Ubuntu 26.04 LTS Beta Shows You There's Potential in the Stable Release

For regulars in the open source space, Ubuntu is kind of a household name that introduced many to the diverse world of Linux, where you have all kinds of flavors. Want some work done? You have Fedora. Want to earn the rights to say "I use Arch, btw," and get work done? You have Arch Linux.

We are now weeks away from Ubuntu's next long-term support release, and Canonical have now provided everyone with a beta build for testing purposes. Let's see what it delivers.

Ubuntu 26.04 LTS Beta: A Functional Upgrade

While the beta release offers variants like Server, WSL, and Cloud images, alongside the official Ubuntu flavors, I have only focused on Desktop here. We start with the new boot animation that looks clean but will be easy to miss if you have a decently powerful system.

Powering the release is Linux 7.0, whose development is still wrapping up, but it marks a significant jump from the Linux 6.8 kernel that shipped with Ubuntu 24.04 LTS. For the desktop, it ships with GNOME 50, which has finally managed to let go of X11.

0:00

/0:08

The new boot animation.

The shell picks up a power mode indicator in the top bar, better screen time controls, and fixes for some long-standing annoyances like deleted default folders reappearing after a reboot. Variable refresh rate and fractional scaling are now stable features and are no longer buried behind an experimental flag.

Resources replaces System Monitor for hardware monitoring and process management. It is built on GTK4 and libadwaita, so it slots in naturally with the rest of the desktop, and was picked over Mission Center largely because of its stronger accessibility support.

GNOME 50 demo and the Resources app on the left; on the right is the App Center.

The App Center has also been updated to show and manage Deb packages installed from Ubuntu's repositories, not just snaps. You can head over to the Manage section to find a new package type filter that lets you view them separately.

On the graphics side, Mesa 26.0 is on board, bringing OpenGL 4.6 and Vulkan 1.4 support along with a broad set of driver improvements across Intel, AMD, and NVIDIA hardware.

Docker Engine 29 is also included, which makes the Containerd image store the default for fresh installs and adds experimental nftables firewall backend support.

There are more new features in Ubuntu 26.04 that we have covered here.

Start Testing

You can download the beta builds for x86 systems from the release portal (which is also where the stable release will go live), and for other platforms like ARM64, you will have to visit the image mirror.

Stay tuned to here and on our socials for more detailed coverage when the stable release comes out!

from It's FOSS https://ift.tt/0BG1pxn
via IFTTT

Why Ubuntu 26.10 Might Drop ZFS, RAID & Encryption Support

Canonical engineer Julian Andres Klode, who works on Ubuntu's secure boot signing, has put forward a proposal on Ubuntu's community forums to significantly cut down the GRUB bootloader for the upcoming Ubuntu 26.10.

The proposal takes aim at GRUB's parsers, which Julian describes as a "constant source of security issues," and proposes cutting a number of features from signed builds to reduce the attack surface in the pre-boot environment.

What is meant to get the axe? On the filesystem side, Btrfs, HFS+, XFS, and ZFS would all be dropped, leaving only ext4, FAT, ISO 9660, and SquashFS for Snaps. Image support would go too, alongside the Apple partition table, LVM, most md-RAID modes (RAID1 is retained), and LUKS-encrypted disks.

In practice, that means Ubuntu 26.10 systems running Secure Boot would need to boot from a plain, unencrypted ext4 partition on a GPT or MBR disk. No ZFS, no Btrfs, no encrypted /boot. Those features would still be available through unsigned GRUB builds, but you'd lose Secure Boot entirely in exchange.

He pitches this as a meaningful security improvement and also as a step toward eventually moving to newer boot solutions down the line.

Now, here's the catch. If your current setup relied on any of the features being dropped, the release upgrader would block you from moving to Ubuntu 26.10 at all. Those systems would stay on 26.04 LTS by default.

There's resistance

Neal Gompa, a well-known name in Linux spaces and contributor to Fedora, openSUSE, and several other distributions, pushed back on a couple of points right away.

On Btrfs, he argued that GRUB's driver for it is read-only and actively maintained upstream, and that users running boot-to-snapshot setups depend on it being there.

He also disputed Julian's suggestion that native /boot RAID setups are uncommon, saying that software RAID1 is "incredibly common," in his experience, and removing it would be a substantial loss, not a minor one.

When a community member questioned whether there was a need to support older systems. Neal laid out that a large chunk of web hosting, cloud, and VPS environments still don't support UEFI and that plenty of UEFI implementations predating 2017 were too broken to be practically useful.

Another Ubuntu community member, Paddy Landau, raised a different concern. Dropping PNG and JPEG support in signed builds would kill boot menu theming, something he's had running on his Ubuntu setup for years.

He also questioned the security case, noting that the known vulnerabilities appear to affect GRUB versions before 2.12 and that TGA format doesn't carry the same risk.

The sharpest response came from Thomas Ward, a Ubuntu Technical Board member, who stated that Ubuntu's own default installers, including the server installer, set up LVM by default, and LUKS encryption on Ubuntu currently requires LVM.

Canonical's own recommended installation configuration would, under this proposal, end up incompatible with Secure Boot on 26.10. He's asking for a clear, per-feature public justification before anything moves forward and argues that without it, dropping features that users and compliance environments actively depend on is simply not justifiable.

And I agree with him. If you can't provide convincing reasons to remove each one of those features, then don't bother proposing it, simple.

---

Suggested Read 📖: Fedora's project leader has suggested something to tackle age verification

from It's FOSS https://ift.tt/PJC5XaB
via IFTTT

FOSS Weekly #26.13: Age Verification Added in systemd, Systemd forked, Btrfs Subvolumes, New Backup Tool, Yazi Manager and More

Age verification has suddenly become the most heated topic in the Linux world and it’s not slowing down anytime soon.

Distributions are already picking sides. Void and Garuda Linux have outright rejected the idea. The privacy-focused Android distro GrapheneOS isn’t entertaining it either. Meanwhile, Fedora is exploring whether an Apple-style API could be a compromise, though whether that satisfies anyone is another question.

Right in the middle of this, systemd introduced an optional birthDate field in its user records. On paper, it’s just metadata. In practice, it could become the foundation for age verification across Linux systemd and that’s exactly why it has triggered such a strong reaction.

What makes this situation more intense is the human side of it.

The developer behind the change has found himself at the center of the backlash. In our exclusive interview, he talks about the intent, the misunderstandings, and what it feels like to suddenly become the focus of one of the community’s most divisive debates.

And, in true open source fashion, the forks have already begun.

A new project, Liberated systemd, removes the birthDate field entirely. It’s currently more of a statement than a solution, a protest fork rather than something you’d realistically deploy but it shows just how strongly people feel about this direction.

This isn’t just another technical discussion. It’s about where Linux draws the line between compliance, privacy, and control.

And right now, that line is being tested.

Here are other highlights of this edition of FOSS Weekly:

• LibreOffice donation banner change.
• Germany backing the Open Document Format.
• Open source tools for improving docker workflow.
• Yazi file manager in action.
• A new crossword.
• And other Linux news, tips, and, of course, memes!

📰 Linux and Open Source News

LibreOffice is adding a donation banner to its Start Center in the upcoming 26.8 release. It will sit at the bottom of the screen, showing a short message and an image, and the plan is to display it after each update or once a month.

Germany's new Deutschland-Stack, the country's sovereign digital infrastructure framework, has named ODF and PDF/UA as the only permitted document formats for public administrations at every level, federal, state, and municipal.

Canonical has joined the Rust Foundation as a Gold Member, backing the organization with $150,000 a year. Given that Ubuntu 25.10 already shipped with Rust rewrites of sudo and Coreutils, the move formalizes what was already a clear strategic direction.

The Thunderbird team has launched public roadmaps covering Desktop, Mobile, and Services, all written in non-technical language and organized around goals rather than bug lists.

🧠 What We’re Thinking About

Two versions of the LiteLLM Python package, 1.82.7 and 1.82.8, were briefly live on PyPI before being pulled after researchers found a backdoor planted by the hacker group TeamPCP. The payload harvests SSH keys, cloud credentials, Kubernetes secrets, and environment files.

This is another instance where supply chain attacks targeted open source projects.

YOUR support keeps us going, keeps us resisting the established media and big tech, keeps us independent. And it costs less than a McDonald's Happy Meal a month.

Support us via Plus membership and additionally, you:

✅ Get 5 FREE eBooks on Linux, Docker and Bash
✅ Enjoy an ad-free reading experience
✅ Flaunt badges in the comment section and forum
✅ Help creation of educational Linux materials for everyone

Join It's FOSS Plus

🧮 Linux Tips, Tutorials, and Learnings

If you've ever hit a full root partition while home sits half empty and wished Linux could just borrow space from where it's available, Btrfs subvolumes are the answer. Unlike fixed partitions, subvolumes share a single storage pool and draw from the same free space as needed.

If you've been meaning to try a shell that doesn't require hours of dotfile tweaking before it feels usable, Fish is worth a look. Syntax errors are highlighted in red as you type, commands autocomplete from history, and tab completion pulls descriptions straight from man pages.

I ran into an issue related to appimage and shared my experience in this troubleshooter.

If you use Docker heavily, these open source tools can help your container workflow.

📚 eBook bundle on AI

Inside this 20+ eBook library (partner link), you’ll gain expert insights from practical lessons like RAG-Driven Generative AI and the LLM Engineer's Handbook.

Your purchase supports the World Central Kitchen organization.

👷 AI, Homelab and Hardware Corner

CZ.NIC has launched the Turris Omnia NG Wired, a fanless rack-mountable router running OpenWrt. This is an expansive device and it has come at a time when non-US made routers are being banned in the United States.

✨ Apps and Projects Highlights

Vykar is a new open source backup tool from the BorgBase team that does encrypted, deduplicated backups configured through a single YAML file.

📽️ Videos for You

It’s not every day you find a terminal tool that even non power users can enjoy. In this video, I showcase a terminal-based file manager that makes file navigation and search surprisingly fast.

Subscribe to It's FOSS YouTube Channel

💡 Quick Handy Tip

In Okular, you can change the highlighting style. Go to Settings -> Configure Okular. Here, in the "Annotations" tab, select the highlighter you want to tweak.

Now, click on the Edit button on the right, and under "Styles," change the highlighter's name, type, color, and opacity.

You can also use the Add button to create a new highlight style. Give it a name, configure its appearance and then click on Ok and Apply to set it.

🎋 Fun in the FOSSverse

A new crossword after ages; this one will test your knowledge of systemd ctl commands.

Meme of the Week: Brave heroes!🗿

🗓️ Tech Trivia: On March 28, 1986, computers made their debut in the fight against AIDS. A team at Roche Laboratories published a groundbreaking paper in Science magazine laying out the theoretical basis for the HIV protease molecule, one of the first times computational methods were used to study the virus.

🧑‍🤝‍🧑 From the Community: One of our FOSSers has started a thread on privacy-focused content creators worth following. If you have any suggestions, be sure to add them!

from It's FOSS https://ift.tt/vLzNJYl
via IFTTT

Inside the Systemd Age Verification Debate: Developer Responds to Criticism

Dylan M. Taylor is not a household name in the Linux world. At least, he wasn’t until recently.

The software engineer and longtime open source contributor has quietly built a respectable track record over the years: writing Python code for the Arch Linux installer, maintaining packages for NixOS, and contributing CI/CD pipelines to various FOSS projects.

But a recent change he made to systemd has pushed him into the spotlight, along with a wave of intense debate.

At the center of the controversy is a seemingly simple addition Dylan made: an optional birthDate field in systemd’s user database.

The change, intended to give Linux distributions a lightweight, optional mechanism to comply with emerging US state laws on age verification, was immediately met with fierce resistance from parts of the Linux community. Critics saw it not merely as a technical addition, but as a symbolic capitulation to government overreach. A crack in the philosophical foundation of freedom that Linux is built on.

What followed went far beyond civil disagreement. Dylan revealed that he faced harassment, doxxing, death threats, and a flood of hate mail. He was forced to disable issues and pull request tabs across his GitHub repositories.

He has shared his opinions in a blog post that the change is not "age verification":

A common misconception about this change is that it introduces "age verification" to Linux. It doesn't. None of the PRs I submitted involve ID checks, facial recognition, or third-party verification services. You can enter any value, including January 1st, 1900.

So, we interacted with Dylan over email to ask him about the controversy, the code change, and the personal toll it has taken.

Q: A lot of backlash isn't about the code change, but about what it represents. Do you (also) think this is the first step toward OS-level surveillance, even if unintended?

A: Moving towards OS-level surveillance is definitely not the intention. This field is almost completely inconsequential for surveillance because the signal reported in most cases will be “yes, this user is 18+”. One interesting thought I’ve had is actually that if we strip this signal to websites/apps and do not report an age range at all, but the vast majority of users DO, that actually gives us a more unique and trackable browser fingerprint. Privacy-wise, it’d be wise to “blend in” and always report the most common value. Tor browser thinks this way to make users less fingerprintable. Also, most users have something much more trackable and sensitive on their computer stored in a way that is usually unencrypted: their browser cookies.

Q. You say this is "just attestation, not verification" but we know that infrastructure always gets repurposed later. This is where the legit fear lies. Today it's birthDate. Tomorrow could it be location, identity, or verification tokens? I understand that you are providing a workaround but where should we draw the line between compliance and resistance?

A. Funny you mention that, location is already a field in userdb. Like birthDate, this field is also trivially nullable, stored locally, and can be set to anything. As long as we are talking about a user self-attesting a date - especially with the ability to enter any value we want - we aren't in the realm of identity tracking. I draw the line at when a third party internet-connected service is doing validation of ID. Let’s be honest though, I strongly believe such a thing isn’t possible on a FOSS operating system environment unless they could control what was bootable on the device at a firmware level, enforce signatures to ensure that you couldn’t boot something unrestricted, remove the ability to be root, and block LD_PRELOAD so signals couldn’t be faked. There’s probably more ways to circumvent that. What I’m trying to say is real ID verification on Linux would be awfully hard to implement, and I guarantee you, nobody would put up with it. They’d fork to a version that doesn’t have it immediately as a protest. Right now, we’re considering implementing something akin to the date pickers that were ubiquitous when signing up for internet services in the early 2000s where it’s just an honor system. Things like actual ID checks and/or facial scanning + age estimation would be just too incompatible with Linux where we have the freedom to change whatever we want to.

Q. Let's be direct. Should FOSS projects adapt to laws they fundamentally disagree with? Because these kinds of laws are certainly in conflict with what a lot of Linux users believe in.

A. Unfortunately, in a lot of cases, the answer is yes – at least for any distribution with corporate backing. The small independent distributions are much more flexible to refuse as a protest. If we ignore regulations entirely, we risk Linux being something that companies are not willing to contribute to, and Linux may be shipped on less hardware. I’m talking about things like Valve and System76 (despite them very vocally hating these laws). That does not help us; it just lowers the quality of software contributions due to less investment in the platform and makes Linux less accessible to the average person. We need Linux and other free operating systems to remain a viable alternative to closed systems.

Q. Do you think regulations like these will reshape desktop Linux in the next 5-10 years where we might have "compliant Linux" and "Freedom-first Linux"?

A. Unfortunately, yes, to some degree this is likely. I imagine the split will be mostly along the lines of independent distributions and those with corporate backing. We’re already seeing it as far as which distributions plan on implementing some sort of age verification and which ones are not, and that sucks. I’d rather nobody have to deal with this mess at all, but this is the reality of things now. As I said in the previous response, the corporate-backed distributions really have no choice in the matter. Companies are notoriously risk-adverse, but something like Artix or Devuan? Those are small and independent enough where the individual maintainers may be willing to take on more risk. I was actually thinking about what this would look like if we added it to Calamares and chatting about that with the maintainers before that thread got brigaded by bad actors posting personal information and throwing around insults. I completely support the freedom for the distro maintainers to choose their risk tolerance. If the distribution is based out of Ireland or something (like Linux Mint) without these silly laws in the jurisdiction the developer operates in, I think that we should leave it up to them to make a choice here. If we add a date picker to the installer (and I think we should), it has to be built in a way that at build time there is a flag to enable or disable the feature. We can even default it to off, and corporate distributions using Calamares or those not willing to take the risk could flip it on if they need to. That way if maintainers of the distributions do not wish to collect the birth date, they won’t have to, and no forking is required to patch it out. I do strongly feel we need to enable the user to modify their own system as they see fit.

Q. Were you surprised by the intensity of the backlash? Did the criticism make you rethink your decision?

A. I understood that the change was not going to be popular, but I was expecting civil discourse and a level-headed response. Things like death threats and harassment are not okay, especially when it negatively impacts unrelated third parties. However, the doxxing (and I am NOT just talking about my name, email and resume – that stuff is on my website, and is reasonably public. I don’t commit with a pseudonym and I think it’s reasonable to critique my contributions), hate mail, racism, homophobia, anti-semetism, editing of my photo, turning my profile picture into memes and making fun of my appearance, etc. made me lose a bit of faith in the FOSS community. I’m really disappointed at the reaction. We should do better than this. There are plenty of people I strongly disagree with. Reacting in this manner is childish and uncalled for. If you’re trying to convince someone they are wrong, being aggressive about it and trolling is not exactly compelling. It will make them feel even more justified in some cases.

Q. How are you personally dealing with being at the center of a controversy like this?

A. Honestly, not super well. The death threats are extremely unwelcome and trying to get my social security number, phone number, and address taken down from pastebins and anonymous imageboards is not exactly how I planned to spend my time, to put it lightly. I am just trying to filter out the noise and focus on addressing the constructive feedback, but people have been posting my information and harassing me on basically any repo I have on GitHub, in the issues/PR tabs. I’ve had to disable those. I find it disgusting that people are willing to place takeout orders with my information which makes businesses waste food, and it really wasn’t funny sending Mormon missionaries to my house. They pay for their own gas, and that nonsense isn’t fair to them. It’s not fun to see the nasty side of humanity, and people were saying some pretty unhinged stuff to me and about me. Nobody appreciates that. On a positive note, I know a good bit of other maintainers and developers in the Linux community and all of them were super supportive and reached out to see if I was doing okay. I appreciate that. Shoutouts to those of you from the Arch Linux project and Universal Blue/Bazzite who made sure I was doing well. Thank you for that.

Q. Would this backlash demotivate you from continuing your contribution to Linux and open source in the future?

A. I still love Linux and free and open source software, and would like to stay involved. Whenever I find something that is personally useful to me and I identify a way I can improve it or add functionality, I love to contribute back to the original authors and the community. It’s great to be able to be involved, and I still plan on doing so. It’s very obvious that those harassing me are a very small but vocal part of the FOSS community and I try to see the better side of people. I would really appreciate if the personal attacks stopped though. It’s childish and unconstructive.

Closing Thoughts

Wherever you stand on age verification laws or Dylan's code change, the response he received is unwarranted. Harassment, doxxing, and death threats have no place in any community, let alone one that prides itself on openness and collaboration. There are more civilized ways to disagree.

Dylan's answers reveal the real dilemma: how does an open source ecosystem, built on the principals of freedom and decentralization, respond to legal pressure from the real world? His position is that corporate-backed distributions may have no practical choice. That is rational, even if it is uncomfortable for many to hear.

from It's FOSS https://ift.tt/3AI6B85
via IFTTT

Troubleshooting "AppImages require FUSE to run" on Linux

In my scenario, I had downloaded VidBee video downloader in AppImage format on my Fedora Linux. It was integrated well with the system with GearLeaver.

However, one day, it suddenly stopped opening. I could see the icon in GNOME search but clicking on it did not do anything. The app was not opening.

My instinct was to jump in the terminal, go to the directory where AppImage file for this application was located and run it like a bash file. Yes, that's a legit way to run AppImages from the terminal.

And when I did that, it showed me "AppImages require FUSE to run".

abhishek@fedora:~/AppImages$ ./vidbee.appimage 
dlopen(): error loading libfuse.so.2

AppImages require FUSE to run. 
You might still be able to extract the contents of this AppImage 
if you run it with the --appimage-extract option. 
See https://github.com/AppImage/AppImageKit/wiki/FUSE 
for more information

The key part in my case was this line:

error loading libfuse.so.2

It was missing libfuse version 2. The solution that worked for me was to install fuse2 lib and dev package. If you are facing this issue on your system, that's what you have to do.

And you must pay attention to the libfuse version it is complaining about. As it turns out there is libfuse2 and libfuse3 and some AppImages use version 2 while some version 3.

I'll come to the installation instructions in a moment.

Understanding the "fuse" confusion

The AppImage applications require a software library called Filesystem in Userspace (or FUSE in short).

Now, the thing is that most Linux distributions already come with FUSE support. But the version becomes a problem.

Recent distro versions have fuse3 installed. And many developers package their applications in AppImage using fuse3. In my case, Ghostty terminal worked fine as its AppImage needed fuse3 and it was already installed on my Fedora:

Appimage requiring fuse2 failed while appimage requiring fuse3 ran successfully

I checked the list of installed applications on Fedora and I was surprised to see that fuse2 was also installed already. As you can see below, package fuse.x86_64 has version 2.9.9.

abhishek@fedora:~/AppImages$ dnf list --installed | grep -i fuse
fuse.x86_64                                          2.9.9-24.fc43                        <unknown>
fuse-common.x86_64                                   3.16.2-5.fc42                        624cbc92582d4ecfae4c58749abde4f8
fuse-overlayfs.x86_64                                1.13-4.fc43                          <unknown>
fuse3.x86_64                                         3.16.2-5.fc42                        624cbc92582d4ecfae4c58749abde4f8
fuse3-libs.x86_64                                    3.16.2-5.fc42                        624cbc92582d4ecfae4c58749abde4f8
glusterfs-fuse.x86_64                                11.2-4.fc43                          <unknown>
gvfs-fuse.x86_64                                     1.58.4-1.fc43                        updates

So, my system had both fuse2 and fuse3 installed and still one AppImage worked (Ghostty) and other (Vidbee) did not.

What's even more strange is that the same Videbee AppImage was working a few weeks ago.

Anyways, when something like this happens, my gut feel which comes from years of experience is to either reinstall the software library or install the associated development package.

And that's what I did here as well and it worked for me.

Installing fuse2 and fuse2-dev

If your system was complaining about libfuse2, you should install libfuse2. You must know which Linux distro and version you are using here.

🚧

If you are using an Ubuntu-based distribution, your package is named as libfuse2 or libfuse2t64 or libfuse3. You must never attempt to install a package named fuse which is a different software altogether and installing it may result in a broken system.

On Fedora, I installed the following packages that fixed the issue for me:

sudo dnf install fuse fuse-d

As you can see in the screenshot above, it said fuse-2.9.9 was already installed but it also installed fuse-devel and fuse-libs in the process.

On Ubuntu 22.04, it should be available as libfuse2:

sudo apt install libfuse2

On Ubuntu 24.04 and newer, use:

sudo apt install libfuse2t64

Did it help you?

I would like to know that. Basically, all you have to do is to pay attention to what missing library and version it is complaining about and install it.

There is a troubleshooting page in the official AppImage documentation that you may want to check out.

If you are still facing issues with AppImage, please let me know in the comments and I'll try to help you out.

from It's FOSS https://ift.tt/2kZah1T
via IFTTT

Fedora Project Leader Suggests Linux Distros Could Adopt Apple's Age Verification API

Age verification laws don't seem to be stopping. California, Colorado, and Brazil, all have some version of the same requirement where OS providers must collect age data at account setup and expose it to apps through a real-time API.

Governments call it child safety, but plenty of people in the open source space call it something else entirely. The reactions have ranged from protest distros to a systemd fork to a BSD project that straight up banned users in affected regions.

Now, Fedora's Project Leader has said something that might give other Linux distributions a potential way out of this quagmire (no giggity).

What's happening?

A wall of text posted on Fedora's Discourse forum proposed a fairly ambitious architectural workaround that involved ripping out the networking code, with the original poster asking for feedback on it.

The thread went about how you would expect, and after a certain point, Jef Spaleta chimed in with a simpler take. There's no need for workarounds; instead, Linux distros could just adopt the same API Apple has already built and deployed, hooking it into the account setup process.

Jef further suggested that the implementation could run entirely locally through a unix socket or a dbus call, with no data leaving the machine.

He backed this up by pointing out that GNOME already ships parental controls with account creation time controls that can designate an account as restricted and a signal other software can query.

The catch is that GNOME built its system around content categories (OARS) rather than age ranges, which is what the laws specifically describe. Jef thinks that gap exists because the people writing the bills had never heard of OARS and defaulted to age brackets instead.

He wrapped up, noting that:

So now its a matter of hopefully, just adopting a standard API, probably the Apple API, so that all Linux OSes can expose a standard parental controls that meets legislated expectations. Its not about being clever, this is a standardization process with legislation as a forcing function.

Keep in mind that Jef used the word "could" for a reason though. This is one person's viewpoint in a community forum thread, not a Fedora roadmap commitment or a formal cross-distro proposal. Whether it goes anywhere depends entirely on whether other maintainers decide to treat it as a starting point.

And that is not a given. Getting Linux distributions to agree on a shared standard is already a massive ask. Getting them to adopt an Apple API specifically, for laws a big chunk of the community considers overreach, is a hard sell.

from It's FOSS https://ift.tt/4AFPHvC
via IFTTT

Android-Based GrapheneOS Refuses Age Verification, May Exit Regions That Enforce It

In a post on X (formerly Twitter), GrapheneOS has made its position on age verification laws clear; it won't comply, regardless of where the demand comes from.

The team goes on to state that its OS and services will remain available worldwide, with no personal information, identification, or account ever required. And if that means its devices can't be sold in certain regions, then the project is fine with that outcome.

GrapheneOS will remain usable by anyone around the world without requiring personal information, identification or an account. GrapheneOS and our services will remain available internationally. If GrapheneOS devices can't be sold in a region due to their regulations, so be it.

— GrapheneOS (@GrapheneOS) March 20, 2026

For context, GrapheneOS is an open source, privacy and security-focused mobile OS built on the Android Open Source Project. It is developed by a team of developers under the GrapheneOS Foundation, a Canadian non-profit.

This aggressive stance comes at a time when age verification laws have started targeting something much closer to the base than websites or social media—the operating system itself.

We have covered this before, but the short version is that age verification laws are spreading fast, and operating systems are now in the crosshairs. Brazil's Digital ECA landed first, coming into force on March 17 with fines of up to R$50 million per violation.

California's Digital Age Assurance Act follows on January 1, 2027, requiring every OS provider to collect a user's age at setup and relay it to developers via a real-time API. Colorado has a similar bill in the works, targeting January 2028. It's not just the US either; the UK, Australia, and Singapore are all running their own implementations from the same playbook.

For people tired of data harvesting, AI slopware, and the vendor lock-in baked into proprietary OSes like Windows and macOS, something like GrapheneOS is one of the few alternatives left.

What about their Motorola collab?

Earlier this month, Motorola and the GrapheneOS Foundation announced a partnership at MWC 2026. The final product is set to be a Motorola smartphone shipping with GrapheneOS pre-installed, expected sometime in 2027.

But this statement by the GrapheneOS team raises an obvious question about that deal. Motorola is a commercial hardware vendor selling devices globally. If it ships a phone running GrapheneOS and that phone lands in a region where age verification is legally mandated at the OS level, Motorola has a compliance problem even if GrapheneOS does not.

The simplest resolution is also the most obvious one: Motorola just does not sell GrapheneOS-powered devices in those regions. Its regular Android lineup continues there, and the GrapheneOS phone ships only in markets where no such law applies.

This way, GrapheneOS keeps its no-account policy intact, and Motorola keeps its broader commercial operations running without issue. Whether that is the arrangement they eventually land on is not confirmed. But given how direct GrapheneOS has been, it is difficult to picture any other outcome.

from It's FOSS https://ift.tt/fyGFP4U
via IFTTT