Slashdot Mirror

They're still trying to shake down companies that use Linux?

Yes. But now they have decided to shake themselves down.

What a shitty SIP.

Microsoft Windows has this. If you turn it off, modify files that are not signed properly, then turn it back on... it complains system files have changed.

You have to specifically make an exclusion or use only properly signed files.

Are you referring to Windows File Protection, Windows Resource Protection (which apparently replaces Windows File Protection in Vista and later), or some other mechanism?

So presumably there's some way to turn off protection of a particular file without turning the protection off entirely; otherwise, this is just like System Integrity Protection, with "turn off protection of a particular file" being done by turning its "restricted" flag:

$ ls -lO /bin/cat
-rwxr-xr-x 1 root wheel restricted,compressed 23520 Jan 13 18:13 /bin/cat

with

sudo chflags norestricted

on the file, which you could do on OS X only when System Integrity Protection turned off.

What a shitty SIP.

Microsoft Windows has this. If you turn it off, modify files that are not signed properly, then turn it back on... it complains system files have changed.

You have to specifically make an exclusion or use only properly signed files.

Are you referring to Windows File Protection, Windows Resource Protection (which apparently replaces Windows File Protection in Vista and later), or some other mechanism?

So presumably there's some way to turn off protection of a particular file without turning the protection off entirely; otherwise, this is just like System Integrity Protection, with "turn off protection of a particular file" being done by turning its "restricted" flag:

$ ls -lO /bin/cat
-rwxr-xr-x 1 root wheel restricted,compressed 23520 Jan 13 18:13 /bin/cat

with

sudo chflags norestricted

on the file, which you could do on OS X only when System Integrity Protection turned off.

Vista has such a small number of users who care about upgrading so why bother with them.

Yet Microsoft is continuing to support these users for one more year, with support ending in mid-April 2017. This will just push users back onto Internet Explorer 9 for this final year.

Except they've been doing this for over nine years. It been there since Vista with the automated "Problem Reporting" feature in action center. http://windows.microsoft.com/en-US/windows-vista/Reporting-and-solving-computer-problems

It doesn't always give you steps to solve the crash. But I have seen it tell me a crash was due to a driver which I should update. This was before Windows Update starting handling most driver update duties.

They have this great program accessible at http://codesnippet.research.microsoft.com/ that allows you to do context-sensitive code completion directly from the q/a coding sites. Pretty neat stuff.

There are researchers are UVa doing similar things: Report.

You obviously don't know what MAC is. Look it up. Windows doesn't have it. Microsoft even says so. The closest they get is MIC - https://msdn.microsoft.com/en-... . There is a big difference. That's why Linux with SELinux is used on Navy ships. It works as Windows never will.

Carl Greninger started his classes back in 2010

Articles on the same subject first appeared online in 2011

https://news.microsoft.com/201...

Then again on 2012

http://www.federalwaymirror.co...

Then again on 2013

http://www.kplu.org/post/why-a...

As for Slashdot, it has to wait till 2016 before this gets published

Outlook.com works from android phones.

Outlook.com has a $20/year paid tier that used to be called Hotmail Plus. And there are rumors of a forthcoming $48/year paid tier allowing a custom domain, comparable to Google's $60/year Google Apps for Work.

So yes, it is possible for a mail user to be Microsoft's or Google's customer.

Outlook.com has free accounts. The existence of a paid option that less than 1% use doesn't change the fact that your original comment:

I've been locked out of both Microsoft and Google accounts

Are you paying for the service?

Yes. Services that use a Microsoft account are included in the price of a Windows license.

Different AC here. Outlook.com works from android phones.

Go ahead and shift the goal post from "Windows license" to privacy now.

is debunked. So, yeah, I called it. You shifted the goal posts from "you paid for it with a Windows license" all the way down the field to "It is possible that you might have optionally subscribed to a free service to get extra features.".

No shit. You, Mr. tepples, are a nit picking, goal shifting, unable to admit when you are mistaken arse. Duly noted.

Go ahead and make an AC comment now. You'll get the last word which is what you seem to crave.

Outlook.com works from android phones.

Outlook.com has a $20/year paid tier that used to be called Hotmail Plus. And there are rumors of a forthcoming $48/year paid tier allowing a custom domain, comparable to Google's $60/year Google Apps for Work.

So yes, it is possible for a mail user to be Microsoft's or Google's customer.

Autorun has changed as of Windows 7. Non-optical media can no longer auto-start a program on the media.

Ah... the problem with English. It's a subsystem of Windows for the Linux ABI. It's a Linux-ABI subsystem for the Windows NT kernel. ..

Although.. you're right. If they followed the traditional naming of subsystems, it should actually be called "Linux Environment Subsystem", or possibly "Linux Environment Subsystem for Windows NT"

(Technically, it's a NT Subsystem, not a Windows subsystem. Win32, aka, Win32 Environment Subsystem, is a subsystem on top of the NT Kernel; but few people notice the difference as for a long time now, it's been the only subsystem anyone's used. Still, this is why NTFS has features that make this easier than it would have otherwise been - NTFS has supported unix-style attributes (owner, group etc) and case sensitive file names, all to allow the POSIX Environment subsystem to function.)

There are a handful of "NT Native " applications that run without a subsystem directly against the (basically undocumented) NT Kernel API - e.g., AUTOCHK which checks disks at boot, the security 'subsystem', and environmental subsystems themselves.

Oh and, yes, NTFS IS case sensitive, and always has been. However, the Win32 API for accessing files is NOT, and that's what virtually everyone uses. Because this new subsystem is, as far as I can tell, a subsystem, it would be working directly against NTFS, not Win32, and thus can use NTFS's case-sensitive nature, if the designers chose to go that way. (Same with path length limits -- NTFS supports vastly longer than 256 characters, but Win32 is the limiting factor.)

False. The total clusterfuck of "autorun" vs "autoplay" is so convoluted that even the Microsoft advice to disable it is torturous to read through.

Actually you can still add a local user account during or after setup.

Forget local accounts. You can add a Microsoft account that has nothing to do with outlook.com at all, just click the "I already have an email address" button when prompted. It's actually quite funny but I can log into outlook.com with an email that ends in @gmail.com, just to really mess with the system. :-)

Outlook.com does not scan your emails to offer up contextual ads like what GMail and Yahoo does. See https://www.microsoft.com/en-U... Full Disclosure: I work for Microsoft on Outlook.com

Creating a new account on Windows 10 REQUIRES an e-mail address at Outlook.com

Actually you can still add a local user account during or after setup.

See also this and this.

.

The solution is to totally ban Microsoft Windows in Hospitals:

"Microsoft excludes all implied warranties and conditions, including those of merchantability, fitness for a particular purpose, and non-infringement." ref

There sure is

It doesn't look like it has its own FS, but rather just maps Unix root to an NTFS folder. This would imply no dedicated partitions (well, I guess you can always create an NTFS partition, and dedicate it entirely to Unix root - but I assume that's not what you meant by "a Unix filesystem partition").

I would assume that soft and hard links would just map to the same in NTFS, since it supports both.

Nothing has been said regarding permissions. It's an interesting question, because NTFS only has ACLs. It should be possible to map Unix permission bits to an ACL, but the reverse is not always true. Still, the older SFU/SUA did something there, so perhaps this does the same thing.

Hard to say about case sensitivity. NTFS itself is case-sensitive, actually, but the Win32 layer that normal Windows apps use to access it enforces case-insensitivity (but preserves case otherwise). If the implementation here is a proper NT subsystem, then it should be able to skip that Win32 translation, and use case-sensitive operations directly. But whether it actually does so or not is an interesting question, because if you were to use that approach to actually create files that only differ by case, accessing them from Win32 world will be problematic (but possible; Cygwin knows how to do that, for example), so it may be deliberately disabled. Hopefully, it is a configurable option.

The whole point of UWP is that there's a single API (and hence a single set of docs) for all devices across the platform.

https://msdn.microsoft.com/en-...

The Windows registry section of this article works just find to disable GWX.

https://support.microsoft.com/...

All of the aneutronic fusion reactions you point out have a difficulty...

Interesting. I had heard about that issue for proton-boron, but was not aware that it applies to Helium-3 as well.

All that said, it'd be awesome if someone conquers the difficulties and makes either sort of direct conversion nuclear practical. I even support using tax funds to research toward those goals. But I see them as long shots...

I don't know that I would call direct conversion nuclear power (collectively) a "long shot", but certainly there is little reason to expect cheap net power from any of these schemes in the near term.

I did find the early Pollywell experimental results revealed by Jaeyoung Park's recently rather exciting, though. Of course, even if it gets fully funded and turns out to be fundamentally workable, that's still probably at least 15 years away from a commercial product.

and in the meantime, the market is going to vote with its dollars and go with what works today and is cheap!

Most of major the Generation IV fission designs have been proven workable, and I think some could be cheap enough - if the regulatory and political environment actually allowed them to be built in the West. But instead, we'll probably just keep extending the life of the existing decrepit Generation II installations, with their dubious safety and economic record...

I could be wrong, but something interesting I found about Tay: It wasn't nearly as advanced as microsoft claimed.

http://research.microsoft.com/...

Looks like it was mainly a modified language translator, instead of translating language A to language B it translated a statement or question to a response.

Disappointing but neat. Worse, it wasn't even a parrot. The possible responses look to be mined from over a million twitter posts.

If an opensource developer must target Windows he or she can use clang with VS 2015 community edition just fine or vim?

Still it is good to use a standards compliant api and c++ that is not tied too heavy on one product.

In other news
But the big elephant in the room is the switch to VC2015 means the death of XP and Vista.

Is Chrome dropping support for XP finally? Will these users get ransomware from using an unpatched and unsupported browser now if Chromium (the foundation of Chrome) is not compatible?

Macros have been disabled by default for a decade now.

That's not the point of TFA or even TFS. The point is that different enable/disable policies can be implemented for macros that connect to the internet versus macros that operate in a sandbox such as buttons in an Excel spreadsheet that manipulate the data inside the spreadsheet. Right now, it's all or nothing.

That said, I'd prefer that write access to local files is also restricted. It's fine if a macro can automatically import data from a file, but I'm not so fine with macros being able to write data (overwriting/encrypting files, creating .EXE files).

According to the WDDM architecture diagram the GPU driver really is in the user space. Microsoft also has a separate article on User-Mode Display Drivers.

According to the WDDM architecture diagram the GPU driver really is in the user space. Microsoft also has a separate article on User-Mode Display Drivers.

Windows Media Creation Tool

And for Windows 8.1 too

You're out of luck for Windows 7 if you're not halfway expert. You have to convert a standard Windows 7 ISO to Universal or acquire a premade one and use the OEM key from the sticker.

Windows Media Creation Tool

And for Windows 8.1 too

You're out of luck for Windows 7 if you're not halfway expert. You have to convert a standard Windows 7 ISO to Universal or acquire a premade one and use the OEM key from the sticker.

At this point I've resigned to add MS to my kill file and move on. If they have this much contempt and disregard for their customers now... Just imagine what they are going to be like when they really start to lose market share. Better abandon ship now while the abandoning is good.

Microsoft is not stupid. They know all about Interface design and human factors. What they are doing is like an infomercial or PR department spewing misleading language while technically may be true is intentionally knowingly designed to leverage ignorance or trick people who are not lawyers into making implicit assumptions. Whether machines are upgrading themselves or not is irrelevant. What is relevant is the fact people are being fucked over by a deliberate and conscious action on the part of Microsoft.

How can anyone expect integrity from a corporation who intentionally installs and enables backdoors access by default allowing Microsoft to read any file or setting they feel like from your computer without your knowledge or consent?

https://technet.microsoft.com/...

Do yourselves a favor, cut your losses and bail.

At the moment KB3139929, which is marked as important, includes the update KB3146449, which is a nag screen on IE11 to upgrade windows.

Honestly, given Microsoft's recent track record, I wouldn't even be surprised if Microsoft has internally classified the upgrade files as important so that Windows Update automatically downloads the files, if you allow it to download important files.

At the moment KB3139929, which is marked as important, includes the update KB3146449, which is a nag screen on IE11 to upgrade windows.

Honestly, given Microsoft's recent track record, I wouldn't even be surprised if Microsoft has internally classified the upgrade files as important so that Windows Update automatically downloads the files, if you allow it to download important files.

This IE security fix https://support.microsoft.com/...
forces the download and install of
https://support.microsoft.com/...
This is blackmail and its evil period end of story. Its not a bug fix, its not important to the system or OS Its a forced update they had as OPTIONAL previously many of us hid. Its bullshit, is dishonest, its deceitful. Yes many people who have gotten win 10 installed had it installed because they didn't read. This is a security update it should have nothing but a security fix.

This IE security fix https://support.microsoft.com/...
forces the download and install of
https://support.microsoft.com/...
This is blackmail and its evil period end of story. Its not a bug fix, its not important to the system or OS Its a forced update they had as OPTIONAL previously many of us hid. Its bullshit, is dishonest, its deceitful. Yes many people who have gotten win 10 installed had it installed because they didn't read. This is a security update it should have nothing but a security fix.

AppLocker, in recent Windows versions (and building on Software Restriction Policies, dating back to XP), provides similar controls. It's actually a lot more fine-grained than that, though it can be made to act much like how you describe.

Technically, Windows Defender in Win7 is was built from Giant AntiSpyware and only provided anti-spyware/anti-adware protection; it doesn't have detection for things like worms and other sorts of malware. For that you need the (free, but optional download) Microsoft Security Essentials. However, starting with Win8, Defender (the built-in thing) includes the MSE scanning engine and signatures.

The obvious difference between Win7 and Win8 in this regard is that when Win7 came out, MS was still under some anti-trust restrictions against bundling software that competed with commercial offerings (and anti-virus would definitely count). Those restrictions expired before Win8 was released, so they could bundle the full scanner instead of requiring that people go seek it out on their own.

Antivirus relevancy is rapidly decreasing...
Considering that Windows 10 includes, Windows Defender now enhanced with Security Essentials (Anti Spyware / Anti Virus) (Free and built in to the O.S.) Not including that the real "Protection" to the file system "Internals" is the windows MRT.exe another built in tool that Microsoft upgrades monthly and quietly runs invisible in the background each time you boot the box.

These are largely all anyone really needs, to "Protect" Windows. as far as Windows "Protection" is concerned.

The real tool-kit required to have is knowledge of the Microsoft SFC (System File Check) as the SFC is how you can find out which files are corrupted by malware and need to be replaced. That is the secret sauce ingredient to any good system clean-up recipe.

SFC: https://support.microsoft.com/...

Also In the largest number of cases the users typically are led to unwittingly "Chose" to install malware on their system.
Either due to technical ineptitude or a total lack of awareness of their own online behaviours.

This even when A.V's tell them not to install something.
The other real trouble with A.V.'s is that the largest hole in the security equations is Web browsers server side scripts bidirectional interactions. Meaning sites average around 10 to 25 scripts, pulling everything from profiling data, and advertising or marketing propaganda, to direct control of user system functionality and even drive video game within the web browser. Some Exotic new malware (and spyware) now exploit these extensively.

This is significant since most modern exploit are web browser centric. This is the real weak point where user behaviours are socially engineered into functional obfuscated exploits. Typically via embedded scripts, mingled with Adverts and privacy busting data gathering by businesses.

The safe route for joe average is Linux, with Firefox configured with NoScript, not add blockers but an actual "Extensive" script management system that provides full visibility and granular control to the user this will then elevate their awareness to the point where visibility grants administrative access over ones own privacy and security.

The only remaining issue is what can be cleanly embedded within PHP and kept obfuscated to the users while permitting access to remote processing on visiting machines...

As for the real security issues facing us, I don’t think I ever wrote a better explanation as the one here:
https://hermes-computers.ca/ar...

In what sense was IE6 not horrible? It's not that it didn't play well with established standards, it's that it completely ignored them, and instead did things which were not implementable on other platforms. Box sizing was the least consequential change, and apparently you don't remember all the browser hacks needed to get feature parity between browser versions — include this little snippet because IE won't see it and standards compliant browsers will, then include this other bit so that IE does something remotely appropriate. And then there were all of these lovely visual effects which were just bits of DirectX exposed for the browser. Then there were the out-and-out bugs, where it simply failed to do any definition of the right thing.

Saying IE6 wasn't horrible is essentially saying that you were not involved in web development in the '00s. It invalidates your opinion the same way that talking about the Flat Earth Hypothesis does at a physics conference. The entire web industry collectively has PTSD over it. For fuck's sakes...

Your blowing this way out of proportion. It isn't as if Microsoft already has a backdoor that allows their engineers to access any data on your system regardless of FDE without your knowledge.

https://technet.microsoft.com/...

Oops... never mind.

Will someone PLEASE go find the teacher who is messing this up? Or get rid of contractions...

your != you are

The decisions made in this case could have immense negative effects in many other areas as well. First they're after Apple's source code repository and signature key and next they'll be serving backdoors or start decrypting computers using Windows Update. That is unarguably a real possibility now.

Your blowing this way out of proportion. It isn't as if Microsoft already has a backdoor that allows their engineers to access any data on your system regardless of FDE without your knowledge.

https://technet.microsoft.com/...

Oops... never mind.

Hmm,

so DTAG announced this in November here and MS did it here with availability of H2 2016.

I wonder if there is any discount for ex employees of that small, unheard of 260000 (iirc in 2006) people employing obscure German company.

Its a broken clusterfucked POS is what it is. I installed Win 10 on nearly a dozen systems made in the past 6 years just to see what kind of shit I would have to be dealing with, these systems were due to be wiped anyway and I figured they would be a perfect test bench to let me see what will happen when some of my customers come in after getting "Win 10'd"...what did I find when I let MSFT "upgrade" these systems?

1.-Broken sound, 2.-broken networking, which frankly is a Godsend when that happens because if the networking DOES work MSFT slamming a dozen pages worth of phone home spyware down your pipe honestly slowed the network responsiveness WORSE than a "Secure Tool" infection, 3.-the dozen pages of spyware also slows the system down thanks to all the background shit running, 4.- the UI is every bit as much of a mess as Win 8, sure it has a start menu but once you try to do anything beyond passively use FB and start trying to tweak shit? You find its got settings splattered all over the place, hidden, and a bitch and a half just to find basic things, 5.- the drivers? A FUCKING JOKE, the Win 10 drivers are beyond barebone and basic (not to mention unstable as hell) and unlike Win 7/8 where it was pretty trivial to use previous drivers Win 10 will just become about as stable as WinME...

Hell I could go on all day, and please note that NONE of these systems were some old XP era junk, the oldest was a 6 year old C2D laptop that came with Win 7 and had 4GB of RAM, ALL of these systems were multicores, ALL of these systems had at least 4GB of RAM, hell to give Win 10 the benefit of the doubt I even popped in a spare SSD I had lying around into my own system that is less than a year old and let it "upgrade" a disc image of my Win 7 to Win 10....we are talking about a fricking octocore with 16Gb of RAM, SSD, R9 280 GPU and even with all that hardware it STILL was buggier and ran worse overall than the Win 7 I had installed, and this was after manually installing the latest Win 10 drivers for every piece of hardware!

The ONLY nice thing I can say about Win 10 is guys like me are making plenty of extra $$$ removing the "upgrade" after folks find it worse than what they had.

No disrespect intended, but I don't know where GWX Control Panel comes from or what it might do to my system so I followed Microsoft's official instructions: How to manage Windows 10 notification and upgrade options. For those affected by this GWX malware, the process includes downloading and installing a not-automatically-distributed update (KB 3065987 or 3065988), setting a newly available group policy, and adding registry values.

The article is not exactly easy to follow - I do not recommend this approach to my non-techie friends and relatives - but it works, is officially sanctioned, and requires no extension of trust to a third party.

Microsoft backported the telemetry to Windows 7/8/8.1.

Yep, it was introduced in KB3068708. It can be blocked by not allowing connections to vortex-win.data.microsoft.com and settings-win.data.microsoft.com.

Microsoft and Rakuten sign patent licensing agreement (Linux/Android+)

Microsoft signs patent licensing deal with Rakuten covering Android and Linux devices
By John Callaham - Wednesday, Mar 9, 2016 at 4:23 pm EST

"Microsoft has entered yet another patent license agreement with a third-party company. This time, it's with Japan-based Rakuten, and it will cover both company consumer electronic products, including any Linux and Android-based devices."

http://www.windowscentral.com/...

https://archive.is/2VwbO

+++

Microsoft and Rakuten sign patent licensing agreement

"REDMOND, Wash., and TOKYO - March 9, 2016 - Microsoft Technology Licensing LLC and Rakuten Inc. on Wednesday signed a worldwide patent cross-licensing agreement covering each company's respective consumer electronics products, including Linux and Android-based devices."

Hahahahaha: "The terms of the agreement are confidential."

http://news.microsoft.com/2016...

https://archive.is/bnylI

Why do you FP articles about Tor when there's possibly something negative about it but time and time again you don't push FP articles about TBB/Tails releases?

Anyway, Javascript is easily disabled in TBB/Tails.

More importantly, this news should not be ignored:

###

Well... THAT didn't take very long.

Ian Murdock (28 April 1973 - 28 December 2015)

Microsoft Releasing a Debian Linux Networking Distro (Jan/Feb/Mar?? 2016)

damn, that and the donation to OpenBSD is pretty much chess moves, IMO.

All MS should do is buy up Canonical/RedHat and knock over the systemd
distros with some type of patent(s) and/or buy some out and that leaves
a tiny amount of 'fringe' distros. Debian will probably be gobbled up
in the process (what happened with Corel Linux and further down the
line, that party with Novell?) and BSD wouldn't be too difficult to
buy/donate out anyway. WINE could possibly have patent(s) suits
against it...So what's left?

Hurd, my good man, where HAVE you been?

+++

http://www.windowscentral.com/...
https://archive.is/2VwbO

Microsoft signs patent licensing deal with Rakuten covering Android and Linux devices
By John Callaham - Wednesday, Mar 9, 2016 at 4:23 pm EST

"Microsoft has entered yet another patent license agreement with a third-party company. This time, it's with Japan-based Rakuten, and it will cover both company consumer electronic products, including any Linux and Android-based devices."

+++

http://news.microsoft.com/2016...

Microsoft and Rakuten sign patent licensing agreement
https://archive.is/bnylI

"REDMOND, Wash., and TOKYO - March 9, 2016 - Microsoft Technology Licensing LLC and Rakuten Inc. on Wednesday signed a worldwide patent cross-licensing agreement covering each company's respective consumer electronics products, including Linux and Android-based devices."

Hahahahaha: "The terms of the agreement are confidential."

http://www.windowscentral.com/...
https://archive.is/2VwbO

Microsoft signs patent licensing deal with Rakuten covering Android and Linux devices
By John Callaham - Wednesday, Mar 9, 2016 at 4:23 pm EST

"Microsoft has entered yet another patent license agreement with a third-party company. This time, it's with Japan-based Rakuten, and it will cover both company consumer electronic products, including any Linux and Android-based devices."

+++

http://news.microsoft.com/2016...

Microsoft and Rakuten sign patent licensing agreement
https://archive.is/bnylI

"REDMOND, Wash., and TOKYO â" March 9, 2016 â" Microsoft Technology Licensing LLC and Rakuten Inc. on Wednesday signed a worldwide patent cross-licensing agreement covering each companyâ(TM)s respective consumer electronics products, including Linux and Android-based devices."

Hahahahaha: "The terms of the agreement are confidential."

A trojan horse is something that claims to be something that it isn't. Everything is very up front about what it is so long as you actually read what it is.

Fair enough. Let's actually read what it is then, and I'll let you show us where it mentions up front that it inserts advertisements into Internet Explorer.

https://support.microsoft.com/en-us/kb/3139929

This security update resolves several reported vulnerabilities in Internet Explorer. The most severe of these vulnerabilities could allow remote code execution if a user views a specially crafted webpage in Internet Explorer. To learn more about these vulnerabilities, see Microsoft Security Bulletin MS16-023.

Additionally, this security update includes several nonsecurity-related fixes for Internet Explorer.

The only hyperlink is the phrase "Microsoft Security Bulletin MS16-023" which directs to the page:
https://technet.microsoft.com/library/security/MS16-023

This security update resolves vulnerabilities in Internet Explorer. The most severe of the vulnerabilities could allow remote code execution if a user views a specially crafted webpage using Internet Explorer. An attacker who successfully exploited this vulnerability could gain the same user rights as the current user. If the current user is logged on with administrative user rights, an attacker who successfully exploited this vulnerability could take control of an affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights.

This security update is rated Critical for Internet Explorer 9 (IE 9), and Internet Explorer 11 (IE 11) on affected Windows clients, and Moderate for Internet Explorer 9 (IE 9), Internet Explorer 10 (IE 10), and Internet Explorer 11 (IE 11) on affected Windows servers. For more information, see the Affected Software section.

The security update addresses the vulnerabilities by:
- Modifying how Internet Explorer handles objects in memory

For more information about the vulnerabilities, see the Vulnerability Information section.

Personally I do not consider the phrase "Additionally, this security update includes several nonsecurity-related fixes for Internet Explorer." to be anything resembling up front about what it does. There are no further details.

Worse, the phrase "non-security related fixes" appears at first glance to be a hyperlink, but it actually links to https://support.microsoft.com/
There is literally no additional information and the hyperlink is useless.
The main support landing page in fact makes no mention about Internet Explorer anywhere, let alone details any changes to it.

Where is this up front explanation about the advertisements added to the browser?
Where is any mention of the non-security update that this new ad clearly is? Or any other potential non-security updates since it is specifically worded as plural meaning more than one?
Where is this greater-than-one-item listing you claim exists that we simply are ignoring?
Exactly what phrase actually stated on those pages would lead one to believe this behavior would be changed to make any type of informed choice regarding the update?

A trojan horse is something that claims to be something that it isn't. Everything is very up front about what it is so long as you actually read what it is.

Fair enough. Let's actually read what it is then, and I'll let you show us where it mentions up front that it inserts advertisements into Internet Explorer.

https://support.microsoft.com/en-us/kb/3139929

This security update resolves several reported vulnerabilities in Internet Explorer. The most severe of these vulnerabilities could allow remote code execution if a user views a specially crafted webpage in Internet Explorer. To learn more about these vulnerabilities, see Microsoft Security Bulletin MS16-023.

Additionally, this security update includes several nonsecurity-related fixes for Internet Explorer.

The only hyperlink is the phrase "Microsoft Security Bulletin MS16-023" which directs to the page:
https://technet.microsoft.com/library/security/MS16-023

This security update resolves vulnerabilities in Internet Explorer. The most severe of the vulnerabilities could allow remote code execution if a user views a specially crafted webpage using Internet Explorer. An attacker who successfully exploited this vulnerability could gain the same user rights as the current user. If the current user is logged on with administrative user rights, an attacker who successfully exploited this vulnerability could take control of an affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights.

This security update is rated Critical for Internet Explorer 9 (IE 9), and Internet Explorer 11 (IE 11) on affected Windows clients, and Moderate for Internet Explorer 9 (IE 9), Internet Explorer 10 (IE 10), and Internet Explorer 11 (IE 11) on affected Windows servers. For more information, see the Affected Software section.

The security update addresses the vulnerabilities by:
- Modifying how Internet Explorer handles objects in memory

For more information about the vulnerabilities, see the Vulnerability Information section.

Personally I do not consider the phrase "Additionally, this security update includes several nonsecurity-related fixes for Internet Explorer." to be anything resembling up front about what it does. There are no further details.

Worse, the phrase "non-security related fixes" appears at first glance to be a hyperlink, but it actually links to https://support.microsoft.com/
There is literally no additional information and the hyperlink is useless.
The main support landing page in fact makes no mention about Internet Explorer anywhere, let alone details any changes to it.

Where is this up front explanation about the advertisements added to the browser?
Where is any mention of the non-security update that this new ad clearly is? Or any other potential non-security updates since it is specifically worded as plural meaning more than one?
Where is this greater-than-one-item listing you claim exists that we simply are ignoring?
Exactly what phrase actually stated on those pages would lead one to believe this behavior would be changed to make any type of informed choice regarding the update?

A trojan horse is something that claims to be something that it isn't. Everything is very up front about what it is so long as you actually read what it is.

Fair enough. Let's actually read what it is then, and I'll let you show us where it mentions up front that it inserts advertisements into Internet Explorer.

https://support.microsoft.com/en-us/kb/3139929

This security update resolves several reported vulnerabilities in Internet Explorer. The most severe of these vulnerabilities could allow remote code execution if a user views a specially crafted webpage in Internet Explorer. To learn more about these vulnerabilities, see Microsoft Security Bulletin MS16-023.

Additionally, this security update includes several nonsecurity-related fixes for Internet Explorer.

The only hyperlink is the phrase "Microsoft Security Bulletin MS16-023" which directs to the page:
https://technet.microsoft.com/library/security/MS16-023

This security update resolves vulnerabilities in Internet Explorer. The most severe of the vulnerabilities could allow remote code execution if a user views a specially crafted webpage using Internet Explorer. An attacker who successfully exploited this vulnerability could gain the same user rights as the current user. If the current user is logged on with administrative user rights, an attacker who successfully exploited this vulnerability could take control of an affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights.

This security update is rated Critical for Internet Explorer 9 (IE 9), and Internet Explorer 11 (IE 11) on affected Windows clients, and Moderate for Internet Explorer 9 (IE 9), Internet Explorer 10 (IE 10), and Internet Explorer 11 (IE 11) on affected Windows servers. For more information, see the Affected Software section.

The security update addresses the vulnerabilities by:
- Modifying how Internet Explorer handles objects in memory

For more information about the vulnerabilities, see the Vulnerability Information section.

Personally I do not consider the phrase "Additionally, this security update includes several nonsecurity-related fixes for Internet Explorer." to be anything resembling up front about what it does. There are no further details.

Worse, the phrase "non-security related fixes" appears at first glance to be a hyperlink, but it actually links to https://support.microsoft.com/
There is literally no additional information and the hyperlink is useless.
The main support landing page in fact makes no mention about Internet Explorer anywhere, let alone details any changes to it.

Where is this up front explanation about the advertisements added to the browser?
Where is any mention of the non-security update that this new ad clearly is? Or any other potential non-security updates since it is specifically worded as plural meaning more than one?
Where is this greater-than-one-item listing you claim exists that we simply are ignoring?
Exactly what phrase actually stated on those pages would lead one to believe this behavior would be changed to make any type of informed choice regarding the update?