:

CALIFORNIA EXEMPTS LINUX FROM AGE-VERIFICATION LAW

DEV DESK1 MIN READ
MON, MAY 25, 2026

■ AI-SUMMARIZED FROM 1 SOURCE ▸ TIMELINE

California is moving to exempt Linux from its age-verification requirements after significant backlash from the open-source community. The amendment, proposed by the original law's author, addresses concerns that the mandate would be impractical for operating systems.

California's age-verification law, designed to restrict minors' access to adult content online, faced pushback over its requirement that platforms collect and verify user ages. Linux distributions presented a particular problem: the law's broad scope could force open-source operating systems to implement age-gating mechanisms, an unrealistic burden for volunteer-driven projects. The exemption recognizes the distinction between commercial platforms and open-source software. Linux maintainers argued that requiring age verification would either force them to block California users or compromise the free and open nature of their software. The amendment maintains the law's core intent while acknowledging practical limitations. The move reflects growing recognition in policy circles that tech regulations must account for different software models. The change still requires legislative approval, but bipartisan support appears likely given the proposal's origins with the original law's author.

■ SOURCES

Hacker News

■ SUMMARY WRITTEN BY AI FROM THE LINKS ABOVE

■ MORE FROM THE SECURITY DESK

U.S. federal prosecutors have unsealed charges against three Russian nationals accused of operating a bulletproof hosting service that supported ransomware gangs responsible for over $62 million in damages worldwide.

4H AGOIndustry Desk

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) warned that attackers are actively exploiting three vulnerabilities in Internet-exposed on-premises SharePoint Server instances. Organizations running affected versions must patch immediately.

4H AGOSecurity Desk

Tailscale disclosed a critical vulnerability in its SSH implementation that allowed attackers to gain root access through insecure argument handling. The flaw has been patched in recent versions.

6H AGOAI Desk

A new study found that social media platforms referred over 5.7 million visits to nonconsensual deepfake pornography sites between December 2025 and March 2026, with YouTube and X accounting for the majority of traffic.

9H AGOIndustry Desk

■ SUBSCRIBE TO THE DAILY BRIEF

ONE EMAIL, 5 STORIES, 06:00 UTC. UNSUBSCRIBE ANYTIME.