Please create an account to participate in the Slashdot moderation system

 



Forgot your password?
typodupeerror
×
Microsoft IT

Microsoft is Threatening To Withhold Windows 11 Updates If Your CPU is Old (theverge.com) 226

Last week, media reported how Microsoft's Windows 11 won't technically leave millions of PCs behind -- the company told the press that it won't actually block you from installing Windows 11 on a PC with an older CPU, so long as you download and manually install an ISO file all by yourself. But it turns out even that technicality has a technicality. The Verge: Microsoft is now threatening to withhold Windows Updates from your copy of Windows 11 -- potentially even security updates -- if you take that route. We're not sure why the company didn't mention it in our original briefing, but Microsoft has since told The Verge that unsupported PCs won't be entitled to receive Windows Updates, and that even security and driver updates may be withheld.
This discussion has been archived. No new comments can be posted.

Microsoft is Threatening To Withhold Windows 11 Updates If Your CPU is Old

Comments Filter:
  • by Anonymous Coward on Monday August 30, 2021 @10:22AM (#61744635)

    THIS is how you need to stop Windows from ramming updates down your throat? Run Windows on old hardware?

    • by larwe ( 858929 )
      Exactly. I came here to post "Stop threatening me with a good time".
  • by Liket ( 63131 ) on Monday August 30, 2021 @10:23AM (#61744639) Homepage

    Sounds good to me!

    • Re: (Score:3, Funny)

      Microsoft products! only safe when unplugged.
  • by ZorinLynx ( 31751 ) on Monday August 30, 2021 @10:23AM (#61744641) Homepage

    Withholding updates because the CPU is a few years old is a bit ridiculous, because CPU performance hasn't really skyrocketed in the past few years. This is no longer the 90s, when CPUs were getting four times faster every couple of years. The primary gains lately have been in power efficiency, not so much performance.

    Microsoft seems to be going through a lot of effort to obsolete older hardware with this Windows 11 release. I'm really wondering what their angle is; my guess is they don't want to have to support such a large amount of hardware driver-wise.

    • by UnknowingFool ( 672806 ) on Monday August 30, 2021 @10:29AM (#61744663)
      My best guess is that they want to rely heavily on hardware for security so that they do not have to rewrite parts of the software to work with legacy. Both iOS and Android can do this because people get new phones every few years. Anything older than a certain date is not supported with the newest version.
      • by thegarbz ( 1787294 ) on Monday August 30, 2021 @11:02AM (#61744855)

        Possibly, but not necessarily a hardware limitation. The hardware security requirements are actually met by one version prior to their cutoff. Intel's 7th gen and AMD Ryzen first gen both support the same hardware level security as the approved processors.

        One of the sticking points is that for Virtualisation Based Security there are also additional driver based requirements, and that may be the sticking point as to why only some 7th gen Intel consumer chips are included as per the updated requirements, but all Xeon X and Xeon W chips suddenly are.

        https://blogs.windows.com/wind... [windows.com]

      • Yeah the whole way they wrote about this - "threat," "withold," "blocking" is just spin. All else equal, Microsoft's prefers everybody to be running their latest and greatest. For Microsoft the people stuck on Windows 7 are a pain in the ass.
      • You're probably right, although it's not about the TPM or other platform security features.

        Intel introduced additional hardware protections against Spectre-class attacks in their Coffee Lake lineup.

        This might not affect AMD as much. Although AMD was vulnerable to some attacks, they were unaffected by the majority. Thus, it is likely AMD needed significantly less redesign work to secure their processors.

      • Re: (Score:3, Insightful)

        My best guess is that they want to rely heavily on hardware for security.

        No it's about piracy, they wanted to kill the infinitely copyable dos/win16/win32 binaries. It's about DRM and future license enforcement. They want to police your PC. The whole point was to deprecate the executable mode lf DOS/Win9x/XP. There's been theft starting with PC games in the 90's. No software requires a second computer 100 miles away from it.

        The internet is one big spy machine, precisely because software is copyrighted not owned by the customer. That allowed companies to turn the network of

    • Re: (Score:3, Interesting)

      by jellomizer ( 103300 )

      CPU have been getting a lot faster every few years like before. However we no longer have that easy Mhz/Ghz clock speed as a normal metric. However the CPU is no longer the real bottleneck for most computing. As a lot of the work has been shifted to the GPU, and the bottle neck is around Bus Speed, and RAM and Storage Speed, as well most programs today are not coded to handle multi-core processing (I do blame most languages implementation of multi-threading to be a big issue there, but that is a tangenti

      • by ljw1004 ( 764174 ) on Monday August 30, 2021 @11:34AM (#61744993)

        However the CPU is no longer the real bottleneck for most computing. As a lot of the work has been shifted to the GPU, and the bottle neck is around Bus Speed, and RAM and Storage Speed

        While that's true in general, this particular story relates to MBEC (Mode Based Execution Control). If this security/privilege mechanism is accelerated in hardware, Windows11's HVCI (Hypervisor-protected Code Integrity) runs fine. If MBEC is instead done in software by the CPU, slowdowns as bad as 40% have been seen.

        https://arstechnica.com/gadget... [arstechnica.com]

      • Take my i7-3770 CPU for example. It is 9 years old, but it is still very usable for pretty much every modern task except things like gaming, video editing, and 3d graphics.

        Once you get to the point where a particular task takes less than one monitor refresh cycle, making it faster will not make any difference at all to the end user. We are pretty much there for many tasks, and any delays tend to be caused by IO rather than the CPU.
        It is also about double the speed of an i3-10110Y or about the same speed as

    • The older CPUs do not have the features needed to support the upcoming DRM schemes. The idea here is that eventually every computer will need a minimum set of DRM features in order to be allowed to connect to the Internet. Both Apple and Microsoft are moving in this direction.
      --
      www.fark.com/politics
      • Hence why the TPM modules were invented which predate these "old" CPUs.

        • Beware of counterfeit Slashdot users - note that you just replied to "rsilvergin", not "rsilvergun". This squatter has even stolen rsilvergun's sig.

      • Yes and no. For the last several years, MBs have come with TPM modules. It is possible to have a MB with a compliant module but the CPU is still not supported by Windows 11.
    • Well maybe they just want to leave Spectre/Meltdown behind. Can't do that hanging onto "old" CPUs.

    • IMHO, the subtext is

      Give us LOADSAMONEY for a subscription or you are stuffed.
      Remember that we own your PC. We can brick it whenever we like. You don't want that to happen now, do you?

      The MS Protection racket. A snip at $29.99/month (plus tax)

    • by thegarbz ( 1787294 ) on Monday August 30, 2021 @10:56AM (#61744813)

      Withholding updates because the CPU is a few years old is a bit ridiculous, because CPU performance hasn't really skyrocketed in the past few years.

      The reasons for not updating the CPU has zero to do with performance. They are withholding updates to CPUs which don't meet other hardware requirements including specific support for fTPM and certain driver level requirements (such as shipping DCH drivers). fTPM actually dates back a generation or two before the current cutoff (all AMD first gen Ryzen CPUs have it as do all Intel 7th Gen), but the driver model is something more recent.

      Three days ago MS also reviewed and expanded the CPU support list to include several 7th gen Intel CPUs as well.
      https://blogs.windows.com/wind... [windows.com]

      If you want to put on the conspiracy hat note that they included the i7-7820HQ with an asterisk basically saying if you bought this CPU yourself you're SOL. If bought it from an SI and they provided DCH drivers for this CPU then you're supported. Care to take a guess which CPU the Surface Studio 2 uses? https://www.microsoft.com/en-u... [microsoft.com]

      • DRM/Microsoft store lock in with hardware encrypted pathways that can't be escaped. Then too the user activity stalker tracking can't be monitored so the opportunity to greatly expand that without embarrassing leaks is enhanced.
      • I've been saying this is all about DRM since Win 11 was first announced and everyone acts like I'm stupid. MS wants a walled garden too, why wouldn't they?

        • I've been saying this is all about DRM since Win 11 was first announced and everyone acts like I'm stupid.

          That's because it is stupid. It was equally stupid for Windows 10, Windows 8, Windows 7, and Windows Vista. It was equally stupid about UEFI, and also the original TPM specification. It starts as a bad guess, then a trend of bad guesses, then it's just some lame crying wolf, and even that gets tired eventually it just looks stupid.

          Security can be used to implement DRM. That's not a reason to eliminate security. And precisely what "walled garden" should MS promote? They have nothing. Their store is a joke, t

          • Well of course they will be alright. Probably running linux like many of us here. If it wasn't for my wife's computer needing windows, we wouldn't even have it in the household.

      • > fTPM actually dates back a generation or two before the current cutoff (all AMD first gen Ryzen CPUs have it as do ...)

        Except that first gen Ryzen Threadripper (1900, 1920X, 1905X, etc.) is NOT supported [microsoft.com] as it doesn't support TPM 2.0.

        It is stupid that a CPU that came out in 2017 isn't support.

        • It is stupid that a CPU that came out in 2017 isn't support.

          No it isn't. Millions of people have not yet realised they need to switch to Linux.

    • It's not that ridiculous if the line between too old and not too old is whether or not the OS needs to mitigate heartbleed vulnerabilities.

    • The whole Windows 11 requirements thing is ridiculous.

      Microsoft's big claim for the CPU requirements is that it blue screens less. What in the hell has changed in the windows kernel so much that "Devices that do not meet the minimum system requirements had 52% more kernel mode crashes. Devices that do meet the minimum system requirements had a 99.8% crash free experience" Source [windows.com] Does this statement from MS mean older systems crash over half the time, or crash 0.4% of the time? If it's crashes over half the

      • by Entrope ( 68843 )

        Unless they are making up words, "52% more kernel mode crashes" means going from a 99.8% crash-free experience to a 99.7% crash-free experience: 50% more than 0.2% is 0.3%. Not exactly what I would call an earth-shaking difference.

        Also, smart cards or Fido devices are not air-gapped. An air gap means there is no physical or wireless connection between networks.

        • Yep. screwed up the percentage. It should be 0.3% instead of 0.4% if that's how they're calculating it.

          The air gap I was referring to is that they are not hard wired to the computer. They are taken out of the PC once the credential is no longer necessary. Also in the case of the Yubikey, even when plugged in, it has a physical gap in that you have to touch it before even the unit is accessible (although some TPM's can activate only on a fingerprint read, it's not a universal option and tends to be in only h

      • Windows 11 is ridiculous.

        FTFY

    • They are withholding support for what they consider unsupported installations, if they provided support, they wouldn't be unsupported anymore, would they?

    • CPU performance is not the issue with 11. The requirement for certain security-related features is, and the details apparently go well beyond having TPM 2.0 active. There's also the requirement for UEFI (I'm not sure which version) boot, and ability to use Secure Boot (preferably enabled to start with), and apparently some detailed hardware features that only became universal in 8th gen Intel and Ryzen 2. Like with earlier Windows, the raw CPU power is probably adequate back into some Core2 machines if not

    • Microsoft seems to be going through a lot of effort to obsolete older hardware with this Windows 11 release. I'm really wondering what their angle is; my guess is they don't want to have to support such a large amount of hardware driver-wise.

      Sounds good to me. I prefer Linux, so if you want to keep your box out of a landfill, try out a nice distro.

      I am a software engineer and my favorite thing about working for a cloud company is not supporting old releases. MS is not a charity. They have no obligation to support the astronomical number of permutations of hardware out there. They support way more than Apple does. I don't mind buying a new box if Windows 11 is more tangibly reliable and stable because of it, like an XBox. I'm generally

  • Empty Threats (Score:4, Informative)

    by geekmux ( 1040042 ) on Monday August 30, 2021 @10:31AM (#61744677)

    "...even security and driver updates may be withheld."

    Given the level of risk Microsoft products hold against the United States, to include National threats within the Federal government, this statement is basically complete and utter bullshit.

    Even Microsoft knows this.

    • Re: (Score:3, Interesting)

      by thegarbz ( 1787294 )

      Read TFA, and follow the links. The ones that only link to other Verge articles. At the moment 100% of the reporting on this links back to a claim by The Verge. I'm not buying it.

    • There's a difference between "works" and "supported". And there always has been.

      Windows 11 may install and work on some hardware, but that doesn't mean Microsoft will support it. If you get it working, bully for you. But don't expect Microsoft to spend time and resources on keeping it working, or patching edge-case problems in an unsupported configuration.

      That's the way it's always been. Why is it a surprise now?

    • Why? MS will support Win 10 with security snd fix updates for three more years, if security matters to you, and you are forced to run older hardware unsupported by Win 11, then simply run Win 10.

      I gave a hard time imagining any organization of any real size (several hundred users) that a) insists on running the very latest version of Windows and b) insists on doing it on 4-5 year-old hardware.

  • by Major_Disorder ( 5019363 ) on Monday August 30, 2021 @10:32AM (#61744679)
    Fuck you Microsoft.
    I feel better now.
  • by AndyKron ( 937105 ) on Monday August 30, 2021 @10:36AM (#61744695)
    I can't wait for the day I have to wait until my toilet updates its software so I can use it.
  • Microsoft is contributing to a bigger problem here.
    • Bigger problem? People don't HAVE TO update to 11. Those infected with the "gotta have the latest" might feel left out. The rest are just using their computers like they use to before 11 was announced.

      • Plenty of old software and hardware are still great, but we've had very limited windows (hah) where Microsoft has effectively supported multiple OS versions. They've already EOL'd 1909, which wasn't even 2 years old, and it's not hard to imagine them doing the same for more recent "windows 10" releases.

        To be fair, this problem isn't new with windows 11, they've been terminating recent OS releases for years. With the new branding there will be more of a focus on this though.

      • Anyone with "gotta have the latest" already upgraded their hardware at least once since 7th-gen Core CPUs came out. They won't be effected at all.

        It's people that are trying to get more useful life out of still useful hardware that Microsoft drew an arbitrary line in front of. But I agree that Windows 10 isn't going to magically disappear from existence the moment 11 is released. This is all a whole lot of whining that happens literally any time a major operating system version is released for literally

        • Unless you have some killer app, like the latest and greatest game (that is basically just an iteration of games we've played for two decades now), why do you even need brand new hardware?

          My system is pushing ten years old and still does everything I need out of it. There aren't any new games being put out that would entice me to upgrade my hardware.

          I suppose if you are doing video editing, compiling huge programs or something that was really CPU intensive, then you may find some huge advantages in upgradin

      • Will they release security patches after 2025? If they will then no need to upgrade. If Windows 10 is end of lifed as indicated it won't be very usable after that.
      • Correction, people that simultaneously 'gotta have the latest OS' but remain oddly content to run it on 5 year-old hardware...

      • The software you use stops working under windows 10.

  • Neither do most Linux distros either, am I right? Sounds like a win for Linux. ;-)
  • by thegarbz ( 1787294 ) on Monday August 30, 2021 @10:45AM (#61744741)

    The Verge posts an article expecting us to take their word entirely. All other articles covering this story just link back to the Verge.

    Other articles from The Verge actually points to something public and verifiable. I'm taking this story with an industrial 25kg bag of salt.

    Mind you the real story a few days ago was missed: Microsoft relaxed the CPU requirement to include some gen 7 CPUs, incidentally the gen7 CPUs which are currently shipped in their Surface devices including the still current "top of the line" device Surface Studio 2.

  • CPU security bugs are the least of the security problems that Windows has (not to mention that majority of people run Windows as admin user).
  • Go fuck yourself with a red hot handle of a fireplace poker. Cauterize your asshole so this shit stops flowing from it. Thank you, I feel better now.
  • by drew_92123 ( 213321 ) on Monday August 30, 2021 @10:54AM (#61744797)

    My guess is that this is just more marketing bullshit to get more people to upgrade their PCs to profit both the OEMs and MS.

    Remember, every PC sold means another license MS can sell.

    Step 1) scare consumers into upgrading
    Step 2) sell licenses with new PCs
    Step 3) profit

    • Remember, every PC sold means another license MS can sell.

      This only works if users care. They don't. No one is going to upgrade their PC because they need Windows 11. They will upgrade their PC because after 8 years it'll fall apart and they need a new one anyway.

    • If MS wanted to profit off Win 11, why not just sell it, rather than give it away? Remember, this is a free upgrade from Win 11, and corporate (software assurance) customers will get access to the upgrade as long as they keep paying their current annual license fees. This isn't the money-grab you seem to think it is.

  • Apple does this an no one blinks

    • by chill ( 34294 )

      Apple makes their own hardware with published support lifespans. It is fully expected as part of the package deal.

      • Before they made Win10 a free upgrade did anyone expect lifetime Windows updates, though? I have a desktop that won't be eligible for Win11 but it started out on Win7 so it's had a much longer supported lifespan than any other piece of hardware I own.
      • When will Apple drop support/updates for all Apple Intel hardware, only supporting their new M1/M1X processors?

    • No they don't. Apple don't withhold any updates from a fully supported currently active in its lifecycle product. They withhold updates from obsolete OSes, but that's something completely different to what is being discussed here.

      Incidentally I don't actually believe The Verge's shitty reporting without any citation for a moment. MS has gone out of its way to provide security updates for long outdated software in the past. If it looks like a duck, walks like a duck, and quacks like a duck, The Verge will ha

  • Is the reason for these processor age requirements. Unless you are doing something extremely compute intensive like gaming or video editing, you can have a perfectly adequate experience with typical productivity stuff, office/email/web on even a decade old processor these days.
  • Given that MS is limiting the range of hardware it supports, I think it's perfectly reasonable to limit updates to supported hardware.

    MS has said that a user could choose to install Windows 11 on older, otherwise unsupported hardware, but they won't commit to providing support for what is, literally, an unsupported configuration - to do so, to commit to providing updates snd security patches would convert your unsupported installation into a supported one.

    Do people really not understand the difference betw

    • Given that MS is limiting the range of hardware it supports, I think it's perfectly reasonable to limit updates to supported hardware.

      MS has said that a user could choose to install Windows 11 on older, otherwise unsupported hardware, but they won't commit to providing support for what is, literally, an unsupported configuration - to do so, to commit to providing updates snd security patches would convert your unsupported installation into a supported one.

      What I never quite understood is why Microsoft feels it has any right at all to withhold security patches to resolve defects in their own products. Almost as if they think releasing security patches is some kind of service they are providing to the customer when in fact it is the customer providing service by tolerating the inconvenience and vulnerabilities enabled by vendor defects.

      You can't sell a toaster or a vehicle and choose to walk away from liability for faulty unsafe product defects even if proble

  • saying, "I'll still love you even if you have a 486. I wouldn't suggest running a desktop, but you can try if you want. And people used to live on the command line and they did just fine."

  • It is bad becuz M$!
  • Yay! \o/
  • ... want to dig your own grave?

    Ever heard the saying "customer is always right"?
    Well, the customers might not know everything, that we already know, but that's not the point.

    The point is that the customer votes with money and actions. We're heading for something WE call a sustainable future, which means recycle and re-use.

    Linux has grown quite a bit, so much so that even Valve has released their steam "box" for Linux, shipping with IT as the main operating system, you're free to install any os of your choic

Real programmers don't bring brown-bag lunches. If the vending machine doesn't sell it, they don't eat it. Vending machines don't sell quiche.

Working...