I wonder how this one will end:


Will we figure out, that we could have had RPM Fusion enabled in by default all the time, or will we figure out that we can't have ?

I really hope for the former, it would make things better on many levels. Suddenly one could have functional nvidia drivers (almost) out of the box!

Fedora implements a new counting mechanism for ostree-based systems. If you want to opt-out from being counted a Fedora user, the article announcing the counting, is telling you:


I really love that 10 also uses A/B upgrades now. Makes updates so pleasant. You download and install the update and all it takes is a reboot to go out with the new version. No long waiting screens, no "upgrade in progress" etc. It doesn't even take 1 minutes where you are blocked from using your device and it's more robust to power failures.

Same is by the way true for Silverblue and if I recall correct OS. Really pleasant.

Hui, 33 is out 🎉

I'm currently thinking if I go for an upgrade and miss out on all the BTRFS magic that was implemented for F33 or if I go for a re-install but have to move all my stuff around and reinstall a ton of applications :blobfoxthink:

Originally I thought about switching to Silverblue but concluded that it simply might not be the right OS for me.

I'm not sure who thought that giving my Wayland session the same oom score as every other program would be a good idea.

Or to put it more constructive: I just wrote a systemd.timer to adjust my gdm-wayland-session's oom score, to no longer stand in line with other desktop processed to be killed. Let's see what happens :)

If you are new or inexperienced when it comes to SELinux and/or enjoy containers, this is a great talk to learn how to fix problems with it:


It becomes easy once you get things right and can help you a lot to keep everything where it belongs.

In there is currently one of the biggest discussions about git forges going on:


Main objective: Should Fedora development run on , a git forge written by Fedora contributors, or should it run on GitLab?

The discussion appeared after the CPE announced that they would go for a SaaS version of GitLab.

After reading a large amount of mails, I think is definitely the wrong choice here :/

Hope we can resolve this in a good way…

Enabling DNSSec on Fedora :fedora:

systemctl stop NetworkManager
sudo mv /etc/resolv.conf /etc/resolv.conf.old
sudo ln -s /run/systemd/resolve/stub-resolv.conf /etc/resolv.conf
systemctl enable --now systemd-resolved
systemctl start NetworkManager

That was easier than expected :blobfoxthink:

Shared on the "Fedora People" web feed collection:

Installing and configuring Folding@Home in Fedora

It's quick, it's easy and it's well isolated. So if you want and can, please go ahead and donate some compute power.

And here we go: A little article about federated ecosystems like the :fediverse: and :matrix: . And guess who is missing out on it? ! I want to change that and it would be great if you could help. Therefore I ask:

:fedora: Fedora, where are you?


Help us to get Fedora on board with all these awesome, new technologies we use every day already. :blobfoxwink:

Today I checked the in from . Looks usable on first sight. For most people that's a nice and easy step forward in browser security. Sadly I can't use it due to my integration with Yubikeys and other programs. But for most users who aren't using all this fancy stuff, It's a great option.

And for those worried "flatpak leads to outdated dependencies", nope, the version from registry.fedoraproject.org uses basically the same CI mechanisms as the RPM version.

I haven't been posting much recently. Was working on some Fedora IoT related topics in the past few days.

The system is definitely quite solid. It has some rough edges but those can be be ironed out.

Want to tame Firefox and make sure it follows your organization's regulations?

Here is my little write up on how you can do this on Fedora:


It'll explain how to generate a policy to enforce your DoH settings and also provide a very basic RPM spec file on how to deploy such a policy to your systems.

I spend some time of my evening tinkering with my notebook's settings and a UEFI update. In order to make it easier for you, I wrote a little summary on how I did it and how maybe your next firmware update looks like:


If you look for a hardening guide for your linux system, I can recommend "The practical linux hardening Guide" by trimstray.



1. It's based on SCAP policies.
2. It uses standards
3. It provides you with references and rationals, not just actions

This will allow you to consider whenever or not you should apply this configuration to your setup.

Show older
Sheogorath's Microblog

This is my personal microblog. It's filled with my fun, joy and silliness.