alt.hn

3/19/2026 at 7:59:40 AM

Store birth date in systemd for age verification

 https://github.com/systemd/systemd/pull/40954

by sadeshmukh

3/20/2026 at 4:38:56 AM

From the pull request:

> Stores the user's birth date for age verification, as required by recent laws in California (AB-1043), Colorado (SB26-051), Brazil (Lei 15.211/2025), etc.

The Brazilian law does NOT require this. This is a misconception, and likely based on an understanding of California's law being extrapolated to the Brazilian law.

They are almost complete opposites.

The Brazilian law (Lei 15.211/2025) puts the burden of age verification on *providers* of web platforms, app stores, or dumb terminals. Not on operational systems.

It also mentions "reasonable measurements" - which vary according to the type of content, platform, etc - and which are much less strict that anything written in California's or UK's laws regarding the same subject. It is far more based on individual risk assessment and purpose of the platforms themselves.

In all fairness, the Brazilian law is the most friendly to open source and the status quo. Even though I'm also worried about the long term results of this legislation, I'm somewhat relieved by the way it turned out.

by ameixaseca

3/20/2026 at 4:52:08 AM

I'm not sure how you would translate sistemas operacionais de terminais which is covered by the law, but to me it reads "terminal operating systems". If a terminal has its own OS, it is probably not "dumb" in any meaningful sense, and no one really uses terminals anyway except for retro enthusiasts. Even people still using, like, VM/MVS on a mainframe are connecting via a PC running a 3270 emulator.

Lei № 12.965 (2014) defines a terminal (which applies in Lei 15.211) as any internet-connected computer or device.

by bitwize

3/19/2026 at 10:38:26 AM

This should be the time for open-source developers to use their common sense to decide whether we should push back.

If California wants to create its own Protect the children operating system, it should bear the cost and responsibility for this alone, and not export any of the sketchy political agenda to the wider open source community.

by miohtama

3/19/2026 at 3:16:46 PM

It's the law. If you live in the United States, and a minor in California uses your OS that didn't check age, you could be liable for up to $2500 per occurrence. That can add up quickly if California schoolkids discover your OS does an end run around the law. When ruin is the alternative, compliance becomes non-negotiable.

by bitwize

3/19/2026 at 3:25:01 PM

Many distros disagree and are not complying. It’s very likely that this (and all similar bills) will be overturned after legal challenges. Noncommercial projects especially have a strong 1A case and we have already beaten one of these bills. Keep fighting.

by iamnothere

3/19/2026 at 3:40:11 PM

> It's the law

"There is no justice in following unjust laws." - Aaron Swartz (Guerilla Open Access Manifesto)

by aleph_minus_one

3/19/2026 at 4:43:48 PM

Nobody in their right mind can explain how locking down operating systems will protect children. It does not make sense. This is just another way to sneak in more mass surveillance and kill anonymous online presence, with most ridiculous excuses.

by miohtama

3/19/2026 at 3:28:58 PM

California laws apply to people living in California. Not the whole country.

by nvme0n1p1

3/19/2026 at 11:58:07 PM

Let alone the world.

by gasull

3/19/2026 at 4:09:16 PM

At some point you have to pick a jurisdiction. It's impossible to support all jurisdictions laws as a company, much less as a FOSS project.

by calvinmorrison

3/19/2026 at 3:28:40 PM

California can't govern outside California. Other states have discovered the legal limits of their soverignty quite recently. But it certainly argues against hosting in CA and furthermore, consulting an attorney.

by josefritzishere

3/19/2026 at 5:40:21 PM

If you have a connection to California, you can be sued in their courts. I don't know whether providing (not selling, that certainly counts) an OS to California residents from outside California counts as a connection, that's something you need to review with your legal team. One thing is certain though: you need legal counsel to do OS dev; the Terry Davis era has come to a close.

by bitwize

3/19/2026 at 7:08:18 PM

Then let Californians do their dirty work. They have no place in the broader open-source community or in the rest of the world. Nobody should care about them, except now about caring about blocking them.

The owner of the computer should decide what the computer does.

California is a soon failed bankrupted US state, and no one outside its borders cares what's going on there. Companies are leaving, people are leaving. Let them sink to the ocean with their idiotic laws.

by miohtama

3/20/2026 at 12:32:08 AM

Except systemd isn't an OS. xdg-desktop-portal is not an OS. None of these projects need to flop over and acquiesce to this overreach.

by wpm

3/20/2026 at 2:05:06 PM

This is optional functionality which a subset of their important customers want. You will continue to have options that do not make use of this feature.

As someone with children, I see benefits in how age verification will help me manage my kids relationship with technology. Even if it was not the law, I would choose products with support. The point of open source is to allow for both options.

by surajrmal

3/20/2026 at 6:44:35 PM

Linux and OSS has customers?

by monksy

3/20/2026 at 9:51:44 AM

Gasing the Jews was the law as well.

by egorfine

3/20/2026 at 1:59:24 PM

The two couldn't be more unrelated. The idea that age verification in an OS is bad is a niche position by a select few. You don't hear dissenting views on hackernews because the majority here belong to that group and going against the grain is down voted. On the other hand, you're comparing it to killing humans. Making everything into a moral dilemma cheapens the argument. Just because you disagree with the law doesn't give you moral high ground to ignore it. I think cookie consent questions are terrible but I'd not dream of not adding one if compelled by law

by surajrmal

3/20/2026 at 6:10:32 PM

This is an argument that the law sometimes is clearly in the wrong.

> The idea that age verification in an OS is bad is a niche position by a select few

I am pretty sure that's not true.

by egorfine

3/20/2026 at 6:43:49 PM

The author is not from the places where he claims that these are laws. The Californian law is not in effect.

Dylan M. Taylor's GH profile claims that he's from Durham, NC (which does not have this law). He also references to a draft to xdg-desktop-portal which has not been accepted. (Add parental controls to the Accounts portal: https://github.com/flatpak/xdg-desktop-portal/pull/1922)

I'm asking:

- What is this guy's personal interest in pushing this through? (It seems non-neccessary and is questionable at what the end goal)

- Who's political agenda is he sponsoring for this?

- Is he getting financially incentivized to do this?

by monksy

3/19/2026 at 11:40:28 AM

I don't mean to come across as a snob, or anything like that, but I find this PR really odd.

It's the authors first time contributing to this repo and it the feedback on the PR that was addressed is really odd, like some of it is super basic stuff, even if you're not familiar with the code base or the language.

Just an all round weird vibe.

by JellyYelly

3/19/2026 at 3:34:39 PM

> “The clang-tidy test failures appear to be pre-existing and don't seem to be related to my code”

I’ve seen Claude reproduce nearly identical comments, wonder if that’s a couidence

by mock-possum

3/19/2026 at 9:31:52 PM

Likely. Whenever I see that it usually means it itself created the test failures but won't admit to it!

by rleigh

3/20/2026 at 10:05:53 AM

Given that:

* LP had zero objections to merging this commit into systemd [1];

* Amutable CEO is confident they have a very robust path to revenue [2];

* It is Facebook that pushes age verification laws all around the world;

I sense that his new startup is exactly what we are afraid of: a way to prevent reverting of these patch and then actually enforce the upcoming mandatory KYC to use the computer.

[1] https://github.com/systemd/systemd/pull/40954#issuecomment-4...

[2] https://news.ycombinator.com/item?id=46785048

by egorfine

3/20/2026 at 1:01:50 PM

It's incredibly useful for adtech if all apps on Linux can access the user birthdate.

Surely this is a total coincidence.

by fidotron

3/20/2026 at 10:05:07 AM

I wonder who this https://github.com/dylanmtaylor guy is. Comes out of the blue and posts PRs into lots of open source repositories for this feature that should repulse every self-respecting human being.

And not only that, but he engages in communication with people in tickets and ignores all constructive criticism.

by egorfine

3/20/2026 at 8:52:28 AM

The hope that humanity has learned something from wasting its time clicking away completely useless cookie pop-ups on websites has probably died once and for all.

by sazz

3/19/2026 at 2:20:57 PM

I cannot express how disappointed I am to see open source projects giving in to complying with age attestation laws.

I feel like complying really undermines any first amendment arguments. Software is a first amendment protected form of expression, giving in before getting any actual threats from the state makes your participation seem voluntary.

Systemd's participation puts the entire world into compliance with a California law

by jprjr_

3/19/2026 at 3:28:12 PM

BSDs don’t use SystemD, neither do some distros. After they have been exposed here as collaborators I suspect we will see freedom-respecting distros move away from them. I myself have been neutral to weakly positive on SystemD until now, as they put forward some decent solutions to longstanding problems, but from now on I intend to stop using their software entirely.

As it turns out, the people who warned against “professionalizing” and corporatizing Linux were correct.

by iamnothere

3/19/2026 at 4:11:19 PM

Just to be clear and specific, formal engineering processes and corporate selling out are two orthogonal properties that should never be conflated. Stuff millions of people use shouldn't be slapped together as a "hobby" without careful testing and change control processes. It also should get sufficient (crowd)funding so it can get the attention it deserves.

by burnt-resistor

3/20/2026 at 12:13:03 PM

I disagree, I would much rather see my OS made by hobbyists like myself with the same goals as myself rather than big tech who definitely don't have the same goals and values.

It's one of the reasons I use BSD on my main machine. I think Linux has been infiltrated by big tech way too much.

by wolvoleo

3/19/2026 at 8:54:52 PM

No one actually complained about Linux becoming more "professional" in terms of meeting high engineering standards. Just about corporate control over the process. There was a study that found code with more F-bombs in the comments were actually more professional according to the engineering standard, in response to complaints from suits that swearwords in the code meant that Linux couldn't be taken seriously as professional software.

by bitwize

3/20/2026 at 10:01:33 AM

Given the LP history I am not surprised.

by egorfine

3/19/2026 at 3:16:45 PM

this is not attestation though? it's just parental controls, no?

by zeratax

3/19/2026 at 4:09:34 PM

Techbros gonna techbro... bending the knee to fascists and privacy traitors. The next law will groom something else and eventually it will be tech requiring digital identification and approval to use the internet.

by burnt-resistor

3/20/2026 at 1:34:41 PM

They are the fascist. They are the private companies getting in cahoots with the state for their own gains. It was always about money and thus power for them. Never about freedom.

by Ekaros

3/20/2026 at 2:03:25 PM

The rich have gravitated that way throughout history, from Marcus Licinius Crassus to the Business Plot to Citizens United. Greedy people gaining power to advance their greed no matter the consequences and suffering of others has and will always be a problem because it's an incurable flaw of human nature that must be regulated. The separation between church and state and wealth is required for the maintenance of individual freedom.

https://www.historyhit.com/marcus-crassus/

https://en.wikipedia.org/wiki/Business_Plot

by burnt-resistor

3/20/2026 at 6:47:48 PM

This is a dangerous precedent, and should be nipped in the bud, squashed, blended, spat on and flushed.

Acquiescing to (however veiled and excused) authoritarian overreach is not the way forward. The correct attitude towards this "Think of the Children but Really Think of the Advertisers' Profits" initiative is to let California (and other proponents) to figure out how they can do business without Linux or any other software that depends on it.

OSS is a bastion of freedom -- real freedom, freedom FROM, not American Freedom (freedom to abuse and exploit others). We must defend it. DO NOT COMPLY.

by btbuildem

3/20/2026 at 1:31:11 PM

Could someone clarify for a linux newbie like me... In practical terms, what does this mean? I'm on Debian so presumably Debian will eventually pick this update, and then what? When I upgrade my system I'll get a prompt asking for my date of birth?

by fdghrtbrt

3/20/2026 at 4:32:00 PM

hello,

as always: imho. (!)

idk the exact procedure which will apply to enter the birth-date on such a system, but if other comments are correct: just enter what you want!

there will be no real possibility to tie this to anything "legal" / to "enforce" any "official" check of lets say your passport or other governmental id.

and if in my personal opinion (!) the pretty crazy guy behind the systemd-project tries to introduce/enforce such a thing ...

then i think it'll be time to either fork the project or look at systemd-free linux distributions like devuan ~ a systemd-free fork of debian :)

* https://devuan.org

just my 0.02€

by t312227

3/19/2026 at 3:51:02 PM

"protecting" children by providing specific ages to data harvesters.

as per usual, liberal policy doing the exact opposite thing they claim it does.

by dirtikiti

3/19/2026 at 4:09:03 PM

for the california legislation there were no "nay" votes. it's disapointing this performatively protective stance permeates both dominant right-of-global-center parties in America, but it is "all of them"

by tylerritchie

3/20/2026 at 12:33:18 AM

Well yeah: Meta wrote the bill, Meta greases palms in their home state, Meta gets their bill unanimously passed.

by wpm

3/19/2026 at 7:05:18 PM

Pretty much the same laws in red and blue states yeah. It always gets confusing when Americans use the word liberal, everyone is a liberal, it never meant *your* liberty.

by lyu07282

3/19/2026 at 4:06:01 PM

It's not a liberal policy, it's an illiberal one bending the knee to feudal techbros.

by burnt-resistor

3/19/2026 at 6:54:46 PM

It's quite conservative. Liberalism means I can use my device with no laws in between.

by enoint

3/19/2026 at 7:34:46 PM

Not conservative (there's nothing traditional about this) or liberal, just surveillance authoritarianism.

by kmijyiyxfbklao

3/19/2026 at 8:12:40 PM

In the past, children were not allowed their own phone. To be particularly cautious, smartphones have not proven a net good; and we're 20 years in.

by enoint

3/19/2026 at 2:09:14 PM

Tangentially related, but does anyone know what Poettering's "cryptographically verifiable integrity" endeavor[0] is about yet?

[0]: https://news.ycombinator.com/item?id=46784572

by mzajc

3/20/2026 at 10:00:49 AM

Given that:

* LP had zero objections to merging this commit into systemd [1];

* Amutable CEO is confident they have a very robust path to revenue [2];

* It is Facebook that pushes age verification laws all around the world;

I sense that his new startup is exactly what we are afraid of: a way to prevent reverting of these patch and then actually enforce the upcoming mandatory KYC to use the computer.

[1] https://github.com/systemd/systemd/pull/40954#issuecomment-4...

[2] https://news.ycombinator.com/item?id=46785048

by egorfine

3/20/2026 at 12:22:05 PM

What other benefit is there to remote attestation? Because their "verification" stamp is just that. It's certainly not got any benefit for the user.

by wolvoleo

3/20/2026 at 1:02:19 PM

> What other benefit is there to remote attestation?

There certainly are benefits and they are huge. Like, I can make sure my servers are untampered, I would love that.

Problem is, that technology, once unveiled, will be inevitably used for surveillance. Like, online KYC required to use a computer and you cannot patch this shit out because your Linux build is attested and no banking or government website will let you log in unless remote attestation passes.

Sort of like what they do on Android devices.

by egorfine

3/20/2026 at 3:34:20 PM

> There certainly are benefits and they are huge. Like, I can make sure my servers are untampered, I would love that.

But who decides what is untampered and can you still modify stuff yourself. I don't want my servers to be immutable for example. And only be 'allowed' to do what the vendor wants me to.

But anyway, that is not really remote attestation. That is local attestation because you can see it on your own server. It's only remote if it attests to someone else.

And yes exactly, the second point is exactly why I hate remote attestation so much. Hope we can hack around it for a while but eventually they will stick that stuff in hardware, I'm sure. That will make it a lot harder.

by wolvoleo

3/20/2026 at 6:09:35 PM

> eventually they will stick that stuff in hardware, I'm sure

That's the endgame, totally.

by egorfine

3/19/2026 at 6:29:53 PM

It's about making sure you can't bypass systems like this-- or rather, that when you use your rights under the GPL to remove this privacy invading crud or just otherwise modify your software you'll be broadly banned from interacting with third party services.

by nullc

3/19/2026 at 3:31:26 PM

Probably what it says on the tin, TBH. If you hold the keys, it can strengthen security a lot.

by rcxdude

3/19/2026 at 5:49:00 PM

I assume all along that trusted computing is where this age verification stuff is planned to lead to eventually: https://en.wikipedia.org/wiki/Trusted_Computing#Criticism

by lyu07282

3/20/2026 at 9:31:17 AM

Trusted is such a misnomer. I would trust my computer a lot less if it would answer to them.

by wolvoleo

3/19/2026 at 2:48:43 PM

Instead of protesting, large corporations decided to ploy.

They cannot loose markets, like California or Brazil.

by zoobab

3/19/2026 at 12:53:47 PM

Where can I drop a file to always return 1969

by bravetraveler

3/19/2026 at 2:32:04 PM

I was thinking 1984, or if I can return a float, NaN.

by chainingsolid

3/19/2026 at 2:52:21 PM

Sure, not picky. A symlink to /dev/null for "I'm a grown-up/own this device" would be acceptable. Assumed one would put whatever value they wanted in the INI file :)

by bravetraveler

3/20/2026 at 12:28:06 PM

hello,

i'm always a fan of 1-JAN-1970

[eg. the "birth" of UNIX-like OSes unix-timestamp eg. "0" ;]

or

date -d @0

cheers a..z

by t312227

3/19/2026 at 3:42:38 PM

> Where can I drop a file to always return 1969

I am out of the loop: what is so special about 1969 concerning age verification?

by aleph_minus_one

3/19/2026 at 3:45:51 PM

I doubt I can do the observation justice, my mind went there thinking 'a moment before the Unix Epoch' and the more... well-traveled meme: 'haha funny number [dropping the leading 19]'. Any number would've worked just as well, it's not significant. I really just wanted to express my participation in this, if at all, likely won't be in good faith.

That said... an option for 'I could have declared an age/birth date but chose not to' seems preferable. I was talking about poisoning but this could be more productive. Any attestation would reasonably fail, sure, but it sends a potentially-meaningful signal [to someone].

by bravetraveler

3/19/2026 at 3:53:05 PM

> 'a moment before the Unix Epoch'

OK, "I am so old that already lived before the UNIX epoch even started" (or a year which breaks systems that cannot handle times before the UNIX epoch) sounds plausible. :-)

by aleph_minus_one

3/19/2026 at 4:19:20 PM

Fairly context dependent, however :) This attestation/verification topic (and 1969, presumably) keeps appearing in places where I doubt The Epoch is relevant!

by bravetraveler

3/19/2026 at 3:12:09 PM

It’s admin settable. So just sudo homectl it. You are presumably admin.

by renewiltord

3/20/2026 at 7:32:37 PM

Today it is.

A few years down the road it might not be.

In late 90s we would have laughed if somebody proposed this was going to be a thing, let alone that linux community will just go with it. Heck, I would not have believed systemd was going to happen.

And yet, here we are.

by strideashort

3/19/2026 at 3:14:26 PM

That's beside my 'point', but fine. I'm deliberately conflating things for humor, sorry it missed. I'll get serious/stop joking around. I have no interest in administrating this. Especially on a per-user basis (despite that being the only way this 'works', I'm generally opposed). I'd prefer a file to drop in /etc... like one would express preferences over, say, /usr.

It's entirely optional, I get that. I could 'just' not set anything. Spare your fingers. I want to poison it [or loudly opt out] without a lot of effort. This includes running N commands when a file to could effectively disable the signal.

Said differently: I don't want to configure the portal, I want to ~~break~~ mask it.

by bravetraveler

3/19/2026 at 6:21:53 PM

> Said differently: I don't want to configure the portal, I want to ~~break~~ mask it.

Since this is sd-userdbd we are talking about unless the used backend provides the value it is unset by default. And if you manage your home directory using sd-homed unless you explicitly set it it is also unset by default.

by NekkoDroid

3/19/2026 at 6:24:31 PM

I am aware, I kind of want a louder signal than doing nothing [which is a great option, I admit]. I quote myself:

> It's entirely optional, I get that. I could 'just' not set anything.

Why? Telemetry, mainly. I'd rather attestation [or whatever intends to use this] fail and make it apparently deliberate.

by bravetraveler

3/19/2026 at 6:36:40 PM

Well, to get something to fail you need an implementation that can fail. And since nothing is using this so far there is nothing you can get to fail. In the end something that implements the actual communication would end up probably defaulting to "under 13" or whatever if it somehow fails to retrieve any value (or maybe not, who knows), so I wouldn't realistically see even without this, getting the attestation to "break" would end up unlikely.

by NekkoDroid

3/19/2026 at 6:46:32 PM

Hypotheticals are truly exhausting! I had a wall of text and chopped most of it off. This started out as a joke and now it's dead, thanks.

The failure/assumption of under-13 or whatever, as a result of manipulation, is fine. I'm not actually trying to solution something though, jeez.

I find it more compelling to say, for instance, "x% of our users have chosen not to share their information"... rather than "y% have not set it". This category would almost surely be about as 'useful' (useless) as the 'do not track' header... and a concern for something other than systemd or even the portal (to a degree).

by bravetraveler

3/20/2026 at 2:41:29 PM

I think the loudest way you can protest is to use and support distros that do not have systemd. There are lots to choose from in 2026.

by herewulf

3/19/2026 at 5:18:50 PM

Stick a service unit in `/etc/systemd/system/` that is a oneshot type with `WantedBy=multi-user.target`, and which runs the appropriate homectl command for each user listed in /etc/passwd (likely just in a shell script).

by SAI_Peregrinus

3/19/2026 at 2:19:23 PM

I had to check the date; is not April yet

by petee

3/19/2026 at 3:49:33 PM

Will unincorporated distros who don't comply be illegal to use in the areas passing these laws? This isn't "obscenity" -- isn't there a first amendment argument for these projects?

by nazgulsenpai

3/19/2026 at 4:02:05 PM

There is a strong 1A argument, and one such law has already been defeated: https://netchoice.org/netchoice-wins-permanent-block-of-loui...

Bernstein v. United States set a precedent that has not yet been overturned.

by iamnothere

3/19/2026 at 4:36:46 PM

Thanks that's encouraging

by nazgulsenpai

3/19/2026 at 4:08:16 PM

This should fit lennarts hubris well.

This developer should be blacklisted from all open source projects, permanently.

by calvinmorrison

3/19/2026 at 12:28:30 PM

Pretty good implementation imo

by anotherhadi

3/19/2026 at 3:17:38 PM

Yeah, it's the most basic thing you could do that's not intrusive to the rest of the system. userdb is a local directory and most directories, like LDAP, have a DoB field. Even if these laws fizzle out the change would still be potentially useful for other things like parental controls apps.

by Spivak

3/19/2026 at 8:44:38 PM

How would this work for multiuser accounts? Mu kids all share the same account on the family computer.

by acuozzo

3/19/2026 at 12:42:55 PM

The context is that this is in response to California in the US potentially passing a law that requires age verification on the operating system level.

by noobermin

3/19/2026 at 3:03:22 PM

Traced back to Meta lobbyists. https://tboteproject.com/

by iAMkenough

3/19/2026 at 11:50:51 PM

Meta gives money to the Heritage Foundation? Wild.

by ahoka

3/20/2026 at 1:59:59 PM

That's not how I read this:

> Meta spent a record $26.3 million on federal lobbying in 2025, deployed 86+ lobbyists across 45 states, and covertly funded a group called the Digital Childhood Alliance (DCA) to advocate for the App Store Accountability Act (ASAA). But the operation extends beyond Meta.

> The Heritage Foundation funds three of six named DCA coalition organizations, staffs the advocacy pipeline from Capitol Hill to state legislatures, and has merged leadership with another coalition member.

by iAMkenough

3/19/2026 at 3:17:08 PM

there is no verification happening though

by zeratax

3/20/2026 at 10:02:59 AM

First they have to build infrastructure for the future mandatory KYC. So, age field comes first, then comes new Poettering startup to deny you modifications of your Linux, and finally you are not allowed to use a computer unless you present your ID.

by egorfine

3/19/2026 at 3:30:59 PM

There is in New York, Brazil, and probably other places too. Attestation is a foot in the door and will become verification when it is shown to be ineffective. And unless the law is defeated, it will provide precedent for further legislative intrusion into personal computing.

by iamnothere

3/19/2026 at 3:35:35 PM

Because systemd isn’t an operating system. It’s just providing a mechanism for the OS to store/lookup the user’s birthday. It’s up to individual distros to do the verification (should the law stand and OS vendors choose to comply)

by treesknees

3/20/2026 at 2:02:17 PM

It boggles the mind how so eagerly open source projects are trying to pave the way for these laws.

by curt15

3/20/2026 at 9:32:45 AM

True but I'm very much opposed to building the underpinnings for this stuff. If you build it they will use it.

by wolvoleo

3/20/2026 at 12:15:28 PM

Besides, my OS has no business knowing my date of birth whatsoever. All it should know is the account name I gave it which of course doesn't have to match my real name.

by wolvoleo

3/19/2026 at 4:06:06 PM

It's scary how much global surveillance is closing in to become a reality with states passing these lesgilations, in the name of "protecting children", but it just serves to collect citizent personal data...

And now they are creeping into open source projects too. What once was thought as the bastion of absolute freedom from the state

by flykespice

3/19/2026 at 4:10:20 PM

> and now it's creeping into open source projects too. What once was thought as the bastion of absolute freedom from the state

It is indeed scary is how compliant the open-source projects have become to the "governmental overlords". Where has the hacker spirit gone?

by aleph_minus_one

3/20/2026 at 6:49:09 PM

In my previous comment here.. I do question what's this guys motivation to do this. It's incredibly suspicious and I question the guys motives.

by monksy

3/19/2026 at 12:17:41 PM

Having this in userdb is not bad per se. We already have a bunch of PII in there.

by icar

3/19/2026 at 1:28:50 PM

I like the analogy of data as oil: polluting when it gets out.

I'd like to severely limit the amount of PII on the system.

by stuaxo

3/19/2026 at 3:40:17 PM

Interesting solution and I really expected systemd would be were this age validation would be placed if distros what it.

But if this becomes a thing in Linux for the distro I use (doubtful), I will abandon Linux after 30+ years.

I am rather confident OpenBSD will ignore this law and I expect other BSDs will to. If not, back to DOS :)

Note, I have a BSD on a coupld of old laptops for testing reasons. I test what I write in the BSDs to help find issues, that works well.

by jmclnx

3/19/2026 at 11:39:08 PM

You can always use a distro that doesn't use systemd or roll your own. Sure you lose the GNOME desktop environment, but if you ask me that's a net positive.

by coldacid

3/20/2026 at 4:20:16 PM

I have been successfully using the GNOME desktop environment for years on Guix System which uses Shepherd as its init. KDE is an option too.

Other, more traditional distros are out there that work fine with GNOME, etc with no problems.

by herewulf

3/20/2026 at 1:23:08 AM

I agree, but this could be an issue with all distros based in the US. From my reading of these laws, I think the CA or NY or IL law could easily morph into a US National Law. So all US based distros may need to do something.

I saw an article that supporting these laws could cost a distro maintainer up to 10000 USD per year. Sadly I lost the link, but the article made a lot of sense to me. So, many small distos cannot afford even 1000/year, I think this law could kill almost all small Linux distros. That will probably leave only RHEL, SUSE and Ubuntu, maybe Debian, but they would need funds donated to them from Ubuntu.

If the distro is in another country like OpenBSD, they could just ignore the law(s). That of course assumes the "other" country does not replicate what is happening in the US.

Right now I am hoping these laws are declared unconstitutional, but to be honest, with support by companies like meta and twitter, I expect we will see a national law sometime in 2027.

So in the US, we could be looking at locked down OS, unless you want to break "the law".

by jmclnx

3/20/2026 at 2:24:22 AM

I also recommend looking into Radicle, which can be used to develop git-based projects (including issues etc) in a distributed manner. It even works over Tor. In the future development of truly free software may become more risky.

by iamnothere

3/19/2026 at 3:41:48 PM

i dont like this

by bibimsz

3/19/2026 at 2:39:03 PM

This is absolutely ridiculous.

by bmlzootown

3/19/2026 at 9:17:14 PM

Thank you blue states for the stupidity.

by exabrial