Slashdot Mirror
Microsoft Talks Daily With Your Computer
An anonymous reader writes "Microsoft Corp. acknowledged Wednesday that it needs to better inform users that its tool for determining whether a computer is running a pirated copy of Windows also quietly checks in daily with the software maker.
The company said the undisclosed daily check is a safety measure designed to allow the tool, called Windows Genuine Advantage, to quickly shut down in case of a malfunction."
The EULA is suppose to disclose this daily call-in feature. Lauren Weinstein, who is co-founder of People for Internet Responsibility, was one of the first people to notice the daily communications to Microsoft. Report from Yahoo.com"
The EULA is suppose to
That should be 'supposed'. What happened to the 'd'?
disclosed this
Oh, there it is.
... quickly shut down in case of a malfunction.
So Genuine Advantage needs to contact the mothership in order to be told that it's broken and needs to terminate?
Please.
The higher the technology, the sharper that two-edged sword.
Just one more reason NOT to use Windows as my operating system!
"Money is truthful. If a man speaks of his honor, make him pay cash." Notebooks of Lazarus Long, Robert A. Heinlein
*wraps computer in tin foil and duct tape*
BRING IT ON!!!
XP Phone Home!
Anyone sniff out the offending packets yet? I'm sure they can't be too hard to identify. Probably simple HTTP posts.
If nobody has I'll sniff anything going to Microsoft's Class B (207.46.*.*) later tonight.
--
From Northern Virginia? Visit Fairfax Underground! (Just added: Fairfax County wiki, need submissions)
I guess they forgot to disclose that in the EULA. Honest mistake, stuff happens. Now let's go back to not worrying about DRM or Net Neutrality because Big Bussiness is looking out for our best interests.
TFA says "your computer", but aren't all Windows installs "my computer" on the desktop? Shouldn't it say "your my computer"? Or is it "my your computer"?
Ah screw it! And screw Microsoft, too.
The sea changes color, but the sea does not change.
I knew my PC was cheating on me after I got a Mac. But Microsoft...
Being Slashdot, you have to praise the editors for what they didn't do. In this case they didn't write it as Micro$oft, MicroShaft or MicroShit.
Good job, boys! Have a cookie!
Trolling is a art,
Just the other night my copy of ZoneAlarm was alerting me that this exe was trying to make a shout-out to the Internet. A little searching told me what this was, so I set it to permanently deny the request. Problem solved!
A safety feature that it doesn't need. Genuine Advantage only needs to be checked once. Upon verifying your Windows install it should never communicate with Microsoft unless specifically asked to do so. Doing anything else is highly suspicious and bad form. Failing to put this communication information in the EULA is also bad, but is likely an oversight on someones part so can probably be forgiven, we all make mistakes.
Just be aware that there's a piece of malware going around that performs this function also. It looks like a microsoft box, comes up before you sign in and claims that your copy of windows is not genuine.
How to use coral cache: http://slashdot.org.nyud.net:8090/~oscartheduck
I heard horror stories of people with 'acquired' versions of Windows XP who went to the 'new' 'Windows Update' service and ended up with an annoying tray icon constantly reminding them that their version of XP is pirated.
But you know, I havent been to WindowsUpdate in over a year.
I use a great (and free) tool provided by microsoft themselves - called "MBSA" (Microsoft Base Security Analyzer) to download and install updates.
With MBSA, I can do a quick install of Windows XP with SP2 integrated in vmware, then run this tool, and find out that (as of yesterday) there are 39 hotfixes needed for vanilla XPSP2 install, and it gives me direct (no WGA crap) links to download these updates. All I have to do then is save them all one by one, integrate them into a XP SP2 iso image, and use this pre-integrated disk to install with.
Since i reinstall windows every few months this is not a problem, and for those who insist on keeping windows machine installed longer, they can simply use MBSA to download incremental updates and install them manually.
Here at Microsoft, we care about the Customer Experience. As a result, we've taken the following measures to make sure your experience is as pleasant and beneficial to you as possible.
- Our new operating system, Windows Vista, requires only the best high-end hardware so that, even on a system well beyond the power you should ever need, you'll still get the true Windows Experience(TM)
- The new Windows Media Player 11 features all-new and exclusive DRM, or Degradation Resistment Technology by Microsoft, which not only provides wonderful sound in the new and improved WMA format, but protects your rights as well.
- Our operating systems now report back with system information and other information which we feel should be collected from your system at any given time to improve your computing experience.
Microsoft: Where do we want to take you today?
"Everything worth innovating today will go to court tomorrow."
Regarding point 1: My copy of windows checks time.nist.gov, not microsoft. In addition, however, I was asked before this function was enabled, and I can disable it at will.
Regarding point 2: Where is the safety switch for internet explorer? I'm sure IE causes way more "computer explosions" than genuine advantage.
Let's be honest here. A phone-home capability in genuine advantage is suspicious, given the function of the genuine advantage program. It makes people running pirated versions of windows especially nervous. The bottom line is, if it isn't a spy tool, there ought to be an option to disable it. If it is a spy tool, get it the fuck off my computer. Period.
WTF? This isn't old news. Every time I have downloaded this to do installations on the computers we setup at work it says very clearly it performs a "one time check". When did "one time check" become every day? Microsoft is fucking scum.
It makes people running pirated versions of windows especially nervous.
Boo hoo.. poor people running pirated copies.
If they're too stupid/lazy/cocky to keep themselves isolated by a good firewall, then I have no sympathy.
There are plenty of valid reasons why this "feature," or at least the lack of disclosure, is immoral. Protecting piracy is not one of them.
https://www.eff.org/https-everywhere
Your Computer: Hey Sweetie!
M$: Hi Schnookums!
Your Computer: Just checking in
M$: I love you honey
Your Computer: Bye Bye Baby
M$: Sweet Dreams
Your Computer: No you hangup
M$: No no you hangup
That's why Ghost is such an important tool! 1/Create Ghost image of your OS 2/Go to MS let them install what they want 3/Check for updates & write down KB# but don't install anything 4/Download the KB's you need to your HD 5/Restore the image you made & install the updates you downloaded. Now you have your updates without any MS garbage on your PC. In case you didn't notice media player has been calling home for years & that doesn't seem to bother anyone!
A) They didn't tell anyone the software would do this.
B) We are supposed to trust MS that this thing is only asking MS if it needs to be shut off? What the hell kind of reason is that to phone home?
C) Why the hell does this software need to be running all the time? It's taking resources doing nothing but asking MS if it should be shut off?! Why can't it be started up and shut off only when needed?
D) There have been false reports of pirated software. Will this software one day just decide you're using a pirated version and kill your machine? Some people depend on their computers to feed themselves. If this software screws up and kills a machine and the owner has several days of downtime who's going to compensate them?
E) If you really think MS (or any large corporation for that matter) is above abusing phone home programs you got blinders on. Why should we trust large companies with our private informaton while not trusting actual people with our social security number?
F) The reason megacorps and the people who run them are so successful is always a combination of luck, smarts, and ability to stab people in the back and laugh about it. I'm not saying large corporations should be ended, but they should be approached with caution. They will try to get away with whatever the hell they can. It's the consumer's job to keep them in check... Well it's the goverment's job too, but they seem to be doing a shit job to say the least.
-Derick
Microsoft doesn't really give a shit about the single-use, single-pc key so much. The whole crux of the Genuine Advantage thing is to keep an eye on the corporate volume licensing keys.
:)
If a corp. license gets out into the wild, it's going to spread like mad (duh). With all those updated PCs phoning home on a daily basis, Microsoft should be quick to get wise to whose key just slipped out and put the kibosh on it.
How many people had the FCKGW key before that got pulled in SP1?
// Agent Green (Ian / IU7 / KB1JQO)
// IEEE 802.3: All 10base Are Belong To Us
This happened to my Uncle's computer yesterday - Uncle Sam that is. The WinBlows PC that is my email machine popped up the "This copy of Windows is not genuine" tag yesterday. This is on a major DoD site that has Everything legit, monitored, and locked up. It locked the system down so that I could not access the system with either the CAC card/PIN method nor the username/password means.
The Genuine Advantage tool doesn't lock your system. It just doesn't let you download cool freebies (at this time).
You got hit by something else. Upthread someone said that there's some spyware which masquerades as the Genuine Advantage system, and *does* lock your system down.
Coming soon - pyrogyra
TFA says "your computer", but aren't all Windows installs "my computer" on the desktop? Shouldn't it say "your my computer"? Or is it "my your computer"?
I got a totally different result myself. When I ran Windows Update on my parents laptop about an hour ago Windows Update renamed 'My Computer' to 'All your computer are belong to Microsoft' and changed the system name to 'Skynet subnode 3964270017356334576934-X371N02'. Has anybody else experienced this?
Only to idiots, are orders laws.
-- Henning von Tresckow
If you ever install the Microsoft mouse driver from the CD that accompanies the mouse, you'll find that it too calls in each day.
Why does a mouse driver need to call in daily?
A better question is: Why install the driver at all?
Pretty well every version of Windows recognizes a Microsoft mouse with no need for drivers from the CD.
In contrast, the ``phoning home" talked about in the article involved sending information TO Microsoft about your computer but for their purposes.
"Every decent man is ashamed of the government he lives under." - H.L. Mencken
And how long until their regular check-in procedure for whether or not your computer is running legal copies of software morphs into a marketing opportunity by linking your ip address to your windows registration for tracking purposes? It would be the ultimate cookie, since it could essentially link every Windows user on the internet to the purchaser of the windows license, no matter where the computer moves to. Companies would leap all over this database in backroom deals, since it could allow advertisers or other companies to know the full identity of users the moment they bring up a page.
I am running 3 copies of WinXP, and own 5 legal licenses. I still don't want MS invading my privacy. If the only thing your worried about is whether it annoys you or not, you shouldn't mind your neighbor putting a web cam in your shower as long as he covers the little red light.
if microsoft can remotely 'unlegitimize' a copy of windows,
couldn't a virus or worm massively remotely cripple loads of machines
by exploiting this...?
"Notify me but don't automatically download or install them". (In Control Panel -> System -> Automatic Updates.)
Then you can pick and choose which updates you want, and when you decline one, it pops up a message in which you can check "Never ask me again".
Too late for those who trusted Microsoft, though...now you have to do a lot of registry tweaks and stuff.
"A great democracy must be progressive or it will soon cease to be a great democracy." --Theodore Roosevelt
Excuse me, in what order did you write that date ?
When all numbers are below 12, it's quite hard to get a clue
Is it even 2006 ? 1906 and 1006 fits in too...
I have discovered a truly marvelous proof of killer sig, which this margin is too narrow to contain.
A virus could use one of the "Product-Key Changer" scripts (see http://support.microsoft.com/?kbid=328874) to install a pirated product key on every infected computer (whiping all traces of the original key).
This would render millions of genuine installations indistinguishable from pirated installations. What a mess for Microsoft! They would have to immediately "kill forever" the WGA helper, and maybe even remove the WGA check on Windows Update.
Such a virus would be a hard lesson to learn for the writers of all kinds of automated "genuine" checks.
Regards,
M.
I've discovered a patch which disables Windows' "phone home" reporting. It's a fairly large download, but it seems to work.
This is my post. There are many others like it. If you don't like what you read here, go try one of the others.