I was on a internal Slack call with team the other day, I ended up having to restart to Windows to do a screenshare and switch to Skype.
I ended up having to delay my working day by about 45 minutes while Windows decided to do a mandatory update without any granularity of choice on when is convenient for me. That's what is frustrating. I ended up being unproductive for a whole hour because Windows forced an update on me.
Windows definitely have to make it better as Troy suggests. The frequency is also costly.
It also gives you the option of re-trying the update "tonight" which takes up WAY too much of my cognitive load. "Tonight" doesn't appear to be configurable, or even well-defined, although an obscure knowledge-base article tells me it's between "2:00 and 5:00 a.m", which is nothing like my expectation of what "tonight" means. Does that run if my laptop is sleeping? What about if it needs to reboot? I really should know the answers to these questions ...
Pretty sure that "tonight" just dismisses the prompt until "tonight" at which point you'll see it again, it doesn't irrevocably schedule the update for "tonight."
Yeah, the important one it offers is "Not Now". If you tell it "Not Now", it will not install that update, period. Windows 10, by default, will install those updates automatically and pick a random time or immediately reboot.
If I'm out of town for 2 weeks, I cannot have my Windows 10 machine reboot, it runs the software for my security cameras and that can't start until I log back in. Thankfully, I set up Windows Update to not install updates automatically(Win10 Pro) way back when it came out and it has continued to stick. Major updates are a constant worry that they will finally break this forever when it shouldn't even be a concern in the first place.
I haven't used Windows since 7, but then it just did whatever it could (perhaps only download) until shutdown/restart. It might've asked if I wanted to, but I just said no, and then it did it's thing whenever I was shutting down anyway.
Is it not still like that? MacOS seems worse to me, since restarting when an update exists isn't sufficient: you have to remember to go back to the update and click 'update & restart'...
> Is it not still like that? MacOS seems worse to me, since restarting when an update exists isn't sufficient: you have to remember to go back to the update and click 'update & restart'...
IME OSX is way better, the shutdown update process is much shorter than on Windows (where it is frustratingly long) and not all updates require rebooting.
I only got around to updating my personal MBP to Sierra today. A major OS version upgrade took less time and messed with my stuff less than some Win10 updates have. :-/
This still isnt always useful. I work in an office that creates and runs CFD software. It often takes days, or weeks to run and the recent windows "feature" of rebooting when it wants to update with no way to shut it off has killed so many peoples work in progress. Its insane there is no ability to only update manually.
An officially supported channel that will let you select important security updates to install if and when you want to and not push anything else? Without relying on enterprise management features and the like? That would be interesting news to a lot of people, I'm sure, so please share what you know.
Maybe there is another Windows versions difference I am not aware of.
In my configuration this is still working. I went to services.msc and searched for "Windows Update". I stopped the service, went to its preferences and selected "Disabled" as startup type.
Pro 10 user here. Windows started wanting to update last week, but isn't because my group policy is set to notify for download and auto install, so all i had for the duration of the conference i was at was a notification.
If your CFD software isn't saving at least the last converged timestep in order to restart the calculation if there's an unplanned interrupt maybe you should implement such a feature! It's been a lifesaver for me many times.
Yeah we have some way of saving state but its unreliable as of right now unfortunately. Definitely gunna use this an opportunity to push it back into priority though thanks!
One of the reasons I choose a PC over a Mac is because I want to decide things for myself. Microsoft's updates seem very Appleish to me.
All they need is large text that says something like, "You are more likely to get viruses, malware, randomware, etc if you uncheck this setting." Heck, make them confirm the choice two or three times. Some people want to risk it, some people need to risk it. Let them, it's their machine and their data.
The victim is to blame. Microsoft's behaviors are well-known, so victims are to blame if they continue to use Microsoft platforms. CFD computation does not in any way require a Microsoft OS.
"Your shop runs SolidWorks? Don't worry! There's nothing intrinsic to CAD that requires a Microsoft OS. Switch to Linux!"
Implementations actually matter. Hordes of us would jump ship if we could, but convincing vendors to port flagship software, or even do something as seemingly straightforward as a license migration is never easy.
How many of these customers have actually bitched out their vendors for not porting their software to non-MS OSes? None?
Sorry, I have no sympathy. Look for alternatives, or roll your own. Or find a new line of business altogether. Whining about your OS vendor abusing you is getting really, really old now. Like an abusive boyfriend, they're not going to change, so it's up to you to make a change.
I'm not blaming the victim, I'm offering helpful input as they are developing a CFD product. As someone who sometimes is asked to review purchases/license extensions of CFD codes, the ability to restart a suddenly interrupted calculation with minimum data loss is a must.
The article also fails to mention that shutting down your computer and turning it back on will not install updates (by default). So if you regularly turn off your computer instead of rebooting it, the updates never get installed.
Then one day windows realizes, holy smokes, we have to install those updates now! And proceeds to restart your computer regardless of your update preferences, typically right in the middle of your business day.
Changing the updates to install on shutdown is slightly more challenging than disabling updates (it is hidden in an option about power settings on boot). So guess what people do?
I run two OS's on my computer. Sometimes the clock gets out of wack. Guess which OS decided to update during working hours because the clock got it wrong.
I can do one better. Every time I boot into windows (7) it sees my md raid1 drives with the metadata at the back (long story - I was trying to boot off it and didn't do a very good job), sees a valid GPT table but that the disk length is "too small" by a little bit...and "fixes" it without asking. So every time I boot back into linux I have to repair my partition table. It's gotten to the point that any time I consider updating or doing anything major to my windows install, step 1 is to physically unplug all my other drives.
It's an interesting problem.
Live updates without requiring a restart is going to be a complex task, how do you reload a library in use by a program without crashing it? Especially when Windows has a decade+ of software compatibility.
Their current solution is scheduling updates to periods when the computer is not in use. I think recently they added an option for you to define a set of hours where updates take place.
But the problem with this is that people don't treat Windows PCs like always-on devices like they treat mobile phones and tablets. So in those night hours the computer is off forcing daytime updates.
> It's an interesting problem. Live updates without requiring a restart is going to be a complex task, how do you reload a library in use by a program without crashing it?
> services: they are specifically designed to be updated and restarted
I write plenty of daemons (you call them "services"). What exactly do I write
specifically for them to be able to continue to run when a library is
upgraded?
Yes, but they continue to run while the library is being updated. That's the
point. They can get restarted once the update process finishes, which takes
a lot less time than be shut down, wait for update, and be started again.
From what I know, Windows doesn't allow a library to be replaced until it's
not used by anything, which is more intrusive and is IMO the root cause
(though indirect) why people hate updating Windows.
Sorry, I meant things like dependency management among services.
I don't think systemd supports what you are asking but it shouldn't be too hard to write a service that restarts other services if their shared libraries change?
They don't, the program keeps using the old library until it's restarted. Some Linux distributions restart daemons when they or their dependent libraries are updated, but that can't be done for desktop software. Firefox sometimes notices it's been updated and pops up a warning with a "Restart Firefox" button (which keeps the session state), though AFAIK it's only for updates to Firefox itself, not for any of the libraries it might have loaded.
If you never restart a Linux desktop (or at least log out), you will be running outdated libraries, even if you run updates in the background.
(The best solution would be what Android does, where every program is supposed to know how to checkpoint itself, and they are forcefully restarted on a upgrade, transparently to the user. But even there, updates to system libraries still require a full reboot.)
Only since Microsoft bought them out. Skype used to be a fantastic piece of reliable telephony software. Now it's a fantastic piece of NSA-backdoored garbage loaded with ads.
Linux (and other Unixes) have been doing live updates to the entire system since .. basically forever; Except for the kernel, there is very rarely a need to restart. And they let you restart the kernel on your own schedule. Windows Kernel developers chose a different set of file system semantics, and that is what makes it hard on Windows.
In fact, if you can't afford the restart even when you schedule it, there's ksplice and a variety of similar solutions that can switch to a new kernel without a restart.
I did have firefox behave weirdly once after an upgrade until I restarted it, around v15 or so -- but I believe even that is no longer an issue; at the very least, I haven't had any issue with upgrading firefox while using it, and restarting it a week later.
That's actually not entirely true. Updates to a shared lib require restarting all running programs that use that lib. Not a full reboot, but probably a service restart or you're not protected by the update.
I think rebooting the entire system to make sure all apps and libraries are reloaded is fine (I do that on linux servers at times if I made a big update and can spare the downtime). Making a user-friendly interface to only restart apps that need restarting sounds complicated.
But whatever windows does is way worse, I dread seeing the "please wait while Windows is configuring your updates" screen. I have an SSD, rebooting Windows takes less than 30 seconds, it's a non issue. But those update installs can take a long time and your computer is completely unusable while that happens.
It's also frustrating when that happens while shutting down because I normally turn off my computer's power outlet when I'm done (it switches off the rest of my equipment) so I have to wait patiently for Windows to allow my computer to shutdown before I can do that.
1) Windows update installed just security updates instead of potentially disruptive crap "features". The epitome of that, is of course forced update to Windows 10. Ads in Explorer is a close second. This would reduce the frequency of updates significantly as well, which would also help.
2) Windows update would use a sane default of not rebooting you while you are in the middle of something.
There's a setting that you can do where windows installs update in the background, with no user intervention, but IFF it doesn't require a reboot, and asks otherwise. But this setting requires Group Policy (or being part of a domain), so it's not available to non-Pro Windows customers (and it's a very esoteric option users won't know about anyway).
You can also reduce the frequency of updates with "install updates for windows only", but you can't really restrict yourself to only security updates (unless you run Windows 10 Enterprise LTSB edition, which you don't).
Actually the best thing for Windows, both usability and security wise would be to make Windows 10 Enterprise LTSB edition the version of Windows people use.
I am not sure that it's really feasible to decouple feature and security updates though. With Microsoft releasing two major feature updates a year, how many variations of this can they support if anyone along the way decides to freeze their current set of features and only get security updates for them?
Regardless, as a heavy Win10 user across several machines I've found the whole "disruptive" / "spyware" / "crapware" FUD being pushed by some HN posters to be way overblown. Yea, there have been a few annoyances such as the OneDrive ad that showed up a month or two ago, but these are all extremely minor compared to the mountains of advertising and tracking crap we get hit with every day from web sites, apps, and search engines.
> With Microsoft releasing two major feature updates a year, how many variations of this can they support if anyone along the way decides to freeze their current set of features and only get security updates for them?
As I said, it is totally feasible because Microsoft is already doing it with LTSB.
I love the way he's compared the people who tell you to turn off auto-updates with anti-vaxxers; it's quite an apt analogy.
Microsoft shares part of the blame here for pushing features that the user clearly doesn't want through updates (especially to the major OS version). Look at the recent ads in Windows file explorer for one example. A lot of the advice to turn Windows Update off is a misguided response to Microsoft's own bone-headed moves in recent years to install bullshit that the user doesn't want.
I still sort of regret installing Windows 10 to this day because of the obnoxious Cortana bar it foisted upon my start menu that I can't get rid of. And yet not installing Windows 10 would've left me less secure with an OS hitting EOL for security updates much sooner.
Microsoft definitely shares some of the blame for this precisely because they have automatically "opted in" their users to stuff they don't want during past updates. Stop the bullshit, Microsoft.
Yeah, see, I don't even know what a GPO rule is, and I'm more technically inclined than 99% of the users out there. I'm sure there are some people that can totally customize Windows 10 to their liking and get rid of all of the anti-user stuff, but it's such a small proportion of the overall home userbase as to be statistically insignificant.
I don't feel it's quite an apt analogy, since anti-vaxxers have fully imaginary fears of adverse consequences (vaccines causing autism), while people who disable windows update do it after suffering real adverse consequences of forced updates. A good firewall would protect from WanaCrypt and everything else distributed via opening SMB ports on random IPs over the internet (correct me if I'm wrong), so you should be safe even if you've disabled Windows Update for a legitimate reason. A legitimate reason like "this Windows runs on a medical/factory/etc. device that CANNOT go offline to install updates willy-nilly".
No, unfortunately not - it spread using SMB internally on LANs, but travelled internet-to-LAN by "regular" phishing. It downloads its payload off the internet, but most good firewall would allow that (was the WannaCry payload detectable by virus scanners at the time of the infection? A "good" firewall might be one expected to intercept and scan all downloads).
> A legitimate reason like "this Windows runs on a medical/factory/etc. device that CANNOT go offline to install updates willy-nilly".
"Cannot go offline" implies that it's operationally critical. If you operate such devices, it is an absolute imperative that you have a procedure for taking them offline regularly for updates (not "willy-nilly" and anyone using that word about running a two-year out of date OS on a critical device is objectively not qualified to run them - and anyone buying such a device that can't be upgraded isn't qualified to buy them (and anyone making such a device...)).
If you operate such devices, it is an absolute imperative that you have a procedure for taking them offline regularly for updates
In some contexts that simply isn't a viable strategy. As an extreme example, consider something like an implanted medical device that needs to run 24/7 for the rest of a person's life, which can only be replaced via surgery under hospital conditions, and for which any failure is already a life-threatening event. Of course that kind of device probably isn't going to be running an OS like Windows, but it makes the point. In fact, the USSS has reportedly had the standard wireless update facility disabled in such devices for prominent public figures who might be at risk of being attacked that way.
Some equipment used in hospitals or to run other essential infrastructure might be within the realms of running a "normal" OS like Windows but still be in a position where any time out of service is extremely expensive in one way or another, so routinely disrupting operation to apply updates still isn't acceptable. There are also contexts where the device is regulated and making any change at all requires re-approval -- a legitimate and serious conflict when faced with this kind of security risk if the situation when a regulated device goes out of spec can also be serious.
You need different security strategies for this kind of environment, which rely more on external controls. You can't just say everything must be able to come out of service at frequent intervals for security updates, and you can't just handwash the problem away by calling people who understand the issues "unqualified". It's a far more complicated problem than that, and often there are no completely satisfactory arrangements.
Yes, things are complicated, but airlines manage to routinely take $100m devices out of service for days to months for servicing, so it seems like a bad excuse that a hospital can't plan around taking any given device offline for a few hours every couple of years.
But it's not every couple of years, is it? The patch for the current widespread problem was released just a couple of months ago, and there have been more security patches for other things since then.
Also, those $100m devices aren't in service 24/7/365. No-one takes an airplane out of service in mid-flight to apply a security update.
Sorry, the two years was a reference to Windows XP, of which there were also way too many installs still around (although possibly not on critical devices, but all the more irresponsible to not have upgraded them, then).
> No-one takes an airplane out of service in mid-flight to apply a security update.
On medical devices, where the PC is a terminal or controller for the rest, like RTG or CT machines, you don't get Windows shell and launch the app. You boot the computer, it will boot straight to the control app and the app actively prevents switching to something different. You can only use this controller app on the machine.
The folks at hospitals are not going to fight with such an expensive machine, not even for updates - if something goes wrong, they would be to blame, they can live without that.
A better option is to open "gpedit.msc", then open "Local Computer Policy -> Computer Configuration -> Administrative Templates -> Windows Components"
Then spend an afternoon going through each option, setting enabled/disabled for everything you don't want or don't recognize.
You can easily disable entire subsystems like Cortana, tips, telemetry, camera, biometrics, error reporting, games, Homegroup, Defender, Windows Store, and a whole bunch of other garbage.
last time I checked with people suffering from Windows 10, the shit still keeps annoying them, even after all is disabled. something changed on that front?
Unfortunately I've had Windows 10 turn OneDrive integration back on even after disabling it. That was literally the nail in the coffin for me; I've since uninstalled Windows 10. I'm still using Windows 7 for games. Anything else is done on Linux.
I'm thinking of making my next desktop with a support for giving a virtual Windows machine access to a video card -- near native performance, but Linux for the host OS.
Yup, I'd strongly consider something similar. But I'd have to seriously consider the security implications: giving Windows access to the graphics card could end up being more hassle than it's worth.
Or the free O&O ShutUp10 tool provides a nice GUI to edit a lot of these settings (no more Cortana integration is one)...
https://www.oo-software.com/en/shutup10
After having mainlined Linux for so long i kinda forget how closed source platforms keep producing these seemingly magical utilities for tweaking all manner of things.
But then i get myself thinking of Gnome, and how i have seen similar tools sprout for tweaking it in recent years...
This may work for highly technical users who also don't mind putting lots of configuration work into their Windows OS, but for the rest of 99.9% of home users out there, it doesn't help.
The cleverest move was to integrate Cortana with local file and application search, which many users likely use as a universal command line/shortcut (hit windows key and just start typing). I find that when I disable Cortana, local search becomes severely degraded. If anyone has any tips on how to fix this, I'd appreciate them.
The degradation is intentional. In Windows phone, speech to text and quiet hours doesn't work, and the accuracy of shape writing is significantly reduced, when Cortana is switched off.
Ms is trying to turn Cortana into the Google play services of Windows So they can consensually(forcefully) collect data from every windows device.
I'd guess that means speech to text and shape writing run at least partially on servers? Not hugely surprising but it seems really bizarre that quiet hours would need it. Probably some integration with cortanas contact database so that some people's messages come through? Even that seems incredibly lazy and ill thought out.
There's no need to guess, at least in the PC version of Windows 10 Microsoft explicitly says this is the case. No one should be surprised that this is the case for Windows, given that other speech/shape recognition is similarly degraded with cloud support turned off.
Some years back Google went through a period of trying to hitch every new, and a bunch of existing, services to Google Plus.
It just so happens that the guy in charge of G+ was a former MS exec. And over at MS it was typical to attempt to hitch your project to any other project coming down the grapevine (the Google people actually called this "cookie licking" on stage after he had left the company).
And if you look back you could see this going on with .NET, you can see some semblance of this with Surface, and now with Cortana.
I guess it can be seen as some kind of in-office bandwagon politics.
Really? Well that sucks considering if I go to turn Cortana on, Windows 10 says Cortana isn't available in my region.
I see apparently there are workarounds to get Cortana in all regions but most people aren't going to bother. If we're getting degraded local search because of where we live that seems pretty dumb.
I never use the "Windows Search" anymore, i hate it. It's slow and useless. I always disable the service. Then again, searching with standard windows search is probably my biggest annoyance on Windows
Do not use cortana for your local search but an alternative tool, I think locate32 has some issues with win10, maybe agent ransack[1] will do or voidtools' everything[2].
> I love the way he's compared the people who tell you to turn off auto-updates with anti-vaxxers; it's quite an apt analogy.
This is a good analogy, but does it work in different circumstances? (Apologies for the derail)
Over on Android, the apps have got so big (and the storage was until recently so small) that automatic updates _cannot_ be installed - the new apps are too big, the phone is full. What do we do then?
In my case, buy a large SD card to put the apps on, then find out that only the primary storage can hold apps. I think this limitation has been lifted in more recent Android versions, but - of course - I can't upgrade.
Moving all my photos and ebook .pdfs off did alleviate the burden somewhat, but hasn't completely solved it.
My current workaround for very large apps is to uninstall, redownload, install. Apparently, holding both the update and the installed app uses much more space than doing a fresh install.
Sony has fairly unique system: Install an app, move it to the SD card, the update will install it back to internal memory. You have to move it again, manually. And again, and again, after each update.
Or just leave them all on the internal system, until a system utility wakes up to the fact that there is not enough space, and suggest moving apps to the sdcard. After few rounds of updates, rinse and repeat.
You're generalising over a whole bunch of devices with different specs. Sure, there was a problem with updates on the 8gb devices. But that was few hardware cycles ago, around 2.3. Now, those devices are around 1% usage, mostly have dead batteries and other components and it's hard to find a new Android device which lacks space for upgrades.
What to do? Upgrade the hardware. It's not supported anyway. Modern Android devices which have updates published do not have this problem anymore.
What mid-range device only comes with 8 GB? And what price range are you using to define mid-range? Is there even a low-range (lower than 8 GB) if 8 GB seems to be the absolute minimum, since the OS won't even fit on something smaller?
I had this problem all the time on a Galaxy S4. I don't remember now whether this was a 16GB or 32GB model; either way, it quickly filled up pretty much entirely by system data and apps. Having an external SD card for everything else didn't help much, and I spent over a hear with phone storage hovering barely above 500MB (if you go below, half of the stuff on the phone refuses to work).
Another interesting tidbit is that as storage fills up, Android slows down.
I suspect this is an artifact of using the Linux kernel. As said kernel puts a focus on IO ops, and the EXT file systems spend a whole lot of time looking for contiguous free space before committing a write.
Thus if your app do a bunch of writing (say syncing local data with the cloud) at start, it will start quite slowly on a near full Android device.
In the past, many Android devices had problems with the quality of the flash - as it aged, it also slowed down. Occasional reset and full trim helped for a while, until it didn't help anymore. The poster children of this problem were Asus Transformer Prime and the original Nexus 7.
I have this problem with a 16 GB flagship. Android alone uses 6.50 GB of my storage. I'm on Android 6.0.
Apps take up 6.32 GB of storage on my phone. The remaining space is taken up by the app cache. This isn't useless information like you'd expect, but it turns out it is data that is vital to the operation of my apps. I clear it fairly often, but it fills right back up again within a day.
Luckily I have an SD card slot, so I have space on my phone, but Google does not like expandable storage. Probably because they are a cloud organization or something.
I personally like to stay on a fairly new phone, but I think it is stupid that your phone can become obsolete within a few years. If the radios are still compatible with the cell towers, manufacturers should be obligated to support them. If you can't support your phones, don't churn out so many crappy phones.
I know times are different, but I used a Motorola Razr V3 from 2004 to 2011. It worked just fine for the entire time. Obviously internet sucked, but I was going to school in a place where the internet barely worked anyways.
If you just want a phone for texting, calling, and maybe as a GPS here and there, there is no good reason to buy a new phone other than planned obsolescence.
16 GB is now small by modern smartphone standards, unfortunately. Your hardware is obsolete. It is what it is. The minimum memory size on new non-budget smartphones is now 32 GB, and on the balance of things, the correct trade-off has probably been made to keep making progress rather than maintain perfect compatibility with older hardware. The technology and industry is still evolving so rapidly that your phone does become obsolete in a few years. It's not stupid, it's a logical consequence of the rate of progress. All sorts of technologies on automobiles went obsolete very quickly within the first decade after the invention of cars, too.
I still resent having to upgrade my 8G Moto G over essentially this issue. The lack of visibility into what's using the space is infuriating - the pie chart does not cut it.
The lack of visibility is partially because apps can store files in various locations.
Outside of the app binaries and such you have their core data, stuff that gets generated or downloaded on first run.
Besides that you have a cache directory pr app that is housed outside of the tree location of the binaries and main data.
More recent Android versions have introduced yet more complications on this via the storage access framework, by providing APIs that give apps limited RW access to "external" storage areas without having to request the related permission.
And that's without going into the whole history of just what "external" means when dealing with Android file storage.
A more accurate analogy would be going to the doctor to get vaccinated, only to discover that it comes with a dental checkup and cleaning. Some people are going to love that. Others are going to wonder why they got something that they did not ask for. A few are going to become paranoid and claim that the doctor also injected a brainwashing drug (even if there is no grounds for their claim).
Microsoft needs to deliver updates in tiers in order to regain trust. Simply dividing it up into mandatory security updates, optional bug fixes, and optional feature upgrades would go a long way to addressing that even if the default is for all three tiers.
> A few are going to become paranoid and claim that the doctor also injected a brainwashing drug (even if there is no grounds for their claim).
Except that there were demonstrated cases of MS inserting the "brainwashing drugs" on the updates. Many people had legitimate copies of Win XP bricked by XPA, MS alti-malware broke install a couple of times in Win7 (and off-line machines were bricked by DRM more than once), and, finally with Win10 we've officially got the spyware and adware coming through updates like people were long expecting.
This is only a problem if your phone is completely full and you refuse to delete anything off it, no? Most of the space on my phone is taken up by photos and videos I've taken off it, and I wipe out the local copies periodically since everything is backed up in Google Photos anyway.
Also for forcing restarts for everything. Back when I cared I needed to I used to use ksplice to patch linux without rebooting. If Microsoft made something like this it would stop people switching off the updates.
And not restoring jack shit. I wouldn't mind Windows Update so much if it could competently restart my applications and restore my Explorer windows, but the only thing it does every fucking time is make the taskbar icons disappear until I force-restart the Explorer process.
Though I would still mind it a lot for the insanely slow and unhelpful update process at shutdown, every update requires half an hour of shutdown as the machine does who the fuck knows what with an unhelpful throbber telling you it's at 30% of some arbitrary process you've no idea about and which looks exactly as if the entire thing had crashed.
Wow, yeah, that'd be a nightmare. I hadn't even considered that use case. I was just thinking of typical desktop use cases.
In a similar vein, imagine that you're ill-advisedly using a Windows server to host your node for cryptocurrency mining, and then it restarts when you're not around. You could lose serious amounts of money from that.
> Microsoft shares part of the blame here for pushing features that the user clearly doesn't want through updates (especially to the major OS version). Look at the recent ads in Windows file explorer for one example. A lot of the advice to turn Windows Update off is a misguided response to Microsoft's own bone-headed moves in recent years to install bullshit that the user doesn't want.
Vaccinations are awesome, but Microsoft's heavy-handed bundling is similar to how the CIA was using vaccinations as cover to collect DNA[1] samples in Pakistan. This inadvertently led to a distrust of vaccinations[2] which harmed the efforts to eradicate Polio (or biological WCry, if you will).
Additionally, Microsoft abused the update system to download an entire, multi-GB OS (Windows 10) on systems running on Windows 8, "just in case they will want to upgrade". This was very expensive for people on metered bandwidth. Microsoft should separate critical updates from the less critical ones and give users the ability to opt-in for critical updates only.
If we look in the past we also have snake oil which is said to be a major cause for mistrust for doctors and medicine. Government had to step in and issue regulations in order for the public to regain trust and vaccinations is one of the very few remaining trust issues between the public and medicine.
If we want people to regain trust in auto-update there need to be something that prevent abuse. If that is regulations, liability laws, or just industry practice will be up to the future to decide. Until then a person will have to rational decide on auto-update as past people did with the uncertainty of not know what is snake oil and what is real.
>"Until then a person will have to rational decide on auto-update as past people did with the uncertainty of not know what is snake oil and what is real."
You are far too confident in current medical practice.
Sadly MS is hardly the first to have done something like that, but they are the biggest and most prominent name right now.
People avoid doing firmware updates on various devices for the same reason, as there is no indication what will change or go missing (never mind that it likely will reset the device, and thus require a full reconfigure before being useful again).
The basic problem of our world is that it is ruled by 20-sometings that loath working on "old" tech. The epitome of this is the FOSS world that goes through a wrenching rewrite churn every 5 years or so as new heads take over "old" projects.
For all their antics, one reason MS is still top dog is that they support APIs and ABIs first introduced with Windows 95 (or even older, if you manage to do a 32-bit install).
Never mind that MS did offer XP updates, for a price. One reason the NHS got hit hard was that some penny pinching bureaucrat decided they could not afford to pay said price.
"The basic problem of our world is that it is ruled by 20-sometings that loath working on "old" tech. The epitome of this is the FOSS world that goes through a wrenching rewrite churn every 5 years or so as new heads take over "old" projects."
Disagree thoroughly. The reason why people push shit through the security-updates channel is because of money and structural pressure from management to ensure adoption of the company's new $THING.
It's funny that I see the general sentiment over Windows 10 to be the opposite of Python 3. "Everyone" is mad Microsoft pushed Windows 10 too hard, meanwhile "everyone" is trying to get people to adopt Python 3 and wondering why it took big name libraries so long to convert.
It's a big problem in tech, trying to get people to update. We might like to think of ourselves as progressive, but a lot of people in our world tend to be very conservative and resistant to change. Microsoft knows that as well as anyone else. The only way to ensure people are using the latest version is to stop giving them a choice. You can't always rely on people making the best choice for themselves.
That sounds super authoritarian, sure, but the nice thing about technology? Microsoft isn't the only game in town. They can do whatever they want with their platform and you're free to leave. You don't need a passport, or any more money, or really even any additional knowledge at this point. You're only locked in if you choose to be locked in.
*with "everyone" being the typical Internet strawman that only actually exists in a random selection of HN comments.
The only way to ensure people are using the latest version is to stop giving them a choice. You can't always rely on people making the best choice for themselves.
Agree with the first part, the second needs a very twisted definition of best or themselves.
Offer something people want and they will upgrade. This alone tells very much about the win10 situation.
Microsoft game is lock-in, if the cost of leaving their garden is trivial they are doing something wrong!
I have a friend who buys $20 shoes. They last him a year, and then he has to buy another pair of shoes. He laughs when I buy $70 shoes, but those $70 shoes last me four years. Over that four year period, he's spent $80 on shoes and I spent $70.
I have a friend who buys $500 laptops. They last him a year, and then he has to buy another laptop. He laughs when I buy $1000 laptops, but those $1000 laptops last me three years. Over that three year period, he's spent $1500 on laptops and I spent $1000.
I have a friend who uses Windows XP. Windows XP is better, it's faster, it's leaner, Aero is garbage, Metro is garbage. DirectX 12 is just a scam to get you to upgrade, there's no reason Windows XP isn't the best. But once a month he's calling me about some kind of virus he's gotten even though he runs Symantec every day.
Relying on an outdated piece of software is never the best decision. If Microsoft's updates bother you that much, stop using Microsoft software. Microsoft can't lock you in to anything, and there's very little that Windows offers that OSX, or to a lesser extent Linux, doesn't offer. The arguments against switching come down to "I hate Apple/Linux", in which case you've locked yourself into one vendor for irrational reasons, or "Apple is too expensive", in which case you have to wonder if that's actually true considering you're spending hours complaining about Microsoft updates, or the worst one, "I'm a Windows developer", which... why? If you hate Microsoft enough to want to switch but Visual Studio is the only thing holding you back, I don't feel bad for you. The only slightly legitimate complaint is the lack of games, but there are a ton of games for Mac these days and consoles do exist.
It's not really lock-in if you choose to be locked in.
Windows comes preinstalled on most PCs, you are being disingenuous if you say that is not a major factor. MS was ruled to violate antitrust laws regarding web browsers. How is that for a lock in if you can just download Netscape?
The arguments against switching come down to "I hate Apple/Linux"
Not at all. Many people are forced to use MS software, they don't have a choice. Not just running Windows, but using various MS Office apps, formats, Skype etc.
Also, there are others (mainly elderly) who are only familiar with Windows, learning another platform is not a freebie for everyone.
Most apps people need have alternatives on other platforms, but there are many - besides games, that target Windows only. Well, VS being the bloatware it is, not one of them of course.
> But once a month he's calling me about some kind of virus he's gotten even though he runs Symantec every day.
You've identified a source of inefficiency in his workflow. If he really hates everything after XP though, maybe it's better (more efficient) to handle a big problem once a month than a dozen little problems (disliking aspects of the tool he's using) every day.
> "I'm a Windows developer", which... why?
That seems like an easy answer, though. Because someone's paying me to work on the technology that they want to use, which may be very different from the technology that I decide to use on my own time. Things can be personally suboptimal, but professionally useful. You don't hate it, but you don't love it as much as the things you use on your home machines.
> Relying on an outdated piece of software is never the best decision. If Microsoft's updates bother you that much, stop using Microsoft software. Microsoft can't lock you in to anything, and there's very little that Windows offers that OSX, or to a lesser extent Linux, doesn't offer.
Using software that actively works against your best interests, even while acting in your best interests in other ways, without a way to separate the two...is never the best decision. Microsoft can't lock you in, but platform choices of other developers can.
On a separate point about OSX: One thing it won't ever offer is the ability to run it on my hardware of choice. I happily pay Apple-like prices for hardware configured in ways that Apple doesn't offer.
> The only slightly legitimate complaint is the lack of games, but there are a ton of games for Mac these days and consoles do exist.
Games aren't fungible. Mac and Linux support lots of games, including what I was playing last night. Sometimes, what I want to play is limited to a single platform, and that platform is one that I wouldn't choose for general-use. C'est la vie.
> It's not really lock-in if you choose to be locked in.
That sounds like one of the arguments I've heard to justify things like TSA searches, or the various statements from politicians saying that internet access isn't a necessity and shouldn't be considered a right. "You don't have to fly! You can drive! No driver's license? You can bike!" Well...right. You don't "have" to use Windows, because you don't "have" to make software that works with Windows. It's your own choice to target customers using the most-used PC OS in existence.
I'm not really seeing the corollary between Windows and Python in regards to new versions and the requiredness thereof. Windows is proprietary and has a cost, and customers of it have a business relationship with Microsoft. Python, by contrast, is free and libre, and is offered with no warranty implied. If the lack of support for Python 2 is proving to be an inconvenience for you and you won't upgrade to Python 3 for whatever reason, well then, all the source is available, and you can do the needful. Hell, you can even build, release, and distribute your own fork of Python 2 that gets continued updates. None of these options are available with Windows.
Microsoft may put a great deal of effort into supporting old APIs and old ABIs, but it turns out that that effort has not been enough for us to be able to tell everyone "Yes, go ahead and upgrade to a new Windows version, nothing will break".
> The basic problem of our world is that it is ruled by 20-sometings that loath working on "old" tech.
disagree completely, it's not the 20-somethings that come to you and say "the budget we have is limited, and we have to prioritize, feature X might get us more exposure, so work on that and it doesn't matter if it breaks backwards compatibility, users will adapt"
If upper mgmt goes after "oh shiny" there's not you can do at the individual contributor level, and if you know you are in a "oh shiny" management situation there is also no incentive whatsoever in spending time making sure you think about the future when developing, since you're going to have to throw everything away anyways in a few months or a year at the most.
It's all about "being nimble" and "velocity" and "being innovative", where all of them are more or less shorthands for "churn things quickly until something sticks". Stable, reliable, dependable software is unsexy, if the company you work for is large enough you might be able to find a team that works along those lines and be happy, otherwise it's fighting fires all the time.
That's just a misunderstanding. There is a lot of fun to be had in maintaining others' code and there's nothing like finding a stupid bug (and fixing it) to boost your self-esteem as a programmer.
But maintaining code (especially shitty code) gets you much fewer rewards and recognition than writing new code from scratch (including shitty code) -so that may be a better explanation of why most people don't like being "maintainers".
Apple makes more off PCs than every other PC maker combined, and continues to gain market share. MSFTs main goal seems to be getting people to buy more Macs, like their new crippled MacBook Air clone without a full OS (and the dirt magnet fabric covering).
Alright man. Can you tell me which consumer-facing OS doesn't do those that you mentioned by default? Apple downloads setup files for major OS upgrades as well as system updates automatically without my consent too. I don't want Siri on my Mac too. How can I get back the enlarge window button without holding down alt on the Mac? Google Chrome is the software that pioneered the whole silent update thing. If you want to call out any company at least try to be equal.
It's amazing how many people defend Apple while attacking Microsoft here. It's almost as if Apple pays people to do this.
We run Windows 10 and the lastest Windows server on all our machines and don't have problems because we have good, in-house, local IT people and also good security on the edge routers.
The comment you're replying to points out a lot of obnoxious "We know better than you" flaws in Mac OS X that the user has no power to override. I don't see how that's a defense of Apple.
I can uncheck the box that says "Automatically check for updates". It's trivial to override these perceived "flaws" in OS X.
Try doing that with Windows. The best you can do is peruse some lists that people maintain in places like Github. Maybe those work, maybe they don't. Consequently I've avoided Windows for well over 10 years now (except for XP in a VM, which I use for playing Freecell).
> Microsoft abused the update system to download an entire, multi-GB OS (Windows 10) on systems running on Windows 8, "just in case they will want to upgrade".
Just pointing out that Microsoft is not alone with the above practices? It's not a question of whether you can disable it or not, it's that ALL companies do this. I don't necessarily like this but I empathize, general consumers don't know what's good for them, and Microsoft's reputation for security is on the line here.
With that qualifier I am willing to bet you aren't considering GNU+linux a "consumer facing os"?
I also far too often see this logicaL fallacy being used. I was recently railing against MS and someone said, "well I'm more worried about facebook, what about them?" Your comments about OSX and Chrome have almost nothing to do with the the current discussion topic which is MS updates systems. I wish people would stop doing this equivicating, it's tiring and logically fallacious.
A person can call out any company they want for anything they want on the merits of their argument without it having to turn into a major company comparison.
All that said... gnu+linux actually allows the user control, and things like this can be stopped.
Bottom line is this, either the user controls the program, or the program controls the user. Google, Apple, and MS have all shown they are more concerned with controlling the user than giving them freedom. GNU+linux or really just GNU, is the future of freedom, and until people start understanding how inherently political software is, and stop basing their software choices purely on pragmatics (but mah lozedoze gaming!), these types of problems will continue to happen and have things written about them, but the solution is already here.
I disagree about the CIA analogy, because having your DNA collected really doesn't harm you or affect you significantly, though it is a privacy violation.
Here's a better analogy: suppose you were pushed to get a vaccination, but the vaccine company secretly added a virus to the vaccine which alters your DNA so that your hands turn into claws and you grow antlers, because they thought this would be a great idea somehow. Then after word gets out about this, they say anyone who doesn't get this vaccine is an "anti-vaxxer" and "ignorant". That's basically what Microsoft did.
On the CIA point, from the Pakistanis viewpoint it was a foreign government agency using the DNA from the vaccinations to pinpoint a physical attack in their borders. If it had come out that another nation had done that in the US, we'd be clamoring for war. That is a very good reason to be wary of vaccinations at that point
>Additionally, Microsoft abused the update system to download an entire, multi-GB OS (Windows 10) on systems running on Windows 8, "just in case they will want to upgrade". This was very expensive for people on metered bandwidth. Microsoft should separate critical updates from the less critical ones and give users the ability to opt-in for critical updates only.
Why should they do this? And why should they care at all about people on metered bandwidth? What are Microsoft users going to do if they don't like getting a huge bill for downloading Win10 unexpectedly? Stop using MS? Not likely.
When are people going to wake up and realize that Microsoft has absolutely zero incentive to worry about keeping their customers happy?
I don't think this is the reason why most people (non tech savvy) look to turning off Windows Update.
Most people don't know/care about Windows Update pushing features.
However most people DO care when their computers spontaneously reboot themselves with no warning (sometimes even in the middle of "active hours"!) which is what msft has set by default (and indeed has/had no UI to modify in some versions of Win10)
But inversely, i'm annoyed that this "upgrade phenomena" seems squarely targeted at Microsoft when people who run Linux or OSX upgrade the second new shiny comes out. I'm not ranting here other than expressing a curiosity of culture that leads to cultural problems lingering much longer than they should.
Windows 10 is awesome.. the experiment with "ads" sucks but its all tweakable.. just jump to Rs2 and provide feedback if there is something you do/don't like. MS listens.
So if I fill out the paperwork in advance Microsoft won't ruin my night? How generous of them. I'm really glad that linux gaming is increasing year over year, because gaming is about the only reason I still use windows at home.
again, this is another attack without much merit. Lots of windows users want the updates because they're asking Microsoft for them. If you want to run Linux then RUN Linux.. you don't need to rain on the MS parade for no other reason than a an apparent lack of empathy for what other human beings want to run.
I doubt that Windows users want the update process to interrupt them at the most inconvenient time possible.
The problem are not (security) updates themselves. The problem is the intrusive update process and non-security updates bringing "features" nobody asked for.
People do ask for these features. There are millions of active windows users in the Windows Preview Program that provide feedback asking for windows to be improved in many different ways.
I'm not sure where these absolutely incorrect assumptions are coming from but they're entirely false. Windows believe it or not is community driven these days. MS is delivering features for its "enterprise insides" and for its "xbox insiders" and for its "windows insiders" and this is a HUGE community.
Do you think that these people (basically enthusiasts, nobody else would participate) are representative of all windows users? Do you even respect a feedback that goes against your business objectives?
Because all in all, Windows is getting less and less useful and more and more annoying. No, you don't need to stuff Cortana, Onedrive or whatever new initiative you have. If I wanted it, I would sign up by myself.
In my case, after I disabled the infamous KB 3035583 update for N-th time and it was back again, I lost my patience and switched the platform. I'm too old for such games. Some of my colleges still need win32 specific apps, but you can be sure, that as soon as they will be able to replace them, they will jump too.
Again, why be so condescending? Without a shred of evidence over your own personal experience and the hive mind of people who would never run windows and have philosophical angst towards Microsoft there are MILLIONS of people that want to see it better and are actively providing feedback. So much so that Microsoft releases weekly builds, has a feedback hub, throws parties, online meetings, phone calls and surveys and "quests" to have people experiment and offer feedback on shaping the future of windows. Of course these are 'enthusiasts' but that's besides the point. Its a thriving community of Microsoft paying attention to its customers and people willing to interact.
I have no idea what the KB 3035583 problem is.. everyone makes mistakes. My mac had failed updates where I had to reset, my iPhone has had bad updates, my kindle fires have been borked, my android phones have been bricked, my wifi routers have been bricked.. I just take the time to learn and move on.
People are obsessively convinced Microsoft is bad, for no other reason that they're not giving them another chance yet the world turns a blind eye to very similar issues across the board.
Software isn't perfect. You don't fix software by never updating it. We're used to updates on Mobile/Tablets - many people are used to updates on PC/Tablet/Desktop but there are people who continually beat this non sequitur horse that PCS can't and shouldn't be updated.
Software is eating the world. If people want to compare MS to google - Google updates their shit all the time - does hundreds of releases a day. Now so does Microsoft. But hot damn, if MS does it they're "Evil" and "pushing crap or features no one wants" when we full know that is BS.
I never said that I've never run Windows - I just don't run it anymore. It is due to bad experience. Microsoft had chance, but they were blewing it regularly. I still do run Microsoft apps (macoffice and vscode). If they will blew it up with these, I have no problem switching off them.
If Microsoft has feedback hub, throws parties, online meetings, etc., then they are very good at ignoring the feedback. Did they fix the privacy issues with Windows 10? Did they re-enable end-user control over updates? Did they stop resetting user preferences after updates? It's not that they are not aware of all of these.
The problem with KB3035583 (gwx - Get Windows X) was, that no matter how many times you have hidden it (to indicate do not install), Microsoft un-hided it, and several times it has flagged it as security update, which caused for many people to install it automatically. It definitely wasn't an mistake, it was clear intent, to make target figures with Windows 10 upgrades. It is one of the biggest reason why people were turning off windows update!
> People are obsessively convinced Microsoft is bad
You know, I'm some 25 years in this business and there are many reasons why they are right. Microsoft worked hard to earn this reputation. From "knifing the baby" to their today's attitude regarding privacy and pushing their services.
> Software isn't perfect. You don't fix software by never updating it. We're used to updates on Mobile/Tablets - many people are used to updates on PC/Tablet/Desktop but there are people who continually beat this non sequitur horse that PCS can't and shouldn't be updated.
As I've written elsewhere, existence of updates is not the problem. The update process (hogging up entire core with wsupdate service? No problem! Installing updates for 30 minutes? No problem either!) is one problem. The shoveling of unwanted stuff into updates is another. Compare that to apt/dnf on Linux side or App Store on Apple side - they are as unobtrusive as possible.
> Google updates their shit all the time - does hundreds of releases a day.
Google updates do not make your machine unavailable for 10-30 minutes at the most unfortunate times in the day. Ever been to ambulance, where the nurse has lined up patients, because her computer doesn't work right now? Guess which fault it was, Googles or Microsofts?
Have you ever looked into the mirror and maybe thought you worked hard to build your view of MS? Have you ever considered that MS of today isn't the same MS of 25 years ago?
I'm pushing 41.. I've been into computers since i was 8. I've been through wishing OS/2 would win, Hating on Windows for years, begrudgedly using WIn95 OSR2.. I was the first BBS in Houston to offer Linux to download on 8 floppy disk images, i was the first to mirror a larger FTP site for Linux distros (ygdddrasil), I use Linux on THOUSANDS of computers - i work for a larger internet company running 10-s THOUSANDS of servers running Linux.. sometimes i wish they were all solaris since that was what really grabbed my hart but guess what - things change - systems change - people change - companies change.
Today i sport a Surface Pro 4, an iPhone 7, a MacBook pro and a Ryzen 1700 as my primary compute/phone devices.. I use them all. Windows 10 on my Surface Pro 4 is the best mobile experience I've ever had. i have Ubuntu/Suse/Redhat as bootable native shells, i have a web browser with extension support, gesture support and great experience, i have power shell, i have hyperv if i need it, i have docker - the experience in windows 10 lately far surpasses the experience of say - docker on OSX which has always been very goofy until recently and now with docker on windows i can run windows or Linux native containers.
MS is not only providing lots of open source code but they're a HUGE sponsor of the Linux foundation - a SUPPORTING member - the biggest you can achieve.
As for update times, you can schedule your updates. If you need to upgrade your android phone, you're not going to be able to use it during the upgrade - same with your PC, if you have pending updates - just schedule them when you need them.
You're still defending everyone else for facing the same problems MS does and for some reason, still hating MS for solving problems that need to be solved.
I for one am SO FREAKING GLAD windows doesn't fester for years between "Service packs" that then took years to get released because people had it in their goofy heads that people actually tested them for them.. i'm so glad that windows finally releases iterative updates on TUESDAYS and everyone in the world knows when PATCH TUESDAY IS if they run windows.. if you KNOW patch Tuesday is coming up, reboot when you're done patching on TUESDAY.
It really isn't as hard as everyone is making it out to be.
Now that I've written all this, its laughable how hard people are making this appear to be.
I guess in the same way a farmer might listen to its cattle? A nasty disease or two would get fixed, nice food to keep them fed, but if they're telling the farmers "don't eat me" I can't imagine the farmers would be very receptive.
Likewise. Stop spying on me, stop advertising to me, stop pushing products I don't want on me, stop treating my computer like your personal playground.
None of this is going to gain traction. All of those are the point. No amount of listening will fix this.
It is fixed. When you upgrade to RS2 it asks you about the services and you can disable them and you can disable automatic updates.
BTW, this isn't unique to MS.. phones update all the time and the concept of the phone is going to change.. soon you will have just one device that does everything. Are people going to complain that MS can't then do what Apple/Google do in regards to spying, updates & patches?
...soon you will have just one device that does everything.
That's already true, for people who only have a phone. In the long term, it's completely wrong. Today's "super"-devices will explode into a constantly-changing constellation, as soon as personal networking is ironed out. Future generations will laugh at caricatures of people today, who constantly tend to and obsess on one hunk of plastic to the exclusion of the wider world.
Sure, but part of the process of "ironing out" local networks will be an easy way of categorizing what host gets what sort of connection to the internet. A pedometer built into a shoe needs very little access to anything.
In general one would say that, but there would be a category of local host that would mean "we don't trust this device to correctly update its firmware, so that action (and consequently most other network actions) is not allowed".
LOL at comparing MSFT to Apple or Google in this regard. Googles whole business model is ad supported, in return you get good free software.
Apple actually fights to protect your privacy, when you pay them money for hardware they just try to make it work well for you, not advertiser. And their updates/reboots are optional.
MSFT takes your money, then doesnt protect your privacy AND sells you out to advertisers.
I don't buy this argument. Its fully of fallacies and misconceptions.
Microsoft offers a very similar ecosystem.. You can use office online, One drive, bing.com, skype, Cortana, Outlook.com and many services free for use with advertising (or no advertising)
MS doesn't "take your money" either, you buy something with Windows 10 on it or you buy a mac with OSX..
iOS updates aren't usually optional, as they quickly spam the crap out of you to upgrade and stop allowing publishers to post apps for the old release ergo "forcing" upgrades.
Android has the inverse problem.. handsets never getting upgrade so people flock to versions that do and happily upgrade away..
which is why I don't understand anything you have said. :)
oh and MS doesn't sell your privacy data to advertisers..
I assume "office online" means Office 365? If yes, how can I use it for free? Last time I checked there was only a free trial [1].
Microsoft does take my money--just because the cost for the OS is hidden in the hardware doesn't mean some fraction of that money isn't going to Microsoft, i.e. in the end I have to pay to use Windows. Windows 10 was not free either as advertised, since it required an older version to upgrade from.
Compared to Google's and Apple's offerings, Microsoft's do kinda look shitty.
Every company is out there to make money. This is non sequitur.
As far as product comparison, I prefer Office over google docs (And the link you posted is about their commercial offering).
office.com offers the online versions of office (web like google docs) and its as feature rich.
Also, lets be real.. You can get office 365 for up to 5 pcs for 99 a year and each account you link to it gets the extra benefits such as terabyte of onedrive and such, its not a bad deal at all.
Correct, both MSFT and Apple force you to pay for your OS as part of your purchase, but Apple doesn't force you to disable ads.
That was the only part that was correct. Apple reminds users of critical updates, doesn't force. Apple allows every publisher to upgrade their apps (I'm an IOS dev), just don't try to link with outdated APIs. I have iOS 6 apps that still run fine without changes.
And you don't know what MSFT sells to advertisers.
Apple does have "Ads". They're always asking you to upgrade to icloud on every device - my MacBook and my IPhone.That's about as annoying as "buy office 365 now"
MSFT does spell out what they share with advertisers the very same way Apple and Google do.
The thing is, when I wanted to use Windows, I didn't ask for "office online, One drive, bing.com, skype, Cortana, Outlook.com and many services". I wanted Windows, not additional baggage crammed down my throat.
This isn't true for many of us that build our own computers. I bought a boxed copy of Windows and installed it. It certainly didn't come with or on anything.
or get licenses through visual studio benefits, schools or transfer from another PC you may be shutting down. It's not rocket science to save money if thats your biggest concern.
>> However most people DO care when their computers spontaneously reboot themselves with no warning (sometimes even in the middle of "active hours"!)
> This is now fixed..
Once bitten, twice shy.
Most if not all of the non-tech people I work with would respond to this with "yeah, well, I don't care, I don't want to take the chance it reboots during a presentation/webinar/demo/etc ever again".
Also, forgiving a company for a technical mistake is a lot easier than trusting them again after a decision that implies they don't give a fuck about their customers.
> Windows 10 is awesome.. the experiment with "ads" sucks but its all tweakable.
I don't want to have to tweak my fucking operating system to remove ads!! Also, I think we're asking too much of the average user. It's not obvious how to do most of the tweaks, so your random older/casual user won't do them, or maybe even realize that such a thing might be possible and go off to look up how to do it. They're more likely to just turn off updates.
Disabling it is tweaking. The default install of Windows 10 comes with ads and all sorts of other bullshit that doesn't benefit the user (in an operating system that you paid hundreds of dollars for, mind you). You have to go out of your way to opt out of it, and most users will not ever realize that such opting out is even possible.
Even the ads will ask you if you want to disable them.. "click here to disable future notifications" or if you open notification center you can "click here to disable future notifications".
I am slightly bemused we're making excuses for people not trying anything.. especially when computers these days are all about "Expressing yourself" and "identity"..
its not whataboutism.. its making a fair comparison. I'm not excusing Microsoft's behavior based on others actions especially since I know this behavior is simple to disable in its latest OS release which is free to upgrade to.
if you want to compare, i don't see ads when i use free office online or when i use google office.
What i do see is that when i use outlook.com it doesn't pop down telling me to switch to Edge, but when i use Gmail its always telling me to switch to edge.
Have you actually used MS products in comparison to google? didn't think so..
So you were never bugged to use Edge, after you launched Chrome or Firefox? (Like this: https://superuser.com/questions/1146123/disable-microsoft-ed...). Or your preferences for the default browser were never reset to Edge after some update ("accidentally")?
I am only bugged once I install what I want to use as default browser. Not everyday.
YouTube, Gmail, Google et all have a dropdown advertisement asking me to switch to chrome no matter which browser I user that isn't chrome..
Lets also not forget that MS apps show up on google store, apple store and are fully cross platform whereas google is selective in what it supports. We're at a day and age where Microsoft has Cortana, One Drive, Office, Bing, Skype, Photos and so much more on iOS, Windows, Android and people are telling me that MS is bad when google is good (and is far from as cross platform as ms is) I just say use whatever, but if people want to nit pick about "Ads" that everyone does without knowing how everyone does it, that's lame. MS has a TON of "Free stuff" that isn't always dropping toasts to switch browsers, switch to chrome so on and so forth..
If people have so much energy to hate on something, that should be directed at sloppy companies like Yahoo that actually are detrimental to security/safety..
After each login into Microsoft partner page, it welcomes me with a page telling me, that I will get the best experience with Internet Explorer. It doesn't even bother to check, whether Internet Explorer exists for the platform advertised in the User agent string.
With the Microsoft services, the crucial difference is, that "Cortana, One Drive, Bing, Skype, Photos" is stuff that Microsoft is pushing on people, not stuff that people asking for from Microsoft. It is me too solution, it is Microsoft's version of Google+, except that Microsoft didn't learn their lesson yet.
Out of this, Office is an exception. iOS and Android users would not give up their platform, but they were willing to use another lite office suite. On a platform, where there is not a such threat, such as desktop Linux, there is no Office port. Even the macOS port hasn't got feature parity with the Windows version. Google is treating Windows Phone exactly the same way Microsoft is treating other platforms with Office.
If you consider this hate, maybe you should also consider whether it is deserved. There's no reaction without action.
lol, I doubt that.. Microsoft doesn't support internet explorer anymore and would only recommend edge if you're on windows..
People are asking for these services.. just because you don't run them doesn't mean no one does. Skype is still the largest voip network, bing is slowly still growing against goole, onedrive is huge for private and corporations, Cortana ins on over 600 million devices..
As for office on OSX, it is updated all the time and feature comparable if you bother to run 2016 with updates enabled..
THe hate is far from deserved, its misguided.
Microsoft is so cross platform Visual studio for OSX is full RTM, Visual studio code runs great in Linux/windows/OSX, they're writing Linux drivers, they have the Linux subsystem for windows that runs native windows apps, they're a core supporter of the Linux foundation. .net is cross platform now too and they're starting to merge xamarin/XAML/xml forms so apps can be written once and run everywhere..
doing more for software and systems than google is but people will continue to have this misguided hate
Well, I about that message loled too ;). Later it became annoying and a nice example how Microsoft really cares.
If you claim people are asking for these services, then what about not showing them down the throats of those who didn't ask for them? Seem simple, right? If they are so popular, why piss off those who don't care about them? Why do I have look after every Cmd-O at Onedrive file chooser, when I'm never going to use it and there's no option "do not bother me with this again?". I'm sure that Cortana might be on 600M devices, but there are not 600M active users... more likely users what resigned on looking for a new ways to turn it off. See the difference?
Office for Mac 2016 is updated every month indeed, but it is still missing features. For example, everything that starts with Power (PowerQuery, PowerPivot, PowerMap), or Inquire. The Mac version of Office does work with exactly 3 ODBC drivers. It doesn't work with exactly the same ODBC drivers, that the Windows has no problem with (PostgreSQL, for example - it crashes).
There was a lot written about Visual Studio for Mac and it being a rebranded Xamarin. See past discussions here, at HN.
And let's go back to the Office for Linux, shall we? That's the Microsoft prime lock-in device for many. Drivers for Hyper-V or Linux subsystem for Windows help Microsoft, not Linux.
same could be said of google/apple.. i'm just throwing these out as comparisons..
BTW, i never see any ads/popups other than after a fresh install when the guided tour is starting up so i have no clue what people are flipping out about.
Also, shortcomings in the mac version of office may be shortcomings in the Mac OSX platform.
VIsual studio for mac is a re-write of xamarin, that doesn't change anything - xamaerin/visual studio/c# are all converging to offer a unified platform.
And i'm so glad you seem to know everything about everyone. THe same "billion google now" users probably only 1% USE it day in/day out.. but we're just going to be blindly bashing windows..
please, do us a favor and get over yourself. We get it, you don't run/don't like windows... so just stop wasting energy hating something you really don't have any clue about or care about.
The "ads" are recommended software. It is annoying that you get a toast notification asking if you want to use office online just as its annoying every few weeks my iPhone asks if I want to buy more icloud.
But what is really happening is that anything with an app store is tracking you to build a marketing engine that recommends other apps to you. The fallacy is that Microsoft is the only one doing this, the truth is that everyone is doing this.
There are ways around this in OSX and Windows.. you don't have to use the store, you can still download stuff and install away and you can still enable developer mode and side-load anything you custom write if you want to use the new API features.
I don't like it when I choose to use edge and every time I go to gmail it asks me to swtich to chrome.
I don't like it on my iPhone that every time I use gmail it asks me to switch to chrome even though I selected the checkbox to use safari.
I'm tired of this conversation being so one sided and biased as it is doing the world a huge disservice.
If you try to say what MSFT is doing is the same as Apple and Google then you are being hugely disengenous.
Ads for apps are ads, no matter how you spin it. People don't pay for android, they pay for windows. A pay OS/platform shouldn't force you to disable ads. Gmsil/Chrome are free apps.
Apple doesn't track you. On installs it asks if it can collect usage info, but you have to agree, and it's one time. They don't show you ads in either OS. They don't track your personal info. They don't give government agencies backdoors like MSFT got caught doing. They go to court to fight illegal searches of your devices.
You obviously aren't paying any attention to Microsoft lately and it shows. I'm not going to change that so the least you can do is show a little empathy for those who do.
Its painfully apparent you really hate Microsoft for your own deply personal reasons. I'm not changing that. But I will stand up and say that what you have said is not true and not the case of Microsoft today.
I'm not saying you have to change but we must be clear that you are speaking from perceived history rather than current day times.
Google android is "Free" as Windows 10 is free.. you paid for it with hardware... now if you could build your own handset you could install android but it would NOT be the official "google" android because reality is - hardware companies still have to license it in such a way to get the official apps. But again, we're not going to talk about this in apples and apples, you're only framing it in your obsession of fear/doubt/hate against Microsoft. And again, that's ok, I really don't give a hoot.
Apple does track you. The Apple Privacy statement is almost exactly the same as GOogle and Microsofts. https://www.apple.com/privacy/manage-your-privacy/ - they all enable services and warn you about services that provide value add in some cases but can seem in violation in others.
Its up to YOU to understand what you want to share, enable/disable what you want to share and understand how changing that changes the system you're running in.
But its up to you to use what YOU want to use and respect others for what they want to use.
Spending so much energy spreading FUD does nothing.
Chromebooks aren't free, phones aren't free, tablets aren't free, Apple/Google/Microsoft all provide app metrics to all their respective app stores and all go above and beyond to try and make them secure (google actually having to struggle with this compared to the other giants)
> Google android is "Free" as Windows 10 is free.. you paid for it with hardware...
This isn't true. I had to explicitly go out of my way to pay hundreds of dollars for a Windows license for my computer, which I assembled from components. It's not possible to pay money to anyone for Android; it's gratis. Google makes money on ads, not on selling Android.
Google has confidential "Mobile Application Distribution agreements" that guarantees google services and functionality and stipulates requirements.. Luckily court cases have revealed the stipulations that show Android is anything but "Free" to handset makers.. http://www.benedelman.org/docs/htc-mada.pdf
unfortunately i can't find any cases that show how much of the estimated ~60 dollars per handset is licensing costs for the google apps (as some have been licensed to mfrs) or patent / indemnification agreements needed that google doesn't offer but still are a cost to selling android handsets.
I know google makes a LOT more money on ads.. but lets be real, while android was open source its current incarnation is nowhere to be found and his hidden behind represive agrements, advertising, and marketing and android phones in the end are no cheaper than any other phone price wise..
When i buy a surface/tablet/oem pc it just comes with windows.. When i build a PC i buy an OEM license for 30 bucks.. if you know the platform you're running you can know how to save cash and make the best of it.
> Its up to YOU to understand what you want to share, enable/disable what you want to share and understand how changing that changes the system you're running in.
So you're suggesting I avoid Microsoft then? Because that's the only way I can control it, otherwise I'm only an OS update away from MS re-enabling features I explicitly disable.
At least with Linux I can choose to install and whenever I want to install it. I don't get that freedom with windows, and it packages it's system with advertisements
That is your personal opinion. I stuck with windows 10 because I like it. That is my personal opinion. Learn a little empathy.
I have a MacBook pro, a surface pro (windows 10), a gaming pc (windows 10), a Plex HTPC (windows 10) and an iPhone.. I'm quite happy regardless and I find all ecosystems have their +/-
it's not my opinion, clearly they've driven customers to behave in an insecure. Clearly their customers hate the ads and the updating mechanism. That you happily tolerate it just makes you a tiny minority.
It is your opinion, you're even using your opinion to make up stuff about me that isn't true.
I clicked the option to disable this when prompted when I upgraded. It was easy and I've moved on. Life is great, i'm back to playing games, watching content and enjoying my device without it asking me if I want to upgrade office.
(but my damn iPhone keeps telling me to upgrade icloud)
>if there is something you do/don't like. MS listens.
Users have been very very vocal about dozens of things that Microsoft refuses to stop. What about all of the forced upgrades to Windows 10 without consent? For the longest time Microsoft just denied that they were even doing it. Then they just tried to justify it with marketing B.S. about how "Windows 10 is great, so no one should be complaining."
Then there's the embedded spyware in Windows 10 that's not able to be removed or disabled. Even just the adware, it should go without saying that no one wanted ads to show up in their OS. This shouldn't be something I should be forced to opt out of, it shouldn't exist in the first place. I shouldn't have to deal with Microsoft installing crap like candy crush on every windows PC on the planet.
Microsoft categorically doesn't listen to their users. Can you name a time when Apple or a prominent Linux distro has pulled any of this crap?
>> Can you name a time when Apple or a prominent Linux distro has pulled any of this crap?
Yes, unfortunately. Ubuntu served Amazon ads in the dash search. No idea if they're still there (I use Fedora) but it's not like they had to ask anyone what they thought of it to be well aware that the majority of their users would think that sucks.
Apple? Well now- that's the company that continuously tries to force its users to run only the apps it choses, isn't it? Apple sucks as much as MS in the way it treats its users.
Fair point, but at least when Canonical was doing it it was just searching Amazon for something relevant to your query. All of the outrage was that doing this meant that Amazon would get searches for stuff like local file names that presented an information leak. Canonical also proxied these searches so Amazon didn't actually get enough information to tie a search back to a particular user.
As for Apple though, I disagree with a lot of their design decisions but Apple hasn't introduced Spyware, Adware, and Malware into any of their products. Their walled garden philosophy is crappy but they aren't doing what Microsoft has been doing.
Telemetry can't be completely turned off in Windows 10. It's software that phones home what the user is doing without the user's consent or knowledge of what is being sent home. That's literally the definition of spyware. Windows 10 also bundles advertisements with no way for the user to opt out of them. Windows 10 was also installed on millions of computers without the user's consent. Again, textbook definition of adware. When GWX was being intentionally blocked Microsoft decided to evade that block by ignoring the registry key that used to be able to block it. Microsoft also promised that they wouldn't try to force the upgrade or GWX on domain joined computers, that was a lie. They also said that Windows 10 would be opt in only and that they wouldn't upgrade without consent. They also lied about that, unless you believe Microsoft obtained consent by the user not pressing "no thanks" and ignoring the GWX spam once.
Even just the upgrade itself broke more than hundreds of thousands of computers. Sure, you can blame that on drivers or sketchy hardware but the bottom line is that Microsoft still upgraded those computers and caused them to become nonfunctional. Even after the upgrade, Microsoft allowed users to revert back to the previous version of Windows but I've personally seen that fail on three separate occasions.
I'm not just using hyperbole here, Microsoft really did do all of that and more with Windows 10.
And if you doubt the users who say that it upgraded when they weren't at the computer and that they never consented, there are plenty of cases of isolated machines like HVAC computers that didn't even have a display or input hooked up to them that broke because Windows 10 was installed. How exactly did Microsoft get consent for a computer that had literally zero input devices and no display?
You're picking edge cases of machines that you can't/couldn't verify and speaking in half truths.
Yes, Microsoft had some updates that updated some machines but they fixed that so it wouldn't. Yes, MS mad some silly assumptions to cache the update - that isn't what this is about.
THis is about the fact that the HVAC company SHOULD have upgraded. They should have known their outdated/unsupported OS constitutes a security risk and THEY should have corrected it and not assumed to leave it up to users who have/had no clue.
Windows 10 "Redstone 2" allows you to disable the supposed "spyware" that isn't really spyware when compared against any other OS out there. There are also easily abundant scripts to completely remove the concept of the store and anything attached to it from ever starting.. luckily you can do that on Windows 10 and pretend being isolated is what matters more than being current..
As for the ads, its supid easy to turn off the notifications. There is this "Notification center" where when you see the Office Notification - just click "don't show notifications for this app" and its gone. And if you see "Recommend apps" in start bar, click click and disable show recommended apps.
Both are dumb defaults, we can agree on that, but they're there and they can be removed/disabled. It's not that hard.
>You're picking edge cases of machines that you can't/couldn't verify
I've personally seen a computer that was upgraded to windows 10 after being left on over the weekend. The user claims that they never clicked on the upgrade and seeing as tons of other people reported the same thing I'm inclined to believe them. Fun fact, rolling back the Windows 10 update frequently doesn't work. The longer you wait after upgrading, the less chance you have of it working IMHO. After seeing this, I figured I'd test it myself and I booted up an old netbook that I had lying around and after running updates on it, it started installing windows 10.
>Yes, Microsoft had some updates that updated some machines but they fixed that so it wouldn't. Yes, MS mad some silly assumptions to cache the update
I've yet to see any reasonable explanation as to how that could possibly have been unintentional. MS just started trying to excuse their BS behavior by lying about what they did and trying to justify it with "but it's an upgrade".
>THis is about the fact that the HVAC company SHOULD have upgraded.
That HVAC company shouldn't have upgraded to Windows 10, they should have upgraded to a reasonable operating system fit for the purpose.
>Windows 10 "Redstone 2" allows you to disable the supposed "spyware"
>As for the ads, its supid easy to turn off the notifications.
Just because I can remove Microsoft's adware and spyware doesn't change the fact that it's spyware and adware. As for being easy to do either of those things, you might as well be speaking Greek to at least 95% of Microsoft's users. It's simple if you know a little bit about Windows, but most users out there don't know much of anything about Windows. Just look at all of the outrage over changing the start button in Windows 8. There was literally hoards of people who couldn't even figure that out. I guarantee you those same Einsteins aren't ever going to figure out how to disable telemetry with third party software or figure out that "Notifications" are all of the ads that they're getting spammed with.
Also, Redstone 2 isn't out yet, and to be honest, I don't have high hopes that Microsoft will allow Home users to completely disable telemetry when it does come out. They've lied about everything else involving Windows 10, why should this be any different?
"Active Hours" is such a stupid idea, too. I'm perfectly happy if my box has to reboot at 3am for updates, but I do actually make use of it in the morning as well as into the night, and as it shares some home-fileserver duties for the rest of my family, it gets used sporadically throughout the day.
In its infinite wisdom Windows won't let me set "7am-11pm" as active hours - it caps it at either 10 or 12 hours. So no matter what I set it to, Windows 10 updates will inconvenience me more than just about any other OS in the house.
computers are customizable for a reason and software always requires human interaction to be updates/useable.. most people are OK with their iPhone updating itself and its apps and showing related apps -not sure why that's so hard for windows users to adopt.
Any process can be more or less usable. GP described a setup in which the user is responsible for noticing that updates are available. That is just terrible.
I don't follow. Windows 10 has an action center, it shows everything pending. If there are security updates and they're frozen or pending restarts they show up in there if you misted the toast notification. Nearly all OS's have the problems of security updates being hidden unless they're forced (like a phone). OSX you have to click update inside the app store, Linux you have to check apt-get / yum update or whatever it is you do, brew you need to "brew update" - humans need to be part of the equation in some fashion.
I think the biggest thing is that people should care about being secure.. care enough to check for updates and be a part of the community they choose to be a part of - be it Linux/windows/osx/android/whateverthe* you want
Seriously. Active Hours was such a terrible idea, how did it move past the design stage?
There were some hilarious hacks to disable the Update Orchestrator and prevent the reboots. They work well, although allegedly you should not need them any more with the new Creators Update OS refresh.
yeah for me it was 10 hours. I just checked and with the creators update it now lets you set to 18 hours, but seems there's still no explicit way of "ask me to reboot"
Honestly, if Windows Update worked like Linux updates tend to, I would leave them on 100% of the time. On just about every Linux system, I can upgrade the entire operating system and all the packages all at once without a reboot. Sure, the kernel does get updated from time to time, but the system is in no hurry to force the new kernel to load right away, and just switches to it at the next reboot.
By contrast, every single Windows Update that I deal with (a) requires a restart for seemingly no reason, (b) slows down the shutdown process immensely, and then (c) goes through sometimes multiple long installation processes, during which I cannot use my machine.
Of course, as a casual user, I would find Windows Update annoying enough to want to disable it. More so when my computer decides to restart of its own accord, sometimes right in the middle of me actively using it.
(Obviously, I am security conscious enough that I don't really disable Automatic Updates on my Windows boxes, and instead just remember to reboot my machine once in a while so it goes through them on my schedule.)
Could switching the Windows Update UI to a scheduled weekly reboot + updates (call it "Maintenance" or something) be useful? Would fewer people see the need to try to disable the updates if they could control exactly when they would happen, consistently?
Rebooting in the middle of a game or what have you is the worst feature. It happened with 7 too but was easier to disable (and doesn't get re-enabled when you update anything). It makes me think that malware often tends to be more respectful of your computer than Microsoft. Sure there are cryptolockers, but if you have backups those are an inconvenience. Keyloggers? Bloody drivers ship with them now. Becoming part of a botnet sounds pretty benign compared to Windows' update process.
Laptop decided it had to update while i was also updating security settings on my wifi.
both laptop and network were unable to reboot on their own.
luckily i also have wired network and other computers. so, i was able to recover; network didn't take too much to come bac k up. needed to create and use a recovery drive for the win10 laptop.
It's simply hilarious to see Windows Update force rebooting machines in the middle of professional games.
Basically, a computer running Windows is actually owned by the Microsoft overlord who can do whatever the hell it wants to do. Occasionally it allows you to use the computer at its mercy.
MSFT upgrades are a joke. I worked at MS and the number of times a machine decides to restart in the middle of a presentation is not even funny. This was in the windows department.
It seems the decision was forced down by management. I hope someone up the chain realizes how much its cost to the actual users.
There was a joke at MSFT "you don't become a VP without making the company lose a billion dollars"
I love GNU/Linux and I love bashing Windows but I remember a time not even ten years ago that people (better at computers than I am) would not dare run apt-get upgrade before a presentation.
I think it still applies today.
Personally, I don't understand computers well so thus might be misguided but what I want is something similar to se Linux or jails but every application stack lives on its own and does not share libraries with anyone else. The idea us upgrading one application should not break another.
There's a lot of prior art and stuff existing along those lines. Plan 9 allowed every process to have its own /proc filesystem separate from the global one, and could give out per-process references to hardware devices too. Illumos implemented the Linux kernel's interface so you can run binaries built for GNU/Linux inside a secure Zone. (MS implemented something similar so it's nice you can run bash natively in Win10 now, but there's no security in that...) Guix/NixOS have a package management system with atomic upgrades and rollbacks that should never lead to a borked system. Dependency management is crucial since you can isolate all you want -- build an OS where every application is its own docker image if you want -- but as soon as things want to talk to each other, if you don't account for API changes on that communication channel you will have a broken system.
But can any of it overcome worse-is-better? Are these things really that desirable for a personal computer or are they more suited to production servers? I've been using Gentoo as my main OS since 2007, on my current rig that I put together in 2009, and I wouldn't be that surprised if I'm still using it in 2027. Even knowing about other systems' advances I'm still using my own preferred set of compromises.
I agree, the spontaneous reboots make my wife furious. But I think the only real solution is for MS to enhance Windows to allow updates without rebooting. This is obviously a huge engineering challenge but it should be achievable, at least for the vast majority of updates.
Not really. It is much easier to just reboot than try to hot swap. When it comes to windows users, we have people still on xp so I'm sure these people would never reboot unless they were forced to reboot. It is fun to make fun of Microsoft but it is a damned if you do, damned if you don't scenario.
People really don't care about eventual (in)security. If given the opportunity, we pick convenience every time.
My business partner's 16-year-old kid is a hardcore "gamer" who thinks he's smarter than Microsoft.
I set up a PC for him with a legal, licensed copy of Windows 10, and he promptly reset it using a pirate/cracked version of LTSB because he didn't want the "Windows 8 stuff" and he didn't want "Microsoft spying on him"
Within 2 days it was full of viruses and malware. I don't let him plug his computer in to our office network, and I don't let him near any of our office computers.
Personally, I run a single Win10 desktop (all of my laptops are Linux-only) that I update roughly annually, by allocating an entire day for going through the updates one by one and getting rid of any Microsoft malware along the way. I am far more concerned about Microsoft's own malware than any ransomware floating around the Internet.
Of course, I've also had SMBv1 disabled for many years (there's no reason to retain support for it unless you need to support WinXP machines, in which case you have my condolences), the desktop sits on an isolated subnet with a very restrictive router and firewall in front of it and all telemetry, Cortana and other malware has been eviscerated via group policy and other settings, along with router-level blocking of telemetry and update servers.
I fully understand that my case is atypical and the average user isn't going to follow comparable precautions, so I don't actively recommend my approach to anyone else, but it works great for me. Apart from wasting about a day per year on maintenance, I'm as happy with the OS itself as I've ever been with any Windows version, and it fulfills my Windows development and occasional gaming needs just fine. Obviously, I'm much less happy with Microsoft as a company for forcing me to go through such lengths to make their OS into something I'm comfortable using.
Really? You're more concerned about the software being provided to you by Microsoft, who is at least presumably trying to keep you as a satisfied customer and provide a secure operating system then you are for faceless hackers connected to the Internet who's whole objective is to either out right steal people's money, disrupt people's lives, or else subvert your computer in order to launch attacks on other users?
> Microsoft, who is at least presumably trying to keep you as a satisfied customer
You surely jest!
Individual users are not customers of Microsoft in any meaningful sense. Microsoft sells the OS mostly to companies who install it on machines so that the end user buys a computer with Windows already installed.
If MS wanted to keep me as a customer they would have provided a proper upgrade path for all the millions of lines of VB6 code that are out there and they would create an IDE that has a usable editor.
I'm not the OP, but I'm not particularly worried about "hackers" as my network is defended well enough against non-targeted attacks. Microsoft, on the other hand, betrayed my trust by forcing malware down the supposedly trusted update channel. That trust won't be regained in foreseeable future. And come on, "secure operating system" lol? Sorry, couldn't help myself.
> who is at least presumably trying to keep you as a satisfied customer and provide a secure operating system
I seriously question that presumption. I think Microsoft is generally trying to satisfy enough of my needs to keep me in their ecosystem while extracting as much value as they possibly can (within legal, technical and business constraints) from collecting data on me, pushing ads, etc.
I'm certainly not saying Microsoft are "more malign" (by whatever moral standard) than hackers out to steal people's money, however, by virtue of using Windows, I automatically have a degree of exposure to Microsoft that can only be mitigated rather than eliminated altogether. My exposure to ransomware and other non-targeted attacks by non-state actors is vastly smaller, and much easier to mitigate.
I am under no illusions about my ability to withstand targeted attacks by more competent parties, but that isn't a particularly significant concern to me.
You're more concerned about the software being provided to you by Microsoft ... then you are for faceless hackers connected to the Internet
Yes. And there is no /s on this comment.
We don't use much recent Microsoft software because we no longer trust it. They are going down a path we don't want to follow.
With the older OSes that we do still use, principally Windows 7, we are similarly sceptical about updates, and typically we only apply necessary security patches now.
[Edit: For whoever is downvoting a lot of the comments with this sort of sentiment, you might consider that objectively we have had far more downtime as a result of bad updates from Microsoft than as a result of malicious actions by hackers over recent years, and I doubt we're alone in that.]
To add some additional perspective: many of us know how to add some basic level of security to our personal networks. Certainly not NSA-proof, but enough to about being owned by your average script-kiddie or wide-spectrum hacker.
So in reality we do have more concern about Microsoft's update channel, which has a trusted, straight-shot channel directly into the core of our system than we do random Joe hacker who had to bypass our NAT, find a zero-day, etc.
From a secure point of view, Windows update operates within the secure zone with root privileges. Of course that's more concerning if you don't trust it that an external hacker.
> you might consider that objectively we have had far more downtime as a result of bad updates from Microsoft than as a result of malicious actions by hackers over recent years, and I doubt we're alone in that.
I haven't seen it put that way before. You're not alone.
One of the recent update cycles had some kind of interaction the video drivers on several of my machines, resulting in monitors connected via DisplayPort intermittently failing to wake up following a screen blank. The current workaround is for users to reach around the back of their monitor, unplug and replug the power. I burned an entire day on that one, plus the continued frustration.
Knock on wood, but I can't remember the last time I had to scramble for a security incident or malware outbreak.
Are you aware of https://www.reddit.com/r/TronScript/ ? Sounds like it could save you a lot of time (and, if you do things that are not yet in Tron, you could help the community as well by adding those things).
I am, and I actively recommend it to anyone sufficiently well educated that they could (and would) go through the contents of the script manually and verify its contents. I don't do anything additional that could be automated in a general fashion, but my own scripts (partly based on Tron) include custom things specific to my setup - adjusting router/firewall settings, interacting with my automated backups, etc.
If you're going to insult people on HN, the least you could do is substantiate your reasoning so the post has at least some content.
And while I'm sure there are many definitions by which I could be called "incompetent" (as could you or anyone else), I'm especially intrigued to know how the rather isolated setup I described would present a danger to anyone.
The anti-vaxxers analogy is utter nonsense and reads like a poor attempt at hitting the credibility of people disabling windows update.
The anti-vaxxer movement makes no sense outside the backfire effect, in almost all cases it has little to no basis or justifications. On the other hand there is a long history of very valid reasons of distrusting windows update and disabling it.
Using windows update to force people into windows 10 is only one of the most recent examples that windows update is by Microsoft and for the interest of Microsoft not the user.
This is totally different from the system update you have with apt and Debian.
Autism is the product of having a differently wired brain than a non-autist does. It's something you're born with, not something you can get later.
Certain medications used by pregnant women can result in children being autistic, but I seriously doubt that this extends to any vaccines as well. Perhaps some really exotic ones maybe, but common vaccination definitely not.
Source: I am autistic, read up on it to be able to better deal with it and am dealing with it on a daily basis.
And truth be told, I don't know if I'd be better or worse off without it. It doesn't make my life unlivable and I guess the understanding of autism of most people is too much based on rumor-mongering and hearsay, than any actual facts.
That's a mistranslation of the above post. The poster intended to say that Microsoft's updates can be legitimately harmful whereas modern vaccines aren't.
It's one of the downsides of autism that understanding the intent of other people can be hard or impossible, so I'm always grateful for hints like that.
> I love the way he's compared the people who tell you to turn off auto-updates with anti-vaxxers; it's quite an apt analogy.
No, it isn't. Anti-vaxxers think that vaccines are harmful (or useless). Most users think security updates are important, they just don't want to be interrupted.
You are technically correct (everything is harmful, and vaccine application is probably associated with some amount of micromorts — but so is, say, getting up from the bed). However, vaccines are very safe (safer than many everyday activities), and negate much more micromorts. Thus, I believe that your technically correct appeal doesn't contribute anything useful to this particular discussion.
In same vein of logic, neither does yours. People who have these comments in discussions with hundreds of posts must have either bad day or some deeper issues.
Had a colleague, he took a rabies shot (X-th in his life) and got 1:3,000,000 strong reaction from which he directly died. Feel free to explain to his small kid some micromorts crap.
FYI it didn't change my opinion on vaccines, fiancee is a doctor and keeps me updated on usual stuff (tetanus, tick-transmitted stuff, hep a+b and some odd stuff if required for vacations). But it makes you think how rare those reactions really are.
Does Windows classify updates as bug-fix, security-patch, feature-update and allow different policies to be set for each? Because it seems like that might help.
They used to. Now all you can get on the 7/8 generations without jumping through hoops is a "monthly roll-up" that includes both security and other updates mixed together. To do otherwise, you either need to turn off updates altogether and download and install the ones you want manually, or you need to be in a managed environment that does something similar via centralised deployment. Windows 10 goes a step further and is intended to push all updates to non-managed systems whether you want them or not.
This is why the anti-vaxxer analogy is foolish and frankly rather offensive. Managing updates is about risk, and the risk from Microsoft screwing up your entire system with updates was demonstrably very high before. For example, anyone who was using the default settings to trust Microsoft's suggested updates got changed automatically to an entirely new OS not so long ago -- a new OS, incidentally, which has also had compatibility problems with various hardware, which also has significant privacy concerns particularly in places like doctors' surgeries or other environments managing sensitive information, and which is also infamous for disrupting normal day-to-day work by changing things and/or rebooting at undesired times.
I know plenty of smart, well-informed people who work in IT and made an active decision to reduce or disable updates on some of their Windows systems for these kinds of reasons. Whether they would have advised home users with no technical knowledge to turn updates off completely is a different question, but it's not an entirely unreasonable policy given Microsoft's recent track record of abusing automatic update processes.
>> Microsoft shares part of the blame here for pushing... the major OS version
Microsoft lost every single ounce of credibility with the way they force-loaded Windows 10. Turning off Windows Update isn't enough anymore. The only solution is to dump Windows. Install Linux, or buy Apple hardware. It's unfortunate, but Microsoft will never recoup the trust it lost with the push of Windows 10. Microsoft cannot be trusted.
No. "Some of the blame"? Try "all of the blame." Windows Updates used to be pro-user. Now they're pro-Microsoft (pushing things Microsoft wants) and anti-user (routinely pushing 'features' no one wants or asked for).
I disabled it a long time ago and haven't looked back. Get back to me when MS starts remembering their customers are human beings again.
Last year my Windows 10 box decided to just restart to apply updates. Problem is, I was still using the machine and was strapped into VR gear. Suffice to say I was not pleased.
"pro user" is an interesting way to put it. If I remember correctly it was heavily integrated with IE in the past to push browser share. Want to update your system? Open buggy old IE5/6. Want to get rid of IE? What antitrust? IE is part of essential Windows functionality after all, we can't get rid of it.
> Get back to me when MS starts remembering their customers are human beings again.
Oh, they know. Their whole abusive process is build around milking that fact for all it is worth.
Well we can argue wether a knife is pro or con user when Microsoft stabs said user in the back with it. Microsoft would say that it provides a secure (tm) resting place for the users hat and is not only very pro-user in doing so but also important for the continous operation of said hat. My point is just that, Microsoft used Windows Update to push unwanted software in the past and as such Windows Update was never entirely a pro-user software, something always undermined by Microsofts willingness to put its own goals above its users needs.
MS has MILLIONS of people yammering for features and they go to great lengths to shorten the release cycle for getting new features to developers and customers.
I find this as a positive thing and this concept of MS as "the enemy" is absurd..
You're essentially writing off 10s of millions of happy customers participating in a growing and flourishing community without any regard..
Empathy.. its a good thing.. even if your personal choice is that of something else.
Ads in explorer in a sense as Ads in Firefox. If you navigate to Onedrive in explorer you get information that it's a service you can get more storage for.
It would also help if Windows 10 didn't restart the machine automatically in the least favourable time, when you just went to make yourself a tea while having a zillion of programs opened, and the process didn't end up with a blue screen (both happened to me in the last few months; ok ok they allow now to choose "inactive hours" or whatever it's called, but initially you had a choice between "restart now" or "restart in 10 minutes", really dark pattern to impose things on users).
But yeah I get a notif when the update is available and I install it whenever possible.
Regarding unwanted features, have you tried Classic Shell / Classic Start Menu? Literally first thing I install on a new Windows installation.
This is the main reason I highly considered turning off updates as well. Twice in the last year I've had to go on-call for work to fix a critical issue some point in the late evening for Windows 10 to close all my programs, progress unsaved, without warning and spend several minutes (half an hour on one of them) doing updates.
At that point, Windows 10 became a liability, and that laptop still doesn't have automatic updates turned on anymore. (It still gets routine manual updates, but it's definitely not ideal.)
Yes. Don't tell people to not use Windows updates. That's bad advice from a security point of view. Tell them to not use Windows, period. That's (typically) good advice from a security point of view (of course you still have to install updates on other other operating systems.)
I turned off Windows Update precisely because it tried to force and trick me into upgrading to Windows 10. This is their fault for making people distrust what Windows Update should be, and whoever made that decisions at Microsoft should get fired.
"I still sort of regret installing Windows 10 to this day because of the obnoxious Cortana bar it foisted upon my start menu that I can't get rid of. And yet not installing Windows 10 would've left me less secure with an OS hitting EOL for security updates much sooner."
Running an MS OS has been a one-way ticket to owned for roughly 18 years now.[1]
You are fragile to these things because you choose to be - not because this is a necessary condition of participating on computer networks.
This ransomware attack was based on an SMB vuln. One of the stuxnet vectors was an autorun vuln.[2] Would you wake the fuck up and see that it is 2017 and you're getting owned by SMB and autorun vulns ?
[1] Melissa virus was 1999, BO2k was 2000.
[2] Has any single file caused more mayhem in the world than autorun.inf ? The net negative effect of autorun.inf on the world must be in the tens of billions of dollars by now.
Would you still have the same opinion on anti-vaxxers if vaccines were actually harmful?
We avoid taking a big amount of medication that would fix some problem just because it's harmful (and even medication that is less worse than the disease).
I spent the weekend doing a clean reinstall of windows 10, because windows update had stopped working about a year ago (due to a broken windows insider build). I must admit it was really nice to be able to leave my computer on for months at a time without it restarting for updates.
Few people really mind updates. What Microsoft really needs to do is minimize the number of forced restarts required, like Linux which only really needs a reboot if you update the kernel itself (and even then, there are ways around that).
To be fair, if you have a vulnerability in a .so used by e.g. Firefox, you'll also have to restart Firefox after updating to have it pick up the updated library. But you're right I would prefer the Linux update model, where I run a command once a week when I like to pick up the latest versions of software.
I've noticed that there is a certain level of competency a person can attain in a subject where they think they have an advanced knowledge and hand out advice with a certain authority.
But in reality they are spreading dangerous misinformed information.
Windows's auto updates though can be annoying, ensures that the average computer is up to date. Like in the example of this article:
"If you had any version of Windows since Vista running the default Windows Update, you would have had the critical Microsoft Security Bulletin known as "MS17-010" pushed down to your PC and automatically installed. Without doing a thing, when WannaCry came along almost 2 months later"
The average user cares that their holiday photos, documents or credentials don't get stolen or ransomed.
Most people don't get any Windows education. They use it at home for years, write on their resume, they know Windows and the Office Suite and say this is their advanced knowledge.
On the other hand, this is how I started programming when I was 15 :D
But well, I didn't write it in my resume till I finished my CS degree.
> Windows's auto updates though can be annoying, ensures that the average computer is up to date.
> The average user cares that their holiday photos, documents or credentials don't get stolen or ransomed.
Are both true. However, windows updates also occasionally cause restarts in the least opportune moments (e.g. when you have unsaved work and left for the day), or make a restart take 40 minutes when you need your computer right now (in the middle of an important phone call). Both of these have happened to virtually every Windows user I know, prompting some of them to disable Windows Updates.
Other issues with windows updates are bandwidth abuse (getting Win10 downloaded automatically on metered mobile connection), breaking some software/drivers/configuration, or installing unwelcome telemetry spyware. Each of these only happened to one or two persons I know.
The average user now keeps all their holiday photos on their mobile phone / cloud, but they do care about documents and credentials.
You are not wrong, but the way Microsoft Update behaves, you have to choose the lesser of evils (potentially get ransomwared, vs potentially avoid things listed above). It is not patently clear that Windows Update is universally the better option.
And it wouldn't be a choice between evils in the first place, if microsoft didn't try to advance their agenda by stopping the practice of "security updates" vs "other updates". Microsoft deserves all of the blame for the disdain to Windows Update, and therefore a big chunk of the sorry state of its users.
And the reason why people were suggesting to turn off Windows Update was precisely because of malware payloads directly from Microsoft.
"Do you want to upgrade to Windows 10? Press the hidden button to cancel, otherwise upgrade commences." This is how malware works.... But published and pushed by MS's own channels. And his jab at people who say that turning off WU is similar to anti-vaxxers is completely inane and false - we know the damage Microsoft has done to user's computers.
In reality, I'd rather they upgrade to Linux. Those machines wouldn't get bit by this, unless you run the executable with WINE. But I blame MS for being spammy and spyware-y and malware-y, which encouraged users to turn off harassing and onerous updates.
Oh no. The forced updates were the 'gift' for running Windows 10. Although I would say this is also certainly a part of it.
I also have more than a few stories of people hiring me precisely due to a hijacked OS install of Win10, accompanied by slower machine and worse usability. It only takes a few of those and a whole social circle will warn about it (because of the time and harassment).
In fact, I remember this getting so bad, that local news media was talking about how to stop having your machine hacked by MS with a forced Win10 install. In all honesty, if this were you or I, we'd be facing CFAA charges for this shit.
I'm still inclined to blame that on MS really. Poor ergonomics. I can understand the OS telling me to reboot if I haven't restarted the computer in a few days after an update took place but there's no reason to harass me immediately after an update got installed (unless it's a critical 0-day patch I suppose).
But really, it's getting worse. I remember seeing a bunch of articles last month about how to preemptively defend against the "creator's update" because it came bundled with a bunch of software people didn't want. They use windows update as a trojan horse to install new applications, that sets a very bad precedent.
I've even stopped urging my friends and colleagues to enable auto-updates because I'm worried that they'll end up having windows auto-update to a new version and break something and then I'll have to help them through it. I just can't be bothered anymore.
Your last paragraph is confusing. It seems those people rely on your support. Are you really saying you'd rather deal with potential results of them not upgrading than with the upgrade failures? I'm assuming that if they come to you with one, the also do with the other.
Well it's just that one position is more comfortable than the other. If they don't update and have an issue then it's on them. If I insist they turn on Windows update and then something goes wrong then it's on me. It's a bit cowardly but as a Linux/BSD guy I just can't stand doing Windows support anymore. Every version is worse than the last, everything is dumbed down to the max and when something goes wrong you're screwed unless you're a PowerShell wizard.
The other day I helped a friend set up a new computer, we installed a brand new (paid for) Windows 10 on it, straight from the Microsoft-provided DVD.
It worked just fine for a few hours, then it would get stuck in a reboot loop continuously. You'd log in and 10 seconds later it'd hard reboots.
Given the brutality of the crash I assumed a driver issue or something like that. Turns out it's just Windows failing to install an update and crashing the OS for some reason. So I thought "well, let's just boot up and quickly disable auto-updates". You can't do that. "Well let's boot up in safe mode". Nothing works in safe mode, you can't access Windows update (the page remains blank). We ended up downloading an updated version of windows and reinstalling it.
I have a Windows 10 PC that I use for gaming, the creator's update installed itself the other day. Amongst other niceties it added a MS edge link in my taskbar and changed my desktop wallpaper. I also noticed that it tries to argue with you when you try to change the default browser from Edge to something else ("We're good now, we promise!!"). Minor details, nothing major but it adds up to a general distrust for the OS and the feeling that I'm not in charge of my own computer.
I just can't put up with that nonsense anymore. If my friends want support they'll run Linux, otherwise I'll let them deal with Microsoft's support or whatever.
The best part about not using Windows outside of work is that I can now legitimately tell 99% of the people I know that I don't know how to use their system (Windows or OS X).
You don't get free service from lawyers, accountants, doctors, or mechanics, I don't see why people expect free help from me. I used to help people, but I've realized how limited my free time is, and I prefer not to spend time doing work-like activities outside of work.
I will direct people to the appropriate resource if they ask for advice though.
The only people who get free tech support from me indefinitely are my mother, my father, and my sister. Realistically it's mostly my mother, as the other two are good enough with computers to not need help most of the time.
> If my friends want support they'll run Linux, otherwise I'll let them deal with Microsoft's support or whatever.
Dealing with Microsoft's support is quite an experience, I think I would be better off talking to some indian "anti-malware" "security experts" that would install remote controlling software and would tell you some fancy tech words that you could listen to while they're at it.
That's not my point. Enabling Windows Update shouldn't be a trade-off. The fact that disabling it constitutes a quality-of-life improvement for many demonstrates that Microsoft is doing something terribly wrong.
I should be able to tell my friends "yes, you should turn on auto updates, there's absolutely no reason not to" without having to follow with any caveats like "oh well, it can upgrade your OS, reboot on you when you don't expect it and change the ergonomics of your desktop without asking you but in the end it's worth it for the security updates, and it's not like you have a choice anyway".
Not that MS is completely without fault, but we have to remember that they're supporting an infinite amount of configurations. Apple's OSX (on the other hand) is supposed to support a limit configuration controlled by Apple. It's a recipe for disaster.
Supporting an infinite number of configurations has nothing to do with installing arbitrary apps that you never wanted, automatically changing your default apps and wallpaper, and silently turning back on various spying "features" that you had intentionally turned off.
> I should be able to tell my friends "yes, you should turn on auto updates, there's absolutely no reason not to"
The anniversary update was mainly a shit show. It was a staggered update that cause issues for many folks. Some people kept getting fail update errors. Others got stuck in boot loops. Others lost certain device functionality. If you were able to get it to successfully install without hitch, it broke some things for a non-trivial amount of people.
Your comment is spot on, but it's not what I was talking about.
> most people turned it off because they didn't want updates interrupting them
Bingo. For a while, Microsoft was really good about not requiring restarts to install updates. I haven't had a restart-free update since I installed Win10.
Outside of the US, it is a thing to have a policy of disabling windows update for a variety of reasons among which a significant one is to allow the computer security agencies to audit the updates and remove any MS provided malware.
For example, my wife had to work from home one day -- fairly rare occurrence -- and it was at that moment at 9:00am that Windows 10 decided to update and reboot with no way to cancel and the entire process took well over an hour.
That should be unacceptable and I don't know why it's not.
I have updates set to download but not install automatically and I periodically manually install them. Microsoft's active-hours thing is BS too as it must be less than 12 hours. I honestly don't care as much if my machine reboots between 1:00am and 7:00am but apparently that's not enough time.
I'd love to pick the brain of the product owner who decided that 12 hours is the maximum acceptable time for an "active" period. Most people only sleep 8 hours or less, so there's easily at least 16 hours in the day that could easily be used for computing.
How long does it take to install updates anyway? Why can't I just set my inactive period to 4-6am?
Less egregious but still awful: updates that then have ngen randomly consuming half your cpu for hours because ms is too cheap to make native .net binaries remotely.
I don't know why people complain about updates and restarting, particularly in this thread. You fill your car up with fuel regularly because it has been warning you it's nearly empty for a while much like updates remind you regularly. People seem to complain and say "it updated right when I was in the middle of X" but they've been putting it off for ages. Do you break down in the middle of the motorway when you run out of fuel too?
Windows only updates when you're doing something because you're putting everyone else at risk by not running the damn things in and you've had plenty of notice.
Not yet. Only when you run out of gas. However in a few years, are people going to get pissed off when their Tesla has enough of their shit and drives itself to a charging point because the owner is too incompetent to heed the warnings?
As if Tesla had a monopoly on the car market as Microsoft has on the computer OS.
Then again cars only warns when the fuel tank is getting empty, Microsoft updates may happens at times and is totally unrelated to the ability of your computer to continue working.
In the long term, I'd hope that charged batteries are just driven to the car to be swapped in, when the car is in use, instead of the car having to stop and spend time charging itself when you want to be driving.
You are driving down the interstate, message pops up saying it needs to refuel, you don't hit the button fast enough, your cars shuts off, and you spend the next 15 minutes parked in the middle of the road with cars honking behind you.
Or you wake up, get dressed for an important meeting, unlock your door, and suddenly realize you're going to be late because your car decided this was the best time to finish refueling in spite of your instructions to refuel at another time of day.
How nice for you! Having active hours be ignored, and the machine update itself in the middle of a workday, has happened more than once to me. (Once would be enough.) It's happened more than once to a lot of other people, too. How far do you expect to get with this argument by implication that that's not the case, and we're all just full of it?
That only happens if you put the updates off of they've been there for a couple of days and you have something running that makes it assume that the machine is still active. People seeding torrents overnight seems to be the only place I see that not happen.
See update notifications? At the end of the day, restart and install the updates. It's not rocket science. It doesn't just hit patch Tuesday and then reboot immediately, shafting you. And it doesn't screw your workflow up.
Really this has to be done because even the best of us put it off eternally.
> That only happens if [case that isn't the only
one where this happens]
The whole point of active hours is that, when updates are pending, they install and the system reboots outside the hours in which I've expressed the desire to have my machine not reboot itself. Yet I've lost count of the number of times where this does not happen - I see an update notification, shrug and assume it'll be applied in the window I've set, and take no action - only to find the next day that the updates haven't been applied, the reboot hasn't been performed, and if I don't interrupt my work day by applying updates and rebooting immediately - which rarely takes less than 15 minutes, not counting getting all my tools up and going again - then I can rely on losing some work, and a lot of time, later on, when something important needs doing on a deadline. And that's insane! If for whatever reason the updates legitimately can't be applied in the window, the right action in response is to wait for the next window, and not to fuck-start my workday. That is always the wrong thing to do.
I mean, I get what you're saying, right? If active hours worked as claimed, you'd have a real point here. But they do not work reliably at all, and that's a whole 'nother issue.
Some people run complex simulations that take days or weeks to run, and a forced reboot in the middle ruins progress. If someone needs to skip an update on their own machine and their own network that is their right.
I have no idea why this scenario gets talked about so little. It is an edge case, but its a huge edge-case. There are entire ecosystems of Windows-only software where running batch operations overnight are a daily fact of life.
I'm nearly resigned to the fact that I may have to segregate engineering workstations to their own network and whitelist their traffic.
I agree with the person above your comment. For example some simulation loads are common to run on deskside systems.
However this IS definitely an edge case and it is possible to turn it off. I have run a physical host as a build agent that has uptime of months on Windows 10.
This is administrative competence, not a problem with the product or the use case.
WSUS + Windows server is definitely fine for most workloads though.
I have this dreadful feeling that Microsoft is A/B testing this stuff, making sure that there is just enough inconsistency between sites to sow doubt and confusion.
Our company has a dc but not that kind of control over child computers and it would be a large overhaul (and out of my control) to change the whole network setup.
So what about the small majority ? Do they get a "sorry not sorry, f*ck you" card ?
You should assume that windows users doing batch stuff over night are people who have better things to do with their computers during their day or want their computer to work for them while they're not sitting in front of it.
Try considering the whole instead of splitting to only address the large majority.
> If you want to run batch operations, use the right product.
Sorry, but this does come across as a bit asinine.
What's the right product for running software written for Microsoft Windows, if not Microsoft Windows?
"Users running their applications" isn't just Grandma on Facebook, or your little sister playing Candy Crush Saga. Microsoft's unquestionable strength has been it's support for enterprise, small-business and professional desktop users. There is a lot of deserved anger thrown their way as a result of deliberate decisions to force flexibility and choice-limiting behavior down the throat of their core market.
My shop is small, but I can count COMSOL, SolidWorks, OrCAD, LabVIEW, various SPICE frontends, and a dozen other small odds and ends for instrument control and data capture without even leaving the engineering suite. All of which are going to be forever stuck on Win 7, at this rate.
Most of those are products that are not expected run over night in batching mode.
You may get the need to have things to run overnight using engineering, simulation, rendering products with some sort of long running process. But these normally have server component that you install onto Windows Server, which the client offloads to.
> Most of those are products that are not expected run over night in batching mode.
I'll be sure to let them know that long-running computations deskside are now only an experimental feature /s
In all seriousness though, we've managed over a decade without the need for dedicated compute nodes along with the costs that would entail. The only case I can make for that right now is that current Windows now ships with unpredictable uptime.
The good part of this is that I prefer using Linux for these things anyways and the instability of windows has forced both our government clients and our office to focus half our efforts into supporting Linux correctly.
Good luck if you're in a branch which has Windows-only software, such as 2D/3D graphics. Blender is definitely offering some good competition, but as I hear it from CG artists, it's still not quite there yet for most projects. If your pipeline is dependent on Adobe software such as Photoshop, Illustrator or After Effects, then you are also stuck with Windows. Rendering (2D or 3D) jobs can often take days if not weeks to finish.
I'm not saying never update, I'm saying let me update (manually) when I am not in the middle of using my computer for work (which may be a week or two at a time). The OS should get out of the way, not ruin what I'm working on.
Still, I see the software you're using as much a part of the problem as Windows here. Needing weeks of solid up-time to complete something is a challenge and doesn't seem like a realistic assumption by a developer for software running on Windows.
Why can't it remember progress and resume after a restart? That would not only make the impact of Windows Updates much smaller, but also power outages and the like.
What is your point ? That microsoft should be better at security in the first place ? That Sony should refrain from playing stupid games to prevent winning stupid prizes ? That computer vulnerabilities are a contagious disease ?
Man you're in for an amazing time when you will learn about that stupidity called the Internet of Things.
My point is that by connecting your machine to the internet it ceases to be solely a question of "your machine" and "your rights". There are other systems on the network too and you have a certain amount of responsibility to be a good citizen.
(and yes, I am well aware of, and utterly terrified/upset/bamboozled by, the Internet of Things)
I have a friend that booted her computer to windows 7, logged into gmail and facebook, had to leave her computer to care for her little kid and came back to her computer in the middle of windows 10 installation. She had seen no warning whatsoever.
A client had started a time consuming process before leaving the office, came back the following morning with the process having failed due to windows applying updates and rebooting killing the process and losing a day worth of work.
YMMV.
I don't know what you mean by "this has to be done", there is no obligation to apply updates. What if I want my computer to run a windows without updates ? Am I not entitled to use my own property as I so choose ?
I very much doubt she had no warning. You got two warnings and had to opt out. She probably just clicked through them. Check the event log and scheduler logs. It will have the event in there saying the user consented to it. I had to find this on a machine after a user complained it didn't tell him and it clearly did and he clicked through.
> I don't know what you mean by "this has to be done", there is no obligation to apply updates. What if I want my computer to run a windows without updates ? Am I not entitled to use my own property as I so choose ?
If your machine becomes a botnet node and causes problems for other people, which is a big problem, then you forfeit the right. The same thing if your apartment leaks water into another one. Be a good citizen.
Failed updates, now that's the only valid part of your point. I've had a few and they weren't disruptive but this is just my case.
You can doubt but maybe direct the doubt at the ability of window to deliver a consistent experience across every machine and configuration. She's computer literate and know when she gets nagged by windows, at best it could have been that the warning came and went while she was not in front of the screen.
There was no event log or logs of any kind, her system got entirely replaced by win10. For this specific case I would tend to not trust the log anyways. What I do find strange is that the windows 10 installation process should have asked to accept the EULA before installing, it did not and went on as if it was an unattended installation.
Good luck trying to explain people that they have to forfeit their freedom because they have to behave like good citizen. Anyways windows update is barely relevant here as the common vector used for botnet infection is almost always the user, not windows vulnerability.
If Microsoft hadn't burned a decade's worth of "leave auto-updates on to keep your system safe!" public goodwill by force-feeding WIN10 BS to a massive number of people who did not want it, it's highly likely that this update would have been nearly unconditionally applied.
The default attitude of most people I've interacted with regarding technology is apathy. If it works, they're happy and they leave it alone.
Do you really think that a significant number of non-tech people would have gone to the trouble of looking up how to turn off updates to their facebook/email/google machine if Microsoft hadn't caused a massive shitstorm with their forced update BS?
The vendor is entirely at fault for making stupid short-sighted decisions that caused users to lose trust in the update process. No amount of handwaving can change that fact.
- If Microsoft had coded its software properly there would be no need to patch vulnerabilites,
- If the NSA had told Microsoft about the vulnerabilities when they were discovered instead of exploiting it (Assuming the NSA did not tell MS to not patch them on purpose),
- If Microsoft did not have decades of being untrustworthy gathering the logical response of disabling auto-updates,
- If Microsoft had not paid vendors to have windows pre-installed on new computers it would have the monopolistic position it has today,
- if the NSA exploit and tools had not been made public,
- and so on...
All these are also valid ways that would have prevented wannacry spreading.
In my case, it is simply too expensive to download updates. I live in a country which is notorious for expensive data prices. I don't mind interruptions. That's a good problem to have. The choice for me is between spending a week's worth of groceries to download updates periodically or spending that money to buy food and risk getting my PC infected.
This is an interesting and genuine case where I can see that it doesn't make sense.
In your case it should be possible to have a windows "branch" with just critical vulnerabilities patched with binary diffs or something rather than 680-odd Mb patch sets.
That's the obvious general solution for everyone - having critical security vulnerabilities on their own channel, without being required to take the features/antifeatures too.
I'm not sure about Visual Studio but there are alternative to MS SQL Server and Microsoft office. If you're stuck with windows, then you should consider sharing resources with other people in a similar situation.
Download the updates manually and share them via USB storage with other peoples, assuming you have other people in similar situation around you and they are willing to do the same.
Forced restarts have been wreaking havoc among my users that have switched to Windows 10. Plenty of notice, you say? Hardly.
Our software and engineering staff are no longer confidently able to perform long-running operations overnight or across weekends. Simulations, and data-capture runs in particular are now routinely being done during normal business hours since users cannot trust that their OS won't kill everything for an update midway.
Among my tasks for this coming week is working up plan to isolate key workstations, and estimating the required budget to provide the affected users with secondary PCs for routine tasks which require internet connectivity.
> Our software and engineering staff are no longer confidently able to perform long-running operations overnight or across weekends.
So, you're admitting in public that your organization is using the consumer editions of Windows for business use instead of the enterprise edition, which allows administrators to control updates and reboots? Sounds more like your IT department basically doesn't know what it's doing; the additional cost of the enterprise edition is negligible compared to the cost of your engineering software and other tools.
What hyperbole. And what a bizarre thing to socially shame people over. This is like using 9/11 to emotionally argue for behavior changes, a week after 9/11.
The user is not usually in a position to decide if they need updates or not or to judge whether or not they are putting themselves at risk by not updating the machine.
That's a terrible analogy. I have been shaming people for bad security practices and self-righteous ignorance for many years (even before 9/11 ironically!).
I've seen too many people have been wrong and had a bad outcome including complete data loss and in one case livelihood being shot entirely. This isn't a random assertion from thin air. You can't trust people to look after their computers.
I fill the gas tank because I monitor the fuel gauge, not because it warns me that it's nearly empty.
Using an appropriate analogy to make something clearer works better than shoehorning something to push your view.
I plug my laptop to charge the battery when convenient and operate in a geographical area where power shortages are still an exception so I have no fuel issue in my computer usage whether I use automatic system update or not.
Actually I do not use automatic system update, if there is such a thing for this OS, it is discouraged as updates can sometimes break the system if applied blindly.
How exactly can someone not applying updates when windows asks for it put everyone else at risk ? What risk do I face from this from behind my BSD firewall on an Arch linux powered computer ?
Then again my experience of windows computers since windows update was introduced is not in line with what you describe here, getting even worse in recent times with updates applying themselves with little to no warning, sometimes running several times in a row: logs you out of your computer, applies updates for 10-45 minutes, reboots, applies updates for 15-60 minutes, logs you in, crawls your computer down by downloading more updates, logs you out of your computer, applies update for 10-45 minutes, etc...
I've witnessed this happens 3 times in a single week, the owner of the computer was pissed, I'm paid by the hour and happily browsed the web on my linux laptop while the client pestered against his computer, microsoft, technology, corporations, politicians allowing this to happen and so on.
> I fill the gas tank because I monitor the fuel gauge, not because it warns me that it's nearly empty.
You are better than 99% of users which is what this issue is about. You are a power user capable of looking after a machine. The problem the people who aren't.
I'm not better than others, the contrary even. Everybody learns to do this when the nearest gas station is far enough that you will probably not make it there by the time the fuel warning lights up. Now it has become a habit for me.
Assuming that things work the same elsewhere as they do around you is akin to self-deception.
I'm probably leaning towards the power user category of computer users nowadays, but I wasn't born that way I learned it the hard way by having to deal with Microsoft's crap for years. Now it has become a habit too.
I would like to keep my Windows Update on, but I just can't afford it. Data bundles are too expensive where I live. I can buy a week's worth of groceries with the amount I spend buying just 2GB data bundle. Not everyone lives in a country with cheap data bundles.
You should have a look at traffic shaping and different networking queues. Fq_codel is great, but even SFQ works better than nothing. No need to turn off updates.
> I once had to turn off updates on all laptops in my workplace so we could use the internet.
In such a situation you can dramatically reduce the bandwidth required by setting up an update server. There's no need for every laptop to download the same patch from the internet, download the patch once and everyone gets it.
(I appreciate that doesn't help the situation where you don't have enough data for one machine)
I'm Army Reserve and we frequently have this problem in field exercises. Fire up some Win10 laptops on our very limited Verizon MiFi access point, they promptly download gig's of updates without consent and immediately push the bandwidth past the limit and the AP gets throttled to oblivion.
Yeah yeah you can turn of Windows updates or whatever, but you shouldn't have to do that just to force Microsoft to respect your wishes to update when you want to. And no, I'm not talking about some stupid restricted 8-hour window with no other option outside completely shutting down the service. TBH I'm still surprised they haven't tried to block users from doing that too at this point.
Windows 10 has the option of specifying that a specific network is a metered connection. It won't update the OS when connected to those networks. Found this out the hard way after getting a big bill while traveling and tethering to my phone's 4G connection.
Good idea thanks. We'll check it out. But of course again, that's not something the user should have to do (and not something we want to have to do on every single system that connects). Wifi != "unlimited bandwidth."
Sorry to hear that man, I used to have this problem and I used to hate feeling so limited. Was stressed out if I could download X file without it costing another limb. It is an outrageous business model which doesn't work for cases where connectivity is limited.
I believe at one point the windows 10 complete installer was downloaded to everyone, 'just incase' they decided to install. Really narrow-minded behaviour.
I worked in Antarctica last year, a "winter-over" contract as combination Network Engineer/Glacier Search and Rescue (GSAR) team member, at one of the very small U.S. research stations.
In the atmospheric/climatology lab there are a number of computers running very specific versions of Windows (down to specific patches) tailored to really obscure science research software packages, some industry standard, most custom-rolled and tailored to that project. Which means they're very fragile and need to be left alone.
Of course Microsoft blasts Win10 installer files down our very expensive, very slow satellite link, and proceeds to force Win7/8 systems to Win10 which broke a few multi-million dollar experiments in a place that takes MONTHS to get to in the winter. So effectively killed the research.
And yeah, you can argue "well you should've disabled Windows updates etc etc" but in REALITY, not perfect-theory world, you should be able to trust your OS manufacturer not to force-install a major OS revision without your consent. And in the old days of Microsoft, you could. Now they just say "f--- you, we're installing it regardless what you want."
Out of curiosity, would it not have been a better idea to build your experiments/software on Linux or a BSD variant? Was it a lack of software drivers for your equipment? Given the precise control you can get over the operating environment on these OSes, you can pretty much ensure that the environment your programs run under will never change.
They weren't "my" experiments - I was the station network engineer with double-duty as helpdesk/IT person.
Imagine this: you're a broke grad student and you're given $xx grant money to conduct a certain experiment in N months. What are you going to spend your VERY limited time+money on? Finding a good Linux hardware developer to roll some custom solution that no one can understand or support? Or just throw together some hacky Python or .net MVP that will run on Windows which practically anyone in the world can troubleshoot with basic knowledge?
Linux is great and all (runs on all my systems except one), but it is NOT the best option when there are heavy time constraints and the system is going somewhere very remote where there will be one, MAYBE two people with basic IT knowledge to troubleshoot.
What are you going to spend your VERY limited time+money on? Finding a good Linux hardware developer to roll some custom solution that no one can understand or support?
Just install some distro and "just throw together some hacky Python". If you had some hardware and measurement instruments that require Windows for drivers then I could understand it, otherwise it's just negligence.
> or .net MVP that will run on Windows which practically anyone in the world can troubleshoot with basic knowledge?
In my experience people who claim that they could troubleshoot Windows is usually just that - they claim it but rarely can they actually fix anything.
I don't know, maybe Windows is that much better and easier to use for everyone and I just can see it - who knows...
> If you had some hardware and measurement instruments that require Windows for drivers then I could understand it
It likely is. I have read similar stores about having to refurb an aging 386 or 486 running DOS. This because it is being used to operate a very expensive particle sensor, and the company that made it is long gone.
And if you want to replace said sensor you first have to get the funding to do so, and then you have to shut down the lab for a year to run calibrations so that the results from the new sensors can be compared to those of the old one.
EDIT: Didn't recognize the username at first. I still have some doubts, but I do remember you talking about going to Antarctica in the Tron subreddit. I recently used Tron, and I hope that there isn't some undocumented part of the script that is disabling automatic updates.
I have some doubts about this story... The forced Windows 10 update was only sent to non-enterprise versions of Windows. I highly doubt any of these experiments were running the home editions of Windows due to the lack of control. Also, I am pretty sure that running home versions of Windows in contexts like this is against the Windows TOS.
It was sent to all versions of Windows, as long as they weren't part of an Active Directory domain, and that detection was pretty flakey, too.
If you had a mixed OS environment with a Samba-based domain (or no domain at all, because these machines just take data from lab equipment and shovel it onto network shares), there was a good chance of the update firing off anyway.
FWIW there was a handful of reports of exactly that happening on /r/sysadmin. There was also a ton of domain joined machines that were spammed with the Windows 10 nagware but didn't actually upgrade on their own.
> I have some doubts about this story.... I highly doubt any of these experiments were running the home editions of Windows
I guess you've never worked with budget-constrained grant projects before.
> I do remember you talking about going to Antarctica in the Tron subreddit
7 months on ice.
> I hope that there isn't some undocumented part of the script that is disabling automatic updates.
Tron doesn't perform ANY undocumented actions. Unlike most the people defending Microsoft's actions in this thread, I am pro-user and seek to minimize negative impact to users in any project I'm involved in.
> Also, I am pretty sure that running home versions of Windows in contexts like this is against the Windows TOS.
If you're telling me there are people in the world using Windows in violation of its TOS I'm shocked, SHOCKED to say the least.
So, no offence, but this reads more like you and your colleagues destroyed a multi-million $ project by trying to save a few dollars by using Windows Home instead of Enterprise?
Why are you trying to excuse Microsoft's behavior here? Who could have predicted that Microsoft would have actually done what they did and forced the Windows 10 update on everyone?
No, it's definitely Microsoft's fault. Even Home users should be able to have the expectation of controlling when or if major OS updates are applied. It's not like "doesn't automatically update to Windows 10" is an advertised feature of Professional.
Enterprise edition is exactly what it says on the tin - you need to purchase certain number of licenses, and these licenses are on top of the OEM licenses.
They are useless for a small team doing a research project.
None taken, but you obviously didn't even read the post.
These project machines are shipped (or physically hand-carried) by grad students from random universities all over the world. They come from who-knows-what IT department running who-knows-what software packages, often cobbled together JUST enough to get it working because they're so budget and time constrained that's all the resources they had to throw at it. So the lab is full of bespoke machines running a variety of very obscure software, much of it on tailored Windows boxes.
So no, "me and my colleagues" didn't "destroy a multi-million dollar project by trying to save a few dollars."
4 years NSA, 14 years Army Signal Corps (routers/switches/radios) with multiple overseas tours, now working in an enterprise financial data center with CCNA/CISSP and a TS/SCI with full scope poly would put me a little ways out of the "completely incompetent IT staff" category.
>I am pretty sure that running home versions of Windows in contexts like this is against the Windows TOS.
For Windows, Microsoft restricts features but not what purpose you can use it for if you're talking about Home versions. For Office however, the home version actually has restrictions in the TOS that limit use to only noncommercial purposes. For a standalone Windows box that is only used for some lab equipment and will never be domain joined there's a good chance that there's no technical reason to go with Windows Pro over Home.
> Of course Microsoft blasts Win10 installer files down our very expensive, very slow satellite link […]
The lesson there is that you should always quarantine computers that need to be pinned on very specific versions of an OS, especially in such a precarious setting! Those computers should not have been able to communicate over the internet at all, except for those cases where communication is part of their purpose (e.g., monitoring the experiments), and that should happen via a dedicated VPN allowing only the traffic necessary.
I'm surprised this isn't the standard operating procedure for this kind of case.
Could be it had been sitting down there for years without any incident.
Best i recall, MS was very very insistent with their Win10 "upgrade". To the point that they relabeled the installer patch as critical (aka, reserved for pushing 0-day patches or similar) after people found they could change certain settings to make it go away.
> Could be it had been sitting down there for years without any incident.
Well, sure, and if they ran a critical machine with no backups whatsoever it might have also been fine for years, but that hardly makes it reasonable practice.
This is a far more common reality than the media reports. I too have had this problem and had to resort to finding cheap wifi just for updates. While internet access is fast and cheap in large dense populations in africa, there are still millions of people with limited or expensive internet access.
Majority of people who write these articles aren't in touch with what is happening in the rest of the world. Where I stay, it is fast but expensive. Lack of competition keeping prices artificially high.
Microsoft is to be fully blamed here. They brought it on themselves, pissing off anyone with a bit of a brain by turning their OSes into suspected spyware, forcing W7/W8.x users to turn off updates, allowing funny leaked tools wreaking havoc everywhere.
Author here blames people that took prudent actions to preserve their autonomy, while MS was holding them hostage by bundling security updates with unwanted monitoring. Many of them switched to Linux/BSD and are using Windows minimally as a consequence.
That article would be more believable if Microsoft (as well as other companies) hadn't slipped all kinds of stuff in earlier updates which are not on the interest of the consumer at all. (Starting with annoying UX changes and A/B tests, to telemetry, to advertising, to removal of user software and DRM)
Oftentimes it looks suspiciously as if the (rightful) need for security and quick responses is used as an excuse for "OS-as-a-service" shift that mostly benefits the vendors.
What happened to the old practice of clearly distinguishing between "security" and "feature" updates? What happened to actually educating the users?
MS is 100% responsible for this and they should reap what they sowed. Imo this blame shifting PR damage control is just insult to injury and will probably backfire.
Interesting tidbit from the bottom of this thread [1]: Windows actually has a pretty clear distinction between "security" and "crap-no-one-needs" updates and even offers a way to restrict to security updates only - in the LTSB version which is exclusively available to enterprise customers [2].
I take that as a proof that the whole discussion is more about pushing Windows-as-a-service than about actually caring for security.
That's what I thought too reading the title, but the windows tax makes sure it comes pre-installed with computers and for most people it means having to deal with windows.
It should be "tell people to use a non-windows OS" instead.
It's not a good solution, but it's the only one that capitalism really provides - switching to the competitor to pressure the shitty company to stop being so shitty.
My system partition is full. This alone prevents Windows 10 from updating (without giving any reason; you have to really dig into it to find the actual problem).
But hey, I can ask Cortana for some random stuff and have it fail 95 per cent of the time; nice priorities, Nadella!
I wish I could disable updates. Dumb ass win10 thinks it's ok to download 2 GIGABYTES of data. How is it reasonable to have gigabytes of updates ? For security ? I have gigabytes of binaries here ? And then 15 days later, 1.5GB of updates. (note: my win10 laptop is usually used with mobile internet)
Win10 is a shame.
They could have at least separated security updates from random crap updates. A button would be nice as well.
If anyone knows how to disable updates on non-professional win10, please let me know.
edit: I do know about security and the importance of updates. You few downvoting me can go shove it up your arse. It's crap behavior from win10, period.
Wow i feel stupid. Didn't even think to try the standard things.
Thx.
Time to msconfig this laptop to "usable" state.
edit:
Parent comment flagged ? Are we on "Anti-hacker Non-news" ?
Anyway; Start-> type "services" (or "msiconfig" for more options, basically the same as winXP) and you can turn off "windows Update" there. Don't forget to turn it on every once in a while, especially if you use public networks.
update: There's also a thing called "Background Intelligent Something", that is the thing doing the actual downloads. Seems it continued downloading even without the update service running. Said service looks mildly important, but still it had to die.
...and once you are on Windows 10, you will need a degree in Computer Science to disable updates :). I was forced into Windows 10. To turn off updates, I had to disable the Windows Update service. There is no user friendly option to turn them off.
There is one but it is not included with windows. You have to download a piece of freeware dedicated to customizing your windows.
Sorry i don't have the name of this in mind.
It's a question of trust. That user no longer trusts WU to not silently install Windows 10. The window might have closed, but who says it won't open again suddenly, or a WU bug won't make it think it's still inside the window?
Silently installing Win10 from Win7 at this point after the window has long closed would be a massive controversy and utterly unprecedented in the industry. Updates introducing bugs is always a possibility on any platform Windows or otherwise, so the suggestion is just to stop installing security updates? Please.
Silently installing Win10 from Win7 at this point after the window has long closed would be a massive controversy and utterly unprecedented in the industry.
So was pushing the original Windows 10 update from Windows 7. That didn't stop them.
You can't just install security updates in Windows 7 any more. The only option via Windows Update itself is the monthly roll-up that includes everything. You have to jump through hoops or have a centrally administered system where the admin is jumping through hoops to do anything more selective, such as installing only the security updates.
Does this guy work for microsoft ? It reads like a partisant piece for microsoft.
Totally overlooked the suspicious timeline of Microsoft releasing patched for vulnerabilities that were exploited for a long time by the NSA right after it was made apparent those had been stolen and were about to be released in the wild.
No question asked about NSA having known and exploited those vulnerabilities for a while, no question about Microsoft possibly willingly playing along or being legally forced to do so.
No mention that disabling Microsoft update trend is a logical answer to Microsoft using the system to silently installing spying software, breaking the system altogether, disabling pirated versions among others.
No mention that the solution to things like the wannycry outbreak is not turning on windows update but less windows and more other OS and backups. With a sane backup policy ransomware is merely a joke.
> No mention that disabling Microsoft update trend is a logical answer
No, it isn't. Disabling update isn't a logical answer to _anything_ except "what's the best way to get malware". If you don't want Microsoft's "spyware" don't install their OS. There is no coherent logic to simultaneously not trusting Microsoft, and running their code - any version of it.
No. In THEORY you're more vulnerable to exploits in the wild by disabling Windows Update. In REALITY you're statistically FAR more likely to be harassed and have your software/apps/OS break due to Microsoft's "very similar to malware-style" forced updates.
I disabled Win10 updates over 1.5 years ago with zero issue. Security people love to claim the sky is falling, but it's all about risk/reward. Risk of issue due to actual exploit is pretty low for most people, so even though the potential IMPACT is very high, because the probability is so low compared to the constant irritation of Microsoft arbitrarily forcing whatever they want down your throat once a month, they just deal with it and shut off updates.
There is no coherent logic to simultaneously not trusting Microsoft, and running their code - any version of it.
Of course there is. Many of us found Windows 7 to be a useful OS and trusted Microsoft of that era to produce it. That doesn't necessarily mean we trust Microsoft of this era or more recent Microsoft products to be something we want to use. There is no logical incompatibility here. They've simply changed their strategy to one some of us don't like, after we bought some of their earlier products and before the support lifetime of those products ran out.
Not at all. The support window for Windows 7 was advertised as going up to 2020. It should be possible to install important security updates without anything else changing as a side-effect until that time. It should also be possible to look up those updates and know what you're getting before choosing to install them, to make sure they really are security updates. That's not so much a matter of trust, it's a matter of Microsoft meeting the commitments it gave when people chose to buy its OS before, and verifying that this is happening without just taking their word for it.
But if you're installing and running the security updates then you're back to trusting Microsoft. How can you verify the patches are all exactly what they purport to be?
Trust isn't black and white. Of course you can't 100% verify any update without personally decompiling and analysing exactly what it contains, but you can take reasonable precautions before installing them. You might be willing to trust that a security patch described as fixing a specific vulnerability such as the one we're discussing here is at least trying to do what it says if no-one has reported otherwise after a while, without being willing to trust Microsoft as a whole to push only genuine security updates without supervision.
Nobody's disputing that security updates are objectively good. The problem is that Microsoft pushes antifeatures through the "security updates only" channel.
So it's a trade-off: Security threats or antifeatures.
He isn't directly on their payroll[0], but he is definitely not a neutral observer. He has financial interest in Microsoft's success, as he is primarily a consultant for their products.
The reason for turning off updates is (I believe) rarely that one doesn't want important security updates. Just as Ubuntu servers have an option to automatically install critical security updates and for the rest you run `apt-get` when you want, the same should be available on windows.
Blaming the users is nice and easy, but Microsoft definitely deserves half of the blame (if not more).
Why can't Microsoft or NSA or whatever good samaritan use the same vulnerability and attack vector to force-spread the update or at least a patch of some kind?
Because accessing and modifying computer systems without owner's prior agreement is a crime in most parts of the world. Why would MS, NSA or any other entity would risk potential trials?
NSA doesn't have legal power outside USA. That still would be illegal hacking with potential political and/or legal backlash. I understand what you mean, but that's grey area at best.
They don't have any legal authority to spy on everyone either. Didn't stop them and after it went public, did anything meaningful happen about it?
Our German chancellor, Angela Merkel, went from "this is unacceptable and can't happen under any circumstances and there will be repercussions" to "please don't do it" after the Snowden leaks went public.
There is little political backslash and no legal one. The spy agencies (NSA, CIA, GSHQ, BND, #insertanotherhere) do whatever they want with little to no oversight.
And if the public finds out about it, the first move is to legalize it by law and continue as before.
You do know that the exploit came from the NSA in the first place, that they somehow failed to keep it to themselves and it got released to the public.
Is it really hard to develop a ksplice / kexec analog for Windows kernel? (Yes, it is. But with Microsoft's dedicated research and resources, it should be possible.)
Interruptive updates are _the_ reason many people choose Mac OS X over Windows. Updates are, obviously, important. Restarts (and notifications) are bad and will be postponed and ignored, no matter how hard we try to educated users. Solution: throw all resources to minimize restarts during updates, make everything as automated as possible. I realize that it is harder to do for Windows, due to their idea of putting everything to the kernel, but this only exaggerates the urgent need for something like ksplice to be integrated.
So I have blocked my mother's PC updating from Windows 8 to 10 because it broke everything for her - so I rolled it back. Have prevented the upgrade auto-occurring again by specifying we are on a "metered" connection, which seems to be the standard trick to prevent the upgrade to 10.
In recent years, Microsoft has been pushing automatic updates more and more. At the same time, the updating experience just hasn't gotten any better.
My Linux install never urges me to update. Updates come out many times a day, and I can ignore them entirely for as long as I want. My Windows install continually urges me to update. It makes them increasingly hard to ignore, to make sure I install them. The idea behind this is not bad: many people would postpone updates indefinitely without understanding the consequences. Browsers these days install updates without even asking the user, and complaints about that are rare.
The problem is that updating Windows is a terrible experience. It wants to install updates when I shut down, which on a laptop is often the moment I'm leaving, when I'm ready to put it into my bag and go home. This is a terrible time to install updates. It's even worse because the time the updates take is incredibly unpredictable. Sometimes they're done in a minute, but I've also had a single small update take 45 minutes. I ended up putting the laptop into the bag while it was running the update. When I arrived home it was very close to overheating, had burnt through much of the battery capacity (the battery in that thing isn't very good), and it wasn't done yet.
Then I figured the solution would be to avoid updates at shutdown, always executing them manually when I was going to keep using it for a while. This is how I handle updates on Linux, and it works perfectly. So I tried that a few times, and the experience was terrible. It would always require a reboot immediately after, while I was working. This is a terrible time to reboot.
Meanwhile, every time I update my Linux installations, it's painless. I just run the update command, it tells me exactly what it's going to update, I accept, and I can leave it running in the background. The longest one of those updates ever took was 10-15 minutes, on a machine that hadn't been on for 6 months. Hundreds of packages updated in minutes, without disrupting the work I was doing. An hour or so later I shut it down and from the next boot on I was running the newest kernel.
What Microsoft needs to do is to make updates painless. It needs to be clear what is being updated and how long it is going to take. It needs to stop requiring reboots all the time, and when that is achieved it needs to stop updating on shutdown.
Also important: It needs to stop requring multiple reboots for one update round. Windows, for me, is not the OS that boots by default. Every time it restarts I need to explicitly tell my computer that "yes, unfortunately there are still reasons to keep using this."
> Browsers these days install updates without even asking the user, and complaints about that are rare.
Until the browser decide to break something you used (see firefox and alsa support on linux, or firefox and australis, or firefox the upcoming drop of non web extension extensions, ...). Automatic update should be limited to critical security and not significantly alter or break user experience.
> Meanwhile, every time I update my Linux installations, it's painless.
You're lucky you did not have to deal with upgrading ubuntu, or linux mint update packs, or used a distro like sidux, or have been hit by a systemd bug preventing the system from booting making evident that systemd also broke the emergency shell used to fix things.
Updating a linux system is usually less painful than a windows one, but it is not as flawless as your experience paints it. With the advent of systemd it is now more windows like requiring reboot and tightly coupled versions.
I jumped on that train when they moved to GTK3, but said train seems to be running out of track.
As of late, Mozilla have done a whole lot to alienate long time _nix users in their attempt at catching Chrome's tail.
And you bring up a good point about tightly coupled versions.
_nix was in part adopted because things were loosely coupled. But in the pursuit of attention the DEs and various other big projects have steadily pushed for more tight coupling so that they can deliver a certain "commercial" UX.
Scumbags will be scumbags and take advantage of these exploits--it's been proven over decades of internet malware history.
The NSA should be focused on protecting US interests by helping these things get patched ASAP, not sitting on a treasure trove of 0-days and then they get leaked and everyone has them whilst chaos ensues.
Microsoft should be focusing on providing less controversial updates, clearly categorizing essential security updates apart from new, often controversial features. What a mess Windows 10 roll out was.
They have billions of dollars and can throw legions of software engineers at this problem fairly easily with their resources, this isn't some minor company that can't handle this issue.
"Wishful thinking" leads to people trying to figure out what will have an impact - for example, perhaps calling your senator and telling them you're pissed at the NSA for hoarding their zero-days instead of actually securing them, or donating to various cross-platform Microsoft-alternatives such as Libre Office.
Telling people they're powerless and that they shouldn't bother is a great way of making them powerless.
Everyone know why updates really are disabled - pirated Windows. Specifically - pirated Windows with badly written hack that fails after certain updates are installed. Given that how enormous is user base of pirated Windows it is expected really to to see lots of guidelines how to disable Windows Update.
Win10 takes it to the other extreme, where it is impossible to disable it. You can only disable it for Wi-Fi and for each network separately. It is insane really and creates all sorts of problems in some use cases.
PS: another problem - some of the Win10 updates caused dozens of incomprehensible errors in Event Viewer on my PC, now I turned on "defer updates" and hope that delay will help MS figure out problematic patches before they will arrive.
Came here to say this. Many of my friends run pirated copies of Windows because they cannot afford a license, and they cannot use Linux either because they are dependent on Windows software.
Usually I'd say it's their own fault but fuck it, it's Microsoft's fault. Everyone knows Windows licenses are overpriced and that if Microsoft actually cared about collective security they'd bring the price down. Stop pretending you're not a part of infrastructure.
Oh yes indeed. ;) I suppose I'm happy to boot up a machine and go and make a coffee while it goes about its business. But when shutting down a PC, people are usually trying to leave it. (OK. Or reboot it) ;)
This article is incomplete without calling out microsoft at the same time. Not many technophiles would object to a stream of pure security patches; the problem is that there isn't one. By doing MS auto-update, you could have your entire OS upgraded wholesale. If your only alternative is to manually manage updates... I guess I can see why some people opt out.
Oh, there is: Windows 10 Enterprise LTSB. What, you don't want to pay $350 on top of your Windows 10 Pro license? Too bad! Here's some mobile games for you to play.
Microsoft has been pushing adware through Windows Update. It is natural that this will cause users to disable the feature, and Microsoft knew this. They chose ad revenue over robust security on their platform.
I have a friend who knows next to nothing about different OSs and other various technology thingaroos. He just uses whatever is in front of him. It's not that he can't learn more, he just doesn't care to.
The problem with Microsoft updates is that they are so intrusive that the purpose of your computer is to run updates. They interrupt you when you're trying to use your computer, or they cause hour-long startup times.
I've never had such intrusive updates on Mac or Android.
Perhaps Microsoft needs to figure out how to make updates much more seamless. You shouldn't need a 2-hour reboot in the middle of editing a word file just to protect against malware.
I still wonder how a company can go from Windows 7 to Windows 10 in such a short while. It was all so good, everything seemed to work in a cohesive manner. Now everything, especially the UX seems to have forgotten how to do it's job.
Not having a clue for having been irrelevant for too long and scrambling to not miss the next big thing before becoming obsolete.
Seems they thought computers were about to turn into tablets and touch devices overnight (others went the same way such as ubuntu), then they tried to catch on this user tracking to display ads thing while becoming a rolling release.
voila! you have now windows 10.
Turning off Windows update is not enough I'm afraid. Better remove this misery-ware completely from your pc and move to Linux. Linux is better, safer, cheaper, and more fun overall!
For apps that don't run on Linux for now, like Adobe, I'd rather move to OSX. Only reason for me to install Windows would be some obscure game that only runs on that platform. I honestly cannot think of any other reason to install Windows.
I disagree with the article.
I think it's better to get hacked once every 2 years than to suffer through 2 years of Windows updates.
The updates that Microsoft considers urgent are actually not urgent at all; most security issues typically affect a limited
subset of users.
I don't understand why they dont just do what macOS does -- you can keep peoples computer up to date without force restarting at insane times and downloading a ton of junk. "Security" does not excuse microsofts customer abuse.
Visiting home. My parents turned off Windows Update on their home computer. Apparently my mum lost her high score on some game when Microsoft forced the Windows 10 upgrade. To the degree there is culpability, it's with Redmond.
My PC is not a toy, and is owned by me, not by you.
* Don't reboot it without my consent
* Don't install/run advertising without my consent
* Don't install/run spyware without my consent
* Don't keep interrupting my work to nag me for my consent
The tasks I want to accomplish using my PC are more important to me than the tasks you want to accomplish using my PC. If the latter get in the way of the former, I will take whatever steps are necessary to prevent this from happening.
One might reasonably claim that allowing Windows Update free reign prevents malicious software installing itself on my PC and introducing undesirable behaviour.
However, if the introduction of undesirable behaviour by malicious software is a risk, but the introduction of undesirable behaviour by Microsoft a certainty, the incentives do not favour enabling automatic updates.
The best solution, of course, is to switch to a stable Linux distro.
>My PC is not a toy, and is owned by me, not by you.
* Don't reboot it without my consent
* Don't install/run advertising without my consent
* Don't install/run spyware without my consent
* Don't keep interrupting my work to nag me for my consent
Wrong: you are implicitly agreeing to the above 4 behaviors if you willingly use a Microsoft OS. Any time you select a vendor, you implicitly agree to their business practices and the way their product/service works. For MS, that means you consent to it rebooting whenever it wants, advertising to you, spying on you, and interrupting your work to nag you for consent. If you don't agree with these things, then you need to find another vendor.
>The best solution, of course, is to switch to a stable Linux distro.
I don't know why you are getting downvoted. If people want to reclaim sovereignty over their computers while also using proprietary operating systems, they will need to get laws passed. Right now, your only right is to buy the hardware you want. From there, that hardware can deny you the right to install another OS, deny you the right to change the hardware, or deny you the right of knowing how the hardware works.
Without those, you aren't much of an owner of anything.
I'm getting downvoted because this site is full of Microsoft sycophants. It happens every time I say anything about Microsoft here. I'll get a few upvotes from people like yourself who agree with me on issues like the one here, but then I'll get swamped with downvotes from the MS lovers.
I totally agree with you. Unfortunately, it is becoming culturally acceptable to push destructive updates on users. Dropbox for Linux downloads and installs new binaries and unlinks the old ones. Of course Chrome does this. Firefox does it too. I shouldn't have to be so vigilant in defending my computer.
Of course it is not as bad as on OSX, where if you install any Google product, like Drive or Chrome, it will nag you to authenticate it, by misleading you with messages like "We need you to authenticate so that our software can run properly" (It will run fine without you authorizing it). Google will then install the deceptively named "Keystone Agent", which runs as root, and monitors your filesystem for Google software, and will silently delete and replace it with the latest versions. Often, these newer versions remove existing functionality, such as the ability to disable DRM in Chrome [1].
The reason for this pattern for updates, is because users might not agree to this if they were given a choice.
Sadly we have medical instruments (worth 40k)that work only with win7. The vendors do not update drivers for win10. We have to stop updates as they do not guarantee working of these even for win7 updates. Sad but true.
It may be a little to much to hope for, but I really hope that things like that will stop in the future with Windows on a rolling release schedule.
It's mind boggling how much bad software is available for Windows. Microsoft is doing a rather impressive job maintaining backward compatibility and yet some vendors manage to lock their software to specific version or even "patch-level". How do that even happen? Actually I know how that happens, developers that don't give a shit about the platform they're developing for.
I have Windows 10 Education version, completely legal. But I have been "restarting to apply the patch" for the past four days and it always reverts itself. I am stuck in a loop.. This is why I turned off updates.
Ugh, that. Had it on a Home install some time back.
Best i could tell was that MS was trying to update some drivers, this failed badly, had to be reverted, but that still left the relevant patch in the queue, and so Windows would try again on next reboot.
Finally had to resort to some kind of downloaded wizard from Microsoft to blacklist the patch. Not sure if that will be possible on the education version (or am i confusing it with the more recent S edition?).
possibly, but I am just contempt on updating. I don't do anything illegal on this computer. I use it for browsing and playing games on steam, I think I am pretty safe.
You can really avoid like 90% of the shit by...
* Not going on shady sites
* Not getting scammed via Phishing
* Not pirating (you know, its really funny how most illegal 'patches' say, oh yeah patch is detected as trojan and its a false positive)
> * Not pirating (you know, its really funny how most illegal 'patches' say, oh yeah patch is detected as trojan and its a false positive)
Sadly i have seen various legit tools trigger the same warnings, because the developer used similar low level techniques that malware use to hide their true nature.
Basic thing is that at the CPU level all instructions are legit. And then we pile code upon code on top to try to extract the context and intent of the programmer from the behavior of the code.
In a sense that can quickly devolve into computer "racism".
I ran into this problem as well. I was in a constant loop where it would try to update, fail, then revert. My bootup time went from one minute to 20 minutes.
I disabled windows updates and haven't had a problem since.
Being someone that regularly uses all three major platforms, Windows 10 has definitely been the worst experience.
Why are so many comments about how much people hate Microsoft?
This article isn't advocating for Microsoft, it's advocating AGAINST turning off automatic updates whether that is from a Linux distro, Apple, Microsoft, Google, etc.
Just update your device/computer, if you don't like the OS switch, if you want a specific patch etc, maybe that should be run in a VM which is gated. But for 99% of users, do not recommend they turn off auto updates.
Also, remember that if you are reading this you are probably a power user. You are not my grandmother reading an article by a power user with simple enough to follow instructions to f- her computer up. There are multiple user bases, and your advice to non-tech people can be disastrous for them.
The comments are because Microsoft caused this problem in the first place - people want to turn off Windows Update, because Windows Update installs antifeatures too, and the only way to opt out of the antifeatures is to disable Windows Update.
In fact, there's a "run security updates only" option, which Microsoft provides, but which they deliberately and blatantly violated, by pushing their non-security updates through.
If Microsoft wants to stop this happening, then they need to provide a "security updates only" option, THAT ACTUALLY ONLY PROVIDES SECURITY UPDATES. This is not a hard concept.
"Turn off Windows Update" is indeed a suboptimal choice, like you say - what you should ACTUALLY be recommending to users, is to ditch Windows entirely if at all possible, and switch to an OS that is both secure and doesn't ship antifeatures.
I have a Windows 10 system that I believe was about 1 year behind in updates. I'd periodically run what solutions I'd find online .. dism.exe, sfc.exe, etc to try to fix whatever was failing. Nothing worked. I stumbled across an awesome forum (sysnative.com) with volunteers that help you track down your issue. Turns out I had a subtle 1 byte registry corruption:
Tracking it down required using sysutils' procmon.exe to log about 4GB of event data and correlating it with the CBS.log. It was a broken embedded unicode string registry value with a byte swap from x36 to xFE.
My point -- there are a LOT of posts out there with people with broken windows 10 updates, and I think Microsoft could better address this.
As a side note, the delay to release PDB symbols on MS's symbol server after a Patch Tuesday has been at least days and sometimes more than a week for the last two months (at least for the Win10 symbols I tried). I use them a lot with WinDbg.
The problem isn't the automatic updates-- Windows always automatically updated. Where Windows 10 changed for the worse is in FORCED reboots.
Once you update, Windows 10 is gonna reboot sooner or later. You can schedule it, but there's nothing you can do to stop it. It's unavoidable. It doesn't care if you're running a long compile, or uploading a large file. If you aren't sitting in front of the computer, it's gonna reboot, period.
I find this to be unacceptable.
The previous behavior, where it essentially nagged you mercilessly until you acquiesced, was far superior. I didn't go out of my way to find a 3rd party program to disable that nag-- I found it useful, to remind me I had to reboot at some point, when I found it convenient to do so.
I switched my family from Windows to Linux at home because of the work involved in keeping a working Windows machine (with minimal user supervision) connected to the internet.
This whole comment thread proves the point of the article.
Ye gods, people, if MS updates or win 10 defaults offend you so much, switch OS.
If you consider it a crime that the most widely used consumer desktop operating system in the world's latest iteration dares to not be tailored on install to your specific philosophy or preferences, switch! The alternative is free!
Microsoft is squarely to blame here. People would leave Windows update on if:
- it would not potentially brick their computer
- it would not install all kinds of spyware
- it would be a net benefit to the user
- it would not be used to further MS's business goals at the expense of the users
Telling people not to turn of Windows Update is putting the horse behind the cart: Tell Microsoft to start respecting their users, then tell people to turn on Windows update.
Having read the article and (most of) the comments here, there seems to be two basic responses:
1. For home users, turn on auto updates. Yes, MS's policies for updates suck, but the alternative is probably getting infected by something worse. For professional use, IT is probably going to turn it off, but then it is their responsibility to make sure critical updates get installed.
2. MS's policies suck, so everyone should disable auto updates. Then, make sure the machines have critical updates installed manually.
Unfortunately, history has clearly demonstrated that the second step of #2 doesn't happen. Heck, the NHS probably has a dedicated IT staff and that particular update hadn't bubbled to the top yet. That produces option 3:
3. Turn off updates to be moar bettar, then be surprised when the machine starts acting funny.
It seems like the idea is if you want to disable it for yourself, go ahead. Don't disable them for someone who isn't a technical person. IMO They should introduce a way to auto-approve only security updates, like its possible with WSUS. Maybe a cloud based WSUS for consumers?
Every time a topic like this comes up I always wonder what bizarro version of Windows I'm running because I've never experienced my personal machine rebooting at an inopportune moment, never seen ads, never seen it install software without my consent, never had an update cause my machine to become unstable.
I'm going all the way back to Windows 7 here.
The only machines that are terrible to use are those I use at work because they are laden with all sorts of corporate security crap that you can't escape and bring otherwise decent hardware to it's knees.
Of course, the evidence that Windows Updates are problematic seems overwhelming but I do wonder if this is a case where the complainant numbers seem large simply because the install base is so massive.
I think a lot of this is because people do not want to lose saved work. If Windows was to offer the ability to restore file state, that would be something that would help people keep Windows updates on.
MacOS has been doing this for some time and while it's not perfect, it's definitely led me to be less concerned about rebooting my Macs.
Yeah I'd be completely onboard with Troy if MS didn't force me to update my OS to one that overtly spies on me via Windows Update. "Should I enable/disable Windows Update" isn't the question, it's "Should I buy MS software ever".
This is yet another episode in "hey, software isn't just to make you rich". It turns out it runs shit like hospitals. Maybe don't pervert the security tool for marketing purposes.
I ended up having to delay my working day by about 45 minutes while Windows decided to do a mandatory update without any granularity of choice on when is convenient for me. That's what is frustrating. I ended up being unproductive for a whole hour because Windows forced an update on me.
Windows definitely have to make it better as Troy suggests. The frequency is also costly.
reply