Microsoft Forces Desktop Search On Windows Update 579
An anonymous reader writes "The Register is reporting that the blogosphere is alight with accusations of Microsoft forcing Windows Desktop Search on networks via the 'automatic install' feature of Windows Update — even if they had configured their systems not to use the program. Once installed, the search program began diligently indexing C drives and entire networks slowed to a crawl."
What's worse... (Score:4, Funny)
Re:What's worse... (Score:4, Interesting)
Re:What's worse... (Score:5, Insightful)
Ya you're right; that's why FF isn't gaining any ground, and third party video players don't come pre-installed on dells and others!
No, the real issue is that you shouldn't be forced to get an update you didn't consent to.
Who's being "forced" to do anything?! (Score:4, Insightful)
No, the real issue is that you shouldn't be forced to get an update you didn't consent to.
And I have to wonder what problem everyone else is having, because my PC duly popped up an automatic update notification for this earlier today, and I told it to go away and not come back, with no trouble and no observable adverse consequences.
Why do I get the feeling that this story is caused by a lot of people who don't know how to configure automatic updates properly, and a lot of FUD because of the PR cock-up a few weeks ago? You can argue about how they classified the update, but certainly nothing has been "forced" onto my PC today as a result of the update going out.
Re:Who's being "forced" to do anything?! (Score:4, Insightful)
Re:Who's being "forced" to do anything?! (Score:5, Informative)
My wsus downloaded and marked them as INSTALL tuesday night, they were rolled out at 3am just as any update I would have approved. EXCEPT I DID NOT APPROVE IT. Why the fuck would I 1) approve a patch the same day it was released with NO testing and 2) EVER APPROVE WINDOWS DESKTOP SEARCH.
People like you piss me the fuck off. I run a tight ship. WSUS has NEVER done this before. EVER. It was 100% their fucking fault. Just because it didnt happen to you doesnt mean it didnt happen.
Re:Who's being "forced" to do anything?! (Score:3, Informative)
What really gets me is that that isn't truly an "update" as I think of it, it's new software. Perhaps an "upgrade", but not an "update".
Why this isn't FUD (Score:3, Informative)
Fact. Months ago I approved WDS 3.01 update in Automatic Updates WSUS (install.) For months, this update has only updated WDS 3.x to 3.01 update. It has not updated 2.x nor has it installed on machines without WDS.
Fact. Microsoft re-released this same update to WSUS. Re-released meaning it is the same patch in WSUS. Meaning that because I have WSUS set to retain approve/disapproved settings when patches are re-released, the new WDS 3.01 retained it's approved status. They also re-released Windows 2003 SP3, for example. Same patch, just a few minor changes.
Fact. When I came in yesterday, WDS 3.01 was automatically installed on 50+ of my machines, and I didn't want that. It was slated to install on all 500+.
This update to existing WDS 3.01 patch should have been released as a new patch in WSUS so that it adopted my default approval settings, not as a minor change & re-release to adopt existing approval settings.
To uninstall WDS you run
C:\WINNT\$NtUninstallKB917013$\spuninst\spuninst.exe
Re:Who's being "forced" to do anything?! (Score:3, Insightful)
Just because your system may not have important information it doesn't mean you should be lack on security. Having a good firewall is fine and good but that stops direct attacks on your system. Not indirect where you go to a page or download a program. Or heck someone breaks into the Game Company systems and that MMORG you are playing has a hole in it that some hacker is using. Update are not the golden ticket but staying uptodate even if you need to redelete some icons will help prevent some of the attacks.
There are cases where people get arrested for Illegal content on their system and the only reason it is there is because of malware doing the bad stuff in the background without you knowing.
Re:Who's being "forced" to do anything?! (Score:3, Interesting)
All I have to say is that it's not happened yet, and that I believe the risk of h4x0r-types screwing up my system is less than Microsoft screwing up my system.
And, to date, I've spent more time cleaning up after Microsoft updates than dealing with intrusions. In the worst case, I blow away the partition and reload everything from backups. No biggie.
Re:What's worse... (Score:3, Insightful)
Another "defective by design" product. Same as "We can't take Internet Exploder out because its integrated into the OS."
Its not loke previous versions of programs didn't have their own search capabilities ... but Microsoft just loves to force the "Microsoft Way" on people.
B.O.G.U.S., as in "Bend Over, Grease Up, Sucker."
Contrast that to the "Free as in freedom as well as beer" of F/LOSS.
Microsoft lapdogs (Score:3, Interesting)
Yes, IT is forced the Microsoft way. There used to me several powerful producers of programming languages. Most notably Borland. Borland shot itself in the foot by neglecting Delphi and Microsoft took the small remainder of that market. Now almost all of the windows software houses use Microsoft products. They are Microsoft Certified, member of MSDN use almost exclusively MS visual Studio either for the old C++ or more often now the
Gradually the IT world as been super glued to the Microsoft way. Financial incentives are offered for those companies that have their software Microsoft Certified and on it goes. As a result software houses I work for have been changed from independent IT company to an exclusive Microsoft House and don't you dare to question the technology because most developers like the juicy bones thrown at them by Microsoft at regular intervals.
And of course as a result software users can not do anything else but go along with it. Your average software package today will require you already have MSI 3 windows installer,
Re:What's worse... (Score:3, Informative)
Don't be ignorant. IE is made up of many components such as HTML parsers, HTML renderers, XML parsers, network protocol handlers, GUI management. Only an absolute idiot would suggest reinventing the wheel every time that functionality was needed. It is absolutely true that "Internet Explorer" (all the code that actually implements the web browser functionality) is integrated into the OS (OS in the sense that the majority of people understand it) and there are very sound and smart reasons for it to be the way it is. From a design perspective it's pretty much in line with best practices for abstraction and code reuse.
You spoke about code reuse, but what you say doesn't make sense. The whole point of code reuse is that you can take pieces of one app's code and use it in another potentially unrelated app. With the IE model you can only reuse everything by way of integration with IE, not just the parts you want.
No... Contrary to what you believe, the Windows web model sure isn't an example of a good design that facilitates code reuse.
Re:What's worse... (Score:3, Interesting)
I kinda love this line. Almost all windows help files are compressed html (chm files). The help system in windows uses the internet explorer window control to view this. Take out IE, the help system doesn't work. Does this qualify as breaking the system if you remove it? I would think so. Also, a few programs incorporate this IE control to provide text services for their program. Microstation, for example, uses this for text style and font control for cad drawings. Without IE installed, you can't use this program for text. Now whether this was intentional or not, it is what it is.
Microsoft can go ahead and write a PROPER HELP FILE VIEWER!!! I can be a mini-browser that handles cfm's and basically anything else, but customized for help files. The code can be the same IE code that exists, but reworked a bit to fit in a little help file app (i.e. tear out lots of extra functionality).
Hey, wow! The above description is starting to sound like Apple help file system. It consists of a specialized browser that display html help files. Wow... to think that they made an extensive html-based help system without using their bundled browser (Safari) is just amazing! I can't believe its possible!
Thats okay; just continue drinking the Microsoft juice and please stop commenting while you're Reality Distortion Field is active.
Re:What's worse... (Score:4, Informative)
Re:What's worse... (Score:4, Insightful)
Yes, I recall MSIE had an extremely difficult uphill battle against the heavily entrenched Netscape. Anytime you're dealing with something even remotely complex in the consumer space that requires a reasonable amount of knowledge/effort to change, the default is going to win by a large margin every time. I talked somebody through installing Firefox over instant messaging two days ago and wanted to stick a fork in my eye... and that was with somebody telling them exactly what to do.
Likewise, Silverlight is almost guaranteed to be a massively adopted technology simply because MS can stick it in a Windows Service Pack or update and in a month get nearly as much penetration as it has taken Flash near a decade to achieve. Should this be considered a hindrance to competition? Absolutely. This is essentially the same scenario as the browser wars... Microsoft used its dominance and influence with OEMs to prevent Netscape from being the default installed browser and usurped it with IE (which I think has done an excellent job at proving its harm to consumers).
Re:What's worse... (Score:5, Interesting)
There is only ONE popular OS. Windows. That's the problem... All other OSes have less than 10% of the market, so they're niche players at best.
Re:What's worse... (Score:3)
Microsoft thinks that they own every personal desktop that has their software installed. The fact that they are forcing their crap onto my property is either trespassing or vandalism, take your pick.
They shoved windows defender down our throats, and now they're doing the same thing with their stupid copy-cat search engine.
If I hire a company to paint my house, do they have the right to come in at anytime and repaint it every time they come out with new and improved paint?
Re:What's worse... (Score:4, Insightful)
These are defacto "parts" of the OS now, and have been for quite some time.
Curb your Windows Enthusiasm. It doesn't matter how "defacto" a practice is when a company holds monopoly control over what should be an open market. For a number of reasons, all significant PC makers HAVE to license Windows from Microsoft in order to sell PCs. There are major barriers to Linux on the desktop for consumers (despite it's being free), and developing a business model like Apple requires the ability to coast along under constant attack from Microsoft for a decade or so while developing your own OS. IBM, the Amiga, NeXT, and Be couldn't, and it appears clear nobody else ever could in the future.
The PC is not an open market, but only because of artificial barriers created by Microsoft to prevent competition. Unlike utility monopolies, it does not serve the public. We don't benefit from having to pay the Microsoft tax for every PC sold, and Microsoft has proven that without competition, it refuses to innovate (which is why development of IE suddenly stopped in 2001 and didn't resume until the threat posted by Firefox and Safari motivated it to poop out IE 7 five years later.)
The PC market was also not a product of choice. People didn't decide to use Windows over other alternatives; Microsoft simple ensured there were no other alternatives. While Windows Enthusiasts like to complain that Apple has "monopolized" music with iTunes and the iPod, the situation isn't even similar: no other manufacturers have to license Apple's tech (or even can) in order to sell their products. In reality, Microsoft monopolized music, because its pretty much impossible to get any kind of DRM music or player without it being involved. Apple just beat Microsoft in the marketplace by offering a better product before Microsoft could lock it all up. Without iTunes, we'd have the "choice" of various Windows Media stores and various Windows Media players, just as PC buyers only have the "choice" of buying Windows PCs from various makers.
In a similarly monopolized business, say the old phone market, or in the case of newspaper/broadcasting markets, there are laws that prevent companies with a certain position from acquiring other companies to extend their control over the market or leverage their control over one market to obliterate another. The fact that other smaller companies are not similarly restricted is not a defense against antitrust laws, and it makes no sense to bring up as if it were.
Saying that Apple bundles Safari or that Nokia bundles its own browser on its phones or that Nintendo offers Opera for the Wii is completely immaterial to the fact that Microsoft used its PC monopoly position to destroy Netscape, Sun, and every other rival in the desktop/web/API space to entrench Windows and tie all web development to its own proprietary browser. It just makes you look really stupid to repeat such absurd comments. What has Microsoft done for you lately?
How Microsoft Got Its Office Monopoly [roughlydrafted.com]
Re:What's worse... (Score:4, Informative)
Similarly as Beagle.... (Score:3, Interesting)
The only time I kind of liked such programs (and the only program I liked) was when I used Coopernic Pro agent, which indexed PDFs and CHM books (I have a *huge* 30GB PDF/CHM library), but you could indicate (graphically, not via some obscure config file editing) which folders you wanted to check. Of course, Beagle does not index CHM.
Re:Similarly as Beagle.... (Score:3, Interesting)
I agree, I see no point in apps like Beagle.
Re:Similarly as Beagle.... (Score:5, Funny)
Note: This post was only partially tongue in cheek. I don't really care if my wife finds my porn.
If you have porn .. why do you need ... (Score:5, Funny)
Re:If you have porn .. why do you need ... (Score:5, Funny)
-Fredrich Engel
Re:Similarly as Beagle.... (Score:3, Funny)
Re:Similarly as Beagle.... (Score:5, Funny)
That will guarantee she doesn't look at it.
More ideas (Score:5, Funny)
"How to clean a pool"
"How to deliver pizza"
Re:More ideas (Score:5, Funny)
"How to lay pipe."
Re:Similarly as Beagle.... (Score:3, Funny)
You clearly are not married...
*sigh*
Q: Did you know that there is a food out there that will stop a woman from wanting sex?
A: Its' called "Wedding Cake"
*sigh*
Re:Similarly as Beagle.... (Score:4, Interesting)
No matter how well-organized your file system is, and even if you know the exact path to a file already, Spotlight is still faster for accessing it. To open Photoshop Elements, I just type "ph" , and it's running. I know exactly where Photoshop is installed and I don't need to "search" for it, but typing four keystrokes to get it running is faster than any other means of accessing it (at least for stuff that I don't use frequently enough to keep on my Dock).
Same deal with bookmarks -- I can get to Wikipedia, even if my browser isn't running, just by typing "wik" . It's not always about searching in the literal sense; sometimes it's just a super-convenient shortcut to a known location.
(Disclaimer: This opinion is based on Spotlight in Leopard. On Tiger, I broke down and installed Quicksilver.)
Bye Bye Privacy and Business Users (Score:3, Insightful)
What is important is that it is there forcefully
For business users, it's one more unacceptable risk. Now that M$ has a means to carry out the more obnoxious clauses in their EULA, you can no longer ignore those clauses as ineffective. Even if you do trust M$ to respect your secrets, others can and will take advantage of this mechanism to root them out. Universal indexing is more than a business risk to Mozilla and friends, it's a business risk to everyone. Business users should be headed for the exits.
People who value their privacy should have left long ago.
Re:Forcefully? (Score:3, Informative)
And even worse... (Score:3, Informative)
I've had some *interesting* experiences wih strange M$ 'imcompatibilities' with GDS - see below.
My experience with both GDS and M$ so far:
GDS
1. Need to turn off 'advanced' features in Google, plus do not let it search your web cache, your web mail and deleted items, for obvious (security & usability) reasons.
2. If you let it index Thunderbird mail, it sometimes deletes / lost / corrupted the Thunderbird mailbox if you de-installed.
Clearly, not a trivial problem.
3. Integration with M$ products - notably Outlook - quite good.
4. Can have problems 'losing' files from index - don't get reindexed, even if force-reindex (sometimes).
5. Search results interface OK, but rather sparse and configuration options limited.
6. Gadgets are a pain, for most people. Turn 'em off, (easy).
M$ search.
1. Earlier versions much poorer and slower than GDS. Later ones better.
2. You *have* to install with latest version of Outlook in order to get rid of annoying 'click here to enble instant search' bar in your toolbar. GDS does not seem to work so well with later versions of M$ Office.
3. M$ search - once installed - works OK, although user interface is more cluttered, through attempting to offer more advanced search options...
4. Yippee! GDS then is de-selected as 'default', and Google as search engine in browser, and starts to crash...
More 'cookcoo wear' from M$?
No Conspiracy Theories (Score:2, Interesting)
Re:No Conspiracy Theories (Score:4, Insightful)
Re:No Conspiracy Theories (Score:2)
Re:No Conspiracy Theories (Score:2)
Re:No Conspiracy Theories (Score:3, Interesting)
When you install an application (say, a smiley face cursor or a security update) and that installation installs a different application without your consent (say, a spam mailer or a desktop search), isn''t that called a trojan?
What's next, rootkits [mcgrew.info]? Oh wait, this is Microsoft, they wrote the OS. You're already rooted.
-mcgrew
Re:No Conspiracy Theories (Score:2)
1) the Register used peculiar wording because they're illiterate.
2) the Register used peculiar wording to deliberately mislead and misrepresent the issue.
3) the update turned the program on after it had been turned off.
Re:No Conspiracy Theories (Score:3, Informative)
Re:No Conspiracy Theories (Score:5, Insightful)
People don't have a realistic alternative to Windows yet. It's not just a technology issue either. Microsoft only improve products when they face competition, and ensuring they don't have to do that is one of their principal business strategies.
Since Microsoft is (a) in the game of making money, (b) has a monopoly position in the market place and (c) continues to shut out competitors, then I contend that Microsoft don't care whether they piss off their users or not, and never really did care, except in those areas in which they are yet to dominate.
Pleasing users is not Microsoft's game. That's what their competitors have to do.
Re:No Conspiracy Theories (Score:5, Insightful)
No they are merely testing, how far they can push their flock. One has periodically test these things to know how much you can get away with. Without precise knowledge of how much the users will put up with, they might be a little conservative and lose money they would have otherwise made. Further this will also raise the pain threshold of the users, once they get used to this level of pain, they will not see anything wrong with Vista.
Re:No Conspiracy Theories (Score:5, Interesting)
Re:No Conspiracy Theories (Score:4, Insightful)
Secondly, the thing that's really slowing Vista adoption is not the alleged pain, but the fact that most people don't trust Windows until at least one service pack. This is a critical time for Microsoft. If Microsoft really want to make money (and trust me, they do), they would be focussing on rushing out a service pack, and concentrate on lessening the waves of FUD that are circulating around the web.
In short, I think the GP is right, and the theory of a demonic Microsoft playing with its market like they were pawns in a chess game is absolutely absurd.
Re:No Conspiracy Theories (Score:2)
2) Whatever it is, Microsoft is doing lots of "Yeehaw! Cowboy" stuff and it's costing companies a fair bit of resources. But most will still keep coming back for more: "it's really my fault Microsoft only slaps me when I do something silly".
Re:No Conspiracy Theories (Score:2)
Re:No Conspiracy Theories (Score:5, Insightful)
But they benefit from deliberately installing stuff on the computers of users who don't get pissed off.
Don't want people to download Firefox or Opera? Push IE7 as a critical update.
Don't want people to download Google Desktop? Push Windows Desktop Search as a critical update.
Probably the balance between pissed-off users and non-pissed-off users makes it worthwhile in the end.
Re:No Conspiracy Theories (Score:2)
The Next Update (Score:2, Funny)
Re:No Conspiracy Theories (Score:2)
Re:No Conspiracy Theories (Score:4, Insightful)
This sounds like a dumb mistake
Assuming that this is just a dumb mistake, I don't know what's worse:
Oh, but to err is human!, I hear you saying.
Bollocks. When it comes to the operating system that runs the vaaaaaaast majority of desktops worldwide, quality counts. Or should.
Re:No Conspiracy Theories (Score:4, Insightful)
I guess I would wonder how this was able to happen at all. The admins configured the service so that the update wouldn't happen, and it happened anyway. Why was the software built in such a way that an outside party could even have the option of pushing an update against the configured settings?
Re:No Conspiracy Theories (Score:2)
Re:No Conspiracy Theories (Score:3, Funny)
-- Microsoft
Hello Kitty porn collection (Score:3, Funny)
Link, please.
;-)
Re:Hello Kitty porn collection (Score:3, Funny)
Hope that helps you
Enough with the stealth auto-"updates" dammit! (Score:3, Insightful)
It's not even a friggin' security update either.
Desktop search is NOT required on the desktop. It's a gimmick application (albeit a useful one for some people).
Microsoft is abusing it's position as the sole control point of Windows Update to push more of their crap into the market.
Additionally, Google may have a legit antitrust complaint here, as Microsoft looks to be trying to "IE vs Netscape" them on the desktop search. Unlike browsers, which can be opted not to be used, this desktop search is being auto-pushed, can't be refused, and it's detrimental to system performance to run two desktop search apps in parallel.
Fuck the Storm botnet. We have bigger problems with a piece of malware called "Windows Update".
Re:Enough with the stealth auto-"updates" dammit! (Score:5, Funny)
Re:Enough with the stealth auto-"updates" dammit! (Score:5, Insightful)
There is a fix for the "Windows Update" problem. If universally applied, it will also fix the Storm Worm.
You know what it is.
Re:Enough with the stealth auto-"updates" dammit! (Score:4, Insightful)
Perhaps, but it would damned sure thin the malware herd a bit. The script kiddies would quickly realize that it isn't so easy to build a botnet out of 48 different distros of Linux, each often reacting to a given flaw in different ways, and some simply ignoring the flaw altogether?
Sure, Linux (or more accurately, its apps) has a fair share of flaws that a stupid user could help the script kiddies exploit (*cough*PHP*cough*), but they're far harder to exploit overall, are anything but homogeneous, and thus the damage would be far more contained.
I mean, seriously - it would take a long time before the script kiddies could assemble botnets of, say, 1/2 the magnitude that they do now with Windows. It would at least give us good guys enough of a break to come up with something more effective in keeping such incidents perfectly rare.
Re:Enough with the stealth auto-"updates" dammit! (Score:4, Interesting)
when I first started using windows, I never used windows update. I was suspicious of it and I'd rather just manage my own security even though I would lose out on bugfixes. over time, I grew to 'accept' that MS was trustable in their updates and I started using them. I would approve each one and check to make sure nothing was getting installed that didn't seem useful or needed. but I was 'into' the MS update thing each month and updated my PCs.
over the last year or two (give or take) I lost this trust. it also seems to be about the time that vista came into the scene. I don't run vista and I don't think I ever will, but if I was losing trust in MS's ability to force ONLY essential updates on me. it seems that if I can't even trust xp's update, why would I want to take things to the next level of non-control and give the full 'admin' switch to MS and just be at their update-stream mercy? its my understanding that vista boxes HAVE to be continually (not continuously, but mostly online) in order for them to stay (cough) 'current'. in all that that implies..
if you are a vista user, you MUST accept and trust the update stream. but I can't even trust it as an xp admin or user; how does MS expect me to give them full control over my box by installing and using vista?
I stopped taking the updates from the net and instead use the heisse security thing (the offline update cdrom method). I have a frozen image from when I think there were only 'good' things in that update and I guess that's pretty much the last of the updates I'm going to install (ever) on my xp boxes.
the bond of trust is broken and so I could never accept installing or running vista. I can't examine or really approve/disapprove each update in vista and so ALL my control is essentially gone. no thanks.. really, no thanks!
Addition to TFA (Score:4, Informative)
Not saying it's OK, just mentioning the facts.
Re:Addition to TFA (Score:5, Informative)
Re:Addition to TFA (Score:5, Interesting)
Conspiracy theory: MS is doing this to cause older or marginal boxes to become less responsive/snappy so as to further nudge the owners towards getting a new machine... and hence Vista.
WTF? (Score:4, Insightful)
It makes me ask: What kind of administrator is using automatic updates on their machines anyway?
Let's face facts, while Microsoft should take much of the blame on this any admin should know at this point that automatic updates is opening yourself up to all types of undesirable installs.
This is nothing new and it's sad to see "professionals" in the field are still leaving security updates and other installs to go through without even sending a glance it's way first.
Re:WTF? (Score:4, Informative)
Re:WTF? (Score:5, Interesting)
I manage the WSUS at my company. No updates are EVER to be passed through without my direct approval, even new revisions of previously approved updates. We've had far too many updates go through and break things to allow any kind of auto approval. So, imagine my surprise when I sit down to a cup of coffee and my morning log review, and the first thing I see when I log in is the Windows Update icon telling me to install Windows Desktop Search - something I never approved.
It went straight through, completely ignoring all of our security policies in the process. I was a little irritated at the Windows Update self-update passing through but I let that one slide since it was a MUCH needed bugfix and MS got a suitable backlash from it (silly me, thinking it was a one-time thing). Now we have the same behavior again months later. This is not acceptable. Luckily I'm in a bit earlier than most people so I was able to recall it with a few ninja edits to our group policy, and a company wide email apologizing for allowing it to be published, and warning people to avoid installing it if it somehow still got through to their systems.
I made a few changes. Our WSUS servers now no longer have internet access and are not scheduled to download. I must manually turn on their internet access in our firewall and activate the pull interactively. That way I will see the updates as they arrive, and not have to put up with this stealth update bullshit in the future. I clearly cannot trust them to just sit there and acquire updates on their own any longer.
I'm now developing a security policy for our corporate security software that will forcibly kill any applications on a blacklist I am creating. I will be adding Google Desktop, Windows Desktop Search, Plaxo, AIM, and any other programs I find that have a habit of sending data back home to outside companies. I'll happily find people alternatives that don't phone home - it's not the apps that bother me, it's the potential for leakage of our corporate data to third parties. I don't particularly care if the feature can be turned off, since I'm not the one installing it. If a program has potential to phone home, it's banned.
Re:WTF? (Score:5, Interesting)
Other than this strange auto-approval, we've had no problems whatsoever with WSUS 3.0. It's been great actually. The improved reporting and granularity is a welcome addition that we have yet to truly take advantage of. WDS3 was successfully retracted from the approved list after I revoked it, and I've backed out the GPO changes without any trouble. It's no longer showing up on the clients. Also, BDD2007 and our repository of published software (both in a DFS root) resides on the same WSUS server. I've also grafted Linux PXE and Solaris Jumpstart into RIS/BDD2007 so it's something of a custom build. I don't really think those apps should be interacting with WSUS3 in any way though. Totally different services and disk partitions. There are some user home directories there as well.
As to some of the other posters, I don't know that WDS phones home, yet. I haven't taken the time to do a thorough analysis, but I tend to err on the side of paranoia (after all, security is part of my job). I get very suspicious of any programs collecting data about a computer or user activities in the name of making the user experience better. I also don't see the use of an indexing system that kills the performance of one's operating system. I don't trust MS as far as I can shot-put the planet either.
Our GPO already disables all file indexing, NTFS short filename creation, system restore, unnecessary services like UPnP and messenger, and sets sane, non-annoying defaults for apps like MSN messenger, the language toolbar, media center, etc. It even restores the XP search to the better, more basic 2000 version (it's amazing what you can do with a
And yes, my users have local admin on their desktops. Windows isn't really designed to operate any other way (and I don't have a Fortune 500 budget to fix it like some others do). Our solution to the constant risk of IE was to recommend people use firefox whenever possible (with noscript, adblock, etc) and to get IE, firefox, and other internet-touching apps to run under an unprivileged, local user account that was created to share the exact same desktop/docs/favorites etc as the real user. We also took some time to educate them on safe surfing habits.
What worries me is the trend lately for, say, apps like Sun's Java to ask (default is yes) to install apps like Google Desktop during their normal upgrade cycle. Frankly most users have better things on their minds than wondering if the apps they are clicking upgrade for are about to trojan their boxes with 3rd party bundled software. That's why I'm eyeing an app-killing security policy for the more egregious offenders.
Re:WTF? (Score:5, Insightful)
You must not be an admin. [microsoft.com]
Fortunately, this just adds to the number of reasons to switch to Linux.
Again, you must not be an admin. It's a job, not a hobby. When the powers that be tell you that they want certain software and that software isn't available on Linux that's the only reason you need not to switch. We serve the customers needs, not our own whims.
Annoying? Yes. (Score:5, Informative)
Re:Annoying? Yes. (Score:5, Funny)
little do they know... (Score:4, Funny)
[_______________] [search]
( ) the web
(o) all computers running Windows
[X] force update
[X] slow down computers
[ ] obey law / constitution
[X] forward trade secrets to us corps
Odd people the NSA (Score:3, Insightful)
Here they go and make linux MORE secure by adding code to it, opensource code so it is known to be safe, while spying on windows users.
This proofs it, Linux users are true patriots who love their country and will defend it with their lives and therefore can be trusted with their freedoms, while windows users are all terrorists who hate our freedom and way of live and need to be spyed upon.
Makes sense. If you see someone using windows, report them to the proper authorities, the freedom of the world depends on it.
Friends do not let friends use Windows.
This is a message will auto-destroy a windows box in 10 seconds.
Best described with song (Score:5, Funny)
Who makes my computing such a chore
I can't take this shit anymore
Woo woo be doo
Windows Update, you make me sore,
When I disable you, you ignore!
Windows Update, you're the bane of my existence, it's true!
Doo doo doo doo, doo doo
Every day when I
Make my way to the workstation
I find a little fella who's
downloaded some new MS aberration
Chunk-a-lunk-a-bluescreen!
Windows Update, you're a cunt
And I'm not sure I could be more blunt
Windows Update, I'm awfully cross at you.
Every day when I
Make my way to the workstation
I find a little fella who's
downloaded some new MS aberration
Windows Update, you're a cunt
And I'm not sure I could be more blunt
Windows Update, I'm awfully sick of -
Windows Update, I'd like stick a brick in -
Windows Update, I'm gonna download Ubuntu!
Doo doo, be doo
"An anonymous reader writes" (Score:2, Funny)
-Ralph Blog
(Ok, not really, that was a pseudonym, I'm joking. OW! STOP IT!)
Standard turn off still works? (Score:2)
Just to verify without taking the 30 seconds to actually google an answer, but if Windows Update turns it back on, the standard turn off methods still work, correct? (assuming it doesn't get 'updated' back to on again later).
FYI, these are the instructions I've followed in the past to turn this off (home user, not a sysadmin):
http://lifehacker.com/software/optimization/turn-off-indexing-and-speed-up-windows-xp-031440.php [lifehacker.com]
misleading (Score:3, Informative)
1. it doesnt AUTOMATICALY install with auto updates, or windows updates, it is in the optional software section of windows updates, thus does not come via automatic updates at all, and in windows updates you have to manualy select it.
2. you are prompted before install
3. once installed, it does not automaticaly start indexing everything in C, it promts you and asks what you would like to be indexed, and when/how.
Re:misleading (Score:5, Informative)
I am one of the Systems Admin for a company with 2000+ users. We use WSUS for updating our clients, and our WSUS settings are set to not install any updates of any kind what so ever unless we explicitly approved of them.
Yesterday ALL of our users suddenly got the Windows Desktop Search app. We double checked our WSUS settings, confirmed that updates only install with approval, and also explicitly "Declined" the Windows Desktop Search. It still continued to roll out, even though we said we didn't want it!
We use Lotus Notes for our corperate e-mail, and so Outlook is not installed on any computers, and so of course since Windows Desktop Search indexes your Outlook e-mail, and since we didn't have it, everytime a user logs on now, they get two error messages about that it can't find Outlook and can't index your e-mail. Ridiculus!!!!!
Called Microsoft for support (we have an enterprise license) and said they would "look into it" and "get back to us". No matter that our users are calling like crazy and wondering what is going on...
I *hate* Microsoft now.
Re:misleading (Score:5, Informative)
At least you can remove it (Score:3, Informative)
I just lit off windows update (Score:2)
Naturally, it got unchecked and blocked. My poor Inspiron 1100 has enough trouble as it is running XP along with all the necessary stuff that makes my world go 'round.
I also noted that IE 7 is back in the high priority list again, and again, it got blocked.
Like I keep Saying (Score:5, Insightful)
QA of patches is very difficult. Lots of time pressure. Lots of things to check. Easy to overlook things. It's not like Windows and other modern Megasoftware have any coherent set of specifications that can be tested against. Or that test procedures would be perfect if there were specificiations. Or that a thorough test could be run in a realistic amount of time. This looks like yet another QA screwup.
Better to defer installing updates for a few days I think and let others Beta test the fixes. There's some risk to that also of course. But not as much. At least not in my estimation.
Market forces (Score:2)
I wonder how the index will be used? (Score:2)
Quality Control (Score:3, Funny)
Article Incorrect (Score:5, Informative)
What I find bizarre is that this system, not Windows Update (which I stress again, is different) has been subjected to a patch that seems to auto-approve itself!
Under normal circumstances, each patch has to be approved (if set this way) by a network-admin before it will trickle out to workstations. This is the first time it would appear an update has approved itself.
I tell a lie.... (Score:5, Informative)
http://forums.microsoft.com/MSDN/ShowPost.aspx?PostID=2315860&SiteID=1 [microsoft.com]
Re:Article Incorrect (Score:5, Informative)
Re:Article Incorrect (Score:3, Interesting)
Our WSUS server (version 2.0, version 3 upgrade planned for Q1-2008) has Automatic detection only turned on for critical and security updates. All other auto approval options including revisions to updates have been turned off since early 2006. All 2.6.x versions of desktop search were declined when they were released in April 2006 and January 2007 since we do not want this software for various performance, privacy and security reasons. (our systems hold public and private records) We only approve updates on the second Friday of each month, so they can be deployed over the weekend and we catch patch Tuesday.
Yet despite these precautions, "Windows Desktop Search 3.0.1 for Windows XP (KB917013)" was downloaded with approval set to Install for all computers after the synchronization on 10/23/2007 at 3:03am. When I logged into my computer in the morning, I got the "Updates are ready..." message and thought "that's kinda weird....." then I drank some coffee and said "oh crap."
We are not the only ones seeing this behavior. Check the newsgroup microsoft.public.windows.server.update_services . No mention has been made on the MS WSUS team blog yet.
MS really shouldn't be using the auto-install trump card on an add-on like this. They should really be saving it for an update that prevents the spread of an exploit, worm, or virus that is quickly spreading. Anyone else remember Melissa?
To MS - dealing with this unwanted installation is costing us time and money - this tends to piss off the Finance guys who will then cut our budgets as being wasteful and then we'll have less to spend on the software you've locked our organization into...guess where that will go...
Allan W.
Re:Article Incorrect (Score:3, Insightful)
I would say that if there are a lot of admins who have been using WSUS successfully for a long time and yet saw this problem, AND if their WSUS installations would have done the right thing if configured correctly, AND if they were in fact incorrectly configured, THEN the problem might be one of faulty documentation and/or training on Microsoft's part.
We are so quick to say that the "RTFM newb!" attitude from Unix gurus is the fault of the gurus and not the new users, shouldn't the same standard prevent us from blaming these Windows admins who got burned?
How long will the blind trust last? (Score:3, Insightful)
So for those who don't trust Microsoft and use it anyway, there's stuff like Deep Freeze.
WSUS is your friend (Score:5, Informative)
Saw it in WSUS, declined it, end of issue.
You don't have to install it... (Score:4, Informative)
Re:Can someone confirm this? (Score:2, Informative)
Re:Can someone confirm this? (Score:5, Insightful)
Re:Can someone confirm this? (Score:3, Insightful)
Re:Can someone confirm this? (Score:2)
Read the blog links (Score:4, Insightful)
Unless someone is doing a lost of posting, it seems real enough alright.
Also, lets face it. It smells true. MS ain't that smart, it truly seems like they would think it a good idea to install indexing software on every desktop in a network and have it index all the shares.
Because slashdot ain't what it used to be, I shall now explain why this is bad. It would be like EVERY computer, trying to be its own internet search engine and spidering the net for itself.
You don't do that. You index your own files, and use a central index for everything else.
However MS ain't that smart and thinks that you should index locally everything on the network. This is really a fundemental flaw in their design of this tool. It really shouldn't be allowed to index the network without explicit permission.
So why the forced update? It seems to have given itself extra permission so that it was installed without admins having thecapacity to block it. Well, remember who we are dealing with. This is MS. The company that knows best. Their may be an evil plot, or it may simply be that the Desktop Search constained a serious security hole that needed to be patched, so they even installed it on non-desktop machines.
Frankly trying to explain MS is like explaing the actions of a mad man.
We will never know why MS truly did this, stupid blunder, evil plot, insanity?
And no, it won't drive people to linux. This is just another anecdote in the long miserable live of a windows admin. I suppose, I don't do windows, and gladly take a lesser paycheck for that (although oddly enough I get payed more then all the windows admins I know, but hey, life ain't fair). Linux, for the money and the babes. Oh okay, not the babes, but the free beer is nice.
Re:Not False Alarm (Score:2, Insightful)
Thanks for playing though