fidzu : Operating Systems

Are you not at all interested in upgrading to macOS Tahoe, and getting annoyed at the relentless notification spam from Apple trying to trick you into upgrading? The secret? Using device management profiles, which let you enforce policies on Macs in your organization, even if that "organization" is one Mac on your desk. One of the available policies is the ability to block activities related to major macOS updates for up to 90 days at a time (the max the policy allows), which seems like exactly what I needed. Not being anywhere near an expert on device profiles, I went looking to see what I could find, and stumbled on the Stop Tahoe Update project. The eventual goals of this project are quite impressive, but what they've done so far is exactly what I needed: A configuration profile that blocks Tahoe update activities for 90 days. ↫ Rob Griffiths All you need to do is clone a random GitHub repository, set all its scripts to executable, generate two random UUIDs, insert those UUIDs into one of the scripts in the GitHub project folder you just cloned, run said script, open System Settings and go to Privacy & Security > Profiles, install the profile the script created, click install in two different dialogs, and now you have blocked Apple's update notification spam! Well, for 90 days that is. I honestly don't understand how normal people are supposed to use macOS. The amount of weird terminal commands you need just to change basic settings is bewildering. macOS definitely isn't ready for the desktop if they expect users to use the terminal for so many basic tasks. I'm glad I'm using Linux, where I don't have to deal with the terminal at all.

28 Feb 2026 10:09pm GMT

If this isn't catnip to the average OSNews reader, I don't know what is. Windows 95 is a comprehensive upgrade to the Windows 3.1 and Windows for Workgroups 3.11 products. Many changes have been made in almost every area of Windows, with the user interface being no exception. This paper discusses the design team, its goals and process then explains how usability engineering principles such as iterative design and problem tracking were applied to the project, using specific design problems and their solutions as examples. ↫ Kent Sullivan This case study was written in 1996 by Kent Sullivan, who joined the Windows 95 user interface team in 1992. I consider the second half of the '90s as the heyday of user interface design, with Windows 9x, Apple's Platinum in Mac OS 8 and 9, and BeOS' Tracker/Deskbar as the absolute pinnacles of user interface design. Coincidentally, this also seems to mark the end of a more scientific, study-based approach to designing graphical user interfaces. Reading through this particular case study for Windows 95 feels almost quaint. Where are the dozens of managers pushing for notification spam, upsells, and dark patterns to enable expensive data-hoarding services? Why are none of the people mentioned in the study talking about sneaky ways to secretly and silently convert your local account to an online account? Where are all the "AI" buttons? Why is there n chapter on how to trick people into enabling telemetry data? The user interfaces of the late '90s were the last ones designed by people who actually cared, by people who approached the whole process with the end user in mind, rooted in scientific data collected by simply looking at people use their ideas. They were optimised for the user as best they could, instead of being optimised for the company's bottom line. It's been downhill ever since.

28 Feb 2026 9:10pm GMT

Bootc and OSTree represent a new way of thinking about Linux system deployment and management. Building on container and versioning concepts, they offer robust and modern solutions to meet the current needs of administrators and developers. ↫ Quentin Joly Slowly, very slowly, I've been starting to warm up to the relatively new crop of immutable Linux distributions. As a heavy Fedora user, opting for Fedora's atomic distributions, which use bootc and OSTree, seems like the logical path to go down if I ever made the switch, and this article provides some approachable insights and examples into how, exactly, it all works, and what benefits it might give you. It definitely goes beyond what I as a mere desktop user might encounter, but if you're managing a bunch of servers or VMs in a more professional setting, you might be interested, too. I'm still not convinced I need to switch to an immutable distribution, but I'd be lying if I said some of the benefits didn't appeal to me.

28 Feb 2026 8:54pm GMT

The file system of the Windows operating system is NTFS, whether you're running it on a desktop/laptop or server. It's the only file system Windows can run on and boot from, at least officially, so you're not even given a choice of file systems for the boot volume like you are on, say, desktop Linux. That's about to change, though: Microsoft has finally announced that Windows Server will be able to boot from ReFS. We're excited to announce that Resilient File System (ReFS) boot support is now available for Windows Server Insiders in Insider Preview builds. For the first time, you can install and boot Windows Server on an ReFS-formatted boot volume directly through the setup UI. With ReFS boot, you can finally bring modern resilience, scalability, and performance to your server's most critical volume - the OS boot volume. ↫ chcurlet-msft at Microsoft's Tech Community Without diving too much into the weeds, ReFS can roughly be seen as Microsoft's answer to modern file systems like ZFS and Btrfs, with comparable design goals and feature sets. It's been around since 2012, but only for Windows Server, and with every Windows Server release since, the company has improved performance, added new features, and fixed bugs. Now, in 2026, it seems Microsoft thinks ReFS is ready to be used as a bootable file system for Windows Server. If you want to try this for yourself, you need to be a Windows Insider and make sure you have Windows Server build 29531.1000.260206-1841 or newer. During installation, the Windows installer will ask you to choose between NTFS and ReFS; the rest of the installation process will be pretty much the same as before. Now all we need is to wait for ReFS to become an option on client versions of Windows too, which would mark - arguably - only the second time in history Windows transitioned from one default filesystem to the another.

27 Feb 2026 11:25pm GMT

Encryption backdoors, social media bans for children, creepy age verification for applications - what will they think of next? The latest brilliant idea by US lawmakers sure is a hell of a doozy: legally mandated age verification in every single operating system. Colorado's SB26-051, introduced last month, would require operating systems to register the owner's age, which third-party apps can then leverage to determine if the user is an adult. The bill calls for the device owner to register their birthdate or age, but for the purposes of creating an "age bracket," which can then be shared to an app developer through an API to learn their age range, according to BiometricUpdate.com. Ball also said the legislation was based on California's bill AB 1043, which was passed last year. It too requires OS makers to create a way for the device owner to register their age bracket, which can then be shared to app developers over an API. The California law starts to take effect January 1, 2027. ↫ Michael Kan at PCMag Age verification to protect children sounds innocent enough, but if you have more than two brain cells to rub together it's crystal clear that what we're really looking at is the true end of privacy and online anonymity. If age verification is only used by certain applications, it's easy enough to avoid them, but if it becomes part of Windows, desktop Linux, Android, it's truly game over. Nobody will be anonymous online ever again, and nobody will have any sense of privacy left when opening up their computer. Worse yet, if you do end up using an operating system that doesn't adhere to this law, or you hack out or circumvent the age verification nonsense, you'll automatically become an easy target for law enforcement. Clearly, if you circumvent age verification, you must be up to no good, right? Of course, as we've seen in countries with heavily deteriorating democracies and freedoms, like the US or Hungary, even merely opposing the government will be classified as "up to no good", and let's not even get started about the various minorities these countries are actively trying to eradicate. If something like this is enshrined in law in your country, you're fucked.

27 Feb 2026 10:19pm GMT

FreeBSD has its jails technology, and it seems NetBSD might be getting something similar soon. Jails for NetBSD aims to bring lightweight, kernel-enforced isolation to NetBSD. The system is intended to remain fully NetBSD-native. Isolation and policy enforcement are integrated into the kernel's security framework rather than implemented in a separate runtime layer. It does not aim to become a container platform. It does not aim to provide virtualization. ↫ Matthias Petermann It has all the usual features you have come to expect from jails, like resource quota, security profiles, logging, and so on. Processes inside jails have no clue they're in a jail, and using supervisor mode, jails are descendent from a single process and remain visible in the host process table. Of course, there's many more features listed in the linked article. It's in development and not a default part of NetBSD at this time. The project, led by Matthias Petermann, is developed out of tree, with an unofficial NetBSD 10.1 ISO with the jails feature included available as well.

27 Feb 2026 9:58pm GMT

The Genode OS Framework 26.02 has been released, and its tentpole improvement is the completion of moving configuration from XML to the new human-inclined data syntax, as we talked about a few months ago. The project has been working on this for years, and now that the tooling, documentation, and so on have been added this release cycle, they're ready to make the switch. On top of that, they also made the move from GitHub to Codeberg, but that's certainly not all. The technical topics of the release revolve around the progressive update of our Linux device-driver environment (DDE-Linux) to kernel version 6.18, usability improvements of the Goa SDK, input-event processing, and code rigidity. Feature-wise, version 26.02 further cultivates the genode-world repository as designated place for ported 3rd-party software, adding the port of Git as stepping stone on our way towards self-hosted development on Sculpt OS. ↫ Genode OS Framework 26.02 release notes Be sure to read the entire release notes for much more detailed information, as well as a ton of things not mentioned yet.

26 Feb 2026 11:15pm GMT

You may not be aware that FreeBSD has a pretty robust set of tools to run Linux binaries, unmodified. The result? A fast, smooth, fully-featured remote development experience on FreeBSD running Linux binaries transparently via the Linuxulator. It genuinely feels like magic. More importantly, it's a testament to how stable the Linux ABI itself is and how well FreeBSD's Linuxulator implements it. This setup completely changed how I work with FreeBSD, and it finally removed one of the biggest friction points in my workflow. ↫ Hayzam Sherif FreeBSD's Linux compatibility does kind of feel like magic. There's people running Steam and Steam games on FreeBSD using these very same technologies, and while it's far from perfect, it works for quite a few games without any issues. It'd be great is Steam ever made it to FreeBSD natively, but sine that's probably not going to happen any time soon, it's great to see that those of us using FreeBSD can still play at least some Steam games just fine.

26 Feb 2026 9:47pm GMT

It seems the widespread efforts in Europe to drastically reduce its dependency on US technology companies is starting to worry some people. President Donald Trump's administration has ordered U.S. diplomats to lobby against attempts to regulate U.S. tech companies' handling of foreigners' data, saying in an internal diplomatic cable seen by Reuters that such efforts could interfere with artificial intelligence-related services. Experts say the move signals the Trump administration is reverting to a more confrontational approach as some foreign countries seek limits around how Silicon Valley firms process and store their citizens' personal information - initiatives often described as "data sovereignty" or "data localization." ↫ Raphael Satter and Alexandra Alper at Reuters It's going to take time, but untangling the EU from the US - especially technologically and militarily - is worth the effort. I'll gladly pay more taxes to make this happen.

26 Feb 2026 9:40pm GMT

I've been a .com purist for over two decades of building. Once, I broke that rule and bought a .online TLD for a small project. This is the story of how it went up in flames. ↫ Tony S. An absolute horror story about Google's dominance over the web, in places nobody really talks about. Scary.

25 Feb 2026 11:26pm GMT

Only a few days ago we talked about the concept of client-side decorations, and how more and more desktop environments and operating systems - specifically GNOME and macOS - are putting more and more buttons, menus, and other widgets inside title bars. How about we take this concept a step further? This hides the AppMenu icon button and draws the menu in the title bar. It also includes a search button to find actions. It works on both X11 and Wayland. On Wayland, GTK apps don't export the menu in a KDE-friendly way. You need to start them with GDK_BACKEND=x11 environment variable or you can try the experimental appmenu-gtk-module-wayland (GTK3 only). ↫ material-decoration's GitHub page So this little tool allows you to add an application's menu bar (file, edit, view, etc.) to the titlebar of a KDE application. The way it works is that it adds an optional widget to KDE's System Settings > Colors & Themes > Window Decorations > Configure Titlebar Buttons…, alongside regular staples like close, minimise, maximise, etc. You can then freely add said "menu bar" to the title bar of your applications. There's some configuration options, too. For instance, you can disable the search button, or turn the entire menu bar into a hamburger menu instead. It looks weird, and I'm definitely not the target audience for this, but I do find it intriguing. I've never seen anything like this before, and I doubt many people will like it since it takes up so much space if you don't opt to use the hamburger menu option. That being said, I'm fairly sure KDE and Kwin allow you to edit the titlebars of specific applications and specific windows, which does open some interesting possibilities for, say, applications or windows which you always have maximised or whatever. There's an AUR package for Arch users, but everyone else will have to build it themselves.

25 Feb 2026 10:46pm GMT

Microsoft released an optional cumulative update for Windows 11, and for once, it actually includes something many of you might actually like: it adds Sysmon from Sysinternals to Windows natively, so you no longer have to install it manually. Here's a refresher on what, exactly, Sysmon does. System Monitor (Sysmon) is a Windows system service and device driver that, once installed on a system, remains resident across system reboots to monitor and log system activity to the Windows event log. It provides detailed information about process creations, network connections, and changes to file creation time. By collecting the events it generates using Windows Event Collection or SIEM agents and subsequently analyzing them, you can identify malicious or anomalous activity and understand how intruders and malware operate on your network. The service runs as a protected process, thus disallowing a wide range of user mode interactions. ↫ Mark Russinovich and Thomas Garnier After installing the optional cumulative update in question, KB5077241, you can install Sysmon as an optional Windows component. Of course, this is Microsoft we're talking about, so it's not quite as straightforward as you'd think. In Windows 11, there's two places to add optional Windows features, and in the case of Sysmon, you have to go to the old Windows features dialog instead of the new View or edit optional features one. And also, don't forget to first remove the old Sysmon from Sysinternals in case you have it installed. After installation, run sysmon -i as an administrator to enable the feature.

25 Feb 2026 9:22pm GMT

This must be a universal experience at this point for people who aren't swayed by the latest and greatest marketing hype around new phone models: there's just nothing out there that fits one's needs. When I walked into a phone shop, I expected to witness with amazement how much technology has advanced in the present day compared to my eight-year-old model, and for the power of marketing to mind control me into buying a new phone that would bring all sorts of benefits to my life. But instead, I felt disappointed that I'd be forced to choose between two suboptimal devices, either of which would be a compromise compared to what I already have. I felt frustrated that my OnePlus 5T, which still meets my needs and is working wonderfully (apart from the volume buttons), is being taken from me by the 3G shutdown. ↫ Cadence It's remarkable how a market that was once rife with competition and choice, has now been reduced to well I guess I'll settle for this one then in such a short time frame. There's barely any competition, the number of device makers in (western or western-adjacent) countries has dropped to two, maybe three, and all of them are making what is essentially the exact same device with only the smallest of differences between them. For most average, normal people, it's some model by either Samsung or Apple. There's definitely more choice once you're willing to leave local stores (and thus, easy and quick repairs) behind, but most normal people who just want a phone aren't going to do that. You can also spend like twice or thrice the amount of money to get some foldable thing, but again, if you're just looking for a bog-standard normal-person phone, that's not a realistic option either. Smaller devices, headphone jacks, SD card slots - so many things have just disappeared from the face of the earth for most people, something that will definitely come as a huge, unpleasant surprise if you've been happy with an older phone that just had those things. It's like driving the same car for a decade and needing a new one, but you can only choose between a Toyota and a Volkswagen that look and feel entirely the same. And also the seats are now candles, door handles are gone, and there's no trunk.

24 Feb 2026 10:48pm GMT

Social media is going the way of alcohol, gambling, and other social sins: Societies are deciding it's no longer kid stuff. Lawmakers point to compulsive use, exposure to harmful content, and mounting concerns about adolescent mental health. So, many propose to set a minimum age, usually 13 or 16. In cases when regulators demand real enforcement rather than symbolic rules, platforms run into a basic technical problem. The only way to prove that someone is old enough to use a site is to collect personal data about who they are. And the only way to prove that you checked is to keep the data indefinitely. Age-restriction laws push platforms toward intrusive verification systems that often directly conflict with modern data-privacy law. This is the age-verification trap. Strong enforcement of age rules undermines data privacy. ↫ Waydell D. Carvalho The answer to the dangers of social media is not to ban social media use among minors, for a whole variety of reasons. There's data privacy, as the linked article goes into, but there's also the fact that for a lot of people, including minors, who live in regressive, backwards environments and/or are victims of abuse, social media is their only support network. Cut them off from social media, and you cut them off from the very people who can save them from further abuse. The problem isn't social media in and of itself - it's profit-seeking social media. Companies like Facebook and TikTok spend billions to hyper-optimise and hyper-target vulnerable people, much like how tobacco companies and drug dealers do, to feed and worsen their addiction because keeping people addicted is how they maximise profits. The solution to the dangers of corporate social media is to strictly regulate their behaviour, something we already do with countless dangerous products and services. I'm obviously not qualified to come up with specific measures that would need to be taken, but I think we can all agree that whatever corporate social media have been and are doing is dangerous, unethical, should be stopped.

24 Feb 2026 8:21pm GMT

While Libadwaita applications running in a GNOME desktop environment look great and nicely consistent, they look utterly out of place and jarring when run in Xfce, Pantheon, KDE, and others. The biggest reason for this is GNOME's insistence on using client-side decorations, which feel at home inside a GNOME environment, but out of place in environments that otherwise do not use them. On top of that, Libadwaita's/GNOME's CSDs can interfere with non-GNOME window managers and their functionality, causing a whole host of problems. But what if you could turn CSDs off? GTK-NoCSD is an LD_PRELOAD library to disable CSD in GTK3/4, LibHandy, and LibAdwaita apps. CSD is client side decoration, there is also server side decoration, SSD, both serving as the titlebar of windows. GTK3 adopted CSD, where this thick headerbar is used with application controls embedded.This continued into the platform library, LibHandy, then into GTK4 and the platform library of that, LibAdwaita. This looks good on Gnome and makes these applications alike, but looks off everywhere else and can potentially break window managers and remove window manager provided functionality. This library restores the server side decoration, getting back the window manager titlebar, and moves the controls from the CSD to under it, into the window content. ↫ GTK-NoCSD's Codeberg page This isn't the first attempt at such a solution, and certainly won't be the last, and I'm glad they exist. Do note that if you decide to use this library, any problems or bugs you run into in an application 'modified' by it should never be reported to the application's developer, but to the developer of this library. If you encounter a bug in an application modified by this library, test the application in its unmodified state to ensure it's actually a bug in the application before reporting it to the application's developer. Developers who choose to use client-side decorations are not responsible for bugs and issues arising from you removing the CSD. Keep that in mind. That being said, whatever pixels appear on your screen is entirely up to you as a user, and you have the right to theme, alter, butcher, or mangle whatever application is running on your computer. If you dislike the way CSDs look and feel on your computer, you can opt to resort to a solution like this one, and that's entirely fair game. There's packages for Arch, Fedora, and Gentoo, and of course, you can build it yourself. As for my personal opinion - well, let's just say I prefer KDE for many, many reasons, and my disdain for CSDs is certainly one of them. Call me old-fashioned and out-of-touch, but I like the classic distinction between titlebar, menubar, and toolbar.

23 Feb 2026 11:25pm GMT

Every OpenBSD admin has booted bsd.rd at least once - to install, upgrade, or rescue a broken system. But few people stop to look at what's actually inside that file. It turns out bsd.rd is a set of nested layers, and you can take it apart on a running system without rebooting anything. That's what we'll do here. We'll go from the raw gzip file all the way down to the miniroot filesystem, exploring each layer with standard tools. Everything is documented in the man pages - we're just following the trail. ↫ Wesley Mouedine Assaby What am I supposed to add here?

23 Feb 2026 9:46pm GMT