Microsoft Talks Daily With Your Computer

An anonymous reader writes "Microsoft Corp. acknowledged Wednesday that it needs to better inform users that its tool for determining whether a computer is running a pirated copy of Windows also quietly checks in daily with the software maker. The company said the undisclosed daily check is a safety measure designed to allow the tool, called Windows Genuine Advantage, to quickly shut down in case of a malfunction." The EULA is suppose to disclose this daily call-in feature. Lauren Weinstein, who is co-founder of People for Internet Responsibility, was one of the first people to notice the daily communications to Microsoft. Report from Yahoo.com"

Ethereal anyone?

[caryw]

Anyone sniff out the offending packets yet? I'm sure they can't be too hard to identify. Probably simple HTTP posts.

If nobody has I'll sniff anything going to Microsoft's Class B (207.46.*.*) later tonight.
--
From Northern Virginia? Visit Fairfax Underground! (Just added: Fairfax County wiki, need submissions)

Re:This happened to my moms computer yesterday

[spectecjr]

This happened to my Uncle's computer yesterday - Uncle Sam that is. The WinBlows PC that is my email machine popped up the "This copy of Windows is not genuine" tag yesterday. This is on a major DoD site that has Everything legit, monitored, and locked up. It locked the system down so that I could not access the system with either the CAC card/PIN method nor the username/password means.

The Genuine Advantage tool doesn't lock your system. It just doesn't let you download cool freebies (at this time).

You got hit by something else. Upthread someone said that there's some spyware which masquerades as the Genuine Advantage system, and *does* lock your system down.

Re:This is why I've been staying off WindowsUpdate

[SolarCanine]

With MBSA, I can do a quick install of Windows XP with SP2 integrated in vmware, then run this tool, and find out that (as of yesterday) there are 39 hotfixes needed for vanilla XPSP2 install, and it gives me direct (no WGA crap) links to download these updates. All I have to do then is save them all one by one, integrate them into a XP SP2 iso image, and use this pre-integrated disk to install with.

It's interesting to note that in order to download this, you have to use the Windows Genuine Advantage tool...

Microsoft's mouse driver also checks in daily

[eric31415927]

If you ever install the Microsoft mouse driver from the CD that accompanies the mouse, you'll find that it too calls in each day.
Why does a mouse driver need to call in daily?

A better question is: Why install the driver at all?
Pretty well every version of Windows recognizes a Microsoft mouse with no need for drivers from the CD.

Marketing opportunity

[zCyl]

And how long until their regular check-in procedure for whether or not your computer is running legal copies of software morphs into a marketing opportunity by linking your ip address to your windows registration for tracking purposes? It would be the ultimate cookie, since it could essentially link every Windows user on the internet to the purchaser of the windows license, no matter where the computer moves to. Companies would leap all over this database in backroom deals, since it could allow advertisers or other companies to know the full identity of users the moment they bring up a page.

I am running...

[Belial6]

I am running 3 copies of WinXP, and own 5 legal licenses. I still don't want MS invading my privacy. If the only thing your worried about is whether it annoys you or not, you shouldn't mind your neighbor putting a web cam in your shower as long as he covers the little red light.

Re:What kind of bullshit excuse is this?

Last week my "genuine" copy of Windows was accused of being pirated when I accidentally changed the date on my computer. There was no way to fix it, I spoke with several members of Windows customer support who could not help me and transfered me in a complete circle ending up with the original number that I called. I had to reinstall windows, hoping it would help and that I wouldn't lose everything (since I was prevented from accessing windows during this time). Reinstalling (repairing existing installation) helped but I still got the "not genuine windows" warning until I changed the date back to the correct date.

Thank you, Microsoft! :(

Re:What kind of bullshit excuse is this?

[ScrappyLaptop]

And luckily, you have that choice, but I am afraid it is you that has missed the point. Microsoft owns that software, not you. You are merely licensed to use it. By agreeing to the EULA and continuing to use Windows, you agree to whatever conditions Microsoft sets forth. The best part of it is that you *pay* for the honor of doing so. If you disagree with Microsoft's actions, you are free to use another operating system or office suite or what have you. I just wonder when that final choice will disappear; imagine if the EULA had a clause that stated, in legalese, "...and I further agree to only run Microsoft Operating Systems on this PC from this point forward". You know, all in the name of allowing Microsoft to provide better support, etc. No reason not to add a clause like that, really...

Re:WgaTray.exe

[MikeBabcock]

Don't forget that the Windows firewall software (which will supposedly protect outbound traffic as well as inbound in Vista) allows software to change the rules dynamically and without asking you.

I looked for a very long time on McAfee's site to figure out how the ASAP intranet updating software worked so I could set appropriate firewall rules. Then I noticed that with a fully locked-down PC, it was already receiving said updates and connecting to other locked-down PCs for them.

Great, I thought, the Windows firewall really is useless.

Virus scenario

A virus could use one of the "Product-Key Changer" scripts (see http://support.microsoft.com/?kbid=328874) to install a pirated product key on every infected computer (whiping all traces of the original key).

This would render millions of genuine installations indistinguishable from pirated installations. What a mess for Microsoft! They would have to immediately "kill forever" the WGA helper, and maybe even remove the WGA check on Windows Update.

Such a virus would be a hard lesson to learn for the writers of all kinds of automated "genuine" checks.

Regards,
M.

Re:What kind of bullshit excuse is this?

[Kadin2048]

You own the copy of the media on which the software was delivered to you; you don't own the software itself. You are merely licensed to use it.

Hence, you can resell the media (yours) and the license (yours) but you can't duplicate the software and sell it (not yours!).

It would be interesting to see what Microsoft would do if EULAs were ruled unenforceable; I suspect that they would simply send you out a paper contract in advance of the software, which you would have to read, sign, and return, before they would ship you anything. That's actually SOP for some big enterprise software packages: they don't do their licensing via click-thrus, but rather through contracts signed by the legal parties involved ahead of deployment. Really that's the way it ought to be done -- people would whine about it being an "inconvenience," but at least you could walk away if the agreement looked like crap and not have to worry about getting a refund. I suspect though that at least in some Districts, that EULAs will be found to be quite valid, however, since in theory you can disagree and take the computer/software back for a refund.

Re:Marketing opportunity-- then you hire

[davidsyes]

to make a tool to trash the cookies. Send back spurious, useless, marketer-crashing rubbish that calls their ENTIRE database into question. FUCKEM. With the exception of the copyright works of others, the data on MY computer is MINE. EVEN the fucking so-called copyright-protected cookies. If they generate cookie data with MY surfing habits, and I'm not getting PAID by them to use my info, then I will continue to trash, delete, or block cookies and their entire fucking domains.

I REGULARLY look at who is behind ANY new IP address, and I DO block entire domains. I don't know how many INDIVIDUALS have over 200 sites on their blacklist, but I do. When doubledick (among others), for instance, gets cute and scarfs up chunks if in-between addresses in random domains, I block the sub-domain if it's interfering TOO much with my surfing. But, in battle against some of these fucks, I DO tolerate 10-60 second page loads. I don't block EVERY company out there, just the big, fat-footed ones whom I suspect of mass-selling surfing information.

Thank YOU LINUX/OS devs and W3C: You helped me not have to surf with with ms crap at home.

BTW, IS THERE a cookie-corruption tool that will decrypt them so I can see what it is trying to do? Is there a way to defeat any checksums so that I can insert crap or taint the call-back numbers in the cookies? This would be so I can misdirect them and be part of a cookie-trashing movement. I'm not looking to gain unauthorized ACCESS, I want to DEAUTHORIZED and DESTROY most of the cookies. Not the ones to my e-mail providers, just the ones to sites I don't have any relationships with. I'm SICK of those who say cookies are harmless. Next, we need to root out those 1x1 pixels and taint them, too. Then the crawlers stuff, and whatever else that comes along.