple's official documentation regarding the DFU (device firmware update) port locations for M4 MacBook Pro models. While Apple guides specify certain USB-C ports on the left side, the author discovered that on the 16-inch M4 Pro model, the DFU port is actually located on the right side. This port identification is crucial because macOS updates on external storage devices fail silently when plugged into the DFU port during installation. The user documents a frustrating troubleshooting process involving LocalPolicy authorization issues and lack of descriptive error messages in System Settings. Ultimately, switching the external SSD to a left-side port resolved the failed updates to macOS 15.7.3, underscores a decline in the 'it just works' user experience and points out flaws in how macOS handles sleep settings during update preparation phases.

MenuetOS is a unique operating system written entirely in 64-bit and 32-bit assembly language. Its primary design goal is to eliminate excessive layers between the kernel and applications, resulting in high speed and compact code. Unlike many modern systems, MenuetOS is not based on UNIX or POSIX standards. It features a responsive Graphical User Interface, pre-emptive multitasking, and SMP support for up to 32 processors. The system is remarkably efficient, fitting onto a single floppy disk while offering high-resolution graphics, USB 2.0 support, and a complete TCP/IP stack. Recent updates have introduced a partial Linux layer and improved multimedia capabilities.

This article explores the growing frustration with Windows 11 as it transitions from a traditional operating system into a 'thin client' heavily dependent on cloud authentication. The author recounts a specific incident where a Microsoft Store licensing error (0x803f8001) prevented access to basic local utilities like Notepad and Snipping Tool. This highlights a broader trend where Software as a Service (SaaS) elements and AI integrations, such as Copilot, are being forced into formerly simple system apps. The piece argues that while cloud computing and AI are Microsoft priorities, fundamental OS functionality should remain accessible offline. It warns that increasing internet dependency and the erosion of user control may drive enthusiasts toward 'debloater' scripts or open-source alternatives, potentially compromising system security and stability.

This article explores the technical possibilities of minimizing a FreeBSD 15.0-RELEASE installation footprint using the PKGBASE system. Sparked by a social media query, the author demonstrates how to reduce the default 450 MB installation down to approximately 150 MB by leveraging ZFS zstd-19 compression and selectively removing base sets. The process involves identifying critical dependencies for the pkg manager, such as libarchive, openssl, xz-lib, and libucl, and 'locking' them to prevent system breakage. A significant portion of the guide focuses on manipulating the pkg SQLite database to remove dependencies between sets, preventing the system from automatically reinstalling deleted components during upgrades. The author concludes that while significant disk savings are possible by further trimming kernel modules, PKGBASE's primary design goals focus more on package integrity and management than pure modularity or minimal size.

This article explores the complexities of UEFI Secure Boot and the methodologies for circumventing its restrictions to run untrusted code. By default, Secure Boot only allows signed bootloaders, often requiring Microsoft's endorsement. The author details the development of two tools: Super UEFIinSecureBoot Disk and Silent UEFIinSecureBoot Disk. These tools utilize shim and modified versions of the Linux Foundation PreLoader and GRUB2 to bypass signature verification. Notably, the 'Silent' version leverages a signed bootloader from the Kaspersky Rescue Disk to achieve a completely silent boot of untrusted .efi files without manual user enrollment of keys. The author discusses the technical implementation, architectural differences between various boot loaders, and the potential security implications, including the risk of bootkit installation and the likelihood of future certificate revocations by Microsoft.

A comprehensive collection of design documents and specifications for the Windows NT operating system. It features detailed technical papers on kernel architecture, memory management, I/O systems, and internal mechanisms like IRP, APC, and LPC. These documents provide historical and technical insight into the foundational structures of the Windows executive and system services.

Amiga UNIX, commonly known as AMIX, represents a unique historical footnote as Commodore's official port of AT&T System V Release 4 to the Amiga platform in 1990. Primarily designed for the Amiga 2500UX and 3000UX, it remains a challenging operating system to install and administer compared to modern Linux or BSD distributions. The Amiga Unix wiki serves as a preservation project, offering documentation, tutorials, and software for enthusiasts using original hardware or the WinUAE emulator. While it lacks modern security, open-source components, and recent updates, it provides a fascinating look into early 1990s systems programming and System V architecture. The project targets those interested in retro-computing history and the lineage of the Unix operating system, emphasizing curiosity over practical modern-day utility.

This technical analysis explores the 80386 processor's protection mechanisms. It detail how the 386 implemented usable Protected Mode and Virtual 8086 mode using a 275,000-transistor budget. Key hardware features include a dedicated Protection Test PLA to avoid microcode bloat, 3-cycle delay slots for performance, and an autonomous hardware state machine for page table walks.

The author reviews the Minisforum MS-R1 Mini PC as an affordable ARM-based homelab server. Despite driver issues with Rocky Linux and limited M.2 expansion, the device successfully runs Fedora and FreeBSD VMs. It offers a cost-effective alternative to expensive Mac hardware while providing better performance than typical ARM single-board computers.

The Genode OS Framework is a specialized tool kit designed for constructing highly secure operating systems through a recursive system structure. It utilizes a microkernel-based architecture that creates hierarchical sandboxes, ensuring programs only access necessary resources while reducing the attack surface by magnitudes. By bridging L4 construction principles with Unix philosophy, Genode enables the creation of modular systems where kernels, device drivers, and file systems act as discrete building blocks. Supporting architectures like x86, ARM, and RISC-V, the framework facilitates everything from embedded systems to general-purpose workloads, offering virtualization support and over 100 pre-built components. Developed as open-source by Genode Labs, it represents a significant shift toward component-based security in system design.

LineageOS has announced the release of version 23.2, marking a major update that integrates Google's Material Expressive design system across the Operating System and its core applications. This halftime release comes as AOSP transitions to a biannual update cycle, with LineageOS adopting a matching six-month cadence. Key features include a redesigned Quick Settings panel with customizable tiles, an expanded dark theme, and Material 3 updates for the Updater, Music, and Clock apps. The project also introduced new Python-based development tools for RRO management and certificate updates. Structural changes include Nolen Johnson joining the board of directors as Rashed steps down. The build roster has been significantly expanded to support a wide range of devices from Google Pixel, OnePlus, Motorola, and Xiaomi.

Everything is a powerful specialized Windows administrative tool designed for near-instantaneous file and folder location by name. Unlike the built-in Windows search, Everything initially displays every file and folder on your computer, hence the name. Its distinctive features include a small installation footprint, a clean and minimalist user interface, and extremely fast filename indexing. The utility is highly efficient, utilizing minimal system resources while providing real-time updates for any changes in the file system. Users can choose from multiple installation versions, including standard installers, portable ZIP files, and Lite versions for both 32-bit and 64-bit architectures, making it a versatile choice for system productivity.