Microsoft Extends Updates For Windows XP Security Products Until July 2015

An anonymous reader writes "Microsoft today announced it will continue to provide updates to its security products for Windows XP users through July 14, 2015. Previously, the company said it would halt all updates on the end of support date for Windows XP: April 8, 2014. For consumers, this means Microsoft Security Essentials will continue to get updates after support ends for Windows XP. For enterprise customers, the same goes for System Center Endpoint Protection, Forefront Client Security, Forefront Endpoint Protection, and Windows Intune running on Windows XP."

*sigh*

If companies claim they haven't had enough time to upgrade their OS or update/rewrite their software, it is because they never will.

Re:*sigh*

[jddeluxe]

If I had mod points today you would get some...

Re:*sigh*

[epyT-R]

..or maybe xp is good enough for them and the newer versions of windows don't offer enough incentive to upgrade. Considering how bad current microsoft contracts are, it might actually make more sense to wall those machines off from the net and keep using them instead of staying on that one-more-patch-tuesday-til-I'm-secure treadmill.

Re:*sigh*

[roc97007]

Or because they've lost the source code, or because the only person who knew the software has long since left the company, or they've tried three times since 2003 but each time was over budget and did not deliver usable code, or development has been at a standstill since they offshored the development team. Or because they don't have the budget to push out new hardware in a down economy. Or, yes, ok, because they never will.

Re:*sigh*

[mythosaz]

It's not so simple.

I'm sitting here now, virtualizing applications in App-V for an XP --> 7 migration project. Most people have no idea the scope of applications used by any sufficiently large company, the sort of resources it takes to locate, acquire, and upgrade existing products, or the skill necessary to shoe-horn old applications business can't move quickly away from into an operating system they were never intended for.

My previous employer had 40,000+ endpoints at 40+ facilities. Each of those facilities was part of a loose federation of medical providers and hospitals, each running their own software, each with dozens of departments with unique applications. Their migration to Windows 7 wasn't going to be free. It took money and manpower, and that doesn't happen overnight.

My current situation is similar, just reduced in size by an order of magnitude. Still nearly a thousand applications -- sure, you can throw a lot of them away, but that takes meeting endlessly with department heads and finding replacements - and testing them - and packaging them for distribution to your new OS in the new tool, since the old tool needs to be replaced along the way. Not everyone had a direct upgrade path to the next version of System Center.

Entire infrastructures needed replaced in a LOT of companies. You can spin up a HP Client Automation infrastructure in a day - if you're the only guy in an IT department, and don't need to wait for a change window to have DBAs configure your backend, and need to wait for networking to make sure machines outside the DMZ can still patch. People over-simplify what has to happen in the "simple" upgrades, and Windows 7 migrations were more than just going out to a PC with a copy of USMT and swapping their hardware.

Oh, and I hope you have an enterprise agreement with Microsoft, and you budgeted all of this years ago in your long-term financial plan, and you're not middle-way through any other initiatives that might cause you to have a moving target - like desktop or application virtualization. If you're going to pull off the bandaid, pull the damned thing off already. Lets get off physical boxes too! I'm sure we'll have all the USB printer issues worked out on the non-persistent desktops soon enough.

You can lose days in finding keys for "critical" one-off licensed software for a machine swap. God forbid you're moving to 64-bit and dealing with old .NET apps that nobody's going to ever re-write. It's not just walking around and swapping out some PCs.

Anyone who tells you otherwise is being willfully ignorant.

Re:*sigh*

[ackthpt]

If companies claim they haven't had enough time to upgrade their OS or update/rewrite their software, it is because they never will.

It's a Slot Machine approach. They keep pulling the handle, hoping for the jackpot which will never come.

Re:*sigh*

Even though you have known this day would come since 2009.

Re:*sigh*

It just sucks that MS doesn't make a 32b, legacy, low footprint OS for those that need to run old software.

First, you can get Win 7 Pro in a 32 bit version. And let's not forget about this?

Re:*sigh*

[haruchai]

Sounds like a lot of bad planning. Have seen a lot of that at places I've worked.
Windows XP end-of-life has been known for years; Windows 7 went RTM in July 2009 which means that betas were available for a couple years before that.

So anyone whining about not having enough time, almost 4 years on, is a moron. Sadly, that's true of where I worked not so long ago - a 15000 user organization that only completed their Win 2000 - XP migration 2 years ago.

Re:*sigh*

[Salgat]

This is the case where I work. On our machines are HMIs (interfaces to control the machine); you don't ever actually see Windows. The reason to upgrade from XP to 7 is purely because of security. Until the updates end, there are no good reasons to stop using XP since it does exactly what it is needed for.

Re:*sigh*

I work in IT in a company with thousands of offices and 100,000's of desktops and 10,000's of applications. What you described is actually incredibly poor IT management combined with incredibly bad planning, not a problem of being a large enterprise. Every IT department should have plans for keeping software and hardware current and under support, There should not be ANY one off licenses to find keys for, they should exist in a central software repository, if they aren't then your IT procurement process is a fail. literally thousands of enterprises bigger than yours have migrated to Windows 7 and are already looking to plan future migrations as 7 is getting old in the tooth now too. don't blame the complexity of this on the enterprises size, what you have there is a clear case of mismanagement.

Re:*sigh*

[Chaos+Incarnate]

Windows XP Mode is just an XP VM. It will still have the same vulnerabilities as an unpatched Windows XP.

Re:*sigh*

God forbid you're moving to 64-bit and dealing with old .NET apps that nobody's going to ever re-write.

Oh, it's more insidious than that. One of the 64-bit issues we had to deal with was Microsoft's IPv6 extensions to proxy.pac files. Even though the apps were 32-bit and the machines were on an IPv4-only network, you had to have essentially-duplicate FindProxyForURLEx() functions in the proxy.pac file if the machines were Windows Vista/7/8 64-bit. Contrary to documentation, the 64-bit machines weren't even using the FindProxyForURL() functions. And forget about what happens when ClickOnce is involved.

Re:*sigh*

[argStyopa]

The FACT is that most of them run just fine and don't NEED to upgrade.

Just because someone says "get on this treadmill" doesn't mean you need to.

Depending on what you want to do with a computer, you could be running flippin' DOS and be perfectly fine (not to mention have your pick of pretty-much-free machines in the dustbin that would run whatever ancient apps you need SCREAMINGLY fast).

Re:*sigh*

[Immerman]

>Being 64b is an *actual* reason to upgrade

For office drones? Really? That 3.5GB RAM limit was a bit of a nuisance for some specific things, but realistically how many office computers ever run up against it? No argument that servers and "Big Iron" can benefit substantially *if* the dataset is large enough to be seriously RAM limited. Even serious gaming rigs can often benefit dramatically from all that extra RAM and vectorization potential. But how many office applications can actually benefit notably from vectorized instruction optimizations? They spend almost all their time waiting on the user anyway, it doesn't really matter how fast they do it.

Re:*sigh*

[master5o1]

Actually they knew they should be planning a new-os version at least since Vista was released. And probably pushed that planning into a release for Windows 7.

Re:*sigh*

>You can lose days in finding keys for "critical" one-off licensed software for a machine swap.

PEBCAK. Imagine a business who said it took them days to find an invoice, a bill, or their payroll records. You'd laugh at them and make a mental note to never do business with them, right? Finding license keys is not a problem for a competently run organization.

Re:*sigh*

[mlts]

Other than Windows 7 (or for that matter 8.1) being an OS made to address security concerns for 2014 as opposed to having security strapped onto an OS made in 2001, for a lot of users, XP is good enough.

Other than being newer, there just isn't much in Windows 7 or newer that is groundbreaking and would get users to move to it. Moving from ME to XP was an obvious improvement, but from a user's perspective, XP to Windows 8.1 just doesn't bring that much with it for their sake, other than it being easier to reinstall the OS [1].

[1]: I wouldn't want to reinstall the OS from those options, just because if it is due to malware, the OS image can get tampered with. Hardware failure likely means a complete reinstall from OS media. The only case I see that makes a "reset" something as an option would be Registry corruption... and that is very uncommon these days.

Re:*sigh*

[ynp7]

XP was never that great even when it was recent. It's certainly much, much worse than Windows 7, 8, and even Vista. Fucking well past time to let that shit die.

Re:*sigh*

[mlts]

Don't forget having a KMS infrastructure where every single machine in the company can contact an activation server every 180 days. Yes, one can use MAK type of keying, but if a box needs a reinstall, that means one has to burn another install key.

In a previous life, I've encountered cases with legacy apps as well, where the client was 32 bit... but just would not work on Windows 7 for love or money. I ended up having to use virtual machines running XP for the dedicated program.

Of course, there is the server infrastructure Windows 7 requires. New GPOs, more disk space for updates for WSUS, more PXE images, etc.

So, a move to Windows 7 (or a major OS update for the clients for that matter) isn't something to be taken lightly in a company, because one mistake can trash hundreds to tens of thousands of desktops. At minimum, it requires a test lab and running upgrades to see what ugly issues will rear their heads.

Re:*sigh*

[bobbied]

Bad planning is all too common especially when the eventual demise is a year or more away. You are talking a long term plan when management is in tactical mode trying to make the numbers for the quarter. If you are there talking about the sky falling in 4 years, you WILL be ignored. It's the nature of how publicly traded companies run. Remember that the last 5 years have been a *serious* problem world wide economically. Most companies are struggling to keep afloat without just throwing in the towel and everybody is dying waiting for any sign of recovery, which so far has not been really seen.

In a business down turn, where you are downsizing, EVERYTHING is tactical and strategic planning is out the door, like the last wave of RIFed off employees. The quickest way to get to follow all those people you used to work with out the door is to start making noise about spending money. Especially if you are in executive management hired and fired by the board. Best you can hope for is to pull the golden parachute rip cord before the chickens come home to roost and let the next poor soul who gets your job deal with it. Even in the best of times, many companies struggle with the "manage to quarter" mentality. It's always about stock price NOW not years down the road.

I for one am not surprised that a lot of companies have buried their heads in the sand and ignored this XP EOL date. So don't castigate the guy describing the problem he faces for not planning ahead. Seems to me, he's on top of the problem and fully knows what needs to be done, but he's not been given the necessary mandate and resources to actually get the problem fixed and work a viable plan. It's not HIS lack of planning, but a result of management choosing the expedient over what is best in the long term.

Re:*sigh*

[slimjim8094]

Yeah, sure, OK, but that's why the time to start all this lengthy work was like 4 years ago, right? That's a really long time to sort out even some pretty massive problems, and have endless meetings with department heads, and testing them, and waiting for the DBA, and waiting for the network configuration - and then have like a year and a half left to actually do the upgrade!. I mean, if a business have such a complicated setup that it's going to take X years to migrate off an OS, doesn't it make sense to start that migration at least X years before the published cut-off date? I guarantee you that there's a dozen 0-days just waiting around for the end of support - even if they didn't care about basing their entire organization on top of a vendor-unsupported product with no recourse for problems, it seems incredibly dangerous for a company to not be 100% sure they'd avoid that attacker free-for-all, right? Presumably the reason for all those computers is people have to use them for work.

Nobody's talking about "overnight" here. Windows XP is more than twelve years old. The viable replacement has been available for more than four years. What would more time ever gain anybody? Clearly the people right at the edge now punted until they couldn't punt any longer, so more time would just lead to longer punting followed by this same rush.

Re:*sigh*

[epyT-R]

Well, I realize I'm in a minority, but I ran xp x64 for many years before moving to 7. A lot of hardware did actually work just fine with it, though sometimes the setup programs for them had to be manually extracted and installed. The only hardware that didn't work required kernel drivers and only shipped with 32bit binaries.

It was probably the most trouble free experience I've ever had with windows.

Re:*sigh*

[Luckyo]

Actually most modern games still run on 4GB RAM just fine even on w7 64bit. There is a very small subset of games that do require more, most of them terribly optimized and usually still in alpha/early beta.

Extra RAM on windows mainly helps mitigate memory leaks and hide the fact that Vista/7 is a huge memory hog with massively greater RAM requirements for OS overhead than XP ever was. Which doesn't impact you if you stay on XP. Microsoft also claims it helps caching, and to a certain extent it does. But in most cases, this advantage is negligible.

So more RAM makes sense on 7. But XP? Not so much. Which is another reason NOT to move from XP.

Re:*sigh*

[epyT-R]

For highly customized configurations (like HMIs), it's better to just use the disk image provided by the manufacturer and isolate it accordingly than it is to try to update the base OS. Let the manufacturer worry about that.

Re:*sigh*

[epyT-R]

Of course it isn't. It's just not that much worse to justify changing it over, especially for old hardware. No version of windows is safe from the internet. I guess I'm saying that if the need for security is important enough, it's better to cut access to the net for the average workstation regardless of windows version.

Most of those infected xp machines are owned by careless/clueless users who will soon be just as infected on windows 8 as they were under xp.

Re:*sigh*

[petermgreen]

I run XP professional x64 edtion on my office desktop at uni and my experiance has been generally pretty good

I did run into a few issues
1: the NI mydaq software flat out refused to install
2: the Data translation DT9816 worked with the low level APIs but not the high level APIs.
3: I had an add-in realtek network card (the machine is on two networks, the uni network and a private network for test equipment etc) that kept dropping the connection yet worked fine in other machines with other versions of windows. Strangely the onboard NIC (which claimed to be the same chipset) worked fine.

Other than that though pretty much everything worked. I was especially surprised that the old HP scanner I had worked and that when I replaced the failing graphics card not only were there drivers for XP proffessional x64 edition but those drivers had been updated a couple of days before I installed them.

Re:*sigh*

[peragrin]

the larger the organization the harder it is to change. it is why large government projects fail so hard. How many tries did it take the FBI to update it's systems?

I know one company(80 people) that tried for 5 years to find a fairly simple path to upgrade obsolete IBM server. they still haven't done so. and still connect to the server through special terminal programs.(IBM used an IBM only terminal emulator which they no longer have source code for).

The company i currently work for(20 people) did an ERP switch. the actual data transfer went mostly painlessly. training the users in the much simpler and effective UI took a month of dedicated training, and 6 months of answering "how do I" questions. every once in a while those questions still appear but that is normal.

Now image trying that with a couple of thousand employees, and you have a nightmare.

Re:*sigh*

[WaffleMonster]

I'm sitting here now, virtualizing applications in App-V for an XP --> 7 migration project. Most people have no idea the scope of applications used by any sufficiently large company, the sort of resources it takes to locate, acquire, and upgrade existing products, or the skill necessary to shoe-horn old applications business can't move quickly away from into an operating system they were never intended for.

You can lose days in finding keys for "critical" one-off licensed software for a machine swap. God forbid you're moving to 64-bit and dealing with old .NET apps that nobody's going to ever re-write. It's not just walking around and swapping out some PCs.

I never really understood... I mean what is so different about win32 environment in XP vs Win7? If your writing drivers or doing some particularly funky low level foo, interfacing with hardware without windows 7 support... sure I get it...but beyond that I don't understand the problem for your typical business apps and the application space they operate.

What version of any .NET app won't work on Windows 7? What breaks for win32 apps when run on 64-bit operating systems? I'm sure there are quite a lot of answers... I am willfully ignorant...I don't get what the big deal is... Win7 has with some exceptions all the same APIs as XP did. Could someone list specific issues??

Re:*sigh*

[LordLimecat]

..or maybe xp is good enough for them and the newer versions of windows don't offer enough incentive to upgrade.

Except for the lack of maintenance, which is always a good reason in the Linux / Unix world but apparently doesnt fly with windows?

instead of staying on that one-more-patch-tuesday-til-I'm-secure treadmill.

Right. Because Linux / Firefox / Flash / Acrobat dont all need security updates.

Re:*sigh*

[rikkards]

For us, (approx 100,000) clients the biggest stumbling block was app compatability. 19000 in and going, we are doing about 1000 a day. Small kinks here and there but seems to be going well

Re:*sigh*

[LordLimecat]

For office drones? Really? That 3.5GB RAM limit was a bit of a nuisance for some specific things, but realistically how many office computers ever run up against it?

1) Anyone doing heavy duty spreadsheet, graphics, or database work is going to need a decent chunk of RAM
2) Modern webpages absolutely gobble up RAM. You can blame the browser, and that works, until you look at the competition and see that, wow, 5 tabs really does eat up ~500MB RAM no matter what browser you use
3) On my prior work computer, with 4GB RAM, I was booting to 3.2GB consumed off the bat. It was windows 7, granted, but the lions share of it was security and compliance crap. Start up my powershell environment, open a few browser tabs, and open a document or two and Im eating into the page file like disk thrashing was going out of style.

Re:*sigh*

[LordLimecat]

Thats because you were basically running a consumerized server OS. XP 64bit wasnt XP, it was Server 2003 modified to be useful to an end user.

Re:*sigh*

[LordLimecat]

There is a decent amount of new stuff in Windows 7, but upgrades will rarely be sexy to the end user. Its a little amazing that Apple gets users to even care about updates, and even there I dont know many people outside of Apple geeks who really care about Lion vs Mountain Lion vs Mavericks (other than that they do tend to upgrade right away, much to the IT dept's chagrin).

The interface is IMO a huge improvement for productivity (hot-keyable pinned taskbar icons, window snapping, improved start menu + indexing). the graphics layer was much improved (particularly the ability to multi-monitor across different GPU vendors), the networking side had a bunch of cool new toys (setting up virtual adapters, acting as a WiFi AP), and the built in Powershell is quite nice for administrators (hooray, vbscript / batch is dead!).

Most of that stuff people dont care about, then you start using it, and it becomes kind of hard to live without. I find Windows 8 annoying as all get-out and have done my best to make it look like windows 7, but if I had to pick between XP and 8 Id take 8 in a heartbeat.

Re:*sigh*

[LordLimecat]

No version of windows is safe from the internet.

This is a stupid meme, and it needs to die. If you dont understand how and why infections occur, or better yet if you dont regularly deal with IT security, its probably best not to even comment on it.

Re:*sigh*

[LordLimecat]

Its two OS versions back. Having updated regularly at each release from Ubuntu 6.04 to 9.04, I had breakage at each step of the way. Heck, when I was testing Fedora (10?) on my laptop, the very first package upgrade broke several things.

Expecting everything written for a 2001 OS to work on a 2008 OS (plus a service pack) with no problems is hopelessly optimistic. Windows 7 works in a great many cases-- far better IMO than what ive seen with Linux-- but the reality is that OS upgrades do tend to break things.

Re:*sigh*

[exomondo]

..or maybe xp is good enough for them and the newer versions of windows don't offer enough incentive to upgrade. Considering how bad current microsoft contracts are, it might actually make more sense to wall those machines off from the net and keep using them instead of staying on that one-more-patch-tuesday-til-I'm-secure treadmill.

Then why bother extending the update deadline?

Re:*sigh*

[LordLimecat]

Thats right! Everyone still rocking Red Hat 7.3 on their workstation, unite! 2002 OSes are so the rage!

Somehow you dont hear so much derision about the "upgrade treadmill" from Linux / Mac users. Wonder why that is, particularly if their choice OS is so perfect as to never need an upgrade.

Re:*sigh*

Have you ever had to deal with machines running lotus notes?

Re:*sigh*

[Darinbob]

It is true, the probably never will. This is not because they're lazy necessarily though. You make it sound like they're just slow. Often they may have critical applications and it is expensive to buy the upgraded versions, or they have to pay to get IT support to upgrade them and get the application to work. Ie, my dentist uses XP and expressed some dismay that it might stop working. Which may mean getting a new OS, a new computer that can support the OS, a new version of the application, or other troubles. People don't like paying these expenses if they don't have to.

Re:*sigh*

[sootman]

My company (about 3,500 employees; ~2,000 Windows PCs, the rest Macs) is over halfway done with our move to Win7! Might have passed 75% at the end of 2013, come to think of it. I'm now in I.T.* and I think they sent out an email with the stats in December. I got my laptop upgraded to 7 in the fall, but I have a Mac for my main machine so maybe they didn't rush on me.

Also, our migration to SharePoint 2010 from eRoom and SP 2007 is coming along nicely, thanks for asking.

* I like to tell people "I moved to I.T... I'm now part of the problem." :-)

Re:*sigh*

[klui]

I would have thought so, too. But my current machine in the office isn't running too many development/management tools and it's using 4.5GB. The largest RAM hog? Outlook at 400MB. There are a little over 100 processes. I can't imagine someone who uses Excel on a regular basis using less than 6GB.

Re:*sigh*

The "office drones" fallacy is just another version of the "typical home user" who doesn't need anything more than a PC that can do web surfing and basic word processing. It's where ignorant people make the assumption that just because there are a handful of tasks common to most users that this somehow means that all of those people only do those basic tasks and only the extreme minority actually do other things that need somewhat decent hardware. Obviously that isn't true at all otherwise the PC market would have died out 10 years ago.

Re:*sigh*

[epyT-R]

This is company dependent too. Some companies workflows rely on these one-of middleware packages because the big vendors don't offer what is needed.

Re:*sigh*

God forbid you're moving to 64-bit and dealing with old .NET apps that nobody's going to ever re-write. It's not just walking around and swapping out some PCs.

What version of any .NET app won't work on Windows 7? What breaks for win32 apps when run on 64-bit operating systems? I'm sure there are quite a lot of answers... I am willfully ignorant...I don't get what the big deal is... Win7 has with some exceptions all the same APIs as XP did. Could someone list specific issues??

For .NET, I ran into this issue a few years ago... it works like this.

A .NET assembly can be fully managed or mixed mode. Fully managed = 100% IL code that is JIT compiled for the target CPU architecture when you run the program. Mixed mode = a mixture of IL code and native code. Typical example of mixed mode assembly would be one compiled in Visual C++/CLI: you can declare parts of your program to be unmanaged code, and parts of it managed. The unmanaged code is compiled to x86 or x64 assembly code like normal.

A .NET assembly also declares the CPU architecture that it is compatible with. Fully managed assembly could be specified for x86, x64, or "Any CPU". If Any CPU, the JIT compiler will compile it for whatever the target CPU is. The default settings in Visual C# is to make an "Any CPU" assembly. However, a mixed mode assembly cannot be "Any CPU" for obvious reasons because it already contains compiled code.

The problem thus arises as follows:

1. You make a mixed mode assembly - a DLL library - that is targeted for 32-bit x86 CPU.
2. You make a fully managed assembly - an EXE program - and leave it at the default of Any CPU.
3. The fully managed assembly declares a reference to the 32-bit mixed mode assembly.
4. You attempt to run the fully managed assembly on 64-bit Windows. The assembly is JIT compiled and loaded for the 64-bit CPU. However, the second you try to call any code in the 32-bit mixed mode assembly, you get an exception because the 32-bit code cannot be loaded into the 64-bit process.

The solution, of course, is to specify the fully managed EXE assembly as for x86 CPU and not Any CPU. But that is not the default. If the EXE was already compiled for Any CPU and you don't have source code, you can use a special CorFlags utility to change it after the fact.

There are other problems with Any CPU too. Like for example, the code has to not assume the pointer size is 32-bit. This is especially important when calling native code like Windows APIs. E.g. Suppose we call an API that accepts a pointer. You should declare the pointer as IntPtr, which will be the proper size. However, you might make the mistake of passing an int (always 32-bits in C#) instead of an IntPtr. Then you end up passing a 32-bit pointer to a function expecting a 64-bit pointer, and corrupt the stack if your Any CPU program got JIT compiled for 64-bits.

Re:*sigh*

[0123456]

Somehow you dont hear so much derision about the "upgrade treadmill" from Linux / Mac users. Wonder why that is, particularly if their choice OS is so perfect as to never need an upgrade.

Because, uh, Linux upgrades are free, and generally automated? There's a big difference between leaving a machine running overnight to upgrade to the new release, and having to pay $100+ for a new Windows disk, and hope all your hardware is still supported under the new version. Even worse if the upgrade fails and you have to reinstall from scratch and then reinstall all your software too.

Re:*sigh*

[Darinbob]

This does not include the category of people who are on XP still. They aren't doing the heavy duty stuff, or it's heavy duty for them because it's on an old computer. Upgrading may not give them anything except for a large expenditure. These may be home users or small office users or medical providers or what not. These aren't the same as big offiice enterprise users, they don't have an IT staff, no budget for new systems, etc.

Sure, getting a new computer with a new OS might help some of them out. My mom might find things nice and fast and be happy, as long as someone else paid for it. On the other hand a small office user might find it very expensive and a loss of productivity while some junior geek squad wannabe attempts to migrate everything between the systems and get it all working again.

Yes sure, some of these users could be on borrowed time; their computers could crash tomorrow and they'd be stuck getting new hardware and a new OEM licensed OS. But that's their problem and their problem alone, the cut into Microsoft's profits is irrelevant.

Re:*sigh*

Other than being newer, there just isn't much in Windows 7 or newer that is groundbreaking and would get users to move to it.

Neither is there in OS X so why does apple spend so much money developing it and then giving it away?

Re:*sigh*

[rikkards]

Should clarify that is 19000 workstations and 1000 workstations a day and increasing. We probably won't meet the deadline of April 1 we were told to meet but we will be pretty close

Re:*sigh*

[exomondo]

Because Apple products don't go end of life, they go out of fashion.

Re:*sigh*

[chipschap]

Because, uh, Linux upgrades are free, and generally automated?

Free for sure, but generally automated? Not on every distro. It's often easier to do a full save, a fresh install, and then restore whatever you need. My Linux Mint upgrades take about a day of work to get everything back to where I want it. That occurs maybe every 18 months, so I don't mind it so much, and I have complete control over the process and a very high probability of complete success (100% success so far, going back many years before Mint, to Ubuntu and Suse before that). It's an annoyance, but hardly fatal.

Re:*sigh*

As one who successfully made the leap from tech support cubicle drone to independently owned tech support guru, it has given me great pleasure to abandon the phrase "sorry sir this is not a supported configuration." in favor of "Please take your shit and get out of my store."
If I wanted to work on half baked cobbled together 15 year old technology, and put up with clients that believe in "Free" as in "load", I would just do Linux. But I don't.
I always say please.
For the customers that are overcome by the wave of recognition of reality at that moment, I give them a 10% discount. Because overcharging for Chinese electronics is profitable. Insulting customers is fucking priceless.
I am the owner, I can only imagine what my techs do.

Re:*sigh*

[Billly+Gates]

Its 2014. Time to move on. You can get 4 gigs of ram for $50. Bare in mind Windows 7 disk and ram usage is over reported as it buffers things if the kernel detects extra ram. Disk usage is inflated from SXS which means Windows keeps extra dll versions that dynamically linked. That is a feature and you can trim with disk cleanup.

XP is a security nightmare and most MBA managers do not know or calculate this. XP doesn't scale well past 2 cores and is not optimized with CPU instructions from more modern CPUs

Re:*sigh*

Deadline? DEADLINE! Are you insane? There is no such word as deadline. There is only contract renegotiation, and cost overruns, and change orders. You have been given a gift. You can not discard an unpatched machine and release it to the world! You have just saved your job for at least another year.
Do you always do things people tell you to do?

Re:*sigh*

[Billly+Gates]

Still running HP-UX and Sco xenix and old redhat. Legacy apps, but we don't connect them to the internet.

Re:*sigh*

My office (under-funded local govt IT) requires heavy ram... web development, while scouring logs, monitoring the network, and performing "normal" day-to-day office work.

Re:*sigh*

[LordLimecat]

XP with 4GB of RAM loses ~1.5GB of ram to addressing problems off the bat. There goes the arguable RAM advantage it has over 7.

Anyone who's used XP in an office recently knows it its unusable at less than 768MB, out of a general maximum of 2.5-3.2GB (depending on hardware). As I said, add in mandatory compliance and security stuff and youre up to 1.5-2GB, leaving maybe a gig for programs. Thats a few browser windows, a document, and not much else.

The average office worker, on the other hand, will have Outlook, with about seventeen message windows open, a browser window with 2-5 tabs, 3-4 documents, and a wildcard depending on their role (accounting, spreadsheet, graphics, etc). 1 GB will not cover that without some painful disk paging.

Re:*sigh*

And huge numbers of them are using computers that need secure Internet access, which requires maintenance.

Re:*sigh*

Or because they've lost the source code, or because the only person who knew the software has long since left the company, or they've tried three times since 2003 but each time was over budget and did not deliver usable code, or development has been at a standstill since they offshored the development team. Or because they don't have the budget to push out new hardware in a down economy. Or, yes, ok, because they never will.

How does that quote go? Oh yes, "Poor planning on your part does not constitute an emergency on my part."

Re:*sigh*

[vux984]

Windows Vista introduced a proper security model. 7 was a substantial improvement, 8 was a bit cleaner and 2 steps backwards in usability, 8.1 is about on par with 7 really, with a start screen instead of a start menu.

Without getting into whether 8.1 is better than 7, anything from Vista onwards got the new security model, and THAT is a reason to upgrade.

But remember, security doesn't sell, and this thread just shows how deeply that goes. Because here on /. we spent over a DECADE mocking Windows XP and previous versions running as administrator (aka root), and the majority of users running as administor.

And then Microsoft finally fixed that, and today Windows security and reliability is a lot better as a result, but here we are on /. no less, listing to people tell us with a straight face that there is no reason for them to upgrade from XP.

Security just doesn't sell, not even here. That's sad.

Re:*sigh*

[mspohr]

It's nice that Microsoft introduced a "proper security model" in Vista.
Unfortunately, the malware writers have not noticed this and have continued to write very effective hacks for Windows.
So... I will continue to mock Windows (all versions) for being a pathetic excuse for an OS which should be avoided by everyone except the clueless.
Windows security is still a joke.
(Disclaimer... I have had a fair amount of good Scotch and Bordeaux tonight which may have influenced my opinion... YMMV)

Re:*sigh*

[mspohr]

Linux upgrades are a piece of cake. I just upgraded an ancient Ubuntu install (out of support band on an old laptop) to a current LTS version. It did take a day but I just let it run. In the end, everything "just worked" and I am now on an LTS version where I will stay until the next LTS version arrives.
Nice thing is that all of my old hardware (webcams, scanners, printers, etc.) is still nicely supported unlike Windows and Mac where support for old hardware just disappears.

Re:*sigh*

[epyT-R]

..and instead of making assumptions, you could just explain why you think the meme is stupid, or just not comment.

It's general practice to use a firewall at least. Ask yourself why that is. If your machines are bare or just depend on the built-in firewall, they are not secure.

Re:*sigh*

[similar_name]

I don't know, Windows XP was the first consumer/client version of Windows to use the NT kernel. That made it pretty good for it's day. For consumers, everything before it, was still based on DOS.

Re:*sigh*

Anyone dicking around with "old .Net apps" is a fool. .Net 1.1, 2.0 (through 3.5), and 4.0 are all functional on Windows 7. Windows 8 finally dropped support for .Net 1.1, but that's pretty much a non-issue since nothing regressed between 1.1 and 2.0. (All changes during that period were additions and expansions, along with some bugfixes. And if your app relies on bugs, it deserves to be a buggy POS, with all that entails for the managers that approved its release.)

Basically, if it's .Net, just run it. It'll either work, or it never worked anyway.

Re:*sigh*

[epyT-R]

The update histories of much modern software suggests it's never really secure. Patching only protects you from known attacks, and it's usually the new, unknown ones that wreak havoc. The known ones can be blocked before they ever touch a workstation, either at the firewall or via configuration, and it is best practice to do this, with or without patching.

The best practice is to assume the software in use has vulnerabilities and plan your system accordingly. Mindlessly running the upgrade treadmill and then claiming your systems are secure is pure idiocy. There's always a new vulnerability around the corner that hasn't been discovered or openly released yet, and those will be the ones causing your boss to demand why "we're not secure." Mainly admins patch because it covers their asses from being fired.

I never said that patching was unimportant, just that the XP doomsayers using it as their refrain are foolish.

Re:*sigh*

[WuphonsReach]

Really? That 3.5GB RAM limit was a bit of a nuisance for some specific things, but realistically how many office computers ever run up against it?

Look around for your power users / multi-taskers in the office. They probably have their email open all day (and if it's Thunderbird, it's not light on the memory footprint for packrats). Plus web browser, plus word, excel, plus some sort of instant message tool for internal communication, plus some job-specific stuff.

They are quite likely using 2.0-2.5GB of RAM under XP. That will only increase over time. Putting 8GB of RAM and Win7 64bit on their desks is not really overkill any more. If it's DDR3, that 8GB RAM is probably the same cost as 4GB of DDR2. And you won't have to worry about bumping up their RAM if something changes down the road.

Developers? Even the most basic developers should be bumping up the RAM. And that's even if they aren't running VMs, multiple IDEs, some background servers or what have you.

Re:*sigh*

[Osgeld]

so your offering to provide 50$ worth of ram and paid for windows licensees for every workstation entire companies, just so they can run the same fucking visual basic program and outlook they have been for over a decade

thats nice of you

see its a huge cost to companies with no rewards, you have to upgrade hardware, software liscences, rewrite your entire infrastructure and what do you get for it? a fucking live tile for facebook and netflix

why

cause microsoft didnt think that far ahead in their change everything jizzfest

Re:*sigh*

[WuphonsReach]

Yeah, sure, OK, but that's why the time to start all this lengthy work was like 4 years ago, right?

Right, which industry do you work in again? Because here in the real world, we're struggling with recessions, budget cuts and trying to make payroll on a month to month basis. And that's after laying off 1/4 of our workers due to a drop in business.

With Microsoft giving in even a little bit, I think the big corps are going to put enough pressure on them to extend XP's patches another year.

Re:*sigh*

[mysidia]

might actually make more sense to wall those machines off from the net and keep using them instead of staying on that one-more-patch-tuesday-til-I'm-secure treadmill.

Some people actually need to use a web browser to access various websites, though, or use a vendor's web application on a remote website, to get their job done.

Re:*sigh*

[Immerman]

Yes, it's 2014 and I can pay and extra $50/computer, plus technician time and losses to system down time if the IT staff doesn't have a night shift to add another 4GB of RAM in order to be able to gracefully run a newer OS which will cost me another $100 (plus technician and down time). So I've paid $200 or more to upgrade an old computer to a newer OS and my return on investment is... what exactly?

> XP doesn't scale well past 2 cores and is not optimized with CPU instructions from more modern CPUs
Completely irrelevant to office computers which spend most of their time waiting in the interminable gulfs between key presses.

I'll admit the security nightmare, but if security is a major concern I'd probably have upgraded long ago, and if I do upgrade and am at all conscientious about it I'm probably going to need a good reason to upgrade to a more recent version of the same nightmare causing codebase instead of a lateral migration to a far more secure *nix-based system which has a fair chance of being able to run all the same Windows apps thanks to Wine, if I'm not happy with the native options. After all my employees will all have to learn a new interface anyway, and most of the common popular Linux GUIs are a lot more similar to XP than Windows 8 is, or can at least be easily configured to be so. And most tend to have less demanding system requirements than even XP, far less in some cases.

Re: *sigh*

If your dentist still uses XP in March, they are not HIPPA compliant.

Re:*sigh*

[Billly+Gates]

4,000 employees waiting 10 minutes for their workstations to boot as XP lacks a registry defragger and runs apps which cause winrot, not to mention lack ahci command queing for data so your disks can only handle one thing at a time, plus an added batshit paging and swap algorithm will do just that.

Now add no work for 4 hours during your mccrappy virus scan and that is more money lost. Cryptolocker locking a share randsom due to security not up to par as Windows 7 and more $$$$.

Should I go on?

You also can keep that IE 6 shitwareERP by insecure ltd by using Citrix or VMware and run it in a browser. Even your IPad has access.

The licensing savings will pay for this due to not upgrading.

That is what a good IT professional does. He is proactive and not reactive who lets harm come in by being lazy.

Re:*sigh*

[phantomfive]

Also worth mentioning, often you don't get any value whatsoever of porting your software to Win7, even if porting only means "buying a new machine for the software to run on". Microsoft gets benefit, but that's it.

When you do the cost/benefit analysis, and it says, "Stay on XP," what's the point of changing?

Re:*sigh*

[Immerman]

I think you mean 0.5GB of RAM lost. Lot's of funky memory mapping stuff using the address space above 3GB, but the first three had no major issues, and you were able to use much of the forth GB as well. And if you need enough compliance and security software running at all times to consume a GB or two of RAM I have to suggest that you're not a typical office user.

As for performance - I rarely have fewer than 20 Firefox tabs open, and often several times that, and it's not all that uncommon to also simultaneously be running an IDE with a mid-sized hobbyist application, a few multilayer images in GIMP, maybe a few vector graphic files in Inkscape, and a handful of Sketchup scenes spread across a half-dozen virtual desktops. Nothing really huge, but a lot more active data than most office workers are dealing with at one time. And this all runs reasonably smoothly on my horribly outdated 32-bit single-core XP gaming rig with only 2GB of RAM. (what can I say, I don't game like I used to and just can't justify spending $1000+ for prettier graphics in the same games). Admittedly I have done some non-standard optimizations to help things out a fair bit (the biggest one - setting the minimum swap file size to 6GB and making sure it's completely defragmented and at the front of the disk where access is fastest). Things are a bit snappier feeling on the more modern systems I use, but realistically I doubt the difference is enough to save me even a minute a day in actual productivity. If you're seeing drastically worse performance then I would suggest you may have other issues lurking within the system. Or you're just using some seriously resource-hogging applications.

Re:*sigh*

[93+Escort+Wagon]

4,000 employees waiting 10 minutes for their workstations to boot as XP lacks a registry defragger ...

You don't have to go any farther than that to understand why so many people hate Windows with a passion...

You have to defragment the freaking registry ?!

Re:*sigh*

[satuon]

Isn't most malware these days just worms that trick the user into executing them? I doubt that more than 1-2% of the malware uses actual exploits.

Re:*sigh*

[Billly+Gates]

Poorly written XP apps change and rewrite reg entries each time they run. Since it is a database it makes copies of copies of copies etc. If you worked with a rdbms you know this is trouble and can bring the mightiest of 80 core servers to their needs.

So MS fixes it to help business out and they respond with nooo it work now!! XP was so much better as shitwareERP which slows down our systems by modding the reg works just fine etc.

Things like this drive software engineers through the roof. Its why old Java is still here as these apps use security exploits for com objects that security breaks. Corps do not see it this way and just will refuse to upgrade and then rant on Slashdot how it is so unfair that they have to do something after 5 years.

Re:*sigh*

[Immerman]

Ugh, yeah, the one job I had where I needed to use Outlook instilled a deep hatred for it, alongside the appreciation for some of its less common features.

And while I mostly stick to LibreOffice, unless Excel is far less efficient with resources I've got to say it takes a pretty huge and interlinked spreadsheet to cause any issues.

One thing to keep in mind - with a well-configured swap file it doesn't actually matter much how much RAM is "used", only how much is actually being actively accessed at any given moment. One of the biggest performance boosts I added to my old 2GB XP gaming system was setting the minimum swap file size to 6GB, thus sidestepping XP's performance-sapping swap file heuristics under normal loads, coupled with making sure the file was completely defragmented and positioned at the beginning of the disk where performance is usually considerably higher. Ridiculously big compared to actual RAM? Probably, but it's less than $0.60 cents worth of disk space, and allows for multiple apps to push their private RAM limits simultaneously without introducing any file-system related performance penalties.

Re:*sigh*

As any honest IT shop can tell you, it's quite true. Win 8.1 gets owned daily, and my coworkers and I make lots of money restoring system images. There is a very good chance that if you're not seeing any malware on any Windows machines, it is lack of experience on your part, not some infallibility of software.

Re:*sigh*

There's nothing great about vista, 7 or 8 or 8.1, except the disk space they take.

Re:*sigh*

Its 2014. Time to move on. You can get 4 gigs of ram for $50. Bare in mind Windows 7 disk and ram usage is over reported as it buffers things if the kernel detects extra ram. Disk usage is inflated from SXS which means Windows keeps extra dll versions that dynamically linked. That is a feature and you can trim with disk cleanup.

XP is a security nightmare and most MBA managers do not know or calculate this. XP doesn't scale well past 2 cores and is not optimized with CPU instructions from more modern CPUs

Except that neither of my three 10y/o desktop machines can't take more than 4GB max (they are maxed), and neither of my laptops can go past 1GB (also maxed). They run fine with XP (well, one of the laptops is linux, one of the desktops is BSD and the other is linux - although seriously needs an update). So in order to 'upgrade' to windows7 I might have to buy a new laptop, and for all I know some of the hardware (video?) in the desktop might not be supported at all (ATI X700 - I don't play games so don't need fancy video) - now you're not talking just the cost of some win7 licenses, but potentially money on new hardware... did I mention I was laid off an am unemployed? Think I might be better off spending my savings on, I dunno, taxes/bills/insurance/food/fuel/etc rather than on new 'toys' that don't do anything more for me really than what I have right now?

Re:*sigh*

The company i currently work for(20 people) did an ERP switch. the actual data transfer went mostly painlessly. training the users in the much simpler and effective UI took a month of dedicated training, and 6 months of answering "how do I" questions. every once in a while those questions still appear but that is normal.

Now image trying that with a couple of thousand employees, and you have a nightmare.

And how much did that 'month of dedicated training' cost them? And how much would it cost in training for a company of, say 10,000 employees? And how much of your time (which could have been spent doing other things) was spent answering those questions for 6mo's? And how much for a 10K employee company?

"Windows 7 went RTM in July 2009" - hmm, yeah, and remember what happened to the economies around the world in October 2008? If you were a company trying to stay afloat in an ugly economy with lots of financial doubts flying around, perhaps laying people off (as many did), would you be hiring new staff and buying new hardware/OS's to start cranking on upgrading your 10K employees to a new OS that doesn't really do anything much to improve their productivity (and in fact probably decreases it temporarily as they have to learn the "new system")? Or would you be putting it off as long as possible while you attempt to keep the company profitable?

Re:*sigh*

$50 is a lot of money just so that bloatware can run. It's over 10% of the price of a cheap desktop. Closer to 50% of an older computer. Current gaming builds with the latest graphics cards max out at 8 GB.

Tablets and chromebooks are taking off because they're cheap.

What Intel giveth Microsoft taketh away.

Re:*sigh*

That's great if you only use your PC to play games. Mine runs stuff in the background while I'm playing games, hence the need for my current 16GB of RAM.

Re:*sigh*

[EngnrFrmrlyKnownAsAC]

10 minute boot time?
4 hours lost due to virus scan?
Cryptolocker randsoms (sic)?
IE6?
Lost moniez from not upgrading?

This is way past mellodrama. This is FUD. Paging & swap algorithms? Seriously?

Oh, wait -- I just read your username. I get it now! Ha ha.

Re:*sigh*

[EngnrFrmrlyKnownAsAC]

It doesn't have to be "old" hardware! We spent 5 figures just two years ago on a laser-based spectroscopic instrument for measuring trace gases and guess what? IT RUNS XP!

The manufacturer sent out a notice last month to the effect they were "finding a solution." This announcement comes as a genuine relief for them, I'm sure.

Re:*sigh*

[vux984]

99% of the time Vista+ users get infected, I can simply delete the local profile files, and they can log back in, creating a new cleaned out one. Most malware is just shit the users have 'agreed to' and it doesn't even leave the user profile.

Granted, that's where there sensitive documents are etc, etc, but in terms of infecting the computer requiring a complete wipe... I don't do that terribly often anymore.

Admitedly that is in a domain setting; but its what I do at home too with the kids laptops; login as my admin user; copy the files / folders etc that they need to keep, delete the user account, and recreate it.

So... I will continue to mock Windows (all versions) for being a pathetic excuse for an OS which should be avoided by everyone except the clueless.
Windows security is still a joke.

If we had linux on the desktop, or OSX's marketshare continues to grow, the same malware situation will manifest there... the end users are the weak link.

Re:*sigh*

just opened most used and largest excel workbook (~1.3MB) and excel memory usage was ~4.3M memory use and 9.1M VM size (in task manager)(winxp sp3)(excel 2003). Cannot imagine excel taking up more than 1GB except if there is a memory leak.

Re:*sigh*

[EngnrFrmrlyKnownAsAC]

It was probably the most trouble free experience I've ever had with windows.

Wish I could say the same. I found XP Pro x64 the most neglected version of any Windows OS w.r.t. drivers (printer, spare NIC, ...) and most of the FOSS software I use. Of course I haven't used Win8...

Give me the 32 bit version or even Win7 any day. Except today--that machine is finally working and I'm not messing with it.

Re:*sigh*

[EngnrFrmrlyKnownAsAC]

Somehow you dont hear so much derision about the "upgrade treadmill" from Linux / Mac users.

I seem to recall a fair amount of noise over, for example, Unity. But many users just picked some other fork and got on with their work. Windows users don't quite have that luxury. The major *nix players have long term support (LTS) releases which provide firm dates that facilitate planning. Let's not forget: "free."

It could also be due to the proportionality of use: so many more winboxes out there, so many more voices to be heard.

Mac users are, well, special. I don't have one (yet) so aren't fully qualified to speak here but it seems Apple does a better job of not releasing total cruft.

Re:*sigh*

[NoKaOi]

XP is a security nightmare and most MBA managers do not know or calculate this.

If all you're running is Microsoft Office or other off-the-shelve programs, sure, but there's a hell of a lot of niche stuff out there that still requires Windows XP, either because upgrading to a new niche product would be extremely expensive, or because there is no longer a product that does the same thing so it would require massive (expensive) organizational changes.

So yeah, in a lot of cases upgrading from Windows XP is a lot more expensive than just the Windows license and the labor of the IT guy. Don't get me wrong, there's still a ton of organizations that fall into that category too, just sayin' there's more to it for a lot of organization than you seem to realize.

Re:*sigh*

More like companies know MIcrosoft gives no shit about them as a userbase any more and instead wants to lump them in with retards and children that can't use computers.

XP is the last good OS for business and people that actually know how computers work. That isn't even an opinion.

Until Microsoft realizes this, XP will outlive all the OSes released after it at this rate.
Nobody with half a brain will install Vista onwards on their machines unless forced to.

Then of course you will have the morons that will come out with "BUT XP HAS A 3.5GB MEMORY LIMIT", bullshit, it is a licensing issue that Microsoft wants you to think is an OS limitation.
They defeated the "limitation" years before XP was even OUT.
Not only that, in what reality is a bloody business program going to ever hit 3.5GB?
Not even Microsofts programs are that crap that you end up hitting 3.5GB with a reasonably large document. It is called loading what is only displayed on the screen, a technique that has been used in computing since forever and is trivial to pull off.
It won't vanish even when machines have near limitless amounts of memory, outside of terrible developers.

They should ditch the entire Vista codebase and start the fuck again because it is atrocious. Yes, even Win8.
They should make a hybrid of XP and Vista codebase, actually.
Oh, and they should fire the entire UI team. Every single one of them. It is like they hired a bunch of design drop-outs. Absolutely atrocious UI, inconsistent as high hell and downright ugly. I'd sooner use classic Windows than that crap. It isn't modern, that is like saying being urinated on your face instead of being spat on is modern.
Having only used the UI a few times it pisses me off. Having to use that heap of crap day-in day-out? Absolutely fuck no. I'd actually rather die.

Re:*sigh*

If he was as pro as he said he is, he would:
  install a damn defragger.
  lock the machines down
  scan after hours
  delete IE6 from anywhere and install a Good Browser. Or, you know, lock IE6 down.

I've had an XP machine that is 8 years old and boots in a minute. FULLY. That is to a desktop.
What the fuck do you do that causes those problems?
Seems like it is a You problem and not the OS. I never had any of those problems in the slightest. IT Pro my ass.

Re:*sigh*

Who are you telling to move on? The whole world, a lot of whom doesn't want to spend money upgrading for the sake of it?

They can also buy other stuff for $50. That isn't the end of it anyway it since any corporate upgrading may have to buy new machines to even use 4GB never mind more, new OS, training, and some stuff will break or need upgraded.

Re:*sigh*

*Bear* in mind plz. Al those naked minds on the interwebs make me uncomfortable.

Re:*sigh*

Hell, at my job, we ship machines for office work, and we don't ship a config with less than 8GB ram unless it requires Win7x32 due to old hardware interfacing (unsigned XP drivers, etc...)

Re:*sigh*

[necro81]

Please bear in mind that there are only a few things I that want to be bare in my mind.

Re:*sigh*

[necro81]

Or because they've lost the source code, or because the only person who knew the software has long since left the company, or they've tried three times since 2003 but each time was over budget and did not deliver usable code, or development has been at a standstill since they offshored the development team. Or because they don't have the budget to push out new hardware in a down economy. Or, yes, ok, because they never will.

Which is Microsoft's problem...how?

Re:*sigh*

[Luckyo]

My father still drives his 1997 Opel Vectra. It's at almost 500.000km driven without a single major fault to date and it works like a fine-tuned clock. He could afford a high end audi if he wanted to, but he finds that his Opel serves his needs better.

People like you are plentiful at his workplace. He's been telling me how recently one colleague kept nagging him about his "German Lada" and talking about his own new car and how my father should also get a new one for largely similar reasons as you list such as "world has moved on from those crappy Opels of 90s".

Two years later, colleague's new car has had one flaw discovered where it sometimes fails to start due to onboard computer problem. No technicians could find a fix that would totally remove the problem. Car works, it just occasionally bugs out and won't start for a time.

All this while, my fathers old Opel keeps on trucking. He has to drive approximately 1000km weekly to his workplace for workweek and back to my mother's for weekends, so reliable car is absolutely vital to him.

So tell me, why should he update? Because you sure as hell sound like that guy with shiny new car who has no clue with your "world has moved on" quip.

Re:*sigh*

[AmiMoJo]

You know that since XP SP2 every version of Windows has shipped with the firewall enabled, right? Long gone are the days when you could be infected simply by having an internet connection. Even Internet Explorer isn't that terrible any more, security-wise.

That's why most threats these days use social engineering attacks. The cost of finding exploits for Windows has gone up so much the criminals prefer to just trick users into running their software. No general-purpose OS is immune to that.

Re:*sigh*

Thats right! Everyone still rocking Red Hat 7.3 on their workstation, unite! 2002 OSes are so the rage!

Somehow you dont hear so much derision about the "upgrade treadmill" from Linux / Mac users. Wonder why that is, particularly if their choice OS is so perfect as to never need an upgrade.

Because upgrades are free?

Re:*sigh*

[Galilee]

The majority of PC's still running XP are found in businesses, where they are kept up to date and locked down in a domain. There isn't a need to do mass replacement of PC's like there was in the past. We're replacing XP with 7 by attrition.

Re:*sigh*

[Luckyo]

Mine runs stuff on the background too. And it still runs fine with 4GB RAM.

Something must be very much broken on your system to consume 16GB.

Re:*sigh*

[Grishnakh]

Cars and computers are different. There's two issues with computers that aren't like cars: 1) security, and 2) hardware lifespan.

With security, problems are constantly being found and fixed by the vendor. However, once a product is considered EOL (end of life), the vendor no longer bothers with supporting the product. Would you expect Ford to continue supporting cars made in the 1960s? Of course not. After a product is EOL, you're on your own. And if security is a concern, it's pretty dumb to continue using a product that's EOL for your business.

Now, suppose you think your IT infrastructure and firewalling is so great that you don't need to worry about this (ha!). This still leaves the problem of hardware lifespan. Computers don't last forever. Hard drives die, motherboard capacitors die, eventually your computer is not going to work any more. Capacitors can be replaced, but companies don't generally want to send computers to electronics technicians for this kind of repair: no one (except hobbyists) repair things at the component level any more, they just replace boards. You can't get replacement boards for older computers. Hard drives also die, and interface standards change, so you might not be able to get a new hard drive that's compatible. (Maybe you could go on Ebay, but again, no serious business is going to run their company on used parts from Ebay.) So eventually you're going to want to replace your computers with newer models, as the old ones die out. Windows XP doesn't run on newer computers; it doesn't have device driver support for them.

If you insist on making a car comparison, think of it this way: suppose your father's Opel stops working one day, and it needs some part which is no longer made. What is he going to do now? Look for a NOS part on Ebay? Try to custom-fabricate a new part? He doesn't have that problem now because his car is only 17 years old; cars usually get part support, from both the manufacturer and the aftermarket, for several decades. But what about when his car is over 50 years old? Good luck finding parts for it then. That's almost how old Windows XP is now, when you compare computer-years to car-years (sorta like human-years vs. dog-years).

Re:*sigh*

[LoRdTAW]

Or perhaps the equipment they use has software that only runs on XP and is supported by a 3rd party because the OEM is out of business and upgrading would require unacceptable downtime. No source code is available and never will be.

Talk to someone who works in industrial automation and ask them how easy it is to get a company to eat downtime in order to upgrade equipment that runs on XP. It will boil down to: "Why? Everything is working as it should." And that right there is why XP isn't going to go away. 10 years from now you will still be able to find some systems running XP.

Re:*sigh*

It's better than vista by miles and I would still choose it over 8 any day.

Re:*sigh*

[LordLimecat]

Red Hat updates are free?

News to me.

Re:*sigh*

[davidbrit2]

Not quite. Yes, Win 9x uses MS DOS as a bootloader, but once 32-bit Windows is running, it replaces all the functionality of DOS. It does a few crazy things for handling stuff like real-mode drivers, but I don't know all the technical details off the top of my head.

It doesn't have nearly the security features of NT, but 9x has some limited memory protection and preemptive multitasking. It's certainly worlds more sophisticated than the classic Mac OS all the way up through Mac OS 9, which was barely more than a loose collection of libraries tied together with a standard calling convention based on the notion of "traps". It had essentially zero memory protection or preemptive multitasking, which is why you'd usually have to reboot a Mac whenever anything went wrong. Fortunately, OS X changed all that.

Re:*sigh*

[LordLimecat]

Im assuming you have the good sense not to demand free ongoing support for those systems (particularly from the bloodless turnip that is SCO).

Re:*sigh*

[LordLimecat]

Its been explained a million times, from people pointing out how Win7 had strong ASLR before any other major OS, to the fact that Windows was NOT the first to fall in the yearly Pwn2Owns for the first 5-6 years (that would be OSX).

Ever since admin-by-default was killed and UAC was introduced in Vista, there has been very little substantial security advantage in Linux except for two things-- the better updating system (since most vulnerabilities exist in third party programs, this is a better mitigation than anything Windows has), and its relative market obscurity. If Pwn2Own has taught us anything, its that all systems have driveby exploits; its just a matter of having the right incentive (such as a free macbook if you succeed).

If your machines are bare or just depend on the built-in firewall, they are not secure.

Thats pretty arbitrary, but OK. You could argue that the "out of the box" nature of Windows makes it less secure, except that file sharing is off by default since Vista (with the network location doohicky), and either way there are a LOT of consumer-oriented Linux distros that share the same problem. I havent seen one that has the nice auto-configuring firewall that Windows has since vista, however.

Re:*sigh*

[bankman]

It's often easier to do a full save, a fresh install, and then restore whatever you need. My Linux Mint upgrades take about a day of work to get everything back to where I want it.

Dear Mint users, please stop calling it an upgrade when in fact you're doing a complete reinstall of the OS. I know that this idiocy is coming from the project's website ("In a "fresh" upgrade you use the liveCD of the new release to perform a new installation and to overwrite your existing partitions."), but that doesn't mean you have to use it outside the linuxmint forums.
It's only easier in case you don't use full disk encryption, which the installer still doesn't support. Why the project decided to write an installler from scratch I will never understand, and don't get me started on LMDE... ;-)

Re:*sigh*

Yes, free - courtesy of CentOS etc.

Re:*sigh*

[Luckyo]

Actually both match pretty well in this case. Car security becomes noticeably better. Cars become easier to drive and more resilient to accidents even if they do occur.

Hardware lifespan is also similar. You may notice that a lot of XP systems out there run hardware that is closer to double digits than zero in years. And hardware both works fine and functions in the way it needs to.

Heck, I'm typing this out while there's a machine bought in 2003 sitting next to me. It's a laptop that runs XP. It works perfectly fine except for the fact that screen hinges are broken so I have the screen lean on the wall. And that thing has been everywhere with me in my crazy university days, to the point where it's cooling system is completely borked - heat pipe is blocked and I have visibly protruding plastic from where the heat pipe is blocked on surface. It still works though!

And I have given several of my old desktops away, and as far as I know, at least two of those bought in early 2000s are still running fine. Which surprised me greatly at first, because I actually brutally overclocked one of those systems when it was in my hands and I honestly expected it to fail in about four years, especially GPU fan on it broke and I didn't notice for a few days, just wondering why my games started to occasionally crash. It's gone for over double that with no signs of problems, though it's not longer overclocked and I had to replace GFX card as it eventually got ran into the grounds a few years after the whole "gaming on overclocked GPU with broken fan" adventure. For a few years after that I had a damn 120mm case fan strapped to the card with metal wires believe it or not and it still took about six years to break down and replacement card cost me something like 30€ and that one still works.

They don't make hardware like that any more I guess, with smaller and less durable transistors. Hey, one more reason not to upgrade! =D

Re:*sigh*

[Billly+Gates]

Nope and don't care. However they are not internet enabled. XP is negligent for a user as they open attachments and go on the web and have apps that winrot the registry. Virtualization is best for those use cases.

Re:*sigh*

[MachineShedFred]

You can get a Windows 8.1 32-bit version as well. At least, it's a downloadable ISO on Microsoft's volume licensing site.

Re:*sigh*

[zugmeister]

Then why bother extending the update deadline?

If MS stops patching security holes in XP every time grandma installs malware MS gets the blame.
With an installed user base of about 25%, Microsoft was about to get a huge black eye, deserved or not.

Re:*sigh*

Almost everything you said is horse hockey, I have a fairly modern machine due to hardware upgrades (motherboard,graphics,harddrive) to the same XP OS license/install. Mostly because I'm unwilling to spend 20+ hours installing all my crap on the win7 machine sitting in the garage. Funny thing is with an SSD in the XP machine it actually boots faster (sub 15 seconds) than the win7 machine in the garage with very similar hardware.

XP would boot fast as long as you didn't install a crapload of stupid tray applications, or screw up the domain/network login sequence. Spending a few minuites every year to make sure the machine isn't loading a bunch of crap at startup will save you a few minuites everytime you boot.

I challenge you to clean install an XP on the same hardware as your win7 machine and see which one actually boots faster.

I also have >4G of RAM in the XP (32 bit) machine, and have the remainder setup as a RAM disk where the page file resides. Its very reminiscent of the old macOS in that regard, but it allows me to run >4G's of VM's with little slowdown.

Re:*sigh*

[Mdk754]

I think people misunderstand the way Linux/Windows handle memory. It seems like people have a hard time grasping that these OSes will cache data in "free" memory and not report it as free. This does not make 7 (for example) a memory hog over XP, it just makes better use of all available RAM.

That being said VMs (among other things) consume lots of RAM, so there are cases where more than 4-8GB may be necessary for a workstation/gaming PC.

Re:*sigh*

I run as a restricted user, and use "Runas" in XP. Care to explain what security improvements vista had again?

Re:*sigh*

[Grishnakh]

It works perfectly fine except for the fact that screen hinges are broken so I have the screen lean on the wall.

it's cooling system is completely borked - heat pipe is blocked and I have visibly protruding plastic from where the heat pipe is blocked on surface. It still works though!

especially GPU fan on it broke and I didn't notice for a few days, just wondering why my games started to occasionally crash

For a few years after that I had a damn 120mm case fan strapped to the card with metal wires

Yes, I'm sure lots of major corporations would love to have all their employees depending on computers set up this way.

Re:*sigh*

[smithmc]

They should've made it easier to "upgrade". AFAIK there is no way to actually upgrade - you have to back up, clean-install the OS, and reinstall everything. Who has the time?

Re:*sigh*

[mythosaz]

Basically, if it's .Net, just run it. It'll either work, or it never worked anyway.

Basically, you don't know anything about anything. Read the post three above your own for a great description of why.

Re:*sigh*

5 tabs really does eat up ~500MB RAM no matter what browser you use

6 tabs in Opera (not Chropera) right now. Barely 305 MB.

I'll fucking miss that browser. :/

Re:*sigh*

[TangoMargarine]

there has been very little substantial security advantage in Linux except for two things-- the better updating system (since most vulnerabilities exist in third party programs, this is a better mitigation than anything Windows has), and its relative market obscurity.

If you really think the only major structural difference between Windows and Linux is package managers, I have severe doubts that you know anything whatsoever about OS design.

Re:*sigh*

[mythosaz]

For .NET, I ran into this issue a few years ago... it works like this.

A .NET assembly can be fully managed or mixed mode. Fully managed = 100% IL code that is JIT compiled for the target CPU architecture when you run the program. Mixed mode = a mixture of IL code and native code. Typical example of mixed mode assembly would be one compiled in Visual C++/CLI: you can declare parts of your program to be unmanaged code, and parts of it managed. The unmanaged code is compiled to x86 or x64 assembly code like normal.

A .NET assembly also declares the CPU architecture that it is compatible with. Fully managed assembly could be specified for x86, x64, or "Any CPU". If Any CPU, the JIT compiler will compile it for whatever the target CPU is. The default settings in Visual C# is to make an "Any CPU" assembly. However, a mixed mode assembly cannot be "Any CPU" for obvious reasons because it already contains compiled code.

The problem thus arises as follows:

1. You make a mixed mode assembly - a DLL library - that is targeted for 32-bit x86 CPU.
2. You make a fully managed assembly - an EXE program - and leave it at the default of Any CPU.
3. The fully managed assembly declares a reference to the 32-bit mixed mode assembly.
4. You attempt to run the fully managed assembly on 64-bit Windows. The assembly is JIT compiled and loaded for the 64-bit CPU. However, the second you try to call any code in the 32-bit mixed mode assembly, you get an exception because the 32-bit code cannot be loaded into the 64-bit process.

The solution, of course, is to specify the fully managed EXE assembly as for x86 CPU and not Any CPU. But that is not the default. If the EXE was already compiled for Any CPU and you don't have source code, you can use a special CorFlags utility to change it after the fact.

There are other problems with Any CPU too. Like for example, the code has to not assume the pointer size is 32-bit. This is especially important when calling native code like Windows APIs. E.g. Suppose we call an API that accepts a pointer. You should declare the pointer as IntPtr, which will be the proper size. However, you might make the mistake of passing an int (always 32-bits in C#) instead of an IntPtr. Then you end up passing a 32-bit pointer to a function expecting a 64-bit pointer, and corrupt the stack if your Any CPU program got JIT compiled for 64-bits.

This has been one of the major problems, and a few of them were indeed solved with making sure that the virtual environment had ldr64.exe setwow forced into it.

The rest of them have been your usual maze of watch them run with Process Monitor on, and figure out which CLSID it can't find and what's missing from the machine.

Thanks for the VERY informed post, by the way. There's probably a dozen pages on the internet that address "recompile without anycpu," but very few that describe how to side-step the issue. [Admittedly they're easier to find now that you know what to look for.]

Re:*sigh*

[cbhacking]

Calling 9x "based on DOS" is, at best, an extreme stretch; it's arguably a flat-out lie. DOS was a 16-bit single-tasking OS where every process and driver shared a common address space and ran in ring 0 with absolutely no protections. It had minimal hardware abstraction, enabling and requiring applications to write directly to the drivers (or worse, ship their own drivers) for things like decent audio, graphics, mouse, CD-ROM, network, etc. Its filesystem was laughably primitive (FAT16 with 8.3 file names) and its shell was a joke even compared to cmd.exe.

Even Windows 95 was a substantial improvement in every single one of those areas, and aside from some backward compatibility stuff and a very small amount of pre-boot code (DOS didn't even *have* a bootloader, in the conventional sense, but 9x needed something to bootstrap the 32-bit kernel), there was nothing of DOS in 9x's code.

With that said, NT was definitely a big step up. A lot of the differences were more subtle than they'd been for the DOS-to-9x transition, though. Plenty of "consumers" ran Windows 2000 anyhow, too.

Re:*sigh*

[TangoMargarine]

What are you running in the backround, 3 4GB VMs?!

Re:*sigh*

[mythosaz]

Every IT department should have plans for keeping software and hardware current and under support, There should not be ANY one off licenses to find keys for, they should exist in a central software repository, if they aren't then your IT procurement process is a fail. literally thousands of enterprises bigger than yours have migrated to Windows 7 and are already looking to plan future migrations as 7 is getting old in the tooth now too. don't blame the complexity of this on the enterprises size, what you have there is a clear case of mismanagement.

It's nice that you work for a company with perfect software management. Most of us aren't so lucky.

In a way, I am lucky. I'm here doing what I do and getting paid what I get paid because not everyone had such foresight.

Re:*sigh*

[painandgreed]

Yeah, sure, OK, but that's why the time to start all this lengthy work was like 4 years ago, right?

Correct. And that's when they started the process most likely. First you have to find out when your vendor supplied apps will run on the new OS and if they are healthcare, you're waiting for FDA testing as part of that. That can take years and vendors can plan on upgrading every other OS as it takes too long to do every OS. Those changes will only come with a new version that includes an upgrade to the servers, so there you have millions of dollars in an upgrade project that has to be fit into the capital budget. Then you have all the departmental apps and servers to deal with. Then you can start worrying about the actual OS on the desktops which will require a refresh of the hardware too. Unless you get funding for another capital project (not likely in the past economic times) the desktop support guys are going to be limited to just upgrading computers as they fail which is probably about all they can handle as they always lack resources. All this in a business climate that doesn't want to spend money on something that isn't broken. Add in that MS is quite willing to continue with security patches as part of the site licensing deal that the business has already for years to come, and the immediacy of the issue recedes even further. It's not that they didn't start on it years ago, but rather that the upgrade process is continuous and based on other things and takes more years than that to carry out.

Re:*sigh*

[Luckyo]

Corporations just have their salaried employees replace the faulty parts. It's not hard to unglue and unscrew the old fan and glue a new one and cost is minimal - as worker is already on salary and replacement fan costs pennies.

Broken hinges on the laptop are obviously more of a problem. But most companies have a service contract with either laptop manufacturer or maintenance company where they just ship it for repairs or replacement. And as contract is usually in bulk, they get the cheapest refurbished replacement. Which often runs the same XP.

I just do the stuff I do because I don't want to spend the extra money when I can jury rig a solution that is good enough with parts I have on hand. Not being an IT support person, I don't have access to quite the same resources.

Re:*sigh*

[operagost]

He said security advantage, not "structural difference".

Re:*sigh*

[operagost]

My laptop, which IT unwisely loaded with 32-bit Windows 7, has only 2.9 GB available.

Re:*sigh*

[operagost]

So tell me, why should he update?

Because his car pollutes more than a new one? Because a new car is safer in an accident?

Re:*sigh*

[operagost]

Well, my Windows 7 laptop at work takes 10 minutes to be usable, but then it's 32-bit and probably has software problems. My personal laptop has similar specs, but runs far better.

Re:*sigh*

[TangoMargarine]

It would make more sense if the terminology was consistent. I was going to say that security updates are labelled "updates" while the new version of the distro is the "upgrade", but then I remembered that "apt-get update" actually just pulls down the package list, while "upgrade" applies the updates and "dist-upgrade" churns everything up to the new repos.

There is the vernacular usage of "upgrade" to refer to getting an entirely new machine i.e. actually a replacement...but yeah.

I tried LMDE for a bit. It was...interesting (a lot of fiddling). And then I hosed my install by aborting an apt-get upgrade. Note to self: never ever ever do that.

Re:*sigh*

[operagost]

You can't really blame Windows security for users purposely running malware that holds their personal files for ransom... unless you're an ignorant drunkard on Slashdot.

Re:*sigh*

[brunnegd]

I use XP on my work computer, Win7 at home. Both are stable, only need to reboot when MS issues their patches. My work computer is 6 years old, has plenty of memory, works well. I run Office, lots of other programs, not just e-mail and browsing. I used the MS program that advises what is necessary to move to Win7. The recommendation to uninstall programs, save My Docs to a external drive, install Win 7, reinstall or find different versions of my programs, and then import my data, then reestablish all of the settings for the programs, is dumb. Plus I find the organization of folders under Win7 to be incomprehensible, and some of the installed programs for viewing photos, for example, can't find all of my photos. Why switch?

Re:*sigh*

[Billly+Gates]

Listen wouldn't it just be easier to upgrade?

It is becoming more of a hassle to support XP on modern infrastructures and platforms. Times move on and it's not all that bad.

Speaking of change I miss my 2006 Hyundai Elantra. Divorce and it being stuck in the Alaska in the dead of winter meant I couldn't keep it as the roads leaving were glacialized for the winter. I sold it.

I couldn't find a car for the same price that was a hatchback, wide as the old, and was reliable and cheap as the same price. They were better then. But times move on.

Change happens and this change is not all bad. Change happens too if you stay with XP. Hardware dies, vulnerabilies increase, modern software and html 5, and things happen where supporting old is as bad as just taking the plunge.

I am adamant because I have to deal with IE 8 and fixing things that I wouldn't have too if cost accountants would wake up

Re:*sigh*

[mspohr]

I'm not an expert on Windows malware (and I have no need or intention to become one) but from some recent reports, it looks like most Windows malware is of the "drive-by" or "autorun" variety which requires no active user role. The next most popular category is something called "keygen" malware which seems to be some software which generates user activation keys (I don't know since this type of thing is not used in the Mac/Linux world) and this would seem to dupe the user into installing malware in return for allowing him access to his software.
Here's a good rundown I found:
http://blogs.technet.com/b/security/archive/2013/01/07/operating-system-infection-rates-the-most-common-malware-families-on-each-platform.aspx
Glad I don't live in the Windows ecosystem... looks ugly.

Re:*sigh*

[mcgrew]

No version of windows is safe from the internet.

This is a stupid meme, and it needs to die.

That statement is true, yet misleading. No version of any OS is safe from the internet if its operator is clueless enough.

Re:*sigh*

[mcgrew]

XP was never that great even when it was recent.

I've used both XP and W7 and I really see few visible improvements in W7 aside from the eye candy, and several areas where features were downgraded. For instance, the XP file manager is heads and shoulders above W7's. Neither one is really "great"; KDE is far more useable and has more features and I'm sure that holds true with Apples, too, but XP and W7 were both almost OK. Good enough that I still have XP on one of my towers (I just got a reprieve,I was going to have to either install Linux or unplug the network jack) and W7 on my notebook, although the notebook's starting to get so slow I'm about to overcome my laziness and put KDE on that, too.

Now, you take Joe Six Pack who has a seven year old XP computer, what is he going to do when his eight year old OS is no longer supported? Do you really expect him to throw away a perfectly functional piece of gear? Do you expect him to Install W8, even though there's no way in hell W8 will run on his machine? You expect him to be able to install Linux on it?

Especially when he has no clue about botnets and so forth? And probably never heard of XP's EOL? I applaud Microsoft for extending support, I've been bashing them for the sociopathic irresponsibility of stopping support so soon for the last year. They should support it until the last machine sold with XP is at least 10 years old. Hardware should not be able to outlive its software.

Re:*sigh*

[mcgrew]

Right. Because Linux / Firefox / Flash / Acrobat dont all need security updates.

The difference between Linux and Windows in this respect is that with Linux, when a vulnerability or other bug is discovered, a patch is issued as soon as possible, and a notice pops up that updates are available, so you click once and you're done and can keep on doing whatever you were doing.

With Microsoft, once you allow it to update your machine is unusable for half an hour as it downloads the updates, popping "helpful" screens along the way and preventing you from doing anything useful, then you have to close all your apps and docs, reboot, wait some more while it's shutting down to install updates, wait some more while it's rebooting to install updates even though you had to wait while shutting down, then log in again, then put up with more "helpful" screens, then you have to reopen all your apps and docs.

The difference is, Windows is a pain in the ass about it and Linux isn't.

Re:*sigh*

[satuon]

The drive-by might be the autorun.inf types which rely on a setting in Windows that any removable media that has an autorun.inf at the top directory will have it executed.

Re:*sigh*

[sexconker]

Its 2014. Time to move on. You can get 4 gigs of ram for $50. Bare in mind Windows 7 disk and ram usage is over reported as it buffers things if the kernel detects extra ram. Disk usage is inflated from SXS which means Windows keeps extra dll versions that dynamically linked. That is a feature and you can trim with disk cleanup.

XP is a security nightmare and most MBA managers do not know or calculate this. XP doesn't scale well past 2 cores and is not optimized with CPU instructions from more modern CPUs

WinSxS can fuck right on off.
Their line has always been "It's not REALLY taking that much space up, trust us!". When it's "not" taking up the reported size of 30 GB, explorer.exe still believes it is, so to the end user it is actually taking up 30 GB.

And no, you can't clean it up with cleanmgr.exe . You can only cleanup a subset of that shit that is covered by a service pack. You basically lock yourself to the versions of shit included in the service pack. Everything else you install and update over the life of the system just generates bloat, bloat, bloat. And guess what - Windows no longer has service packs. Windows 7 SP1 was the last service pack for consumer Windows operating systems.. Windows 7 SP2? Not going to happen. Windows 8 SP1? Not going to happen. "Windows 8.1" is just a regular patch that adds a Start button graphic and tweaks some of the interface shit.

Re:*sigh*

[similar_name]

It's not much of a stretch to say Win 9x was still based on DOS. Windows 95 was basically Windows 4.0 and DOS 7.0 bundled together. I'm not saying it wasn't an improvement over 3.1, but its foundation largely ran the same way. The transition from 9x to XP dropped a lot of legacy DOS support because DOS was no longer a part of windows with XP (and other NT kernel OSes).

Windows 9x is a generic term referring to a series of Microsoft Windows computer operating systems produced from 1995 to 2000, which were based on the Windows 95 kernel and its underlying foundation of MS-DOS

--emphasis mine

Windows 9x is a series of hybrid 16/32-bit operating systems.

You could even still boot straight to DOS (command not cmd) and type 'win' to start Windows just like under 3.1. If you still had 3.1 in a directory you could run 'win' from there and still go into win 3.1. Win 9x still had and used the autoexec.bat and config.sys files. Win 9x didn't protect the first meg of memory so you could still reboot the computer by opening a DOS window and writing directly to memory. And there were more websites like this back in the day.

Re:*sigh*

[Grishnakh]

Broken hinges on the laptop are obviously more of a problem. But most companies have a service contract with either laptop manufacturer or maintenance company where they just ship it for repairs or replacement.

Right, and these places only support equipment that's so old. After it gets too old and parts aren't available any more, you're out of luck. With fans or other parts for desktop ATX systems, it's pretty easy because most of that stuff is standardized and hasn't changed much in years. Laptops (which lots of companies now use as their only machines, combined with docking stations; I'm typing this now on such a setup) are a totally different matter: all the parts in them are proprietary, except the hard drives, so once a laptop is too old and you can't get parts any more, you're out of luck. They also tend to have a lot of mechanical problems after they get old: keyboard keys come off or get dirty or broken, hinges get loose or broken, casing gets broken (from dropping), etc.

Re:*sigh*

[Grishnakh]

If you want a hatchback that's reliable and good for cold climates, you probably should take a look at Suburu. They have some hatchback models, and they're AWD. They're probably not that cheap though, but that's the price of AWD.

Re:*sigh*

Bare in mind Windows 7 disk and ram usage

I agree, Windows 7 is bare in mind.

Re:*sigh*

LOL

You can get a 2 TB drive for $60. I can also say XP is a horrible bloated pig because Windows 98 only took 450 megs of space. Therefore why leave Windows 98 behind etc.

Re:*sigh*

[roc97007]

I'm explaining why many companies will not upgrade, at least certain machines, even after Microsoft stops supporting XP. If this is Microsoft's problem in any way, it's that they will not get revenue for a new copy of the OS for awhile yet. Because the old one still demonstrably works.

Re:*sigh*

[Billly+Gates]

Windows Vista introduced a proper security model. 7 was a substantial improvement, 8 was a bit cleaner and 2 steps backwards in usability, 8.1 is about on par with 7 really, with a start screen instead of a start menu.

Without getting into whether 8.1 is better than 7, anything from Vista onwards got the new security model, and THAT is a reason to upgrade.

But remember, security doesn't sell, and this thread just shows how deeply that goes. Because here on /. we spent over a DECADE mocking Windows XP and previous versions running as administrator (aka root), and the majority of users running as administor.

And then Microsoft finally fixed that, and today Windows security and reliability is a lot better as a result, but here we are on /. no less, listing to people tell us with a straight face that there is no reason for them to upgrade from XP.

Security just doesn't sell, not even here. That's sad.

If I had mod points I would give them.

XP is a hero to Slashdot due to the Vista effect. Before Vista it was reviled. It taught many of us to stay super conservative and hate change. Also the average slashdotter is in his late 30s now, where in 12 years ago when XP was new we were mostly young CS students who could adopt to change easier.

I do not mean that as an insult. But it is a fact by the time you hit 30 your brain gets used to things the creativity to try new ends. Many aged IT guys are the most anti METRO UI around. Not to say it is a good UI but it is just something they are not used too etc.

Regardless any IT professional who puts his organization in harms way because he is tooo lazy to keep up with the times deserves a different career. Sorry it is your job to be proactive and to warn management that is penny wise pound foolish to stay behind when speed and security issues can dampen productivity very fast.

Re:*sigh*

Thats right! Everyone still rocking Red Hat 7.3 on their workstation, unite! 2002 OSes are so the rage!

AFAIK we got customers running Red Hat 6. Apparently updating servers used only by in-house development with a lot of custom software on them and likely connected to a lot of custom hardware comes with the danger of breaking things. Considering that quite a few libraries love to break compatibility between versions or just ceasing to exist updating a system you don't have to update can involve quite a lot of work.

Re:*sigh*

[mythosaz]

As mentioned in my original post, both my current and last jobs were (are) in healthcare. The wheels turn slowly here.

Re:*sigh*

leaving a machine running overnight to upgrade to the new release, and having to pay $100+ for a new Windows disk, and hope all your hardware is still supported under the new version

Did that to an Ubuntu system once, turns out auto-upgrading my manually chosen UI to their 3d hardware acceleration enabled UI on a 12 year old system made it nearly un-bootable. It took me only half a day of work to reinstall XFCE (auto removed by the update) and manually restore my settings. At least Ubuntu was nice enough to tell me that my hardware was not supported after applying the changes (it was the first dialogue shown at startup and I could not even close it).

That system is now thankfully dead, but all that breakage and bloat I had to deal with on Ubuntu also killed my love for it. Debian forever!!

Re:*sigh*

[kmoser]

Until somebody finds a zero-day bug in the firewall.

Re:*sigh*

[exomondo]

If MS stops patching security holes in XP every time grandma installs malware MS gets the blame.

Why on earth would you need to worry about security holes if you have people willing to install programs with root privileges anyway? The malware has root privileges, it doesn't need security holes.

Re:*sigh*

[exomondo]

Yes, it's 2014 and I can pay and extra $50/computer, plus technician time and losses to system down time if the IT staff doesn't have a night shift to add another 4GB of RAM in order to be able to gracefully run a newer OS which will cost me another $100 (plus technician and down time). So I've paid $200 or more to upgrade an old computer to a newer OS and my return on investment is... what exactly?

Ongoing maintenance. You've had it for well over a decade with, if your OS cost you - as you stated - $100 then that's less than $10 per year per seat for OS and maintenance. That cost is peanuts to most people and barely a rounding error to any corporation. But if that's too much for you or you don't see a benefit in ongoing maintenance then stick with XP or switch to a Linux distro that offers a similar maintenance period (if you can find one).

Re:*sigh*

[exomondo]

So tell me, why should he update?

He shouldn't and if you have the same situation with a PC with Windows XP then you shouldn't upgrade that either. Of course if you want ongoing maintenance then yes you do need to upgrade to a newer version.

Re:*sigh*

[exomondo]

Car security becomes noticeably better. Cars become easier to drive and more resilient to accidents even if they do occur.

And has Opel ever sent updates out to maintain your father's car to increase its security and resilience to accidents free of charge? Because Microsoft has been doing that for Windows XP users for 13 years!

Re:*sigh*

[bankman]

I don't do that much fiddling on LMDE, but a system for which security updates are released every once in a while is completely unacceptable. They should just call it quits. And again, what is it with the installer? What is wrong with taking/forking/whatever a very good, capable and mature installer (I am talking about debian now... ;-)) and customise it to include the mint specific stuff?

Thing is, I really like the Mint desktop stuff, but the distros are so far a joke unfortunately.

Re:*sigh*

[Luckyo]

I'm not talking about caching. I'm talking about OS overhead. Which is enormous on 7. There's a reason why most games state on their minimum requirements slate: "XP - x GB ram, 7 - x+1 GB RAM"

That one extra gigabyte is needed for increased OS overhead. Not caching.

Re:*sigh*

[Luckyo]

Cool story. Let's start with coal plants and driving lessons then?

Re:*sigh*

[Luckyo]

No. I understand that when you're rich and don't give a damn about money, it will be "easier to upgrade".

Most of the world is not rich. I don't count myself as rich either. Reasonably wealthy, but not so hilarious over the top that I would burn money. Neither in the fireplace or pointless upgrades of things that work fine.

Re:*sigh*

[Luckyo]

Actually that's incorrect. What they do is refurbish stuff with spare parts that came from other returns and send it back to you if it's an expensive business grade laptop. I've seen old laptops refurbished and working just fine for pennies, instead of spending four figures replacing them. And a lot of stuff inside of a laptop is actually not proprietary, and even parts that are can usually be bought from resellers.

Re:*sigh*

Perhaps convincing Intel to write some Win7 chipset drivers for my eepc 1000hd would be a good step.

In fact just drivers in general for the 1000HD...

Re:*sigh*

[Luckyo]

He takes it in for yearly checks. If you discount the fact that these require workers on salary that needs to be paid and spare parts that need to be mined, refined and built, yes, you could call the actual support "free". He just pays for parts and worker to perform check and install.

Re:*sigh*

[PraiseBob]

If Pwn2Own has taught us anything, its that all systems have driveby exploits

This is simply not accurate. First, pwn2own has been focused on browsers, rather than the whole OS the past few years. The last time they focused on OS was in 2008. Linux was the ONLY operating system that was not cracked. http://www.engadget.com/2008/03/29/linux-becomes-only-os-to-escape-pwn-2-own-unscathed/

Second, the ONLY browser and OS combination that was not defeated in the most recent contest in 2013 was Chrome on linux-based Chrome OS. A Windows based Chrome install was defeated. The OS very clearly made a difference in security. http://www.zdnet.com/linux-triumphant-chrome-os-resists-cracking-attempts-7000012331/ $3.14 million dollars is a lot of incentive, a hell of a lot more than a free macbook.

Sorry to sound like a fanboy, since obviously no system is entirely secure. But pwn2own's very small sample set specifically shows that linux is more secure.

Re:*sigh*

[exomondo]

If you discount the fact that these require workers on salary that needs to be paid and spare parts that need to be mined, refined and built, yes, you could call the actual support "free".

Everything is free if you discount the fact that it has a cost, the software maintenance requires workers on salary that need to be paid and bandwidth and infrastructure to send out patches. So the answer is no, they haven't been out to increase the security and resilience of the vehicle for free.

Re:*sigh*

[zugmeister]

True, but my point is that regardless of the root cause, Microsoft will be blamed. It doesn't matter that the OS was insecure as released or is no longer being patched. When a naïve user is tricked into installing something bad with admin rights, all fingers will be pointed at Microsoft. While MS can't do anything about a PEBCAK problem, at least the extra year of support will postpone that fecal-matter-meets-rotary-air-impeller event.

Re:*sigh*

[roc97007]

During Y2K, many companies discovered that replacing or even fixing legacy systems is a really hard thing to do. Even when one's core business depends on a happy outcome. Compared to that, a mere lack of vendor support is a trifle. Make sure Norton is up to date and the firewall is correctly configured, and just sweat it out, would be the tendency.

Re:*sigh*

[vux984]

it looks like most Windows malware is of the "drive-by" or "autorun" variety which requires no active user role.

And it usually exploits holes in the browser, common browser plug-ins, java, (historically activex), and common desktop apps - Office, Acrobat, etc.

The payload is usually deployed and limited to the user account that it picked up. So the operating system level security is relatively effective; in the sense that PC isn't owned, just the user account that got compromised.

The next most popular category is something called "keygen" malware which seems to be some software which generates user activation keys (I don't know since this type of thing is not used in the Mac/Linux world) and this would seem to dupe the user into installing malware in return for allowing him access to his software.

keygen malware generates (or alleges to generate) working keys and to patch/defeat the copy protection in pirated software. Windows itself, MS Office, Adobe CS, Autocad, etc are the most common. No-CD cracks/patches etc for the new release games etc are another. Video playback codecs / dvd cracks, etc.

So... yeah... you are downloading and trusting software from sketchy sources to perform a sketchy activity, often running it with administrator privileges. You can't blame windows security at all for what happens with that, and its entirely predictible that some of it will contain malware.

Glad I don't live in the Windows ecosystem... looks ugly.

Its not a facet of windows, its facet of success. The number one OS attracts the most crap. Driveby malware is appearing in OSX now, as well as for ios and android. Meanwhile Trojan app store apps look to be the up-and-coming malware infection vector.

Re:*sigh*

[LordLimecat]

I was speaking about security.

Although if you wanted to go down that road, AFAIK microkernels (like NT) tend to be more secure than monolithic kernels (like Linux's).

Re:*sigh*

[LordLimecat]

It was focused on getting an exploit to run through a link, which when speaking about OS security is invariably whats really being discussed.

When people speak about how horrible Windows security is due to viruses, well, guess what: most of those viruses appeared on that computer through the browser; there had to be an exploit in either the browser or one of its loaded plugins (ie flash, or the native image handler (GDI flaw on windows)); that exploit had to get past any sandboxing, and it had to have sufficient rights to execute code.

All of that depends partially on the browser, and partially on the OS. The OS can mitigate some of those exploits with tech like :
  * no-execute bit
  * ASLR (which as I said appeared in a "strong" form first on WIndows)
  * native sandboxing

Regarding the failure to exploit ChromeOS, a few points. First, the prize tends to be "the device you owned"; chromeOS boxes tend to be a lot less valuable (retail) and less useful (to a hacker) than a MacBook or a Windows laptop. Second, ChromeOS probably is more secure than Windows or OSX, because its pretty stripped down. That doesnt speak to the kernel or to more common configurations, it just speaks to removing complexity; one could argue in all fairness that more common desktop distros are LESS secure due to poor firewall configuration compared to Windows' network awareness, or the microkernel design of the OS.

Re:*sigh*

[LordLimecat]

Correction to my other post: i did not see that they apparently changed it to a monetary reward, but it IS worth mentioning that Windows was not the first to be hacked for the first several years.

My point wasnt that OSX was less secure than windows, its that incentive / difficulty plays a HUGE role, and Windows is the most common and best understood target for exploits. That doesnt speak to architectural strenghts or weaknesses, just to popularity.

Re:*sigh*

[Luckyo]

No, I merely put them on the same starting line. It costs next to nothing to deliver the updates. It also costs next to nothing to deliver the information necessary for service to be performed on the car.

The cost is manwork of the actual maintenance. In case of companies, this is performed by IT staff which are on salary and definitely not free, regardless of MS offering support. At home, you do the maintenance yourself "for free" as you put it by enabling and accepting updates and keeping software up to date in general. Or you can pay your neighborhood nerd to do it for you.

Re:*sigh*

[LordLimecat]

is still nicely supported unlike Windows and Mac where support for old hardware just disappears.

What you're actually complaining about is the choice of kernel design. Windows does not maintain drivers in their kernel. Linux does.

Both have benefits and drawbacks, but theres a good argument to be made that microkernels are a better option. Thats just my barely-informed opinion, however.

Re:*sigh*

[exomondo]

Rubbish, I'll try to put it another way to be clearer: What security and accident resilience features were developed and delivered for free by Opel for your father's car after purchase?

Re:*sigh*

[exomondo]

It doesn't matter that the OS was insecure as released or is no longer being patched.

This is nothing to do with the security of the OS at all.

When a naïve user is tricked into installing something bad with admin rights, all fingers will be pointed at Microsoft. While MS can't do anything about a PEBCAK problem, at least the extra year of support will postpone that fecal-matter-meets-rotary-air-impeller event.

How? Whether they patch security holes makes no difference because the issue you describe is nothing to do with security holes.

Re:*sigh*

[klui]

just opened most used and largest excel workbook (~1.3MB) and excel memory usage was ~4.3M memory use and 9.1M VM size (in task manager)(winxp sp3)(excel 2003). Cannot imagine excel taking up more than 1GB except if there is a memory leak.

You need to imagine harder or don't do a lot using Excel.

I have a 100+MB spreadsheet that's connected to a database back end with pivot tables and graphs/charts. Open it up and it takes around 400MB. Imagine developing it. You would have lots of other programs/clients opened as you're integrating everything together. I very much doubt you could have developed it under XP 32-bit or you would have had to do so much finagling you would have gladly punted the machine.

Re:*sigh*

[Luckyo]

Now you're being intentionally daft.

https://en.wikipedia.org/wiki/Analogy

If you go hair-splitting looking for differences in analogies, you'll easily find them. Which is not the point.

Re:*sigh*

[exomondo]

No this is entirely the point, in the case of Windows XP the product was improved by the manufacturer over time, in the case of the Opel it was not.

Re:*sigh*

[TangoMargarine]

a system for which security updates are released every once in a while is completely unacceptable

The whole point of LMDE is that it's a (semi) rolling update system. What do you mean by "every once in awhile"? As opposed to Microsoft, where there are so many vulnerabilities they have to regularly schedule a weekly update?

What is wrong with taking/forking/whatever a very good, capable and mature installer (I am talking about debian now... ;-)) and customise it to include the mint specific stuff?

I would guess they probably *did* customize the Ubuntu installer. (Admittedly, I haven't seen *the* most recent version of the Mint installer...I think I installed the one before that, though.) Just because it doesn't look like what they modified doesn't mean it isn't the same original codebase.

Somewhere in the 2009-2011 range, I tried to install Debian. After digging around online forever trying to even *find* the right image that would give me a GUI installer, I seem to remember that it was significantly less friendly and successful than Ubuntu's (not that that was surprising). Just yesterday I went digging again...Debian's documentation organization seems a bit whack to me. More words != more clear. Just putting a link on the front page saying "click here for the x86 GUI-based install disc" is apparently too much to ask. But we have Ubuntu for that. Oh wait, they're still wanking around with Unity...and Mir...and...

Hmm.

Re:*sigh*

Run the XP mode image in Virtualbox and cut it off from the network.

Re:*sigh*

[Luckyo]

Car manufacturers offer firmware upgrades when they are needed with yearly maintenance.

Re: *sigh*

[locke.th]

Cars don't become more resilient to accidents; they become less. Cars are made cheaply with plastics now that allow the vehicle to be easily crushed...even low speed impacts can render your car a write-off these days. It's supposedly for safety reasons, but I personally would rather have a car that can stand up to impacts rather than have it crush in on me with supposed 'crumple' zones. Sorry, I know it's a bit off topic but it really bothers me that people buy into the whole 'cars are more resilient these days' bs they're being fed :P

Re: *sigh*

[Luckyo]

Then you are ignorant of basic physics. The main source of trauma in accidents is acceleration force. Car that "stands up to impact" essentially transfers that energy to those inside far more efficiently than one that gets crushed in a controlled fashion, absorbing the energy in the process.

Cars also do become more resilient to accidents happening, as various driver assist systems improve.

Re:*sigh*

[RockDoctor]

Its 2014. Time to move on. You can get 4 gigs of ram for $50.

So what?

If my office support people are still using Office 2003 (which they are, because it works sufficiently well for their letter writing and expenses spreadsheets), on a 10-year old machine, why should I go out and buy an new machine (and OS license, and Office license) for ... no purpose what so fucking ever?

Re:*sigh*

So something like cryptolocker doesn't hold your office and patient records hostage for one! Don't expect your staff to be able to read files with future versions of Office either

Re:*sigh*

[cbiltcliffe]

Current gaming builds with the latest graphics cards max out at 8 GB.

Really? I've got 2 desktop machines, one with 16 GB, and one with 32 GB. The first, I've had for over 3 years, so it's hardly "current," and the other one is about 7-8 months old.
Where are you getting a "current" machine that'll only hold 8GB?

Re:*sigh*

[cbiltcliffe]

And has Opel ever sent updates out to maintain your father's car to increase its security and resilience to accidents free of charge? Because Microsoft has been doing that for Windows XP users for 13 years!

I got warranty work done on my first car, a 1981 Chevy Malibu wagon, when it was 13 years old. I think the most amusing part was that the warranty work cost GM more than I originally paid for the car.

Re:*sigh*

[cbiltcliffe]

What are you running in the backround, 3 4GB VMs?!

Why is that so hard to believe? I have a Linux VM running on mine that backs up important stuff from a server to a 3TB hard drive in my desktop. It's got a couple of GB dedicated to that VM, plus I can leave web browsers and other stuff running, which can take a lot of memory at times, and still have enough left to play my game.

Re:*sigh*

[TangoMargarine]

Okay, that explains *one* VM. Although I don't see the reason why it needs to be a VM versus just a background process.

Admittedly web browsing habits these days chew up a lot of memory and power, and I would assume graphics-heavy games do as well.

Re:*sigh*

[exomondo]

Car manufacturers offer firmware upgrades when they are needed with yearly maintenance.

And has this happened with the Opel? The whole point of this is that they are very different things and are not analogous for the purpose of this discussion. People don't expect free updates post-purchase that increase security and stability, they do expect it for their operating system.

Re:*sigh*

[exomondo]

That's because something on it broke.

Re:*sigh*

[Luckyo]

People do expect such updates if security is compromised. See: recalls for repairs or maintenance.

Re:*sigh*

[cbiltcliffe]

Basically, if it's .Net, just run it. It'll either work, or it never worked anyway.

Bullshit. I've got a VB2005 app that I wrote, that, if compiled on Win7, works fine on Win7, but crashes on XP. If the exact same source code is compiled on XP, I'm pretty sure it didn't work on 7. This is due to differences in the way .NET versions some components between XP and 7. I had to do some weird conditional bullshit just to deal with it, so that it would work on both Windows versions, without compiling a different version on each one.
And this is just a simple little program that downloads a file from a remote webserver and unzips it, along with ensuring to delete old versions of the file, and some other security checks. Hardly a hundred lines of code, and it won't "just run."

Re:*sigh*

[exomondo]

That is if something is broken, handling a new threat is not something being broken. If your airbags don't work properly then it will be recalled for repair but they don't add airbags to a car that doesn't have them. What new features were added to the Opel by the manufacturer for free over its lifetime? None. But Microsoft added things like WPA support, Bluetooth, USB 2.0, Windows Firewall, IPv6, WPS, Peer-to-Peer Networking, etc... for free, these are features it simply did not have but were added.

Re:*sigh*

[Luckyo]

Now you've jumped topics. We were talking about SECURITY updates. Not FEATURE updates.

Re:*sigh*

[exomondo]

Now you've jumped topics. We were talking about SECURITY updates. Not FEATURE updates.

So how was the security of the Opel improved by the manufacturer? In any case the difference there is irrelevant, I already stated in the case of Windows XP the product was improved by the manufacturer over time, in the case of the Opel it was not. To which you responded Car manufacturers offer firmware upgrades when they are needed with yearly maintenance. but that response doesn't address the issue at all: what was improved?

Going back to what you said about why you tried this flawed analogy: Car security becomes noticeably better. Cars become easier to drive and more resilient to accidents even if they do occur. How has the Opel's security become noticeably better and how has it become easier to drive and more resilient to accidents? The manufacturer has not improved any of these things, unlike with Windows XP where Microsoft has improved the security and added features to make it easier to use.

Try and actually answer the questions, then you will see how wrong you are. I've bolded them to make them clearer.

Re:*sigh*

[Luckyo]

Hair splitting at its finest from you.

I'll just leave this here: https://en.wikipedia.org/wiki/Analogy

Hint: it does not have to match EXACTLY, just good enough. The only thing in the world that can be an exact match, is the exact same thing. The argument that analogy is not exactly same as subject is quite possibly the stupidest argument you could ever have.

Re:*sigh*

[exomondo]

It's not hair splitting at all, it's simply that the analogy is completely flawed, proven by the fact can't answer any of those questions. The car never had any updates provided by the manufacturer that increased its security or features whereas Windows XP did. You disproved your own analogy in the first sentence of this post and didn't even realise it.

An analogy has to have some analogous points, you stated that the reason you believed the analogy hold was "Car security becomes noticeably better. Cars become easier to drive and more resilient to accidents even if they do occur", but how is this analogous to a Windows XP PC? The car you are talking about wasn't updated by the manufacturer with noticeably better security, or features that made it easier to drive or increased its resilience in a crash. Whereas the Windows XP system was updated by the manufacturer to have better security and features that increased functionality and made it easier to use so clearly it is you who needs to read that link because you obviously don't understand the concept of an analogy.

Your inability to answer the bolded question will demonstrate to you why you don't understand the concept of an analogy.

Re:*sigh*

[Luckyo]

I guess we'll have to agree to disagree. I see your argument as a mindless assault on logic that borders between stupid and absurd. You attempted several classic debate derail tactics such as subtle shifting of subject. You attempted to argue that analogy should be exact or it is a false analogy. You attempted to argue that denying some minutiae of analogy will nulligy the entire analogy, regardless of main point of analogy being correct.

And you made a point to avoid the actual point of analogy - that old computers and old cars that serve their purpose are perfectly fine now, and will likely be perfectly fine five years from now - like a plague.

All in all, you behaved fully like a bought and paid for microsoft astroturfer, spreading fear, uncertainty and doubt as to argue that upgrade is mandatory and should happen sooner rather than later. And it's well known that when one's income is tied to denying facts in their face, it's almost impossible to convince them to face the facts.

Re:*sigh*

[exomondo]

Answer the question:
What parts are analogous? It's a simple question and if you understand what an analogy is you will be able to answer it, but you failed to do it several times already and you will fail again.

And you made a point to avoid the actual point of analogy - that old computers and old cars that serve their purpose are perfectly fine now, and will likely be perfectly fine five years from now

The obvious reason old Windows XP computers are fine now is because they have been constantly updated, where the car has not. If Windows XP had not been updated it would not be anywhere near suitable these days.

All in all, you behaved fully like a bought and paid for microsoft astroturfer, spreading fear, uncertainty and doubt as to argue that upgrade is mandatory and should happen sooner rather than later. And it's well known that when one's income is tied to denying facts in their face, it's almost impossible to convince them to face the facts.

Wrong again, I never said you should upgrade, not once, much less to another Microsoft OS, so it is clear that you aren't even comprehending the posts and are projecting your failings. The fact is that a Windows XP computer should not be upgraded to a later version of Windows because in most cases it won't be powerful enough since Windows is not written to be particularly efficient, such hardware should be upgraded to a suitable Linux distribution that offers long term support.

So answer the question and stop your rubbish conjecture, you just look stupider and stupider with every post. What parts are analogous?

Re:*sigh*

[Luckyo]

Question you ask in the bold is clearly answered in the post you posted the previous message as an answer. In its own paragraph no less.

You're just obviously trolling now.

Re:*sigh*

[tepples]

You expect him to be able to install Linux on it?

Yes, because the piece of gear is still "perfectly functional". It's just operating in a different, more malware-filled environment than what Microsoft had anticipated in 2001 when developing Windows XP. It's not really that hard to install Xubuntu.

Re:*sigh*

[exomondo]

Question you ask in the bold is clearly answered in the post you posted the previous message as an answer. In its own paragraph no less.

But it's wrong, very obviously wrong. You can continue to maintain your car as long as you want, you cannot maintain Windows XP and Microsoft is not going to maintain Windows XP. What part of that is so hard for you to understand?

Re:*sigh*

[Luckyo]

It's obviously correct. I can maintain XP just fine. I have maintained XP just fine for years with no updates. Reading the god damn thread you're answering to helps. Since you are utterly incapable of this feat, I think I'm done trying to write stuff in hopes that you would read it. You obviously either don't bother, or are incapable of it.

So yes, YOU should upgrade whenever microsoft tells you to. Always.

And those of us capable of connecting words and forming sentences that they are then able to comprehend will stick to things that actually work, instead of what we're told is the newest awesome, and that the strong smell of manure coming from it should be ignored. Good luck.

Re:*sigh*

[exomondo]

I can maintain XP just fine. I have maintained XP just fine for years with no updates.

How exactly? Are you running a stock Windows XP from 2001 with no updates at all? Updates are somehow pointless? It's retards like you who are the reason there is so much malware and so many viruses out there because you don't know the first thing about maintaining a system, leaving it unpatched is completely stupid.

So yes, YOU should upgrade whenever microsoft tells you to. Always.

Wrong, you should upgrade when your OS goes out of support. Or, if you're the sort of person who would rather maintain it yourself, you wouldn't be such a complete mental defective as to have chosen an operating system like Windows that you cannot maintain, you would choose a Linux distribution that is free and open.

Re:*sigh*

[Luckyo]

Read the thread. It's all in here. I'm done regurgitating the same points that you will not read anyway.

Re:*sigh*

[exomondo]

Read the thread. It's all in here.

Actually it isn't, we all know the reason malware continues on any platform is because of people that think they know what they are doing but really don't. Even if you aren't installing new software that you've downloaded from unsavory sources your unpatched OS is vulnerable to a variety of drive-by malware, you may think you can "maintain" Windows XP just by defragging and other user tasks but that is not OS maintenance, which is your problem, you don't actually know what maintenance is. The answer for Windows XP-era hardware is to upgrade to a maintained Linux distribution and you can even keep a Windows XP VM if it is absolutely necessary for a particular application.

I'm done regurgitating the same points that you will not read anyway.

No you're not, you keep saying that but you keep posting.

Re:*sigh*

[mcgrew]

Yes, I agree that every distro of Linux I've tried was incredibly easy to install (and every version of Windows a PITA), but my point is that Joe is ignorant. You can't install something you've never heard of, and Joe's never heard of Linux or has a clue what an "operating system" or a "botnet" is. If he's heard of Linux he probably sees it as "some kind of hacker thing, my buddy reset my XP admin password for me with it."

Re:*sigh*

[zugmeister]

This is nothing to do with the security of the OS at all.

That was my point. That's why I lead that sentence with the words "It doesn't matter". Please reread the post you replied to starting with "regardless of the root cause, Microsoft will be blamed." This is not about the OS, this is about MS (the company) catching flack for end-user caused problems.

How? Whether they patch security holes makes no difference because the issue you describe is nothing to do with security holes.

You are right, this has nothing to do with the OS (again). The point I was trying to make is that if MS drops security support, every single finger will point at MS as the bad guy as a result of their actions. At this point there's still a chance the end user could wind up with some of the blame. Putting this off another year while XP share drops could be an excellent PR decision from MS's point of view.

Re:*sigh*

[tepples]

Then try an analogy: "Xubuntu is to Windows as Pepsi is to Coke. It's the choice of the GNU generation."

Re:*sigh*

[exomondo]

I get your point but I doubt grandma who is installing malware is going to be aware of operating system patches anyway whether they happen or not.

Re:*sigh*

[cbiltcliffe]

Something breaks on a 13 year old car, and it gets fixed under warranty? Really?
What auto manufacturer, anywhere, worldwide, at any price point, offers a warranty that long?

Hint: None of them.

It was a safety defect that was found, and remedied, free of charge. Which, incidentally, " increased its security and resilience to accidents." For free. On my 13 year old car.

Re:*sigh*

[cbiltcliffe]

Okay, that explains *one* VM. Although I don't see the reason why it needs to be a VM versus just a background process.

Because if I decide to move that backup machine to a different piece of hardware, it means copying a folder of files, and moving a single drive. Were it a background process, I'd need to do a bunch of configuring and testing on the new machine to get things working and verified. VMs are easy. Background processes aren't, necessarily.

Re:*sigh*

[exomondo]

What auto manufacturer, anywhere, worldwide, at any price point, offers a warranty that long?

Hint: None of them.

Then why did you say you got warranty work done on your car when it was 13 years old? Was it under warranty or wasn't it? Why can't you keep it straight?

In any case what you bought was defective so that's why they fixed it, Windows XP will not be supported/maintained past April 2014 at which point it will still be less than 13 years old. So what you have is a nice anecdote but doesn't really relate to this situation at all.

Re:*sigh*

[bankman]

"Every once in a while" as in every other month. I have seen no security updates whatsoever in between the update packages.

If they really customised the Ubuntu installer, did they have to rip out essential functionality?

Debian is apparently not for you and Ubuntu is crap, no doubt.

Re:*sigh*

[TangoMargarine]

Presumably the LMDE guys only release a big blob update every month or two for integration reasons or whatnot, but yes, I'd agree that that''s unacceptable considering how often the normal Mint updates trickle in. Back when I tried LMDE (a few years ago), the updates seemed to be on the same schedule as the normal branch.

I wouldn't call Ubuntu crap, but they have made several big decisions that I'm not happy with (search tracking, Unity (admittedly use Xubuntu), Mir).

Re:*sigh*

[mcgrew]

I don't know, Pepsi and Coke are almost the same, especially from a fountain. I'd say it's the difference between a Pinto and a... excuse me, this win7 notebook wants me to restart it to apply patches... a Pinto and a Lincoln Continental.

Windows is the Pinto. I haven't tried Xubuntu, but Mandriva and kubuntu both have all the features of Windows while Windows lacks features, but Windows does have annoying traits (like having to reboot to apply patches) that Linux doesn't.

Re:*sigh*

[zugmeister]

Nope! Not a clue! However, her grandson / tech (called over because the computer "stopped working") may well be inclined to bitch in a public forum about it. Now do they lambast granny for being the target of a social engineering attack (and who is possibly a paying customer) or do they complain about how evil MS is for halting security updates on a really, really old OS?
I don't see this as having anything to do with hapless end users, techs, or Windows XP. This is about MS being trapped between two bad alternatives. Kill support and leave some users hanging or continue support at $0 profit. I think they need to do this or risk reinforcing their image as the maker of an insecure OS.

Re:*sigh*

[bankman]

"Every month or two" is a myth. Update Pack 6 is LMDE 201303, Update Pack 7 was released in September and we haven't seen an update since.

Ubuntu became crap, ok, ish ;-), IMHO for making a couple of very unfortunate decisions, you mention some of them. I ran it on a number of systems for years, now I have to fiddle a little more since I am back on Debian. In the end, choice is good.

Re:*sigh*

[TangoMargarine]

I wonder what the heck the LMDE guys are up to, then...unless these update packs are a rollup of the regular patch updates, this would mean that their claims of LMDE being a "rolling distro" are pretty much demonstrably false.

Oh great...

Now I look like an asshole for telling my boss that he ABSOLUTELY HAD to upgrade everything because even Microsoft was killing security updates.

Re:Oh great...

[Chompjil]

I told my school to do this too, at least they're on chrome OS now

Re:Oh great...

They are killing them. another 15 months is at best a short amnesty. It is also only for the scanning software, not for the OS.

Re:Oh great...

[Jagungal]

This only refers to updates to their AV and Anti Malware products, the OS update will still stop on that date.

It is a good excuse to get Management that might have been dragging their tails up update to something more modern.

Re:Oh great...

More fool them, what a peice of shit

Re:Oh great...

[roc97007]

Another 15 months is another 15 months.

Re:Oh great...

[bloodhawk]

So your schools IT people finally realised they are being locked into a vendor that is only interested in their money. So the solution, Lets go and get locked into another vendor that wants our information so they can sell it. So many choices were available to them and instead of choosing not to be beaten by sticks they choose a different colour stick.

Re:Oh great...

[DrKludge]

Uhm, the *ARE* killing security updates for the *OS*.

MS is continuing to support (make) updates for the their security software that runs on Windows XP.

http://blogs.technet.com/b/mmpc/archive/2014/01/15/microsoft-antimalware-support-for-windows-xp.aspx

So, it turns out you don't look like an ass.

Were you using Forefront or Security Essentials?

Re:Oh great...

[Culture20]

You're still good. This is for updates for security products for XP, not security updates for XP. XP will not get new patches, and existing holes might get exploited, but maybe the updated MS security essentials will warn you. /sarcasm

Re:Oh great...

[zerofoo]

Or they deployed Chromebooks for the reasons we did:

1. Low hardware cost - our Samsungs cost $249 each.
2. Enough web based software to do the job (google apps plus 3rd party apps are VERY good in an education environment).
3. Central data storage that doesn't require lots of backup hardware and software or server hardware.
4. Great management tools for deploying policies and apps.
5. The big one - FREE after the initial hardware purchase - WITH SUPPORT.

Show me another ecosystem that offers this much for so little cost.

If Google is beating us with a stick, I'll take it any day of the week over the Microsoft/Apple stuff we were running.

Re:Oh great...

Name one thing that businesses need from Windows 7 or 8.

The problem, from M$'s point of view, is that XP is too good. Since they can't come up with any _good_ reason for people to upgrade, they have to rely on force.

And while I don't think M$ should be forced to continue maintaining an OS indefinitely, I do think desktop OS evolution has slowed dramatically in the past 10 or 15 years.

The silver lining here, as I see it, is that this means Free Software operating systems can now catch up and compete on a feature by feature basis with proprietary software.

Re:Oh great...

[viperidaenz]

They are killing security updates for Windows XP in April.
They are going to continue to provide updates to Microsoft Security Essentials and the other corporate security software until next year.

Re:Oh great...

any Linux distribution comes with web based software to do the job. central data storage is a negative not a positive with desktops, especially when it is something that can be as sensitive as childrens data. great management tools exist for all platforms, even windows. support is really the only one there that is the positive that isn't matched, but hey sometimes not being raped means you have to protect yourself a little.

Re:Oh great...

[bobbied]

If Google is beating us with a stick, I'll take it any day of the week over the Microsoft/Apple stuff we were running.

Here here! Go with Chromebooks.

Microsoft/Apple are a bunch of money grabbing shakedown artists. Have you seen what it costs to buy licenses for their stuff?

I don't begrudge software vendors a profit on their creations, but shesh, you are going to spend north of $1K to get hardware, OS, Office (with outlook) on a managed network for just ONE seat. THEN, the way things work, you won't get support and you will have to re-up the software every year. Enough for me thanks! I'll take my beatings from Google too.

Re:Oh great...

[melstav]

Dude. Some shit ain't going to get upgraded no matter how many times you taze that dead horse.

Hell, I've still got SunOS 4.0 in production.

Re:Oh great...

[LinuxIsGarbage]

Dude. Some shit ain't going to get upgraded no matter how many times you taze that dead horse.

Hell, I've still got SunOS 4.0 in production.

We still have PDP-11's in service. We though we had a solution with an emulator that will run on Windows XP.

Now we are working to upgrade the host OS to Windows 7 which brings along a whole 'nother round of headaches.

Re:Oh great...

you are going to spend north of $1K to get hardware, OS, Office (with outlook) on a managed network for just ONE seat. THEN, the way things work, you won't get support and you will have to re-up the software every year.

no, no you arent. nobody for which chromebooks are a viable replacement would be doing that. in fact you would have to be a mental defective of the highest order to be doing that.

please, please explain to me who is doing that. surely somebody that stupid doesnt exist.

Re:Oh great...

Security. Windows Vista, 7, 8, and 8.1 all offer better security than XP.

Performance. Windows Vista, 7, 8 and 8.1 have better support for SATA controllers and SSDs than XP.

Modern hardware support. Eventually those 5+ year old PCs die and you have to buy new stuff.

IE > 8. See security.

Bitlocker encryption.

This is just a start. There are many reasons to upgrade past 2002 technology. XP fan boys should be shot at this point.

Re:Oh great...

3. Central data storage that doesn't require lots of backup hardware and software or server hardware.

Which has less storage than a first gen ipod from over a decade ago, of course you can get more storage but then you have to pay google a monthly fee for that.

For $130 more (and thats *without* education pricing) you can get a Dell laptop that actually has a decent amount of storage and while it is able to utilize the google services you mention it isnt limited to them like a chromebook is.

Re:Oh great...

[mspohr]

Yes, Virginia, there are people who are that stupid.
There are drones working in large dinosaur organizations who are spending $1K per seat for Windows and Office when they would be better off with Chrome OS.

Re:Oh great...

[Gavagai80]

As sensitive as children's data? Are nefarious organizations placing bounties of millions to entice hackers to steal little Suzy's math homework?

Re:Oh great...

if you *need* to spend $1k on a windows + office system then a chromebook will not fulfill your needs, what exactly is this $1000 being used to buy?

Re:Oh great...

...and suddenly you *require* every student having a google account and giveing them their data - an account you have NOI control over, i.e. googlew can delete it anytime they want. including a week before finals.

GREAT idea for a school.

Re:Oh great...

wow. over a period of three years (the timeframe most companies lease computers and new Office products are released from Microsoft) that's a dollar a day.

If you work at a company that thinks a dollar a day for essential working utils is too much for what you're doing you're either a slave worker or (more likely) in the wrong company.

Re:Oh great...

[Billly+Gates]

Laugh all you want but in a mere 4 years it will be time to hit the trendmill again to get rid of Windows 7. Can you believe that!!

So what to do?

Chromebooks and tablets with keyboards and mice can run your ancient win16 crap in a VM inside a browser or as a VMware app on your device. VIOLA! No more IT departments. No more headaches. My guess is within 5 years you will see cloud based active directory too. Just plug the device in with your outlook.com corporate email address and work. DONE.

Chromebooks come with Citrix if I recall to run your old apps. At least that is what Google is selling to corporate buyers.

In 5 years this will hit everyone and if Windows 9 and Windows 10 turn out to be cloud and metro based suckfests this might be a viable move.

Re:Oh great...

[bobbied]

In 5 years this will hit everyone and if Windows 9 and Windows 10 turn out to be cloud and metro based suckfests this might be a viable move.

Metro has to go... That interface SUCKS on a desktop and may be one of the top reasons the PC is dying. Where I get the reasons they did it, I really HATE (did I mention I really dislike) metro. It's horrible and the windows 8.1 update didn't help. And just in case I didn't make it clear, I completely and totally dislike metro on a desktop. Like green eggs and ham, "Metro makes me sick sick sick, and I do not like it, not one little bit." IMHO...

Re:Oh great...

SSD support is clearly a useful feature, I'll give you that. Though I wonder how hard it would be to add that to XP.

As for security, are you referring to UAC? I, for one, have no problems with security on XP, though I don't tend to visit shady websites & don't randomly open every .exe I'm sent. I imagine the advice on how to avoid malware is the same for Vista/7/8 as it is for XP.

I'm not an XP fanboy, but I'm familiar with it and, for day to day work, it is completely adequate. Given the choice I would continue using it until my computer fails.

familiar

Like Duke Nuke'm Forever, except opposite.

Re:familiar

Like Duke Nuke'm Forever, except opposite.

Yeah, while reading the summary, I was thinking: "Like Google's eternal Beta, except opposite".

Zombie

[dos1]

I knew that my preparations for a zombie apocalypse will someday finally pay off!

Final Update to XP

I want to see Microsoft issue one last update to every version of IE available on XP that replaces all of their cryptic as fuck SSL errors so instead of saying "the site you are trying to go to is broken" they say "The site you are trying to go to requires a higher level of security than is available on windows XP". Hell, throw a store link in there so they can go buy windows 9 or whatever and upgrade their security, damned if I care.

Until then, it is single-handedly holding back TLS 1.x (>0) and SNI adoption. I can't turn it on on my server or half my customers will call to blame me for my server being "down".

Re:Final Update to XP

Until then, it is single-handedly holding back TLS 1.x (>0) and SNI adoption. I can't turn it on on my server or half my customers will call to blame me for my server being "down".

Ummm, no.

You can definitely turn on TLS 1.1 & 1.2 right now for your more advanced web browsers. Provided that TLS 1.0 is still available, IE on XP will work perfectly (well, as good as it ever did).

For SNI, you can enable it, but you can't rely on it since IE on XP will show SSL errors. However, there are many, many other devices out there aside from IE on XP that don't support SNI.

Re:Final Update to XP

[TaliesinWI]

For SNI, you can enable it, but you can't rely on it since IE on XP will show SSL errors. However, there are many, many other devices out there aside from IE on XP that don't support SNI.

Most of which are pretty deprecated at this point. Android Honeycomb came out in late 2011, Windows Mobile 6.5 in late 2009, iPhone 4 in mid 2010. All of those (and anything later) are SNI capable. It's pretty much been the "IE on XP" crowd that's holding back adoption, everyone else would be in the 1% "other" category of most web sites.

Re:Final Update to XP

[petermgreen]

However, there are many, many other devices out there aside from IE on XP that don't support SNI.

Afaict the only significant browsers that don't support SNI are the default browser on old versions of andriod and internet explorer on windows XP.

Yeah i'm sure there are lots of browsers built into things like games consoles, smart TVs etc that don't support it but those browsers tend to be shitty enough in other ways that people don't use them much.

Pffft....... Thanks, Oba-

[thatshortkid]

Oh.

Re:Pffft....... Thanks, Oba-

No sir! XP was released under Bush's rule (let's ignore whose administration was in when XP was started).

Re:Pffft....... Thanks, Oba-

What about BenghazXP?

Re:Pffft....... Thanks, Oba-

[ChunderDownunder]

The Ruskies were hoping that Putin would fund ReactOS development but there's been no new release in the past 6 months, so I guess it's a little premature to welcome our new Kremlin overlords...

Re:Pffft....... Thanks, Oba-

Damn commies! ...

We're still calling them that, right?

OS Updates?

The announcement only refers to antimalware updates, not OS updates. So, you still need to move off of XP in April.

https://blogs.technet.com/b/mmpc/archive/2014/01/15/microsoft-antimalware-support-for-windows-xp.aspx?Redirected=true

This (announcement) does not affect the end-of-support date of Windows XP, or the supportability of Windows XP for other Microsoft products, which deliver and apply those signatures.

Dear Microsoft,

[Irate+Engineer]

We really liked Windows XP. Windows 7 is OK too, but please stop churning your OS versions for planned obsolescence and give us what we really want: a stable, updated, secure OS that will last as long as our hardware.

We would be pleased to consider a reasonable subscription fee for such updates as it would afford us significant peace of mind and stability.

Signed,

Many Customers

Re:Dear Microsoft,

[epyT-R]

Dear Microsoft Customer,

We know that you like Windows XP. We like it too, and Windows 7 is alright. OS churn bothers us as well, but the last thing the rest of us want is software as a service that turns our computers into cable boxes.

Signed,

Many Smart Customers

Re:Dear Microsoft,

Dear Customer,

We'd happily honor your request if not for the tiny issue that we want your money.

Therefore, keep buying The Product, and most importantly stay computer-illiterate

Regards,
Microsoft

Re:Dear Microsoft,

Dear Ford,

Please continue making parts for my Model T. Newer Ford's are OK too, but please stop churning out new models for planned obsolescence and give us what we really want. A car that isn't burdened with things like fuel injectors, stater motors and disc brakes.

Signed,

Many Customers

Re:Dear Microsoft,

but please stop churning your OS versions for planned obsolescence and give us what we really want: a stable, updated, secure OS that will last as long as our hardware.

WTF? I'm no MS apologist. I've never owned a Windows computer but I fix the fucking things every day. That being said ...

"planned obsolescence"? It's been over a decade and they've updated & supported it. They are not taking it out pf your hands, it's just that they have had enough of XP and I don't blame them.

My clients still have a mix of XP and Win 7. They don't want to give up XP and I'm not going to force them (some boxes shipped with '98 and are still running strong on XP).

You can't fault MS for pulling the plug on XP. They aren't forcing you to switch to 7, 8, Linux or OS X. You can still use XP but they don't want to hear about it any more.

Re:Dear Microsoft,

How many pieces of hardware on your current XP machine are older than 12 years?

Re:Dear Microsoft,

[Lodlaiden]

How many pieces of hardware on your current XP machine are older than 12 years?

The case and the IDE cable. Everything else has been upgraded along the way. I have 8 gigs of memory, only have access to 3 gigs and I am fine with that because I understand the limitations of the operating system.

I'll get around to upgrading to Windows 7 soonish as I'm not touching 8/8.1.

Re:Dear Microsoft,

[ixidor]

im pretty sure that is n reference to 8, 8.1, and 9 all released within a few years of each other.

Re:Dear Microsoft,

[roc97007]

Dear Ford,

Please continue making parts for my Model T. Newer Ford's are OK too, but please stop churning out new models for planned obsolescence and give us what we really want. A car that isn't burdened with things like fuel injectors, stater motors and disc brakes.

Signed,

Many Customers

Dear Ford,

Please continue making parts for my Model T. Newer Ford's are OK too, but please stop churning out new models for planned obsolescence and give us what we really want. A car that isn't burdened with things like fuel injectors, stater motors and disc brakes.

Signed,

Many Customers

Ooooh. A car analogy.

The problem is, in this case we're talking the manufacturer wanting you to trade in not your model T built in 1927 but your F150 built in 2001 for one built in 2012. When your 2001 model still does a swell job of transporting bales of hay.

Re:Dear Microsoft,

[bobbied]

All of them except the hard drive, which I replaced 10 years ago when I rand out of space.

It's a laptop, there isn't any upgrading it. Oh, the battery and the charger, but none of those have anything to do with XP.

Yes, I'm cheap, but if it works for what I want it to do, why spend money to upgrade when I have to pay for the kid's college?

Re:Dear Microsoft,

[LordLimecat]

Dear Microsoft,
Please shutter the part of your company that makes money, and provide us updates and support as a charitable donation for the life of my computer.

Signed,
Irate Engineer
FTFY

Re:Dear Microsoft,

[LordLimecat]

Except that OSes dont have near that long of a lifespan.

2001 was Linux kernel 2.4 2000 was 2.2. Both have long since been EOL'd If you want to look at a full OS, I think Red Hat Linux 7.2 would be right about the same age as XP; it was EOL'd in December 31, 2003 (source).

Microsoft has gone way beyond what any other OS vendor has ever done, excepting perhaps IBM with some of their ancient AIX boxes.

Re:Dear Microsoft,

[0123456]

It's been over a decade and they've updated & supported it.

That's odd. I didn't buy my netbook with XP installed 'over a decade' ago.

That's still working perfectly fine after three years, yet if I hadn't wiped XP and installed Linux a couple of years ago it would now be obsolete solely because Microsoft say so.

And you wonder why users are pissed off?

Re:Dear Microsoft,

[0123456]

Microsoft has gone way beyond what any other OS vendor has ever done, excepting perhaps IBM with some of their ancient AIX boxes.

No-one cares when Microsoft started selling XP. They care about when Microsoft STOPPED selling XP, which was only a few years ago. There are a ton of XP machines only three or four years old that work fine and are deliberately being made obsolete just so Microsoft can make money.

On the plus side, at least some of those forced to upgrade will dump Windows completely and go for a different operating system.

Re:Dear Microsoft,

[roc97007]

> Except that OSes dont have near that long of a lifespan.

Thank you! Except, for what OSes do, there's an early steep end of the development curve, where you can't help but upgrade often, and there's a later, flat end of said curve, where upgrading is not as important, (just as there was for cars) and for Windows on a PC people are slowly recognizing that we are now on the flat end of the curve. There just isn't much reason for significant changes in the OS, for the kinds of things that most people do.

The reason to upgrade is monetary, not technical. It's what a large part of Microsoft's profits are based on.

Re:Dear Microsoft,

Good point. It always amazes me when I think about how long they've provided free updates for XP. I can't think of anything else like it. Some products are sold on a subscription basis, some on an expensive support contract, and some with no support/updates available at all. But what other (commercial) software product can you think of where you get free updates for over TEN YEARS? And that for something that originally cost $100 or so. It's quite amazing.

Oh, and before anybody accuses me of being a Microsoft fanboi, let me confess that I'm not just that, I'm also an MSFT stockholder. From the stockholder angle, though, I don't think they should do this sort of thing forever. Perhaps the best thing for their customers, in terms of a sustainable business model, would be to continue support indefinitely but just start charging for it. Of course, folks here would call them evil moneygrubbers if they tried that, but then again, everything they do gets that sort of response here...

(Posting as AC for obvious reasons. Down-mod this if you must, but I'm merely expressing my point of view.)

Re:Dear Microsoft,

It's not fair to compare the Linux kernel with any proprietary project. They will never stand a chance.

At least let Microsoft implement the security features that the UNIX/BSD team thought of in the 80's and earlier before you start comparing them.

Re:Dear Microsoft,

[Billly+Gates]

We really liked Windows XP. Windows 7 is OK too, but please stop churning your OS versions for planned obsolescence and give us what we really want: a stable, updated, secure OS that will last as long as our hardware.

We would be pleased to consider a reasonable subscription fee for such updates as it would afford us significant peace of mind and stability.

Signed,

Many Customers

That subscription and update is called Windows 7.

The reason it is not compatible is the same reason Java is not. They do not have the same security and many poorly written apps require local admin or use a particular bug like an IE 6 rendering glitch to position elements, or rely on non recommending practices.

I remember when the same happened with the introduction of XP/Windows 2000 with these apps with peaks and pokes from DOS still in them not running. I survived just fine and it was a big deal after the upgrade to what we had which lasted so long and cut down support costs on a momentous scale!

If you want to keep getting hacked and have 5 minute startups due to windows rot in your registry and security deficiencies that is your problem. 5 minutes a day for everyone in the office for a whole damn year adds up! Windows 7 is a fine OS improvement and every client who upgrades tell me malware infections have been cut in half and pc's no longer need to be re-imaged every year because they stay fast longer.

Trust me like the move to Windows 2000 which was tough it was roses compared to the daily crashes wasn't it? It is time to move on.

Re:Dear Microsoft,

[Billly+Gates]

The 1927 car anology is fairly accurate.The model T while it can run at least close to highway speeds unlike the earlier cars it lacks safety features.

XP is old and missing many things security related that a modern OS has. I have another post to yours which I won't bore you. But how much money does a company waste having computers at Tuesday not work for 5 hours due to McCrappy doing a scan. YES I HAVE SEEN THIS! Or waiting 7 to 10 minutes each bootup before the computer is happy and fully loaded for all 4,000 employees in your office?! Or infections and re-imaging? Have you seen the cryptolocker virus stories on here and in Arstechnica? Yikes.

If you work in IT you are negligent if you are not upgrading or your boss is if he wont pay for it. Virtualization can make your IE 6 nightmare shitwareERP app go away and make it future proof as you can load it with a modern web browser or your IPAD. This means if the pc dies (hypothetical future based on Windows 9 being metro and rent to own) you can still run your poorly written apps forever.

I think a 2001 to 2012 analogy might equal more to a Windows 8 to 8.1. Besides electronic gizmos there is really no difference. Windows 7 really is not a bad OS. For Windows it is the best one made hands down.

Re:Dear Microsoft,

Dear allegedly smart Microsoft customers *cough*,

How smart can you really be?

Re:Dear Microsoft,

[fisted]

Except that commercial software doesn't have near that long of a lifespan.

FTFY. Now get of my lawn.
Except stuff like device drivers, my OS is essentially the same it was 20 years ago.

Care to name actual reasons for why you would want/have to change your OS every other year?

Re:Dear Microsoft,

Another way to look at it would be that they sold you an OS, for which you paid money. Updates fix bugs in that OS, so in some sense they absolutely should be sending them out free of charge - after all, they're problems in the original OS that they sold you.

Obligatory car analogy: You buy a car today, and in 5 years time unleaded petrol changes in composition very slightly. They find that this tickles a problem with the fuel tank which means your car could just randomly explode. I'd expect a recall/retro-fit fix to come along for this - wouldn't you?

I understand the problems with what I'm saying here, and FWIW, MS have gone a lot further than they might have done when Billy was in charge. However, they all got rich off us, and so it's not too much to ask that they look after us in our "twilight years".

All that said, if MS decided to shutter their money making divisions, I'd be okay with that ;-)

Re:Dear Microsoft,

[Merk42]

Yet if they had STOPPED selling XP years prior people like you would complain they killed it too soon
Microsoft is damned if they do, damned if they don't.

Re:Dear Microsoft,

[Merk42]

9 is too early to say, but 8->8.1 is a completely free upgrade.

Re:Dear Microsoft,

[LordLimecat]

Your OS 20 years ago didnt have protected memory, ASLR, or a journaling filesystem, to name a few big ones.

Re:Dear Microsoft,

[LordLimecat]

Car warranties are generally 3-5 years. XP is now 13 years old.

Find me a car on the market with gratis lifetime warranty / support, and we'll talk. Generally new cars with computer systems are lucky if they get a years worth of updates for said computer.

Re:Dear Microsoft,

[Kjella]

No-one cares when Microsoft started selling XP. They care about when Microsoft STOPPED selling XP, which was only a few years ago. There are a ton of XP machines only three or four years old that work fine and are deliberately being made obsolete just so Microsoft can make money.

Well, if they stopped selling XP back in 2007 and told everyone to STFU and switch to Vista we'd be screaming bloody murder about that so damned if you do and damned if you don't. All their support lifecycle clocks start running from when they release the N+1 product (and N+2 for extended support), now that Windows 8 is out the countdown towards Windows 7 EOL is ticking even though they still allow you to buy a Windows 7 machine. Mainstream support ends January 13, 2015 and extended support January 14, 2020. It's not like this is a bloody secret, the policy has been published and the dates set long ago. In short, if you bought XP after April 14, 2009 you know (or should have known anyway) that you were buying an OS already in the extended support phase. Why is ignorance an excuse in the tech world?

Re:Dear Microsoft,

[fisted]

Your OS 20 years ago didnt have protected memory

Perhaps /yours/ didn't.

, ASLR, or a journaling filesystem, to name a few big ones.

Those are 'a few big ones' of what? Big reasons that you need a 'new OS'? Dammit you're making me facepalm.

Re:Dear Microsoft,

[SuiteSisterMary]

Are you using this OS, twenty years old, with the device drivers backported?

Re:Dear Microsoft,

Its not about warranty is about repair. Your going to find a lot of cars from 2001 on the road today. You will even periodically find manufactures doing recalls on cars that old because there are safety defects.

Plus, I doubt you can find a mechanic that refuses to work on a 2001 car....

The problem is the idiots in the computer industry that think "I'm just going to release this garbage now, and charge someone to get it replaced next year with everything fixed" Then in a year proceed to release more garbage. Its one thing to actually "fix" problems but i'm here to tell your windows 8 seems to have more "problems" than XP does.

The other problem is that /. is acting surprised when someone is using a 3 or 4 year old technical product (cause XP was still on sale fairly recently). There are few industries that you can get away with claiming your product only has a 3 or 4 year lifespan. And as computers become more integral in other products (cash registers, heavy equipment, cars, etc) the expectation that the computer portions last as long as the rest will be there.

Re:Dear Microsoft,

[TangoMargarine]

To be fair, 2.4 had a life of 10 years, just not 11 as in the GP.

Re:Dear Microsoft,

[roc97007]

> If you work in IT you are negligent if you are not upgrading or your boss is if he wont pay for it.

This is glib and perhaps accurate, but the sad fact is, many bosses can't or won't pay for it. They pay their annual subscription fee for Norton, have a backup strategy in place, have plans in place to reimage any infected machine, and hope for the best. What I'm trying to explain is this: The biggest argument for doing this (sticking with XP) is that it still runs the apps the users need. It's a strong argument, with upper management. Sysadmins can suggest but when it comes down to it, we don't make policy.

Re:Dear Microsoft,

[Billly+Gates]

No-one cares when Microsoft started selling XP. They care about when Microsoft STOPPED selling XP, which was only a few years ago. There are a ton of XP machines only three or four years old that work fine and are deliberately being made obsolete just so Microsoft can make money.

Well, if they stopped selling XP back in 2007 and told everyone to STFU and switch to Vista we'd be screaming bloody murder about that so damned if you do and damned if you don't. All their support lifecycle clocks start running from when they release the N+1 product (and N+2 for extended support), now that Windows 8 is out the countdown towards Windows 7 EOL is ticking even though they still allow you to buy a Windows 7 machine. Mainstream support ends January 13, 2015 and extended support January 14, 2020. It's not like this is a bloody secret, the policy has been published and the dates set long ago. In short, if you bought XP after April 14, 2009 you know (or should have known anyway) that you were buying an OS already in the extended support phase. Why is ignorance an excuse in the tech world?

Excuse!

I can give you one. Windows 8 sucks and with Vista every corp had a right to not even look at Windows 7 until 2011 when SP1 came out. Now comes to all the intranet apps that required IE 6,7, and 8 some which are sold right now which wont work after IE 8. This is why it took until 2013 to get rid of XP. It would be more foolish to just go Win 7 full on in 2009 as nothing was certified for it. It was a hobbyist and home OS with future potential.

Yes we are going to have a fit in just 4 years if you expect us to throw that out.

More than likely if MS is not careful clouds, virtualization, and BYOD will make switching to tablets a better alternative. 5 years ago we still were talking about netbooks and look what happened in that time frame with tablets? In another 5 years we will have ARM processes as fast as our icore3s today detachable screens that go 34 inches with 4k support, Citrix and VMware apps that can remotely access your ancient windows 7 apps on a cloud somewhere.

MS will be done except for a few workstation users. I think Windows 7 could be the very last business OS and the end of an era and yes we would like extended support for it because MS screwed up. Not us. If IE was not proprietary and Vista was not so bad we would have jumped to Windows 7 back in 2010.

Re:Dear Microsoft,

[fisted]

I said 'essentially', and my point is that technically there is no reason to replace your OS with something completely 'new' (read: functinally equivalent yet looking differently) every other year.

Re:Dear Microsoft,

[LordLimecat]

If you dont like their products (vista) dont buy them.

Just dont demand free support for an ancient, EOL'd product and expect anyone to take you seriously, or think you can get away with claiming that Microsoft has provided poor support for XP.

Re:Dear Microsoft,

[LordLimecat]

Then hire a consultant if you want support. Microsoft isnt preventing you from doing that.

Youre talking about free updates, which is the analogue to car warranties where the car manufacturer provides fixes without charge.

cause XP was still on sale fairly recently)

I can probably go out and download Red Hat 7.3, too. Id just be an idiot to expect anyone to be updating RPMs for it, especially the vendor, especially for free. Theres also the whole point that Microsoft TRIED to stop selling XP when Vista released, but there was huge demand for them to keep selling it. What you paid for, however, was a product with a fixed EOL date, and that did not change. If you bought XP, you knew what the EOL date is; if you didnt like it, you shouldnt have bought it.

Never mind that you werent actually buying XP licenses-- you were buying Vista / 7 Pro licenses with downgrade rights, so when XP finally goes off of support you still can legally get support by upgrading to Vista / 7 with that license you bought 3 years ago. They just threw in rights to run an older OS at no extra charge; no guarantee of extended support was made.

Re:Dear Microsoft,

[cbiltcliffe]

Car warranties are generally 3-5 years. XP is now 13 years old.

Find me a car on the market with gratis lifetime warranty / support, and we'll talk. Generally new cars with computer systems are lucky if they get a years worth of updates for said computer.

I got warranty work done on my first car when it was 13 years old. Completely free, as it was paid for by the manufacturer.

Yes. You read that correctly.

Stupid! Stupid!

[Nethemas+the+Great]

How do you (Microsoft) expect to get people off of that d*mn OS if you keep patching security holes. That was the one lever that might just have been able to do it and now you've gone an f**ked that up. To make matters worse, your piecemeal security patching (MSE, etc.) but not the OS proper will give these holdouts the false impression that their systems are secure when nothing could be further from the truth. Windows 9 won't move them off any more than Windows 8 was able to. All you're doing is hanging yet another neon sign pointing to the ragged, fetid and diseased hole of the malware whore these XP boxes have become.

Re:Stupid! Stupid!

[bloodhawk]

They AREN'T patching the OS, they are providing malware updates only. At best it is a bandaid for anyone dumb enough to still be reliant on such an ancient OS with no support and still using it for web access. It may reduce the damage some of these people do to the rest of us by at least alerting them that they are being dumb.

Re:Stupid! Stupid!

[epyT-R]

Are you aware that current versions of windows are not much better off? Most of the attack vectors come from browser holes and bad user choices. No OS will save you from that. Windows Vista/7/8 are not magic fix-alls. If you are 'that' concerned about security and you need windows software, disconnect the machine from the net, at which point it doesn't matter what OS you use.

Re:Stupid! Stupid!

[0123456]

So, uh, why should 'dumb' people have to replace the operating system on a perfectly good PC just because Microsoft say so?

Re:Stupid! Stupid!

[roc97007]

So, wait. What, aside from age, exactly is wrong with XP? It loads programs just fine, even today.

Re:Stupid! Stupid!

[bloodhawk]

they don't have to. But they should also realise the price of that is it should not be used in any sort of internet connected way when no more security patches are coming.

Re:Stupid! Stupid!

[armanox]

It's stuck in the 32bit world? Doesn't handle SMP or HT nicely? Loss of software support? Old driver models? Microsoft is tired of supporting it?

Or, I could ask the same questions about RHEL 5, IRIX 6.5, and Solaris 9.

Re:Stupid! Stupid!

[Lodlaiden]

they don't have to. But they should also realise the price of that is it should not be used in any sort of internet connected way when no more security patches are coming.

Given all the patches, you'd think after 10 years they might have fixed the [important] leaks.

Re:Stupid! Stupid!

It's stuck in the 32bit world?

No. Windows XP was the first 64-bit version of Windows.

Windows XP Professional x64 Edition

Re:Stupid! Stupid!

[ixidor]

soon, after april, any updates that come out for 7, vista, 8, etc,, will be scrutinized to see if same hole will work against xp. which will not be patch, and never will be ( barring a few gov exemptions)

Re:Stupid! Stupid!

[Nethemas+the+Great]

From Microsoft's perspective, everything. From my perspective as chief of engineering whose user base expects the world of modern computing but can't be bothered to migrate off XP a lot. Supporting legacy systems while delivering modern software is a huge headache. Putting new on old often requires adaptation and in many cases limits the tools available to you. If you want a car analogy it's a bit like adapting a hand crank starter to a push button ignition switch.

Re:Stupid! Stupid!

[roc97007]

We still have servers running RHEL 5. An add-on for a software package would only run on 5.X.

Re:Stupid! Stupid!

[roc97007]

...but that's an artificial reason. I didn't ask what date Microsoft wants to force you to pony up for an unnecessary OS upgrade. I asked, what, aside from age, exactly is wrong with XP?

Re:Stupid! Stupid!

[armanox]

Did you ever run the x64 edition? It was a nightmare!

Re:Stupid! Stupid!

[Nethemas+the+Great]

My frustration doesn't (yet) come from the security angle, but rather having to provide modern software solutions that are compatible with that antiquated pile. I would argue though that at least in the business context (which is really the only environment that counts for Microsoft anyway) where ever user is not an admin user, Windows 7/8 are in many ways far more secure than XP. This is especially true for PEBKAC where Microsoft has made it far easier to neuter the user. With this piecemeal patching of MSE and such but not the OS itself the difference between XP and 7/8 security will rapidly and steadily be distanced.

Re:Stupid! Stupid!

I'm running it right now, and it works perfectly. If you think it's a nightmare, you need to wake up.

Re:Stupid! Stupid!

[whoever57]

We still have servers running RHEL 5. An add-on for a software package would only run on 5.X.

And your point is? RHEL is still (just) in "Production 2" (still getting updates for new hardware). Production 3 (security updates, but no hardware updates) doesn't end until 2017 and the Extended life stage doesn't end until 2020.

Re:Stupid! Stupid!

[roc97007]

Previous responder had said they could "ask the same question about RHEL 5". You're actually reinforcing my point.

Re:Stupid! Stupid!

the only secure computer is one that is turned off. new techniques and ways to exploit code is being discovered all the time. Even if it was on the market for another decade it still wouldn't be 100% secure, the same goes for any OS.

Re:Stupid! Stupid!

It's stuck in the 32bit world?

Current versions of a lot of our observatory software are stuck in the 32 bit world, e.g. ASCOM, TheSkyX, MaxIm DL not to mention several others. Sure they run under Win7 but there's no real performance improvement and they're quite stable under XP. Do you have a citation for poor handling of SMP/HT on XP?

Re:Stupid! Stupid!

So, wait. What, aside from age, exactly is wrong with XP?

Top of my list: No WDDM

Re:Stupid! Stupid!

[Billly+Gates]

Kernel level sandboxing, ASLR, dep for all services, no direct local admin without uac token, drivers that don't bsod easily, volume shadow copy restore points, smp > 2 cpu's, easy recovery from video driver crashes, homegroup with printer and media sharing over WiFi, trim command for ssd, ahci for command queing in page disk requests, a sane paging algorithm that doesn't thrash and destroy hard disks, USB 3 and thundebolt support, are just a few off my head.The security is the HUGE selling point for business. It is 2014 now.

Also with it being 2014 we have mature virtualization for those must have IE 6 apps. Citrix, hyperV, and VMware can take care of it all even on an IPAD.

Re:Stupid! Stupid!

He just fucking told you, you stupid ass.

It's not going to be supported anymore, which is gasp the companies prerogative. Don't like it? pony up enough cash for them to roll special updates just for you... too expensive, too fucking bad!

Re:Stupid! Stupid!

[nightsky30]

I wonder if people are crazy enough and stubborn enough to try and pirate those special "pay for" updates? LOL, that would be the perfect vector for an unsavory individual who wanted to exploit those future vulnerabilities you mentioned and the unfortunately stubborn XP'er would be trying to patch.

Re:Stupid! Stupid!

Nooo! I demand people work forever patching something for me for free, a bloo bloo bloo.

Re:Stupid! Stupid!

[roc97007]

These are good points, but (supporting home users as one of my jobs) I don't see a lot of people who know what a homegroup is, or use SSDs, or any kind of virtualization or indeed any of the other things you mention. They poke Outlook Express, IE and maybe Candy Crush. That's it. And given that, they don't see any particular advantage in upgrading the OS.

And although technically I agree with you that security *should* be a huge selling point for business, in actual fact there is still a large XP presence in business. Hell, there's a significant Windows 98 presence in business, especially in embedded systems. Business doesn't seem to care, in my experience. If they care at all, it's that hardware is on a replacement cycle, and this may be an excuse to adopt a more recent OS, if the training requirements are not too strenuous. (Which is one of the reasons Win8 is often a non-starter.)

Re:Stupid! Stupid!

[cbhacking]

Security:
No ASLR. Total pain in the ass to run as a non-Admin. No mandatory integrity controls (everything runs with the permissions of the user that started it, even if it *should* be less trusted). Extremely weak, trivially brute-force-able password hashes. Only one-way firewall with minimal configuration ability. No client certificates for Remote Desktop. Outdated cryptographic provider that doesn't support modern cipher suites or key sizes. No full-volume encryption (BitLocker). No PatchGuard. Code written before the Windows-org-wide security push that so delayed (but improved) Vista.

Stability:
Video drivers still run entirely in kernel mode. In fact, relatively little user-mode driver support at all. No support for file system transactions (journaling, yes, but only per-file) so canceled/interrupted operations could leave things in an inconsistent state. Driver installation usually required a reboot. System Restore function was a complete joke, as was backup. Doesn't install recovery tools to hard disk, and the XP recovery software is very primitive and impotent.

Performance:
No automatic defragmentation. No pre-caching of commonly used programs or files. No TRIM command for SSDs. No support for more than 4GB of memory (in practice, less, due to drivers reserving some of it). No support for more than two CPUs/cores. Archaic memory management algorithms that aggressively page things out of RAM so that task switching to anything not used for a while is very slow even if there's RAM to spare. No RAM page combining.

Productivity:
No instant search. No live previews of running programs when switching between them (very handy when you've got a bunch of different Word documents or something open). No snapping windows to half the screen with a quick gesture. An extremely primitive wireless networking connection interface. No "Previous Versions" (volume shadow copies for restoring deleted or modified files). No per-application volume control. Longer bootup and hibernation times for equivalent hardware.

Interoperability / Other:
Tacked-on (and incomplete) IPv6 support. No 64-bit. No USB3 support. No support for roaming profiles unless domain joined (no Microsoft account sign-in). No support for booting from or mounting VHDs. No support for booting from removable storage. No support for mounting ISOs. Poor support for loading drivers from Windows Update.

Do you really need more? I could keep going for a while...

Re:Stupid! Stupid!

[roc97007]

I think the problem is we're talking about different things. You seem to be scared to death that Microsoft is going to "stop supporting" XP. I'm saying that there are many, many people out there who just don't care, as long as it keeps doing what it does, and as IT professionals, we need to be able to deal with that without getting hysterical. The day after support ends, XP will still boot, and it'll still run programs, and for some people, for whatever reason, that's enough.

As I said in other threads, even today I see the Windows 98 splash screen on some business systems on boot. (98 SE was fairly stable, if you didn't ask too much of it.) And support for that ended in 2006. And you bet I've mentioned this, but the answer is always that it's still working, (which is hard to argue against) and there's no budget for replacement. But security risk? It's an insurance issue. Press this point and endanger your contract.

Re:Stupid! Stupid!

[roc97007]

Nooo! I demand people work forever patching something for me for free, a bloo bloo bloo.

Still missing the point. What I'm telling you is that there are a significant number of people out there who don't care about that. In fact, I have customers who have turned off updates and absolutely refuse my requests to install them manually, usually because sometime in the past they've had a server bricked by an update. Users have a different viewpoint from us.

Re:Stupid! Stupid!

[roc97007]

Ok. So how many of these things are of concern, not to developers or OS junkies, but end users with currently stable environments, who are running two or three applications that still run fine on XP?

Internet Explorer

Please, please, please make IE10 for XP Microsoft.

Re: Internet Explorer

No joke! I was giddy to hear that the last 10% of ie8 clients would die off. Damn you people! Just download chrome or Firefox already.

Signed,
A frustrated web dev.

Re:Internet Explorer

[Badooleoo]

And a service pack 4.

Re:Internet Explorer

[TangoMargarine]

I thought they *had* done a rollup of all the security fixes and called it SP4? But I can't seem to find evidence of this. Hmm...

Re:Internet Explorer

[Nethead]

An SP 2 for Windows 7 sure would be nice about now.

Comment removed

[account_deleted]

Comment removed based on user account deletion

Windows XP or security products?

[sqrt(2)]

In case some people don't RTFA,

In other words, while Windows XP will no longer be a supported operating system come April, companies will be at least partially protected (the actual OS still won’t get security updates) until next July.

Emphasis mine. XP updates ARE ending, but MSE/Forefront will still get updated. XP will still be susceptible to any zero day until it gets detected by MSE--if it's even installed at all. This is a marginal increase in safety for XP post-EOL, at best. The apocalypse is still nigh.

My advice for fellow ITAs. Don't mention this to your boss at all if you're still trying to migrate. It's not really relevant to the threat posed by XP's end of support. If they get wind of it on their own, emphasize that XP itself is still going to be wide open. At best all MSE does is let you know you've been owned after the fact once MS gets around to updating the definitions. MSE already has a pretty poor record for detecting even older threats. It's better than nothing but you shouldn't be relying on it.

Re:Windows XP or security products?

[Lodlaiden]

In case some people don't RTFA,

...XP will still be susceptible to any zero day...

How can it be a zero day bug if it has been 4,527 days since XP was released.

Re:Windows XP or security products?

[NJRoadfan]

It should be noted that 7/14/2015 is the end of extended support date for Windows Server 2003. MSE isn't any better than the popular commercial AV/endpoint products. The malware usually steamrollers over installed AV software anyway. It is quite comical reading support forums of major AV vendors. There are tons of paying customers complaining the latest malware threat wasn't stopped or detected at all by their products.

Re:Windows XP or security products?

What businsess decision maker in their right mind is using MSE exclusively as a threat mitigation?

Re:Windows XP or security products?

[TangoMargarine]

Because you don't know the definition of a zero-day attack?

Re:Windows XP or security products?

Because you don't know the definition of a zero-day attack?

from the article you referenced:

A zero-day (or zero-hour or day zero) attack or threat is an attack that exploits a previously unknown vulnerability in a computer application, one that developers have had no time to address and patch

10+ years seems like an awfully long time to have to address a bug that can bring the system to it's knees.

Re:Windows XP or security products?

[TangoMargarine]

They haven't had time to address and patch it because the team wasn't aware of it. Hence, when the vulnerability is found is considered the "zeroeth day."

Zero-day attacks occur during the vulnerability window that exists in the time between when vulnerability is first exploited and when software developers start to develop and publish a counter to that threat.

I'm not a fan of the term either (as most vulnerabilities will end up being "zero-day" anyway so we never stop hearing it), but unless the specific vulnerability was known 10 years ago and they've been purposely ignoring it all this time, it's not a zero-day.

No, this is smart. This is to keep the customers.

The idea that people won't ever move off is absurd. They will. Problem is, if they do so this year a good number are going to OS X, Ubuntu, Chromebooks, etc. Then those new Mac/Linux/Googlized people will begin experimenting with alternatives to Microsoft Office as well. Fuck.

If Microsoft can have those people wait for Windows 9 and Windows 9 is an improvement of any sort, they stand a better chance of keeping the customers. That's all this is.

Too bad for hackers

[hcs_$reboot]

Hackers have to wait another year before showing their talent..
On a more serious note, it seems Microsoft, as often, didn't think through the process: halting XP security support in the blink of an eye would open a non closing door to security threats highly harmful to the company image. They gave XP another year, probably to build new update plans from XP to 7 / 8 (...) that would allow more/most companies to migrate in the meantime.

Re:Too bad for hackers

[asmkm22]

Did you actually read what they said, or did you just assume and jump into your post? OS updates are still ending in April.

Re:Too bad for hackers

[hcs_$reboot]

We're talking about security updates, ie updates of security products.

Re:No, this is smart. This is to keep the customer

[roc97007]

> Problem is, if they do so this year a good number are going to OS X, Ubuntu, Chromebooks, etc rather than deal with Win8.

FIFY

WE WANT SERVICEPACK 4

... nuff said

They just don't make 'em like the used to ...

[DrKludge]

When I was a kid, we had a washing machine and dryer that lasted 20+ years. Used daily. Occasionally needed the repairman out.

In fairness, software by comparison is more like paint and a room should be repainted at least every 10 years. If you use oil paint it will last longer than latex. Latex is friendlier to the environment.

For computers that are still running windows, it is time to repaint.

Re:They just don't make 'em like the used to ...

Washing machines have one very specific function. An OS is a backend infrastructure for a nearly infinite different functions. Your analogy is very flawed.

Just KILL XP, already

Time to make people move on to something else,whether 7 or 8 or Apple or Android, whatever. XP has been around twice as long as it should have. When 7 came out, XP should have been killed-off. Period.

holy fucking nut balls

[slashmydots]

I did not see this coming. I'm CIO and for the last 2 years I've warned the bosses about the problem @ about 95% XP and so far in those 2 years we've replaced negative 2. We added 2 seats and replaced zero lol. Every 100 days (the pattern I developed) they kicked it to the next period. Time to spend the $20 we do have in the IT budget to get a cake tomorrow and I'll announce it to the bosses!
But seriously, our shared and internet surfer and PoS computers are just fine with a socket 775 HT Pentium chip and 2GB of RAM. Why pull them just for XP?

Re:holy fucking nut balls

[Billly+Gates]

Time to sign a resignation letter.

You are going to be fired for not keeping things secure when production stops for 1 month as you start after April the migration from zCrypto locker which will keep running around the clock as no patch will be made after you clean each node. As a cost center you will get shafted anyway so might as well do it on your terms rather than the company president.

Idiots. Sorry man but you're screwed and another job is in order. It is not fair to you that a lack of planning on your bosses part causes an emergency on your part.

Re:holy fucking nut balls

Time to sign a resignation letter.

You are going to be fired for not keeping things secure when production stops for 1 month as you start after April the migration from zCrypto locker which will keep running around the clock as no patch will be made after you clean each node. As a cost center you will get shafted anyway so might as well do it on your terms rather than the company president.

Idiots. Sorry man but you're screwed and another job is in order. It is not fair to you that a lack of planning on your bosses part causes an emergency on your part.

Hahaha... yeah, I thought the same thing - my last job when I first started they kept asking me to come up with a disaster recovery (DR) plan. My first comment back was "how much are you willing to spend" - the answer was, of course, "nothing really", and my response was to laugh (they didn't like that) and say "well then, my DR plan is to have a resignation letter typed up for when the disaster happens... so that I'm not around to deal with the 2nd disaster that follows the first". Interestingly, they kept asking me for a 'plan' almost yearly for like 5 years before it suddenly became a 'priority' and they were willing to spend anything (which really wasn't much, we could split dev/QA and prod between datacenters, so QA became prod in DR - really a wash money wise, but needed planning they weren't willing to even consider before).

Server 2003

I knew this was going to happen because Server 2003 was planned to receive extended support until July 14, 2015 and Server 2003 (NT 5.2) is the server edition of Windows XP (NT 5.1).

You're Welcome.

So...

It has come to this.

Wine

Would migrating to Wine be an option for you XP-fetishists?

Re: Wine

[TheReaperD]

One half of the reason businesses use Windows is Outlook, which can't be ported. Even by Microsoft. The other half is Excel which isn't half as bad to port but no one's been willing to spend the $$$ to do it. All this leaves three options, leave these pacifier applications (which is hard to do for anyone), spend the money to upgrade (which if they haven't done already, they're not going to do until they have a gun to their head), or stick their fingers in their ears and go la-la-la until they see the gun. Now, if they're like my parents and don't use the internet, than they can use it until the hardware dies and there's no issue. But, if they're using IE 6 for in house web apps like a lot of these companies, than the gun is going to go off sooner than they think and they deserve anything they get because of it.

XP is still being used in many places

[hambone142]

Take a look at the PC screens at Home Depot (Windows XP). Fry's Electronics (heck, they sell the new stuff... they're using XP on the store's floor). My dentist office (XP). It goes on. What other big hitters that I've missed? http://redmondmag.com/articles/2013/09/23/xp-still-in-use-by-28-percent.aspx indicates 28.98% are still using XP.

Re:No, this is smart. This is to keep the customer

[techno-vampire]

I have a friend in his mid-70s who just adores XP. He's not planning on upgrading after MS stops supporting it because he's sure that third-parties will continue to create and distribute patches for all the new security holes that will be showing up. Never mind the fact that there aren't any such third-parties and that if they were, they wouldn't have access to the source code. I haven't told him this, because we're friends, and I don't want to offend him by telling him things he doesn't want to hear, but IMAO he's acting like an ostrich. Just because he's not willing to admit that there are almost certainly zero-day exploits just waiting for support to end doesn't mean that he's going to get hammered when we all find out what the black hats have been sitting on.

Why is this news?

[w_dragon]

If McAfee announced that they would continue supplying virus definitions to their antivirus running on XP would that make the front page of slashdot? Because that's all MS announced here. I very much doubt it takes them much extra effort to port virus definitions to a previous version of MSE.

Competition will Support XP

[ScottCooperDotNet]

Other Anti-Virus vendors like Symantec, McAfee, and Kaspersky are going to continue to support XP past April, so why should Microsoft concede market share to these competitors?

Also, Microsoft is going to look pretty bad if a new virus makes a major impact, so having their security product database updates continue will mitigate that. Doing otherwise could easily be spun as irresponsible.

Re:No, this is smart. This is to keep the customer

[Luckyo]

Actually he's correct and you're the one with no clue. Modern attack vectors are not the OS holes - they are browser holes, email software holes, PDF reader holes and so on. In fact, essentially all OS holes that can be exploited directly without third party are secured by a solid third party firewall.

All these will continue to be updated. In fact, as long as your friend runs solid 3rd party firewall software, he'll cruise for years after microsoft kills support, simply because he'll keep infection vectors closed. OS can have all the vulnerabilities it wants, as long as all the vectors to hit them are closed, you're safe. And that's where that 3rd party support is far, far more important than microsoft's support will ever be.

Bob

[pcwhalen]

I heard Goldman Sachs still runs Bob on 3/4s of its PCs.

http://toastytech.com/guis/bob.html

Re:No, this is smart. This is to keep the customer

[Lawrence_Bird]

"Problem is, if they do so this year a good number are going to OS X, Ubuntu, Chromebooks, etc. " Complete BS. People moving to OS X? Really? Show me the numbers. OS X (and prior Apple OS) have been stuck in the same share of market for decades. The peak at 15% floor at 5% and generally dick around 8%. As to Chromebooks - the NPD "study" is based on a relatively small sample of US distributors. It is not a sales number in any way. And I would love to see those Ubuntu sales figures.

Outside of business - where the issues have been well documented by others on this page - ordinary end users who are still using XP are doing so because they have no desire to upgrade their hardware. That might mean they love XP, their pc/notebook does what they want or simply they do not have the money for a new one. And anyone still using XP after all this time certainly has some loyalty to Microsoft.

Re:No, this is smart. This is to keep the customer

Also, imagine the PR hit MS would get if 28% of the world's computers were zombies.

Re:No, this is smart. This is to keep the customer

That's fucking joke.

Security Updates != Patch

Unfortunately, only the M$ Security systems receive updates and NOT the OS itself.
Good luck using MSE or FF, a vast majority of infections have been tested to break these relatively easily on a cold day.
This is just a ploy to extend the life of an easier to maintain product that actually generates income by regular subscription (FF that is). Be damned to anyone else, esp those freeloaders.

Re:No updates for the OS itself

[msobkow]

Given the shitty reputation Microsoft "security" services have for protecting a system compared to other products in the same marketspace, this is hardly a reason for keeping an XP box around. What did the last tests reported on Slashdot mention for Security Essentials? 70% detection rate?

In other words they're going to continue delivering a shitty product that doesn't actually do the job properly as a "band aid" for those who adamantly refuse to get rid of XP as they should.

Re:No, this is smart. This is to keep the customer

[WaffleMonster]

Actually he's correct and you're the one with no clue. Modern attack vectors are not the OS holes - they are browser holes, email software holes, PDF reader holes and so on. In fact, essentially all OS holes that can be exploited directly without third party are secured by a solid third party firewall.

I've noticed a number of GDI and Font type patches drop over the last years... these can get thru firewalls and exploit OS specific issues from any number of browsers or document rendering technology. Coupled with a few privilege escalation vulns of which there are infinite numbers and the result is you can still get owned pretty quickly hiding behind your firewalls.

Are...

... you.. fucking... kidding... me..... KILL IT WITH FIRE, I'm tired of supporting it :(

Re:No, this is smart. This is to keep the customer

[exomondo]

Yeah i'm sure all those people who were confused by the lack of a start menu while retaining existing application compatibility are going to be real happy with another OS that also doesn't have a start menu and discards existing application compatibility.

Re:No, this is smart. This is to keep the customer

They're all of the above. As long as the underlying remains vulnerable, especially due to poor handling of the built-in CIFS file sharing and native authentication, the hosts will remain vulnerable to 10 year old scripts passed around by script kiddies not even born when XP was published.

Re:No, this is smart. This is to keep the customer

You can't have it both ways Jack. You can't say that Windows 8 was a great fuck up, as the vast majority of /. insists, and then say people aren't buying alternatives when their machines inevitably fail. Oh, fuck it, go ahead. You can be Ballmer if you want. You can claim that it's a matter of love. They love their Microsoft OS from early last decade so much they aren't even for the briefest moment considering anything else. Good luck with that. That fast approaching light isn't a locomotive, there is no light. Darkness has the marketshare!

People are indeed going for alternatives like OS X, various Linux distributions or Chrome OS, which itself is of course derived from Linux. You can see this by not depending on Wikipedia articles about the existing base, but rather looking at sales figures over the last three years. After all, that's what we're talking about here. We're not talking about who sold the most a decade ago. Shit, we're not even talking about four years ago. We're talking about what people are likely to buy now.

Recent articles show that on the whole over 2013 Apple saw an increase in Mac sales while the overall desktop/laptop market shrunk. Don't believe me? Fine. One, I must wonder how then you explain Microsoft's move here and two, even if that weren't the case, it's all moot to the topic at hand because people are dropping Windows in droves. While those few staying in the traditional computing world are switching to alternatives like Chrome OS, the vast majority of the so called "end users" making the exodus from Windows are switching to TABLETS; the vast majority of tablets run either Android (Linux-derivative) or iOS.

I firmly believe that an improved desktop/laptop experience can slow this. The traditional computer has still so much more to offer than tablets and recent changes to Windows has done more to hide this rather than highlight it. However, this doesn't change the fact that for a great many, tablets offer enough. (It's a like a landline phone for your grandpa.)

As for your "they don't have the money" comment: that's the real BS. Windows XP has been out since 2001. Vista came out in 2006. So people have had roughly 8 to 13 years to plan out the purchase of a new computer. They can't have expected it to last forever. A new low end laptop today is $250 to $300 depending on where/when. As for their peripherals a new printer without any bells and whistles will set you back $30, the whole printer-wireless-scanner combo is $60. So we're looking at $280 to $360 spread over 8 to 13 years.

Oh fuck it, people are broke ass dumbasses who love Windows XP and will buy more Windows machines when they have more $$$. Oh and it must be Obama's fault that they don't have the $$$.

Re:No, this is smart. This is to keep the customer

[roc97007]

Although I'm not particularly a Mac fan, obligatory xkcd.

In other words, for some significant subset of the people still using XP who aren't doing it merely because of compatibility with old software, perhaps a browser and a few other basic resources would be enough.

Re:No, this is smart. This is to keep the customer

[0123456]

Windows XP has been out since 2001. Vista came out in 2006. So people have had roughly 8 to 13 years to plan out the purchase of a new computer. They can't have expected it to last forever.

Which part of 'people were still buying new PCs with XP installed only three or four years ago' is proving so hard for people like you to understand? Why should they have to buy a new PC today after only getting three to four years' use out of the old one?

Re:No, this is smart. This is to keep the customer

[Billly+Gates]

That's odd I could have sweated I had 4 updates today and 3 were security related

Re:No, this is smart. This is to keep the customer

The biggest security hole I have ever seen is the user. I once asked "what did the error say?" The answer: "I'm not sure, I just clicked through it." Old quote from anoyances.org: "If it weren't for users computers would never have errors."

Re:No updates for the OS itself

[Billly+Gates]

Try 25%! It is just a hair above the scanner ms defender

Error: Expected EOL

[VortexCortex]

Just great. There were only 82.7739742361111 days left, and now I'll have to update my XP End of Life Bookmarklette.

Re:Error: Expected EOL

Join the other retards in the corner. XP EOL *has* *not* *changed*.

You can't even read and comprehend the *title* let alone the summary or article.

Re:Error: Expected EOL

So much precision O_o

Re:No, this is smart. This is to keep the customer

[exomondo]

So how is it that having to deal with Win8 would be any different to switching to OSX or Ubuntu or a Chromebook?

Re: Get Citrix or VMWare ESX

[Billly+Gates]

First off you are describing a very high level enterprise problem and the good news is that in 2014 we not only have a better desktop OS we have advanced virtualization that can run from a web browser.

With Citrix Receiver you set it up once and forget. Even the CEO with his Apple iPAD can log in and run IE 6 just fine and you save money. Save it because you do not have to upgrade those intranet apps which I guess are now tied to IE 8. ... in a very short time in 4 years it will be time to dump Windows 7. Then what? Start all over again?! Hell no. As long as the IE 6 app requires no internet access it can run unsupported in a VM forever.

This my friend is a much better approach then configuring per client and is future proof and runs on non PC's.

Can you tell me in a straight face in 5 years if management even will want pcs anymore? If I wrote in 2009 that tablets would make a killing on the pc market I would be laughed at here with a -1 offtopic faster than you can say goatse! If Windows 9 is a flop and cloud OS for just metro applets it is time to consider tablets with monitors and keyboards unless the trajectory changes?!

Well I for one, appreciate this

[Trax3001BBS]

Looking at the subject line of the comments, this decision didn't go over well here...

I don't use XP, I like it; Only went to Win7 as Battle Field 3 required it or I'd still be using XP.
I'm sure there are more like me that didn't upgrade as they didn't have a reason.

I appreciate this as well for the fact that miniXP is being treated as public domain, and will be upgraded.
Linux excluded, for me the miniXP has overtaken a Win98 boot disk when it comes to Windows recovery software.

FWIW: Most of my USB pendrives will boot into a Win98 DOS window that will read and write to NTFS drives.
http://bootdisk.com/

Re:OS Upgrade

Telling users to upgrade Windows because it is buggy is a flawed business model...

Re:No, this is smart. This is to keep the customer

[Anubis+IV]

Came here to say exactly the same thing.

This strategy is pretty much par for the course with Microsoft, which makes frequent use of product announcements far in advance of actual launches in order to retain customers with a promise of things to come. What they've done here is a defensive form of the same strategy: announce the extension of a product in order to prevent customers from considering their alternatives for awhile. Corporate users will almost certainly upgrade shortly before updates cease to occur. By making this announcement now, four months before the original cutoff, and extending it until next year, they've made it clear that they think Windows 8.1 has not proven to be as compelling as hoped, but that they anticipate having an alternative available by next year.

Personally, I'm saddened by this announcement, since it means that it'll be over a year before I can start using the "you do realize your OS is going to get slammed by zero-day exploits in a few months, right?" statement as a reason to encourage people to abandon XP already.

Re:No, this is smart. This is to keep the customer

Yeah i'm sure all those people who were confused by the lack of a start menu while retaining existing application compatibility are going to be real happy with another OS that also doesn't have a start menu and discards existing application compatibility.

You mean like win8? :-P

Re:No, this is smart. This is to keep the customer

[gonz]

If Microsoft can have those people wait for Windows 9 and Windows 9 is an improvement of any sort, they stand a better chance of keeping the customers.

Really? MS didn't change much in Win8.1, and they are making Win7 really hard to buy. It implies they really believe Win8 isn't a disaster.

The Windows Update cpu usage bug

[peppepz]

Have they fixed the incredible Windows Update bug that kills the usability of Windows XP machines when connected to the Internet, because svchost.exe starts eating 100% of the CPU for hours, even on powerful machines? That rendered any Windows XP machine that I've seen almost unusable, even though Microsoft is supposedly still supporting them.

in other news

windows 9 exceedingly most likely to be launched july 2015

HA!

[nightsky30]

Doesn't matter. I've already switched my father to Linux.
Microsoft is just putting off the inevitable shitstorm.

Re:No, this is smart. This is to keep the customer

[Luckyo]

In other words: can be fixed by browser vendor by modifying the renderer but it's easier to fix by OS vendor. After OS vendor stops updates, browser vendors will handle the updates.

As for getting "owned quickly", I ran a vanilla XP machine for over two years after WAU borked itself trying to install SP1. I think two years is good enough not to count as "owned quickly".

Re:No, this is smart. This is to keep the customer

[Luckyo]

Newsflash: these script kiddies still need a vector.

Re:No, this is smart. This is to keep the customer

[Luckyo]

So if I don't update, I can expect to get my computer owned? One that is behind NAT, software firewall, running up to date 3rd party software?

Yo I have land on the moon to sell you. Cheap.

Please stop

Dear Microsoft,
Please stop supporting any browser less than IE-10 and any OS that doesn't run at least IE-10
anything less than that is not doing you any favors, nor your customers ultimately.
There is no good business reason to support vista or XP at this point.

What about activation?

Because when this entire "Activate your software" BS came up for the first time, it was all "Well, don't worry, we won't lock you out of your software: we will produce a patch to remove software activation on products before then".

But one reason why they continue to extend the life of XP is that enough people are still using it that to kill activation without patching it out would kill them in lawsuits, but they DO NOT WANT to patch out activation, they never intended to do so.

Re:No, this is smart. This is to keep the customer

Windows 98 still gets third party patches.

Netbooks and DAWs

[ccanucs]

I have a Acer Aspire One 8.9" netbook with 1GB of memory and a 1.6GHz CPU. Great machine that is very portable and runs just fine - still - under XP. I would trash this machine to get one that will run Win 7 - why exactly? OK. It'll be insecure in a short while *if* I connect it to the Internet under XP. And if I don't? I would trash it and buy new hardware just to run an updated OS - why exactly?

OK - so I also dual boot this machine under Linux. I'll connect it to the net under Linux if I need to. But the whole idea of "You've got to upgrade in order to run our latest OS - throw out your old hardware" deserves the Opel Vectra analogy someone else gave above.

I have a Samsung Q1UP as well that is ultra portable as a working PC. It runs XP too - and - yes - I can dual boot it to Linux if I need to. It's touch screen with a thumb keyboard if you have never seen the beast (comes with a stylus too) and with dual batteries I can get 12 hours out of it on the road if I need to away from power sources. I would trash this just because I can't easily upgrade it to Win 7 - why exactly? Again - if I don't connect it to the net and it does what I want - like accurate stylus-based interactions - I would spend more money for what reason again? That's only got a Core Solo CPU too...

I manage a Studio DAW setup that runs everything that it currently needs to run just fine under XP. To be sure, the DAW supplier will not be supporting 32-bit XP beyond April so I *have* added Win7 64 G dual boot to that machine and up'ed the memory to 8G (which, BTW, for those speaking about 4G being a lot is *still* limiting for multiply loaded large VSTs - more memory is a big advantage for certain circumstances). However, it runs a studio just fine with XP and the current DAW - and the legacy studio audio hardware and drivers for the same are all supported under XP. Not replacing that external hardware anytime soon... Such machines - not connected to the Internet - aren't even running AV software to slow them down while doing DAW processing (this is not stupid - it is recommended for DAW setups - don't connect - don't run AV software - don't slow your machine down as a result - turn off wireless - turn of BT - reduce the loading by services you don't need, etc. etc.) I'd replace that machine with a Mac at some point in a studio setting - as in another studio setup I control - but for the fact there are still many VSTs that don't have an equivalent on MacOS. Maybe that'd run Snow Leopoard, Lion or Mountain Lion - all still work pretty well for DAW environments - even SL on "legacy" 2006 macbooks - still feels very snappy. Not upgrading to Mavericks any time soon. Why? External audio hardware support among other things until things catch up. It ain't broke, it ain't gettin' "fixed". Downtime and lost recording time.

See, it's not just the *machine* that's the issue in OS upgrades, it's what it's used for. Not everything is a stock laptop or desktop - although I agree that a lot of computer usage is like that still.

Re:No, this is smart. This is to keep the customer

[roc97007]

I think it's pretty much been established that people don't *like* Win8.

Re:No, this is smart. This is to keep the customer

[cbhacking]

What do you even need privilege escalation for? Damn near everybody runs XP as Admin; it's too painful to do otherwise (I tried for about half a year prior to the public Vista betas; compared to that, Vista's UAC, even during beta, was a godsend). For that matter, a lot of XP installs (at least in the early days) were on FAT32 systems, not NTFS, which meant you could get EoP just by overwriting some system files (no ACLs). Vista and later require NTFS.

Then there's the matter of ease of exploitation. XP has optional DEP, not widely used. That means you can trivially use return-to-libc attacks, or return-oriented programming, making it trivial to weaponize any vulnerability found. Vista and above have DEP enabled by default, plus ASLR (especially since Vista SP1 / Win7, as a number of libraries from before that shipped without ASLR-compatible flags). That means that even a wide-open vulnerability - think something really stupid, like the equivalent of gets() on a network socket - will typically require an additional vulnerability that leaks information about the state of memory before it can be exploited (for anything other than DoS, at least).

Anybody who thinks that "XP + firewall + Firefox = about the same security as Win8.1, really" is talking out their ass. They either don't have a fucking clue or they've got an agenda (probably nothing more than "I don't want to spend money" but they're still intentionally blinding themselves to reality).

Fight The Power!

[DarthVain]

I work in GIS and with large Oracle databases, and other technical functions. I have run out of local memory on multiple occasions. There is always away around it, however it usually involves breaking you process into digestible chunks, which just means extra work, longer processing time (or not doing it locally if you have the resources which not everyone has access to).

When we finally upgraded to Windows 7, some pinhole made the decision that 32bit was good enough for everyone (among other bad decisions). Those of us in the technical group revolted, REFUSED to accept the upgrade (well delayed anyway) as it did not meet our needs. Eventually the leasing company that had the contract worked with us to make a 64bit specification which did.

However the end result is now the IT folks have to support two sets, one is 32 the other 64, and not everything works on both, causing all sorts of headaches. There are a considerable amount of 64s out there, that have to be dealt with more less manually and by themselves for certain things. If they had realized that a significant part of the business required 64bit machines, they could have saved themselves some headaches and went with that as the standard.

...and I am all out of gum

[DarthVain]

Fun? XD

Re:No, this is smart. This is to keep the customer

[exomondo]

I think it's pretty much been established that people don't *like* Win8.

Of course some people don't like it and of course they will be vocal about it but the usage share of Windows 8 is more than OSX or Ubuntu or Chrome OS and the latter 2 are a viable alternative on all the systems that ship with Windows 8 it's just that most people don't want them.

Re:No, this is smart. This is to keep the customer

[yuhong]

Yea, what is funny is that nobody seems to pay much attention to Office 2003 end of support even though privilege escalation bugs are not usable without another exploit that executed code in the application in the first place.

Re:No, this is smart. This is to keep the customer

[yuhong]

Two years happens to be how long MS continues support for a previous service pack after a new service pack release. And they do not fix the renderer directly, rather they use https://code.google.com/p/ots/ which validates the fonts before passing them to the kernel.

Re:No, this is smart. This is to keep the customer

[Luckyo]

To clarify: WAU owned itself completely. No updates at all for over two years.

Choose a non-general-purpose operating system

[tepples]

The cost of finding exploits for Windows has gone up so much the criminals prefer to just trick users into running their software. No general-purpose OS is immune to that.

I guess the peace of mind that comes from increased difficulty of inadvertently installing a trojan is one more reason that the majority of people, who do not need programming tools or wireless network troubleshooting tools, can choose a platform that isn't general purpose, like iOS or PlayStation 4.

Linux updates need a restart too

[tepples]

Windows does have annoying traits (like having to reboot to apply patches) that Linux doesn't.

I'd be willing to discuss any annoying trait that differs between the platforms, but your example isn't the best. Whenever the linux-image package gets an update, any Ubuntu flavor has to restart. Or are you assuming that most Linux users will install Oracle Ksplice?

Re:Linux updates need a restart too

[mcgrew]

Windows has to be rebooted every single time any patch at all is applied to any part of Windows and every single time a program is installed or uninstalled. Linux only has to be rebooted when the kernel is replaced, and it's been a while since I've seen that. Almost all Linux patches require a single click, no reboots, no nagging.

Re:Linux updates need a restart too

[tepples]

Windows has to be rebooted every single time any patch at all is applied to any part of Windows

For one thing, a lot of these patches include changes to at least part of the kernel. For another, how else should a file be patched if it is in use, to make sure that no running processes are using the vulnerable version? A few years ago, OpenSSL was getting a bunch of patches, and Ubuntu needed a restart after each to clear running applications and daemons that had loaded vulnerable versions from memory.

and every single time a program is installed or uninstalled.

With poorly written installers and uninstallers, or with products that include kernel-level drivers, this may be true. But I've installed and uninstalled plenty of applications for Windows that did not need a restart.

Linux only has to be rebooted when the kernel is replaced, and it's been a while since I've seen that.

On Xubuntu 12.04 LTS, I see security updates to the kernel about monthly, the same frequency that Windows gets kernel patches.