way that allows baking apps, enterprise and DRM to work with third party OSes.
* They should also work with User provided keys.

We need to address the EOL and right to repair situation.

* When OEM updates end, we NEED to have a proper way to continue using the device with third party software, such as postmarketOS. This means allowing the user to unlock or provide keys to continue using the device.
* This would reduce e-waste by extending the device’s life.

We also want to know how our devices work. OEMs should have proper, publicly accessible documentation on the entire boot process and unlock procedure.

**Why should we act now ?**

With ARM growing in popularity, I'm kinda afraid the open boot system we had until now on desktop will disappear too. If OEM lockdown becomes the norm on PCs too, it will be really hard, almost impossible, to reverse those changes. It’s basically our last chance to act.

**How should we act ?**

Well, the EU has some places we can reach and some projects that kinda match what we want. We can associate ourselves with the right to repair movement, and try to prevent the entire ecosystem from being locked down.

So you should contact your MEPs. Explain that all of this is needed for fair competition, sustainability and right to repair.

Also try to reference existing proof of things like this already existing. Reference Windows PCs on ARM with UEFI support, x86 PCS allowing Secure Boot management and all. If you have additional arguments, please give them to other people so we can really argue to our MEPs.

You should state that it should be a right and that it’s not really weakening security, as user keys can do the same thing as OEM keys.

If you are in the states, I don’t know what you can do. So if someone has an idea, please post it.

Btw, English isn’t my native language, so there are going to be mistakes in this text, or repetition due to my lack of vocabulary. This is also my second time posting this. The first time I used AI translation which some people didn’t like. So I translated it all myself, even if some parts are not exactly how I want them to be, you'll probably get the idea. But be aware that my last two grades in English were 6.5/10 and 5.5/10.

Also, I’m not a professional, those are my opinions and I basically gathered as much info as I could to not spread misinformation. I removed some part on IBoot due to people saying I wasn’t quite right in the last post. So if you see anything wrong, please correct me and ill edit the post.

Should we name this “Right to own” ? Idk I just thought of that.

https://redd.it/1or04gp
@r_linux

Made Dog Tags for my first Linux Festival coming up!
https://redd.it/1or2ctg
@r_linux

Hyprland 0.52 out now!
https://hypr.land/news/update52/

https://redd.it/1or9ejv
@r_linux

Why don't more people use Linux?

Dumb question, I'm sure, but I converted a few days ago and trying it out on my laptop to see how it goes. And it feels no different from windows, except its free, it has a lot of free software, and a giant corpo isn't trying to fuck my asshole every ten minutes.

Why don't companies use this? It's so simple and easy to install. It works just fine. And it's literally completely under your own control. Like, why is this some weird, hidden thing most people don't know about it?

Having finally taken the plunge, I feel like I'm in topsy turvy world a but.

Sure, my main PC is still windows 10 because, sadly, so much goes through the windows ecosystem so I do need access to it. But, that wouldn't be a problem if people wisened up to this option.

https://redd.it/1or97hk
@r_linux

First time using Linux — chose Mint!
https://redd.it/1orjcav
@r_linux

Resize Images to a Target Size via Right-Click | I updated the legacy nautilus-image-converter
https://redd.it/1orjit9
@r_linux

I’m still using Windows on my gaming PC but I’m getting very close to just switching to Linux
https://redd.it/1orl2cl
@r_linux

$830 Bug Bounty to Whoever Fixes the Lenovo Legion Pro 7 16IAX10H's Speakers on Linux
https://github.com/nadimkobeissi/16iax10h-linux-sound-saga

https://redd.it/1orn1f1
@r_linux

This Week in Plasma: Virtual desktops only on the primary screen
https://blogs.kde.org/2025/11/08/this-week-in-plasma-virtual-desktops-only-on-the-primary-screen/

https://redd.it/1orm8el
@r_linux

Reverse engineering UPS battery status USB HID protocol with Linux
https://popovicu.com/posts/how-to-reverse-engineer-usb-hid-on-linux/

https://redd.it/1orui67
@r_linux

Modern Linux Runs On Old Pentium 133Mhz (tiny core linux)
https://www.youtube.com/watch?v=-DiK5FDpBTg

https://redd.it/1orv1u7
@r_linux

Interval timer (Nord theme)
https://redd.it/1orvzls
@r_linux

'Amelia' Installer for Arch Linux

Amelia is a fun Arch Linux installer with a TUI.

It covers the basics and a bit more, all in a single shell noscript.

Screenshot: here

It supports Ext4/Btrfs, Sd-boot/Grub, Swap Partition/Swapfile/Zram Swap, LUKS encryption, Secure Boot signing, Menu Auto-Navigation, Auto-Partitioning and other features.

Qemu/Kvm,Virtualbox,HyperV,VMware are also supported.

The noscript is meant to be executed from within a booted Archlinux installation media.

Cheers!

https://redd.it/1os2r6t
@r_linux

I built sbsh: a tool to make terminal environments reproducible and persistent

I wanted to share a small open-source tool I have been building and using every day called **sbsh**. It lets you define your terminal environments declaratively, something I have started calling **Terminal as Code**, so they are reproducible and persistent.

🔗 Repo: [github.com/eminwux/sbsh](https://github.com/eminwux/sbsh)

🎥 **Demo: u**sing a [bash-demo profile](https://github.com/eminwux/sbsh/blob/main/docs/profiles/bash-demo.yaml)

https://i.redd.it/2ajxmkfzx30g1.gif

Instead of starting a shell and manually setting up variables or aliases, you can describe your setup once and start it with a single command.

Each profile defines:

* Environment variables
* Working directory
* Lifecycle hooks
* Custom prompts
* Which shell or command to run

Run `sbsh -p bash-demo` to launch a fully configured session.
Sessions can be detached, reattached, listed, and logged, similar to `tmux`, but focused on reproducibility and environment setup.

You can also define profiles that run **Docker** or **Kubernetes** commands directly.

📁 Example profiles: [docs/profiles](https://github.com/eminwux/sbsh/tree/main/docs/profiles)

**I would love feedback from anyone who enjoys customizing their terminal or automating CLI workflows. Would this be useful in your daily setup?**

https://redd.it/1os28yw
@r_linux

AndroSH - Professional Multi-Distribution Linux Environments for Android
https://redd.it/1os7nep
@r_linux

automatically unlock and mount external luks-encrypted partition using security token without requesting passphrase

I have a luks-encrypted partition on a usb flash drive. LUKS key slot 0 contains a passphrase/word. Key slot 1 references a security token (yubikey). When I plug in the flash drive, I want it to automatically unlock, map, and mount the partition using the security token without requesting the passphrase/word. But it always requests the passphrase/word.

This is my setup: A usb flash drive contains 4 partitions. It is not present at boot. The 4th partition is encrypted with LUKS. It contains a btrfs fs. (This is a learning experience. The drive does not contain important data.)

Key slot 0 contains a password. Priority is marked as normal. (Ultimately I intend to remove the password in slot 0, so the security token will be the only way to unlock.)

Key slot 1 references a FIDO2 token (yubikey). Priority is marked as preferred. It does not require a pin.

Key slot 2 will reference a backup token. Not yet installed.

/etc/crypttab contains:

verbatim-p4-luks-09 UUID=xxxxxxxx-...xxx - fido2-device=auto,key-slot=1

CRYPTTAB(5) says: The /etc/crypttab file describes encrypted block devices that are set up during system boot. However, I know that it is also used when plugging in an external drive.

There is no entry in fstab. Distribution is fedora.

This is what I want to happen when I plug in the flash memory (token is already plugged in):

Using the token in slot 1, request a touch on the key, then automatically unlock the partition, map it with the name from crypttab, then mount it at /run/media/<me>/whatever. (Later I will insert a line in fstab to specify a mountpoint.)

This is what actually happens: It requests a passphrase/word.

If I enter the password specified in slot 1, then it unlocks the partition, maps it with the name from crypttab, then mounts it at /run/media/<me>/whatever. (The mapping and mounting are what I want, but I don't want it to request a password.)

sudo dmsetup ls

No devices found

PLUG IN DEVICE AND ENTER PASSWORD

sudo dmsetup ls

verbatim-p4-luks-09 (252:0)

mount | grep verbatim

/dev/mapper/verbatim-p4-luks-09 on /run/media/<me>/xxxxxxxx...xx type btrfs (rw,other options)

If I cancel the password request, the open fails. I can then open it with cryptsetup open and mount it with mount. (Or mount -a after I insert an entry in fstab.)

sudo dmsetup ls

No devices found

PLUG IN DEVICE, CANCEL PW REQUEST. OPEN FAILS

sudo cryptsetup open --type luks /dev/sda4 verbatim-p4-luks-09

Asking FIDO2 token for authentication.

👆 Please confirm presence on security token to unlock.

TOUCH KEY

sudo dmsetup ls

verbatim-p4-luks-09 (252:0)

sudo mount /dev/mapper/verbatim-p4-luks-09 /mnt

mount | grep verbatim

/dev/mapper/verbatim-p4-luks-09 on /mnt type btrfs (rw,other options)

Some things I have tried or thought about:

(-1) I need to intercept the "hot plug" and get it to issue a cryptsetup open and mount before it requests the password.

(0) I tried removing the password from slot 0. It still requests a passphrase/word (I must cancel the request), so it seems the "hot plug" software does not look at the LUKS data at this point.

(1) I tried an fstab entry, but no success. I tried an entry for /dev/sda4 (using its UUID), and specifying the type as crypto_LUKS, but a message said it was an unknown type, even though mount identified the partition as crypto_LUKS.

(2) Maybe a udev noscript could mount it. But I think it should be achievable without going down that path, just by getting the right options in the luks slots, crypttab, and maybe fstab.

(3) Maybe a systemd definition?

(4) Can dmsetup achieve anything?

(5) Can systemd-cryptsetup achieve anything? It can attach the device, but I think cryptsetup open does that. How to invoke the attach automatically?

This is a long post. Sorry you have so much to absorb. I'm not sure how much is relevant. Thank you for investing the time to read it.

Maemo Leste - 2025 Daedalus release
https://maemo-leste.github.io/maemo-leste-2025-daedalus-release.html

https://redd.it/1osbhiv
@r_linux

Consolidated archive or torrent of many of the useful, stable, and popular versions of Debian or similar highly versatile distros?

Kind of a strange use case, but a friend and I are creating bug-out data cache hard drives for possible apocalyptic scenarios, and we're wondering if there's a way we can download or torrenr them all at once instead of needing to pick and choose them all.


I should clarify, we intend to use these on scavenged computers, including everything from consumer tech to embedded systems and computerized appliances like cash registers and order systems. So older 32 bit versions from the 90s and early 2000s are just as important.

We also intend on archiving Windows XP and 7 for our data caches.

https://redd.it/1osb1jv
@r_linux

A Lost Unix Treasure: Fourth Edition Tape Finally Found
https://ponderwall.com/index.php/2025/11/09/unix-lost-tape/

https://redd.it/1osi8wp
@r_linux

What happened to Unix Stickers?

In the 2010s Sticker Mule offered Unix Sticker Packs for just 1$ per package.
I am out of stickers and wanted to order a new pack today and just realized that sticker mule now does not offer these packages anymore and instead wants to have 5$(!!) for each sticker (completely insane, considering that you would get a full package for just a dollar back then).

Do you know about any other good shop that offers open source / technology / linux stickers in good quality?

https://redd.it/1oslr3j
@r_linux