The most popular desktop operating system today is still Windows, with its userbase roughly equally divided between Windows 10 and Windows 11. While we tend to focus on the marketing names used by Microsoft, like Windows XP, Windows 7, or Windows 11, their real name is still, to this day, Windows NT. Underneath all the marketing names, there’s still the Windows NT version number corresponding to the marketing name; Windows XP was Windows NT 5.1 (or 5.2 for the 64bit version), Windows 7 was Windows NT 6.1, and the current latest version, Windows 11, is Windows NT 10.0, a version number that’s been static since 2015.

Of course, version numbers don’t really mean anything, but it does highlight that yes, the Windows you’re using is still Windows NT, and thus, the operating system you’re using isn’t a part of the Windows 3.x/9x line, but of the NT line. And probably the first version of Windows NT that set us on this path is Windows NT 4.0 – with Windows 2000 sealing the deal, and Windows XP delivering the obvious knock-out punch.

Since Windows NT 4.0 turned 29 years old a few days ago, Dave Farquhar published a retrospective of this release, highlighting many important changes in Windows NT 4.0 that in my mind mark it as the true beginning of the shift from Windows 9x to Windows NT as Microsoft’s consumer operating system.

First, Windows NT 4.0 was the first version of Windows NT that shipped with the user interface from Windows 95. It brought over the Start menu, taskbar, and everything else introduced with Windows 95 to the Windows NT line, which up until that point had been using the same user interface as Windows 3.x. A default Windows NT 4.0 desktop basically looks indistinguishable from a Windows 95 desktop, and like the earlier versions of NT, it came in a workstation edition for desktop use.

Second, another massive, at the time controversial, change came with the graphics subsystem, as Farquhar notes:

And one change, easily forgotten today, regarded graphics drivers. Microsoft moved the video subsystem from user space, ring 3, to kernel space, ring 0. There was a lot of talk about Ring 0 versus ring 3 on July 19, 2024 thanks to the large computer outage on that day. In 1996, this move was controversial, for the same reasons. The fear was that a malfunction in the graphics driver would now be able to take down the entire system. But the trade-off was much improved performance. It meant Windows NT 4.0 could be used for serious graphics work.

↫ Dave Farquhar

Windows NT 4.0 delivered more than what’s highlighted by Farquhar, of course. A major new feature in Windows NT 4.0 was DirectX, as it was the first Windows version to come with it preinstalled. DirectX support remained limited in NT 4.0, though, so Windows 9x remained the better option for most people playing video games. Other new features were the System Policy Editor and system policies, Sysprep, and, of course, a whole slew of low-level improvements to both the operating system itself as well as its various server-oriented features.

Windows NT 4.0 also happened to be the last version of Windows NT which supported the Alpha, MIPS, and PowerPC architectures, although Windows 2000 retained support for Alpha in its alpha, beta, and release candidate versions. Of course, Windows would later expand its architecture support with first Itanium, and more recently, ARM.

As someone who was selling and managing computer systems at the time, Farquhar has some great insights into why NT 4.0 was such a big deal, and why it seemed to fare better in the market than previous versions of Windows NT did. He also highlights on particular oddity from NT 4.0 that’s still lurking around today, an oddity you really don’t want to run into.

There’s a lovely device called a pistorm, an adapter board that glues a Raspberry Pi GPIO bus to a Motorola 68000 bus. The intended use case is that you plug it into a 68000 device and then run an emulator that reads instructions from hardware (ROM or RAM) and emulates them. You’re still limited by the ~7MHz bus that the hardware is running at, but you can run the instructions as fast as you want.

These days you’re supposed to run a custom built OS on the Pi that just does 68000 emulation, but initially it ran Linux on the Pi and a userland 68000 emulator process. And, well, that got me thinking. The emulator takes 68000 instructions, emulates them, and then talks to the hardware to implement the effects of those instructions. What if we, well, just don’t? What if we just run all of our code in Linux on an ARM core and then talk to the Amiga hardware?

↫ Matthew Garrett

This is so cursed. I love it.

It’s not every day you stumble upon an X11 desktop environment you’ve never hard of, but today’s one of those days. The Orbitiny Desktop Environment is a one-person project, consisting of an entirely custom desktop environment written in Qt. Version 1.0 Pilot 4 was just released.

Built from the ground up using Qt and coded in C++, Orbitiny Desktop is a new, 100% portable, innovative and traditional but modern looking desktop environment for Linux. Innovative because it has features not seen in any other desktop environment before while keeping traditional aspects of computing alive (desktop icons, menus etc).

Portable because you can run it on any distro and on any live CD and that’s because everything gets saved inside the directory that gets created when the archive is extracted (this can be changed so that the settings go to $HOME/.config/orbitiny).

↫ Orbitiny Desktop Environment Gitea page

It’s got all the usual amenities like a desktop, panels, and so on, and a custom file manager. It’s also replete with a ton of small features that you don’t see very often, like full mouse gesture support on the desktop and a device manager that can enable/disable devices without blacklisting kernel modules. When you cut or copy a file, its icon will get a little emblem to indicate it’s on the clipboard, you can append and prepend files using simple drag-and-drop operations, you can set individual desktop directories for each virtual desktop, and much more.

Now, it’s technically not a full desktop environment, because it doesn’t have things like a session manager, power manager, various hardware configuration panels, and so on, but it can be run on top of existing desktop environments. While it has basic Wayland support, not all components work there, so X11 is the main focus for now.

Considering it’s a one-person project, you can’t expect a bug or issue-free experience, but that doesn’t mean it’s any less damn impressive. I honestly feel like there’s something valuable and interesting here, and I’d love for more people to get involved to see where this can go. There’s clearly a ton of love and dedication here, and the various unique features clearly set it apart from everything else.

If you have the skills, consider helping out.

Solène Rapenne, who writes a lot about and contributes to operating systems like OpenBSD and Qubes OS, has published a primer about what, exactly, Qubes OS is.

I like to call Qubes OS a meta operating system, because it is not a Linux / BSD / Windows based OS: its core is Xen (some kind of virtualization enabled kernel). Not only it’s Xen based, but by design it is meant to run virtual machines, hence the name “meta operating system” which is an OS meant to run many OSes make sense to me.

↫ Solène Rapenne

Rapenne explains the various ways in which isolated virtual machines are used in Qubes OS, and it’s easy to see just how secure Qubes OS’ way of doing things is. At the same time, it seems quite cumbersome to me as a regular user, and I don’t think I’m up for dealing with all of that. If you do security research, handle private or classified data, are a whistleblower or an investigative journalist, thoug, Qubes seems like a natural choice.

Interesting to note is that Rapenne used to use OpenBSD for her security work, but moved to Qubes OS because its virtual machine infrastructure is far more robust, and hardware support is better, as well.

AWS: Not even once. This prominent Ruby developer lost his entire test environment – which, ironically, was pivotal to AWS’ own infrastructure – because of a rogue team within AWS itself that apparently answers to no one and worked hard to cover up a dumb mistake.

On July 23, 2025, AWS deleted my 10-year-old account and every byte of data I had stored with them. No warning. No grace period. No recovery options. Just complete digital annihilation.

This is the story of a catastrophic internal mistake at AWS MENA, a 20-day support nightmare where I couldn’t get a straight answer to “Does my data still exist?”, and what it reveals about trusting cloud providers with your data.

↫ Abdelkader Boudih

Nightmare scenario doesn’t even begin to describe what happened here.

Security isn’t exactly a strong point of X11, and improving it is one of the main reasons why Wayland is such a vast improvement over X11. Just one of the many examples of X11 being inherently insecure is that keyloggers are entirely trivial on X11, because keylogger functionality is effectively built into it. Of course, this isn’t exactly news, and as Peter Hofmann details, there is an old X11 extension that adds somewhat rudimentary security to X11: the X11 SECURITY extension.

This extension is part of every X.org installation, but it hasn’t seen any meaningful work in a long, long time. What it does is allow you to do is set X11 clients as “trusted” and “untrusted”, where untrusted clients cannot interact with tusted ones. This provides some basic security – it actually prevents keylogging! – but only very basic, as Hoffman notes:

The thing is that it’s immediately clear that this extension — in its current state — is not the answer to “X11 is insecure”: You only have two classes, trusted and untrusted. That’s not enough. For example: When you run your browser as untrusted, you can’t simultaneously run some sandboxed program (Snap, Flatpak, …) in a meaningful way, because those two clients can spy on each other again. You want a proper per-client isolation instead.

Sandboxing plays an important role here. If you run programs “the traditional way” (i.e., full access to the filesystem and network), then an attacker can do all kinds of things and X11 keylogging is just one of a million concerns.

↫ Peter Hofmann

but it also happens to break a lot of things, and many applications simply don’t work with it at all. Oddly enough, Firefox has no issues with it, and will happily run in untrusted mode.

The biggest problem, however, is that untrusted clients only have access to exactly two other X11 extensions, which leads to a whole host of problems, like no scaling, broken keyboard layouts, no 3D acceleration, and so on. On top of all of that, it breaks clipboard functionality, as anything copied in an untrusted client cannot be pasted anywhere else.

As such, Hoffman concludes:

In its current state, I’d say the SECURITY extension is “somewhat useful”, but more work would have to be done. Both in X.Org and in the clients. You would have to come up with a new clipboard protocol, for example. And the list goes on. (See where I’m going with this?) It’s not that simple.

↫ Peter Hofmann

Since pretty much nobody adopted it when this extension came out in the ’90s, and it hasn’t seen much work since, the amount of work that would be required to bring it up to modern standards would be astronomical, and trying to get clients to adopt it would probably prove fruitless considering Wayland already exists, and offers all of the potential security benefits and then some. People often claim it would be “easy” to modernise X11, but just this one particular issue – security, kind of important – shows just how quickly the X11 house of cards comes crashing down if you try to do anything to drag it out of its ’80s and ’90s mindset.

Claude Code has considerably changed my relationship to writing and maintaining code at scale. I still write code at the same level of quality, but I feel like I have a new freedom of expression which is hard to fully articulate.

Claude Code has decoupled myself from writing every line of code, I still consider myself fully responsible for everything I ship to Puzzmo, but the ability to instantly create a whole scene instead of going line by line, word by word is incredibly powerful.

↫ Orta Therox

Oh sweet Summer child.

As a former translator, I can tell you that’s how it starts. As time goes on, your clients or your manager will demand more and more code from you. You will stop checking every line to meet the deadlines. Maybe you just stop checking the boilerplate at first, but it won’t stay that way. As pressure to be more “productive” mounts, you’ll start checking fewer and fewer lines. Before you know it, your client or manager will just give you entire autogenerated swaths of code, and your job will be to just go over it, making sure it kind of works. Before long, you realise there are fewer and fewer of you. Younger and less-skilled “developers” can quickly go over autogenerated code just as well as you do – but they’re way cheaper. You see the quality of the code you sign off on deteriorate rapidly, but you have no time, and not enough pay, to rewrite the autogenerated code. It works, kind of, and that will have to be enough. The autogenerated codebases you’re supposed to be checking and fixing are so large now, you’re no longer even really checking anything anymore. Quick, cursory glances, that’s all you have time for and can afford. Documentation and commenting code went out the window a long time ago, and every line of code scrolling across your screen is more tech debt you don’t care about, because it’s not your code anyway.

And then it hits you.

There’s no skill here. There’s no art here. You’re no longer a programmer. There’s no career prospects. Scrolling past shitty autogenerated code day in, day out, without the time or pay to wrangle it into something to be proud of, is the end of the line for you. Speak up about it, and you’ll be replaced by someone cheaper.

The first time I was given a massive pile of autotranslated text to revise, without enough time and pay to ensure I was delivering a quality product, I quit and left the translation industry instantly. Like programming, translating is part skill, part art, and I didn’t get two university degrees in language and translation just to deliver barely passable trash. I took pride in my work, and I wasn’t going to let anyone put my name under a garbage product.

Programmers, you’re next. Will you have the stones to stand by your art?

Wayback has been barely announced, and the first version 0.1 has barely left git, but it’s already time for version 0.2. It won’t surprise you to find out this isn’t some massive release, and you’d be right. It really only addresses a few very small bugs, while the developers also take the opportunity to highlight Wayback is now available on Gentoo GURU and Nixpkgs.

Late last year, we talked about Bismuth, a virtual machine being developed by Eniko Fox, one of the developers of the awesome game Kitsune Tails. Part of a operating systems development side project, Bismuth is a VM (think Java Virtual Machine, not VMware) on top of Fox’ custom kernel, designed specifically to run programs in a sandbox. The first article detailed the origins of Bismuth, and the second article delved into memory safety, sandboxing, and more.

We’re a few months down the line now, and Fox recently published another article in the series, this time explaining how a hello world-program works in Bismuth.

This is the third in a series of posts about a virtual machine I’m developing as a hobby project called Bismuth. I’ve talked a lot about Bismuth, mostly on social media, but I don’t think I’ve done a good job at communicating how you go from some code to a program in this VM. In this post I aim to rectify that by walking you through the entire life cycle of a hello world Bismuth program, from the highest level to the lowest.

↫ Eniko Fox

There’s a ton of detail here, and at the end you’ll have a pretty solid grip on how Bismuth works.

Servo is unique for a few other reasons, too. It’s managed by the Linux Foundation Europe with decisions made by a technical steering committee, not a big tech company. One of the main goals is to be an “embeddable web rendering engine,” meaning it’s not just for browsers—it could be a replacement for Electron or the Android WebView. Servo is also the first completely new browser engine in decades, so it’s taking lessons learned from mainstream browsers while building a new foundation.

↫ Corbin Davenport

At the moment, as Davenport notes, Servo is far from ready to be a daily driver browser engine. Tons of websites’ rendering is broken and some crash the browser altogether, and performance is nowhere near that of the other browser engines. This makes perfect sense, as Servo is still in heavy development, and there’s no massive corporation with endless money (and ulterior motives) backing it.

Still, out of all the various attempts at wrestling control away from Blink and WebKit, I feel like Servo’s the one with the most promise in the long term.

Stuck at the bottom of NVIDIA’s announcement of its latest graphics driver update is a section about the company’s plan for Windows 10 support. As we all know, Windows 10 will become end-of-life in October of this year, and like so many others, NVIDIA needs to deal with this. Before we get to Windows 10, though, NVIDIA also reminds users that a few very popular GPU generations will no longer receive driver updates after October of this year.

The company notes that GPUs based on the Maxwell, Pascal, and Volta architectures will Game Ready Driver in October 2025, after which they’ll only get quarterly security updates for another three years. These three architectures roughly correspond to the GeForce GTX 7xx, 9xx, and 10xx series and their mobile counterparts, as well as a few other higher-end cards from the same generations. The full list is available to see if your GPU will receive its last driver update in a few months.

As for Windows 10 support, the company notes:

Also, we’re extending Windows 10 Game Ready Driver support for all GeForce RTX GPUs to October 2026, a year beyond the operating system’s end-of-life, to ensure users continue to receive the latest day-0 optimizations for new games and apps.

↫ Andrew Burnes at nvidia.com

Considering half of Windows users are still using Windows 10, this is probably the correct policy by NVIDIA. Ideally this support would last even longer than just that one year, but with a company like NVIDIA you kind of have to take what you can get, because generous they are not.

BlueOS kernel is written in Rust, featuring security, lightweight, and generality. It is compatible with POSIX interfaces and supports Rust’s standard library.

↫ BlueOS kernel GitHub page

This is the kernel for the BlueOS operating system, developed by Vivo, a Chinese consumer electronics company. Sadly, all of the websites and documentation for BlueOS are written in Mandarin, making it virtually impossible to really get a grip on what they’re developing, and I certainly don’t trust Google Translate or whatever enough to give me a proper, trustworthy, and accurate translation.

I hope the company either hires some translators, or perhaps enthusiasts with the right skillset can provide some more insight over the coming years. It seems similar to Huawei’s HarmonyOS Next, and it’s apparently shipping on one of Vivo’s smartwatches.

Are you still using LinkedIn, the website where failed tech startup entrepreneurs go to die and “AI” influencers try to sell you on the latest version of the chatbot Florpium like a Utah mom trying to sell leggings that are totally not an MLM? If you are, and the other ten thousand reasons not to use the website incarnation of an ad for a personal injury lawyer along I-11 in Henderson, Nevada, weren’t enough, Microsoft just handed you another one.

LinkedIn removed transgender-related protections from its policy on hateful and derogatory content. The platform no longer lists “misgendering or deadnaming of transgender individuals” as examples of prohibited conduct. While “content that attacks, denigrates, intimidates, dehumanizes, incites or threatens hatred, violence, prejudicial or discriminatory action” is still considered hateful, addressing a person by a gender and name they ask not be designated by is not anymore.

Similarly, the platform removed “race or gender identity” from its examples of inherent traits for which negative comments are considered harassment. That qualification of harassment is now kept only for behaviour that is actively “disparaging another member’s […] perceived gender”, not mentioning race or gender identity anymore.

↫ Matti Schneider at the Open Terms Archive

Microsoft joined the chorus of pathetic, spineless US tech companies bowing to far-right extremism long ago, and this is just another sign that Microsoft, like so many other US tech companies, is pulling an IBM. They did learn from the best, after all, and it doesn’t surprise me one bit that all of these CEOs click their heels like the good little brownshirts that they are.

Anyway, LinkedIn has no value to anyone with even a gram of self-respect, and Microsoft’s other products are such utter trash they basically have to make you upgrade at the barrel of a gun. For those using their products – do you hate yourself that much?

You deserve so much more.

Adjusted for the inevitable progress of time, the Common Desktop Environment or CDE is the best desktop environment of all time, and no, I will not be taking question at this time. OpenBSD wasn’t yet graced by CDE’s presence, but this is currently changing as the first commit for porting CDE to OpenBSD has appeared.

It’s still rough around the edges and very slightly tested. I wouldn’t use is as a daily driver, it’s old unsecure code but it’s fun if you want to bring back memories.

↫ Antoine at the openbsd-ports mailing list

On top of that, this being the initial commit also means there’s probably bugs and other issues lurking in the code, so caution is definitely advised.