Security Analyst Concludes Windows 10 Enterprise 'Tracks Too Much' (xato.net)

Defective by design? by El+Cubano · 2017-05-27 16:15 · Score: 5, Insightful

You are opted-in to just about everything by default and have to set hundreds of settings to opt out, even on an Enterprise Windows system. Sometimes multiple settings for the same feature. Most Microsoft documentation discourages opting out and warns of a less optimal experience... But you can't completely opt-out. Windows still tracks too much.

Correct me if I'm wrong, but isn't this essentially the definition of "defective by design?"

The increasingly hostile and draconian moves by Microsoft simply serve to prove that the majority of Microsoft customers are in a co-dependent relationship with Microsoft: afraid that no matter how bad things are with Microsoft, they will be worse without Microsoft. It must suck to live like that.

I know, I know. Some people cannot ditch Microsoft, but most people can and it would cost them only marginally more effort (and probably less in many cases) than they expend dealing with all the crap Microsoft is throwing at their customers these days.

Re: Defective by design? by teg · 2017-05-27 17:37 · Score: 4, Insightful
Most people don't give a crap about use privacy.
Proof: just a small uprising (mostly online by the same people who complain) when net neutrality and privacy rules were obliterated
More proof:
- Android market share. Remember, for Google the user is the product.
- Other Google products, like gmail, maps etc
- Facebook
All of which have a business idea of knowing as much as possible about you, so they can monetize you effectively.
Re:Defective by design? by thegarbz · 2017-05-27 20:53 · Score: 5, Informative

Correct me if I'm wrong, but isn't this essentially the definition of "defective by design?"
Defective by design is about intentionally not performing the intended function. For all its flaws, Windows 10 still runs windows software just as well as it ever did.
"Deceptive by design" now that's a definition I can get behind.
Re:Defective by design? by Elledan · 2017-05-27 21:06 · Score: 5, Informative

There is a way to fix Windows and remove all control from Microsoft. This way also doesn't involve Linux and kin.

If the ReactOS project got even 10% of the commits and money that Linux receives, it might soon become the Open Source alternative to even Windows 10, allowing everyone to ditch Windows without having to change the software they use.

Everyone would be better off, except for Microsoft, of course, but that's their own problem.

--
Site & blog: http://www.mayaposch.com
Re:Defective by design? by geekmux · 2017-05-27 21:28 · Score: 1

You are opted-in to just about everything by default and have to set hundreds of settings to opt out, even on an Enterprise Windows system. Sometimes multiple settings for the same feature. Most Microsoft documentation discourages opting out and warns of a less optimal experience... But you can't completely opt-out. Windows still tracks too much.
Correct me if I'm wrong, but isn't this essentially the definition of "defective by design?...
If you're looking for what's defective, that would be a society that happily gives up their digital soul in exchange for paying nothing for products and services. If you recall, Microsoft initially gave away Windows 10 for free in order to accelerate deployment.
And the free gimmick works every fucking time because consumers are far too ignorant to understand that they no longer buy products for a reason; they are the product.
The popularity of the free price tag also goes to show just how much consumers give a shit about privacy. In other words, they don't.
Just wanted to clarify where the defect truly is, and the level of effort it's gonna take to fix it.
Re: Defective by design? by Anonymous Coward · 2017-05-27 22:40 · Score: 2, Insightful

Whats worse? The company that gives you something free and takes your personal info in return or the company that charges you and still takes your personal information?
Hint: Windows ain't free and you dont have to use android to use google products.
Re:Defective by design? by zifn4b · 2017-05-27 22:54 · Score: 1

Correct me if I'm wrong, but isn't this essentially the definition of "defective by design?"
Nope. It was designed that way so your data could be harvested and aggregated with everyone else's to be sold. It's a very profitable business.

--
We'll make great pets
Re:Defective by design? by Dunbal · 2017-05-27 23:06 · Score: 1

afraid that no matter how bad things are with Microsoft, they will be worse without Microsoft.
Also known as "battered user syndrome".

--
Seven puppies were harmed during the making of this post.
Re:Defective by design? by drinkypoo · 2017-05-27 23:29 · Score: 1

If the ReactOS project got even 10% of the commits and money that Linux receives, it might soon become the Open Source alternative to even Windows 10, allowing everyone to ditch Windows without having to change the software they use.
Even Microsoft doesn't know how complex Microsoft products work. They write specifications that literally say "do what the software does here". There is literally no chance that any reasonable amount of money or code commits could make ReactOS even a 90% replacement for Windows. It's not even 5% now. You can crash it just by booting it.

--
"You're right," Fisheye says. "I should have set it on 'whip' or 'chop.'"
Re: Defective by design? by AmiMoJo · 2017-05-28 01:15 · Score: 3, Interesting

This "you are the product" meme is stupid. When you watch TV, you are not the product even though they sell advertising on it. The relationship is clearly more complex than that.
In Google's case, there is relatively little lock-in to their products. Farm animals can't leave, they belong to the farmer. It's trivial to switch to another search engine, to another mapping site, to another email provider. Google doesn't even mind if you install uBlock and Privacy Badger from their official Chrome extension repo. If Google annoys users too much, or doesn't offer them something compelling to stay, their advertising business becomes worthless.
Yes, they are selling advertising targeted ads. But they don't allow individual users to be targeted or for advertisers to access user data directly, only in aggregate via the tools that Google provides. That's not a simple "you are the product" relationship.

--
const int one = 65536; (Silvermoon, Texture.cs)
SJW, n: "Someone I don't like, and by the way I'm a fuckwit" - AC
Re:Defective by design? by Highdude702 · 2017-05-28 01:18 · Score: 5, Funny

You can crash it just by booting it.
I see that got that part of windows to work correctly... O.o
Re:Defective by design? by hey! · 2017-05-28 01:36 · Score: 1

"Defective by design" is another way of saying the vendor and client have conflicting interests in their requirements for the product.

--
Post may contain irony: discontinue use if experiencing mood swings, nausea or elevated blood pressure.
Re: Defective by design? by AmiMoJo · 2017-05-28 01:58 · Score: 1

Interesting, you don't know how advertising works...
So in both Google and TV's cases, they collect information about the people using their services. They aggregate it and use it to sell advertising space to advertisers. TV has a harder time gathering the information than Google does, but it still does...

--
const int one = 65536; (Silvermoon, Texture.cs)
SJW, n: "Someone I don't like, and by the way I'm a fuckwit" - AC
Re: Defective by design? by pixelpusher220 · 2017-05-28 02:09 · Score: 1

Win10 was free for a large portion of the install base...

--
People in cars cause accidents....accidents in cars cause people :-D
Re:Defective by design? by gweihir · 2017-05-28 03:24 · Score: 1

Very true on all points. I do however know of one pretty large organization (> 50K employees), that has scrapped all plans to move to Win10, due to both security concerns (against MS modeled as attacker) and the constant UI changes. As soon as Win7 enterprise becomes non-viable, they will move everybody to web-terminals (that will most assuredly not run an MS OS). Since many corporate application landscapes these days are web-based anyways, they cannot be the only ones planning that.

--
Most ACs are not even worth the keystrokes to insult them. Be generically insulted by this and ignored otherwise.
Re:Defective by design? by Kjella · 2017-05-28 03:24 · Score: 4, Interesting

If the ReactOS project got even 10% of the commits and money that Linux receives, it might soon become the Open Source alternative to even Windows 10, allowing everyone to ditch Windows without having to change the software they use.
Said no person with experience reverse engineering ever, at no point has trying to chase your proprietary competitor's blobs ever worked. WINE does an okay job running some Windows software, LibreOffice does an okay job opening some MS Office documents but you'll never repeat every quirk, bug and obscure functionality. You'll never get a fully working replacement for DirectX that isn't DirectX, not without 10x the resources Microsoft used to write it to reverse engineer it. That's not 10% of the Linux resources, probably more like 1000%. The only workable solution long term is to get people over to new, open standards like web apps written for W3C compliant browsers instead of IE6, games using Vulkan instead of DirectX, cross platform tools like qBitTorrent instead of uTorrent and so on.
Look at git, the version control software to develop Windows is now created by Linus Torvalds, what better endorsement can you get than the competition eating your dogfood? Look at all the cloud solutions booming because you can just spin up another Linux instance on demand without licensing worries. You don't win by mimicking the old, you win by delivering something new and better. And even if someone builds proprietary stuff on top of it (OS X, Android, Tivo etc.) you keep gaining ground. Even if the pace is somewhat glacial I never had the feeling open source went backwards, even if you look at stuff like Firefox then Chrome is mostly open source through Chromium. It would be a helluva lot less work to fork that than to start over. Tools like ASP.NET Core is being open sourced, Apple has open sourced Swift, for more and more of low-level infrastructure closed source just isn't kosher anymore.

--
Live today, because you never know what tomorrow brings
Re: Defective by design? by Anonymous Coward · 2017-05-28 04:31 · Score: 1

You still had to pay for windows to get that 'free' windows 10.
Re: Defective by design? by Kjella · 2017-05-28 04:48 · Score: 2

No, the meme is just fine. Ad-supported companies sell eyeballs, that is the product weather you like it or not. If the grain level is coarse that's no problem, like if you're a radio channel and play country music you know you have a certain audience and your advertisers know that too. The problem is that via electronic registration the grain level is extremely fine, via tracking cookies, accounts and loyalty cards they build up massive individual profiles. You can of course hand-wave and say the data will never be used in a way that's problematic: "But they don't allow individual users to be targeted or for advertisers to access user data directly, only in aggregate via the tools that Google provides."
Until it's leaked, hacked, sabotaged, there's an inside man, the police/courts/three letter agencies demands to see it, they hand out too much information, they give an unreliable subcontractor access today or at any point in the future. I work with a similar but different set of data, where we produce aggregate or de-identified data for external use but the grain data can be quite easily tied to an individual. First and foremost we're constrained by law, if someone passed the "Stop terrorism, fuck privacy act" it wouldn't be all that anonymous anymore. Secondly, we're guarding it like gold because there's really no un-sharing the information should it ever get out, but who knows when a hacker could find an Achilles heel. Third, it's hard to avoid every corner case where your profile stands out in a way that could be tied to an individual.
I'm not going to be completely paranoid about it but the safest kind of data is the type you never generate. Everything else can be collected, cross-linked, use and abused. Certainly for good, that's often why we're doing it in the first place but the road to hell is also paved with good intentions. If you live in an authoritarian regime the future is pretty grim because they're constantly improving their surveillance, often going hand in hand with convenience which is why Facebook etc. is so popular. As long as you're not doing anything they don't like...

--
Live today, because you never know what tomorrow brings
Re:Defective by design? by fahrbot-bot · 2017-05-28 05:32 · Score: 1

Correct me if I'm wrong, but isn't this essentially the definition of "defective by design?"
Defective by design is about intentionally not performing the intended function. For all its flaws, Windows 10 still runs windows software just as well as it ever did.
"Deceptive by design" now that's a definition I can get behind.
And, more to the point, the actual purpose of Windows 10 is to spy on the users and generate revenue from that data for Microsoft. Performing OS functions is a side-effect. In this respect, Windows 10 is functioning as designed.

--
It must have been something you assimilated. . . .
Re: Defective by design? by mschwanke97402 · 2017-05-28 07:38 · Score: 1

This "you are the product" meme is stupid. When you watch TV, you are not the product even though they sell advertising on it. The relationship is clearly more complex than that.
In Google's case, there is relatively little lock-in to their products. Farm animals can't leave, they belong to the farmer. It's trivial to switch to another search engine, to another mapping site, to another email provider. Google doesn't even mind if you install uBlock and Privacy Badger from their official Chrome extension repo. If Google annoys users too much, or doesn't offer them something compelling to stay, their advertising business becomes worthless.
Google is very hard to avoid. You can eschew Chrome, GMail, Maps, Earth, etc. You can switch to DuckDuckGo for search. But Google still has their ads and trackers all over the web. They have deals with online vendors to collect your purchase data. They claim anonymization, innocent intent, etc. If you do use your services then they scan your email, web history, internet bookmarks, etc. as well.
Whether they sell your information directly or merely rent access to its benefit they are still in the business of selling access to an increasingly detailed profile that is you. They also do it in such a manner that there is a disconnect from the services they provide and the advertising they place. They don't really run any risk of annoying their users. Google ads don't run on Google services, they run all over the rest of the web.
Since I decided TV was pretty much junk I have cancelled my cable service and I have not connected my smart TV to the Internet, either. Explain how they track my broadcast TV viewing again? I know they have TV ratings services that provide some very broad demographics to advertisers but, really, TV advertises to fairly unknown users.
There is a difference. Google really is selling me. TV is selling ads.
Re: Defective by design? by misnohmer · 2017-05-28 09:59 · Score: 1

Do you have a phone, or a computer running Google products? Did you know that your phone can listen to what you are watching on TV? There are embedded audio markers in ads, shows, etc. Ever wonder how if you search for an actor on your phone, somehow Google prioritizes the completion results with the actor you just watched on TV (from your DVR, so time shifted)? Search the Internet about ads tracking via audio if you want to get more paranoid.
Re: Defective by design? by Impy+the+Impiuos+Imp · 2017-05-28 10:47 · Score: 1

I'm not sure cookies even matter anymore. Every site reports your ip and what you view to goog or amazon and it's stored. This fingerprints you, and if your ip address changes, they can reassign you purely by watching for that set of sites, which is essentially unique.
Cookies, gmail login, etc. hastrn this but are not really required. I am sure the NSA and so on do exactly the same thing just monitoring traffic flowing through their strategically-placed servers.

--
(-1: Post disagrees with my already-settled worldview) is not a valid mod option.
Re: Defective by design? by Brockmire · 2017-05-28 10:59 · Score: 3, Informative

You don't understand why Google became Google. They don't sell YOUR data, they tell advertisers THEY know a guy who might want their widget. They'll take a cut for showing their ad for their widget. This is different than selling a list of names and contacts where some small percentage is actually interested, this gets higher results because the targets generally are interested in the widget and have higher buy through rates.
Re: Defective by design? by minstrelmike · 2017-05-29 02:53 · Score: 1

And you don't need much of buy-thru rate. Actual physical spam mailing companies buy live addresses of real people and fill their physical mailboxes with junk mail that costs money to print, package and mail. And apparently it is profitable at a 1-3% "click" rate.

So email and e-ads are far more profitable since there is no physical costs. You might want to look up buying a direct mail list that conains your address if you're worried about security. It's rather appalling.
Re: Defective by design? by ilsaloving · 2017-05-29 08:23 · Score: 1

The problem is that this phenomenon is hardly new.
Examples:
Cable TV
Magazine subscriptions
Companies have been eating and keeping their cake for a long time now, and there has yet to be an uproar about it. Of course, there's a big difference between then and now, in that the sheer scope of the data being collection is now mind-boggling, but I still don't anticipate the average person to give enough of a shit about privacy to care.
People don't seem to care about anything until it directly impacts them. For example, how many proselytizers are there for, say, people who have been victims of identity theft? Or whose kids died from drunk driving? Etc etc? Virtually none of these people were up in arms until *after* something truly bad happened to them. Even then, they often refuse to accept that they bore any responsibility for what happened, like a once neighbour of mine who was pissed their ISP cut them off and refused to accept that they were responsible for taking care of the malware on their machine.
I do what I can to protect myself and the immediate people I am responsible for. But I've learned first hand, and repeatedly, that you can't help people who aren't willing to help themselves.
Re:Defective by design? by The+Wild+Norseman · 2017-05-29 14:05 · Score: 1

If you're looking for what's defective, that would be a society that happily gives up their digital soul in exchange for paying nothing for products and services. If you recall, Microsoft initially gave away Windows 10 for free in order to accelerate deployment.
Yes, true, but don't also forget to mention that during the giveaway, they pushed it on you, whether you wanted it or not. They even went out of their way to push it and make it so you couldn't easily decline their "generous" offer.

--
"A government is a body of people usually -- notably -- ungoverned." -Shepherd Book

You can't fix this. by Anonymous Coward · 2017-05-27 16:25 · Score: 5, Insightful

The problem isn't Windows. The problem isn't even Microsoft.

The problem is that we don't have strict laws governing the protection of user data. There needs to be serious and utter consequences for pulling this sort of shit. The sort of consequences that would make any shareholder board go "holy shit, let's not fucking do that". Until that happens, absolutely nothing is going to change. You might be able to pressure Microsoft into releasing a patch or two that appears to offer some sort of reprieve, but then they'll get back to doing exactly what they've been doing before, and probably torque down the screws just a little bit tighter while they're at it.

Unfortunately, with the USA now gunning for net neutrality, I doubt anything like this would ever happen. Corporations have too much money and nobody gives a shit about the user. As long as the users keep paying for stuff (because they "have no choice" or don't want to slightly inconvenience themselves), nothing will ever change.

So you better get used to it, because Windows 10 is just the start.

Re:You can't fix this. by Anonymous Coward · 2017-05-27 18:55 · Score: 2, Insightful

>What the security analyst forgets to mention is that the telemetry data sent to MS is anonymized.
Yeah I work at a place where I sometimes get "anonymized" data. Let me tell you I can still easily find out who it was about.
>I don't know how you would "protect" user data any better than that.
Don't send it in the first place. There's no law in the universe that says that you have to send it. Just stop sending it.
>A lot of new vehicles today upload data to the manufacturer and this data does include enough information to identify the owner.
And that has to stop.
>If Windows was really as bad as the OS political activists say MS would never have turned into one of the most successful companies on the planet. There has never been anything stopping someone from creating a platform to compete with MS.
What? Halloween documents etc. Microsoft has been colluding with OEMs to stop exactly that. Also, they break stuff on purpose. What are you talking about? Some parallel universe where Microsoft is not an asshole?
>All the early potential competition willingly sold their technologies to MS and took the money and ran.
Who?
>The applications that try to compete with MS Office suite are buggy clones that the Linux faithful promote as "good enough".
True. But that's in part because the specifications by Microsoft are incomplete. At least by now they were forced to release them - earlier it was *all* reverse engineering.
>And users do not run OS's they run applications. In the business world a competent IT can configure a stable and safe OS platform. Linux is not magically safe or stable by default and requires someone knowledgeable to configure the OS.
I agree.
Re: You can't fix this. by Anonymous Coward · 2017-05-27 19:06 · Score: 1, Interesting

The free market is anti profit. Profit, in a free market, is evidence that there is an inefficiency in the market and that demand is there but unfilled. EVERY MARKET would have zero profit in a properly free and functional market, because someone could come in and set their price below the price of another who is making profit and steal their customers away, and if that were still profitable, then the cycle repeats until the marginal cost is reached where there is no way to take customers by charging less without losing money on the transaction.
Free markets are anti profit. Are you anti-free-markets?
Re:You can't fix this. by thegarbz · 2017-05-27 20:58 · Score: 1

Yeah I work at a place where I sometimes get "anonymized" data. Let me tell you I can still easily find out who it was about.
Then it's poorly anonymized. This isn't some checkbox, tick here to anonymize all code. I work at a place where wifi is secured by a standard that can be cracked in under 5 seconds, that doesn't mean secure wifi doesn't exist.

Don't send it in the first place. There's no law in the universe that says that you have to send it. Just stop sending it.
Don't send user data. Don't provide user feedback. 1yr later: Users: "Hey MS why did you make this change, all your users use this function, do you not know how we use the systems you provide!?! #theyshouldhaveknown" Telemetry isn't collected because someone has too much disk space and it needs to be filled with something.
The rest of your post is quite on point.
Re: You can't fix this. by orbit500 · 2017-05-27 21:21 · Score: 3, Informative

EU GDPR is set to stick a giant spanner in windows 10 as it is doing with Facebook and Google data slurping. Check out the current cock blocking Redmond is getting on this and we're still a year out. Fines range up to 4% of global trade turnover, more than enough to brown trouser the board. Either they comply or quit the EU market. And that means any inbound EU data handling, not just EU based licence holders.
Re:You can't fix this. by geekmux · 2017-05-27 21:40 · Score: 1

The problem isn't Windows. The problem isn't even Microsoft.
The problem is that we don't have strict laws governing the protection of user data...Corporations have too much money and nobody gives a shit about the user.
Uh, not quite.
The root cause of all this is users don't give a shit about privacy.
That is the true problem.
That is the reason Windows and many other products are given away for "free", turning the user into the product.
That is the reason nothing will ever change. Users have to actually give a shit in order to start demanding strict laws to protect them.
Re: You can't fix this. by Anonymous Coward · 2017-05-27 23:52 · Score: 1

The reality is that most users have no concept of the concerns or risks discussed in this article. If someone sat down and explained to these users in lay terms, then you would probably get a different response. Most users are simply ignorant. And they most certainly are not reading /.
Re:You can't fix this. by nine-times · 2017-05-28 00:01 · Score: 1

The problem is that we don't have strict laws governing the protection of user data.
I disagree. Don't get me wrong, I'm usually not a proponent of the idea of "the invisible hand", but I think the larger problem is vendor lock-in. I think there should be more laws to protect user data, but more importantly, I think we need to find ways to make sure people have real options.
For example, to this day, I can't use a non-Windows operating system for my work computer. Or at least, I need a Windows VM to run a few Windows applications for which I have no non-Windows version available. Ideally, operating systems should be able to compete on features, rather than on the applications that are available on them. To me, this is the real problem, since I don't have the option to say, "I don't like Microsoft's privacy policies, so I'll switch to a different OS.
I don't know the best way to accomplish that. Maybe Microsoft should be required to publish all of their own APIs and protocols so that systems like WINE and Samba can be perfected?
I've always been a proponent of the general idea that, in order to be eligible for copyright protection, companies should be required to submit their source code to a public organization, and the source should then be automatically submitted to the public domain after some circumstances are met (e.g. the original vendor is no longer selling, updating, or supporting it). In my mind, Windows XP should have its source released. That would allow someone other than Microsoft to provide a perfect compatibility layer, or a new OS based on the same code. It would even just allow someone else to pick up development and support of the old OS, now that Microsoft is no longer interested. If Microsoft is confident that Windows 10 is a real improvement over Windows XP, rather than just some new version that they're railroading people into for their own purposes, then releasing Windows XP code to the public domain shouldn't cause much harm to their bottom line.
Re:You can't fix this. by AmiMoJo · 2017-05-28 01:18 · Score: 1

I'm still hopeful that we will see a Windows 10 N version for the EU, with this crap disabled.

--
const int one = 65536; (Silvermoon, Texture.cs)
SJW, n: "Someone I don't like, and by the way I'm a fuckwit" - AC
Re:You can't fix this. by swb · 2017-05-28 01:21 · Score: 2

In a lot of ways, this almost begs for a kind of public health type of response.
In years past, most people would have willfully chosen poisonous product X for its low cost and rejected more expensive non-poisonous product Y. Or they would have rejected tax increases for improved sanitation or water filtration for the same reasons. Or they chose the patent medicine with an opioid versus the one with just sugar.
I don't know that we ever really made the masses more intelligent than they are now about these issues, on the whole. Everybody "knows" that some common medicine with opioids in it is risky, but I'd bet that even with this knowledge if you put tincture of laudanum in a cough and cold remedy it would become a best seller because it made people feel better.*
The best you could do was try to sway the more intelligent members about the risks and hope that would be enough to influence law makers to change the rules in ways that prohibited the bad ingredients, fixed the sewage system or removed the addictive drugs.
The larger problem here is constructing a public health type of argument that intelligent, non-technical people will understand and accept, in the hopes that these key influencers will be able to pass laws that force uniform standards for privacy or data collection. You'll never change the masses individual preference for free/cheap, you have to change the law to eliminate Microsoft, Apple or Google's ability to use this preference to exploit people for their own gain.
(* There's a whole other side argument to be made as to whether this really would lead to widespread addiction among the population as a whole, or whether we're really just preventing an acute crisis among a small subset of the population. One of the risks of public health is over reach and excess risk aversion, imposing restrictions and costs to eliminate increasingly smaller threats.)
Re: You can't fix this. by geekmux · 2017-05-28 01:27 · Score: 1

The reality is that most users have no concept of the concerns or risks discussed in this article. If someone sat down and explained to these users in lay terms, then you would probably get a different response. Most users are simply ignorant. And they most certainly are not reading /.
A different response? What utter bullshit.
Users are told that weak passwords are a very common reason people get hacked and identities get stolen. So what do they do in response? Keep on using the same shitty passwords.
Users demand many products be at zero cost to them, even though they've been told repeatedly the reason they are free. They've been told they ARE the product. Does that stop anyone from being used by these "free" products? Do they stop and take the time to read the EULA? Hell no.
I stand by my original response. Users don't give a shit about privacy or security. Never have. Never will.
This isn't mere "ignorance". This is willful ignorance. And it won't ever change.
Re:You can't fix this. by gweihir · 2017-05-28 03:15 · Score: 1

The EU is slow, but something is brewing. MS already had to make changes for the Swiss Data Privacy Commissioner and, since that guy is certainly talking to his EU counterparts, I am pretty sure that one was a test-balloon. Both the French and the Germans have already announced they are investigating. In the end, MS will have to switch all telemetry off by default, because what they are currently doing is illegal.
EU law states that absolutely every data collection must have a positive agreement by an informed customer and if it is not fundamentally necessary to run an application, it must be off by default. And if they transfer personal data, that agreement must be on paper.

--
Most ACs are not even worth the keystrokes to insult them. Be generically insulted by this and ignored otherwise.
Re: You can't fix this. by gweihir · 2017-05-28 03:19 · Score: 1

As this process is slow, it may take until 2018 to happen. But they are definitely working on it, and I think this time around they will not take any crap from MS. And what MS is currently doing is already illegal, so the first thing we see may be that MS is hit with a massive fine and threatened with more and a potential prohibition on sales of their defective product.

--
Most ACs are not even worth the keystrokes to insult them. Be generically insulted by this and ignored otherwise.
Re:You can't fix this. by Anonymous Coward · 2017-05-28 03:49 · Score: 1

Yeah I work at a place where I sometimes get "anonymized" data. Let me tell you I can still easily find out who it was about.
Then it's poorly anonymized. This isn't some checkbox, tick here to anonymize all code. I work at a place where wifi is secured by a standard that can be cracked in under 5 seconds, that doesn't mean secure wifi doesn't exist.
De-anonymization techniques are much better than you give them credit for. If you're collecting data of any worth, then you're collecting enough to re-identify the source with high confidence. You may not want or care to expend the effort to do so, but someone asking to purchase your data set certainly will, as the identity information is at least as valuable as the data set itself.
Re:You can't fix this. by west · 2017-05-28 06:19 · Score: 1

The trouble is that for a sizable segment of society, their privacy+eyeballs is the only asset they have to sell.
Making Microsoft, Google, et al start charging for everything (or raise their prices in order to make up for the loss of revenue) is going to flat out deny services to those who can't afford them (or are unbanked and have no access to credit cards).
Sure, adding $100-$200 a month to my bills (in the form of micro-transactions, subscriptions, etc.) to protect my privacy (and only have anonymous ads shown) would easily be worthwhile trade for me and my ilk. Add in another $100-$200 a month to get rid of ads altogether.
And in the end, I'd be a happier camper, down maybe $5K a year (at worst) to replace all the 'free' or discounted services I currently enjoy.
But there are a hell of a lot of people for whom a $5K annual expense is not an option. Should they essentially be cut off from the Internet?
Re:You can't fix this. by swb · 2017-05-28 23:25 · Score: 1

Now you're getting to the heart of rational choice theory, that people are making a willing choice to sacrifice their privacy and attention for the services they get.
I don't think that some kind of privacy legislation that sucked some of the profit out of computing services would price people out of the Internet. Before the era of "free" Internet services, people paid for operating systems that didn't have telemetry, got email accounts without content-scanning with their $35/month ISP account and got nearly the same social/information value from USENET, FAQs, and the more rudimentary services available then.
I think in a lot of ways, people are paying far more for Internet access now than they did 20 years ago. Where before you shouldered the burden of a PC, you still largely do that now. The hardware is cheaper overall, but people have more devices and probably pay more for a laptop/desktop + broadband and smartphone + data service, not to mention tablets, streaming services, etc.
Removing the "free" out of telemetry-laden products and services might make them more expensive, but it wouldn't cut anyone off. I think it would have the side benefit of the services needing to be responsive to users -- less perpetual beta and arbitrary end of life of services and the general manipulation of the service for the provider's benefit.
The larger problem of rational choice theory is also that you start to ask why people can't make a lot of rational economic trade-offs. Why can't an 18 year old choose to sell themselves into indentured servitude for 5 years in exchange for college tuition? Why can't I buy my way out of the military draft if there's some guy willing to go fight in my place if I pay him? It excludes the notion that these choices may actually be economically coercive at some level and not free choices.
Re:You can't fix this. by bingoUV · 2017-05-29 19:57 · Score: 1

How many of these services do you really need ? Instead of want.
Gmail has an uptime of nearly 99.99%. Storage in tens of GBs. It can sustain a bandwidth of 20 MB/s. Very few people need it. A 100 MB 98% uptime , 100 kbps email service would work for most of the people who cannot pay much for it, or cannot pay at all. Basic advertisements without any tracking would pay for it, like it did 20 years ago, with hardware and network prices much lower today.
Remember 99.99% uptime is much more expensive to provide than 99.9% uptime.
Also, for people with only privacy+eyeballs to sell, privacy+eyeballs has much less value to any advertiser. Most advertisers are hoping to get privacy+eyeballs of a rich guy, or at least a poor guy ready to borrow and spend.

--
Bingo Dictionary - Pragmatist, n. A myopic idealist.

Let's ditch Windows, huh? by MindPrison · 2017-05-27 16:27 · Score: 1, Informative

>I'm not saying ditch Windows. I'm saying let's fix this. If we can't fix it, then we ditch Windows.

Well, maybe you can do what I do... ...I run Windows 10 on a separate SSD, and run Linux daily on my Main M2. NVMe.

--
What this world is coming to - is for you and me to decide.

Re: Let's ditch Windows, huh? by thundercattt · 2017-05-27 16:48 · Score: 3, Informative

Or keep Windows nicely tucked away in a VM.
Re: Let's ditch Windows, huh? by Opportunist · 2017-05-27 22:28 · Score: 1

That works if you don't need Windows for pretty much the only thing that people need it anymore and can't replace it with Linux: Playing games.

--
We used to have a Bill of Rights. Now, with the rights gone, all we have left is the bill.
Re: Let's ditch Windows, huh? by Anonymous Coward · 2017-05-28 01:07 · Score: 1

What the fuck are you talking about?
I use Windows in VMs all the time and the performance is absolutely fine. I agree with the parent poster, the only safe place for Windows today is inside a VM, spun up from time to time when Windows applications are required. For everything else, depending on your workload, there is a very diverse pool of FOSS to draw from.
Re: Let's ditch Windows, huh? by caseih · 2017-05-28 02:11 · Score: 2

Wrong. Windows 10 is quite usable in a VM for business and even programming tasks. Sure gaming probably isn't a go. But everything else works fine. I use Windows 10 in a virtual machine quite often, running Visual Studio.
Re: Let's ditch Windows, huh? by caseih · 2017-05-31 09:34 · Score: 1

You made a blanket statement about "gimping" Windows 10 performance in a VM. I simply said your blanket statement was wrong. Windows 10 runs just fine in a VM. Like I say I use Visual Studio in it frequently. For most common office tasks where MS software is required it will work fine for Linux users who need to run it in a VM.
a) no idea what you're getting at here. I'm not a gamer; I wouldn't know
b) I don't care about how DX12 runs in a VM and suspect most people who run Windows 10 in a VM don't care about that either
c) I don't have Windows 7, and you can't buy it either. Shrug. No idea what you're talking about with cloud features confined to VM. I don't use any cloud features anyway but they'd be no different than they function on a dedicated PC.
Re: Let's ditch Windows, huh? by thegarbz · 2017-05-31 22:14 · Score: 1

You made a blanket statement about "gimping" Windows 10 performance in a VM.
Yep it's a very thin blanket kind of like a veil. Veils have a limited purpose, as does running Windows 10 when you're a Linux user. 99% of that time the problem is gaming.
After all Linux users love telling you how there's alternatives to everything other than gaming available on that platform, and gaming is also the only reason why someone who heaps endless shit on Windows talking about the better experience of Linux would even consider Windows 10.
It's a horrible idea to VM an OS that uses so much space for the purpose of running an app or two.

spybot anti-beacon by Anonymous Coward · 2017-05-27 16:32 · Score: 1

spybot anti-beacon is a good start. also wireshark your way into happiness with windows. learn about policies. learn about how the management tools work. I bothered to learn Windows inside out and you can too.

one file disable by Anonymous Coward · 2017-05-27 16:33 · Score: 1

c:\windows\system32\drivers\etc\hosts

you can find the list to null route on github, etc

Re: one file disable by Anonymous Coward · 2017-05-27 17:43 · Score: 5, Informative

Unfortunately it is well documented that Windows 10 ignores the hosts file for "telemetry"
Re: one file disable by Anonymous Coward · 2017-05-27 20:39 · Score: 2, Interesting

Unfortunately it is well documented that Windows 10 ignores the hosts file for "telemetry"
Source?
It is well documented that Windows 10 ignores the host file for a list of "vital" MS services like Update. I have been unable to find any evidence the the telemetry urls get ignored too.
In fact they seem to be perfectly blockable by the hosts file.
Re: one file disable by Anonymous Coward · 2017-05-27 21:48 · Score: 1

Too late, my comment was modded +5 on the basis of no evidence whatsoever.
Meanwhile your far more accurate comment has been ignored.
Welcome to Slashdot!
List of hosts ignored in the hosts file:
www.msdn.com
msdn.com
www.msn.com
msn.com
go.microsoft.com
msdn.microsoft.com
office.microsoft.com
microsoftupdate.microsoft.com
wustats.microsoft.com
support.microsoft.com
www.microsoft.com
microsoft.com
update.microsoft.com
download.microsoft.com
microsoftupdate.com
windowsupdate.com
windowsupdate.microsoft.com
Some applications, like Edge, will completely ignore the hosts file.
Basically you have to trust that Microsoft won't alter your existing settings (they already do on update, so you can't trust them there), won't change which hosts entries are hardcoded, and won't change the behaviour or already have tracking code that ignores the hosts file entirely.
Re: one file disable by Kernel+Kurtz · 2017-05-28 05:27 · Score: 1

This should not be a problem for large enterprises. You don't need to mess with hosts files when you control the DNS and the perimeter firewalls. Also if you have a WSUS server you should have better control over what updates are applied.
Not saying enterprises should have to do this - they should not have to, but they can.

Optimal Experience by Darinbob · 2017-05-27 16:35 · Score: 4, Informative

The problem with optimal experience is that Microsoft means their own experience not that of the users. Optimal for them means that the customers are eyeballs for advertisers and with easy to access to data for analytics. Optimal experience for the actual users means that they can turn off Microsoft's control, nothing ever defaults to opt-in, and they don't get tracked or advertised to.

Re:Optimal Experience by Z00L00K · 2017-05-28 02:13 · Score: 1

Unfortunately one side-effect is also that if they don't get the data from all users then their experience data is getting skewed. So this means effectively that if only morons don't disable the telemetry and everyone else do, then they base their decisions on the user experience morons has and make an operating system suitable for morons based on that.
But we do need to tell them that we don't like being tracked all the time. There are limits to how far a government may go in many modern countries, but rarely how far a company may go. Like "freedom of speech", that's only limiting the government officials, never companies like Google, Microsoft or Facebook. But it should include them as well since the large companies are essentially virtual governments now.

--
If builders built buildings the way programmers wrote programs, then the first woodpecker would destroy civilization.

Better Solutioin by Murdoch5 · 2017-05-27 16:41 · Score: 5, Insightful

It's call Linux and it's vastly superior in almost every way to Windows. Don't worry about Windows 10, just switch to the worlds best Desktop Operating system.

Re: Better Solutioin by thundercattt · 2017-05-27 16:49 · Score: 4, Informative

Been a Linux user since XP, never looked back.
Re:Better Solutioin by Opportunist · 2017-05-27 22:32 · Score: 1

I want to. Really, I do. For about half the tools I use there's replacements in Linux. Nearly everything else works great in a locked away Windows VM.
And now please solve the last bastion that Windows has: Games.
Games are, odd as it may sound, tricky. Hard, if possible at all, to run in a VM, many don't work well in Wine and very few (at least outside the Indie circuit) run natively on Linux.

--
We used to have a Bill of Rights. Now, with the rights gone, all we have left is the bill.
Re: Better Solutioin by thundercattt · 2017-05-28 01:37 · Score: 1

Majority of newer games do get supported under Wine. Unless you're playing the Original Diablo or something, you're good to go.
Re:Better Solutioin by gweihir · 2017-05-28 03:08 · Score: 1

Same here. I think when Win7 goes out of support, I will just go dual-system with a KVM switch, and the only thing on the Windows machine being games. For Office (which I occasionally need), I will just go for an non-networked VM on Linux. It is truly sad that the mainstream-OS has now to be treated basically as malware.

--
Most ACs are not even worth the keystrokes to insult them. Be generically insulted by this and ignored otherwise.
Re:Better Solutioin by DogDude · 2017-05-28 03:14 · Score: 1

That's cute.

--
I don't respond to AC's.
Re:Better Solutioin by Opportunist · 2017-05-28 06:33 · Score: 1

Ahhh, thank you, i've been waiting for you. Thanks for not disappointing.
Allow me to put it in words you might understand: It's none of your fucking business how I spend my rare spare time, so fuck off.

--
We used to have a Bill of Rights. Now, with the rights gone, all we have left is the bill.
Re:Better Solutioin by 0123456 · 2017-05-28 09:17 · Score: 1

That's what I do already. I have a cheap AMD box for Linux, an expensive gaming machine running Windows, and a KVM to switch between them.
When I eventually have to 'upgrade' to Windows 10 for DX12, it will basically be a $2000 game console.
Re:Better Solutioin by bingoUV · 2017-05-29 20:10 · Score: 1

Then you don't want hard enough to switch to Linux. Enjoy the pervert OS for its toys. Like the somewhat paradoxical and dishonest "I'd really want to go out with you but I need to watch paint dry", you don't really want to switch to Linux but you are just pretending.
Moms should tell kids to not follow perverts for toys. Sometimes kids don't listen anyway.

--
Bingo Dictionary - Pragmatist, n. A myopic idealist.
Re:Better Solutioin by Opportunist · 2017-05-29 22:40 · Score: 1

The question is what you want out of a tool. One of the things that I want out of my OS is the ability to run the games I want to play. If it doesn't fulfill that role, it is unfit for my purpose.
So yes, maybe I don't want to switch "hard enough". Probably because I don't make it a religious issue but one of practicality. I do business on Linux and I (still) play on Windows. And it seems to stay that way for the foreseeable future.

--
We used to have a Bill of Rights. Now, with the rights gone, all we have left is the bill.

Stockholm syndrome by whoever57 · 2017-05-27 16:43 · Score: 2

I'm not saying ditch Windows. I'm saying let's fix this. If we can't fix it, then we ditch Windows.

We already know it's unfixable. What's the delay in ditching Windows?

I think that, for many people, if running Windows required the user to endure an electric shock, they would still not ditch it. They have such little imagination that an alternative is possible.

--
The real "Libtards" are the Libertarians!

We? by PinkyGigglebrain · 2017-05-27 16:44 · Score: 4, Insightful

" If we can't fix it, then we ditch Windows."

"We" can't fix MS Windows, only Microsoft can.

Any one think they will?

Re:We? by Bite+The+Pillow · 2017-05-27 18:46 · Score: 1

Start with the restricted baseline, and remove the stuff meant to prevent this from being useless, like the CRL checks. That's how we fix it. Oh, and document minor deviations that people may want like Defender av updates.
When that fails, patched binaries, signed if needed via Let's Encrypt.
And then we fix by ditching it. Wine or ReactOS or dump it completely.
Re:We? by gweihir · 2017-05-28 03:05 · Score: 1

I think they may not be able to either.

--
Most ACs are not even worth the keystrokes to insult them. Be generically insulted by this and ignored otherwise.

I'm not your home IT staff... by __aaclcg7560 · 2017-05-27 16:45 · Score: 1

Home and Professional users are much worse off due to limitations of some settings and lack of an IT staff...

I haven't fixed anyone's computers in years since I started charging $300 per hour.

Re: I'm not your home IT staff... by thundercattt · 2017-05-27 16:51 · Score: 1

Hahaha I had to do the same thing.
Re:I'm not your home IT staff... by __aaclcg7560 · 2017-05-27 16:58 · Score: 1

He lives and works in Silicon Valley, consoling hurt computers and fixing broken users.
These days I console hurt workstations and create tickets for the local techs to fix broken users.
Re: I'm not your home IT staff... by __aaclcg7560 · 2017-05-27 17:03 · Score: 2

Hahaha I had to do the same thing.
A coworker went a step further by requiring his customers to order and pay for their replacement parts through Best Buy so he can pick them up. No money comes out of his pocket for the replacement parts and he doesn't get stuck with a $300 video card because someone cancelled the job.
Re:I'm not your home IT staff... by PolygamousRanchKid+ · 2017-05-27 21:01 · Score: 1

These days I console hurt workstations and create tickets for the local techs to fix broken users
"User error. Please replace user and try again."

--
Schroedinger's Brexit: The UK is both in and out of the EU at the same time!

Sad by execthis · 2017-05-27 16:49 · Score: 1

Sad to read another article about painful writhing over using Windows.

Ditch Windows.

Re:Sad by MrL0G1C · 2017-05-27 20:39 · Score: 1

10x more games for windows, for the meantime I can stick with 7, I'm still waiting for 3rd parties to fix the giant feces known as windows telemetry in win10.
'Basic level' - they collect so much they say it'd take 149 min's just to read what type of info it collects:
https://docs.microsoft.com/en-...

--
Waterfox - a Firefox fork with legacy extension support, security updates and better privacy by default.

Re: Will you finally get to work already? by thundercattt · 2017-05-27 16:50 · Score: 1

Ok Anonymous Windows PR rep. I can do anything on Linux someone can on Windoze and without the anal probe

Re: Will you finally get to work already? by DavidPetersonHarvey · 2017-05-27 16:53 · Score: 4, Interesting

My business runs entirely on Linux. So does NASA. Those cute little Rovers that we have on Mars right now, Linux. Oil companies use special security Hardened versions of Linux to run the oil wells. If all these organizations are running Lenox just fine, the problem must be with you. :-)

Re:Will you finally get to work already? by David_Hart · 2017-05-27 16:59 · Score: 2, Informative

WTF are you talking about? Linux works perfectly fine. Seriously. It really does.

The problem with Linux isn't that it doesn't work, it does, and usually quite reliably. The problem is, and I think that this is what the OP meant, that it just isn't user friendly.

Installing drivers are not automatic, like the are for most devices under Windows today. Finding applications to take place of existing Windows applications, including financial apps, are much more difficult. Granted, as more companies provide web based apps this becomes less of a concern. Finally, Linux still doesn't have major gaming support. If you want to play the latest high end games then you need a PC running Windows (Yes you can buy console systems, that's a different discussion).

PlayOnLinux is the killer app by xeno · 2017-05-27 17:15 · Score: 4, Interesting

Yep, linux linux linux... all us geeks can rant about the virtues and advantages, but at the end of the day, the rank and file want to run office and a web browser. MS Office is the lock-in that sells Windows... and while Wine promised to solve that it's way too complex for most people. Enter PlayOnLinux, which makes common Windows software installation just as simple as on Windows. Point, click, install. Holy $#%@ it just works, and ALL that Windows telemetry is gone, because Windows is gone. And I don't miss it.

To keep it short: I set up Linux Mint and ran updates (about 10 min total install time, from bare metal), installed PlayOnLinux (about three clicks into the Software Manager app), then used that to install MS Office (including Visio), registered and all. The Cisco VPN works (of course), the browsers are faster (of course) and work well with corp apps, and MS Office just works. Tons of other stuff Just Works(tm). Corp IT never hears from me, all the tools just work, everything's much faster, and I didn't have to do ANYTHING at the CLI -- in fact, it was easier and much faster than typical interminable Windows setup processes. It's beyond me why people still put up with the stress of Windows, or insist that it's easier (it's not) or more secure (*snort*).

--
I think not...(*poof*)

Re:PlayOnLinux is the killer app by whoever57 · 2017-05-27 18:27 · Score: 1

and while Wine promised to solve that it's way too complex for most people. Enter PlayOnLinux, which makes common Windows software installation just as simple as on Windows
You know that PlayOnLinux is a layer on top of Wine, right? You are using Wine.

--
The real "Libtards" are the Libertarians!
Re:PlayOnLinux is the killer app by ByteSlicer · 2017-05-27 22:26 · Score: 1

and ALL that Windows telemetry is gone, because Windows is gone.
That's a dangerous assumption to make. MS Office could include its own telemetry.
Since you told us you did the registration, it connected to MS servers at least once already.
Did you take steps to isolate it from the internet afterwards?
If not, how can you be sure it doesn't spy on you?
Re:PlayOnLinux is the killer app by Opportunist · 2017-05-27 22:44 · Score: 1

So? What matters is that it makes using Wine much easier and user friendly.
This is exactly the only problem Linux still has that keeps it from breaking out into the world: You still need to know a thing or two about the machine you're using. Yes, that should be a good thing. Actually, it should be a requirement. Sadly, most people neither do know a thing or two about the machines they're using, they also do not want to learn. And there is unfortunately an OS that supports their laziness.
And just as people choose dancing pigs over security, they also choose laziness over privacy.

--
We used to have a Bill of Rights. Now, with the rights gone, all we have left is the bill.
Re:PlayOnLinux is the killer app by StormReaver · 2017-05-27 23:42 · Score: 1

...Wine promised to solve that it's way too complex for most people. Enter PlayOnLinux....
PlayOnLinux is just a front-end to WINE. While is may increase your success a bit, it's still limited by WINE's abilities.
Re:PlayOnLinux is the killer app by Ol+Olsoc · 2017-05-28 02:14 · Score: 1

Hold on - am I getting this right? Using Wine to Run Microsoft Office? Too bad there isn't a Linux solution.

--
The shepherds did so well protecting the flock that the sheep no longer believed that wolves existed.
Re:PlayOnLinux is the killer app by Anonymous Coward · 2017-05-28 12:07 · Score: 1

...Wine promised to solve that it's way too complex for most people. Enter PlayOnLinux....
PlayOnLinux is just a front-end to WINE. While is may increase your success a bit, it's still limited by WINE's abilities.
I don't think you appreciate what PlayOnLinux actually does. Many Windows programs run poorly in Wine (or not at all) unless you obtain and install various Windows components, like DirectX or corefonts or other DLLs. It's not straightforward to figure out what a given program needs, and in what combination. For applications supported by PlayOnLinux, someone has already worked this out for you and it's done automatically with no user intervention.
I don't personally use PlayOnLinux because I've used Wine for about a decade (it's been around a long time) and I'm well familiar with it. I also have my own way that I like to organize things. Just because it's not for me, doesn't mean I can't understand its value (that would be a sign of douchebaggery). Make no mistake, it makes things so very much simpler for most users. It can make or break their entire Wine experience.

All in the name... by duke_cheetah2003 · 2017-05-27 17:32 · Score: 1

Sadly, Windows is a brand, a familiar name to pretty much everyone. Linux is getting there too, but the unfortunate part is Linux has a reputation of being 'geeky, technical, difficult to use, not for end-users.' Which is really sad and completely wrong, the Linux Mint team have put together one of the easiest to use systems I've seen. It's not perfect, but it's definitely easy to use.

Linux needs to work on it's reputation with the general public. I'm not sure how we go about doing that other than educating everyone we as IT goons come into contact with. I've personally 'converted' a handful of people from Windows to Linux Mint, it's pretty amazing when people realize, 'wow, this is actually just as easy as windows. i never knew.'

Mint has a long way to go, however. Out of the box it's fantastic, but installing anything becomes quickly overwhelming for end users. I suppose if you're on the side of the fence that says 'Windows must die!' the best thing you could do is contribute to Mint's development. And show it to everyone you meet.

Microsoft might self-destruct if they push Windows S too hard, that is just a nightmare. That'll drive everyone toward Linux in a hurry. Please do it, Microsoft. Push Windows S harder.

Re:All in the name... by Opportunist · 2017-05-27 22:51 · Score: 1

It's changing. Windows is a household name, yes, but it becomes more and more something that people despise for two reasons. First, for a real one, because they get to hear time and again "bad news" about it. Privacy? Shady business tactics? Nah. Malware. Crypto trojans. And it does only happen to Windows users. No Linux user reports any problems, no MacOS has ever been affected. Yes, technically they could if those OSs had any market share interesting to the crypters, but ... folks, why shouldn't we use their ignorance for good for a change?
And second also a less real one, because they get to see that everyone who knows a thing or two about computers considers it bad. And whether they want to admit it or not, people do give something about the opinion of "experts". They don't like to be seen as suckers who use something that people who know a thing about the matter dump.
Most of them move towards MacOS. But there are also people who are starting to take a look at Linux. And that's where we are called to act. If one of your friends starts to express an interest in Linux, show them. Make sure you have a Window manager installed that resembles Windows. Show them a browser, mail, office, i.e. all the things that are simply identical to what they are used to. Make sure to stress that it's free, and legally so.
And be prepared to hold their hands for the next couple of weeks.

--
We used to have a Bill of Rights. Now, with the rights gone, all we have left is the bill.
Re:All in the name... by Ol+Olsoc · 2017-05-28 02:20 · Score: 1

S
Mint has a long way to go, however. Out of the box it's fantastic, but installing anything becomes quickly overwhelming for end users.
I hear ya Bro! I damn near died when I opened Synaptics and then I'm telling you the facking program made me enter my password - again, fer crissakes! Then I had to search through all of these gaddamned programs and get this - click on the one I wanted. Then it was scary, when a new screen popped up and told me it had to install some other programs - wut dafuk? Sounds like a virus or sumpin from the roooshians!
Finally I just gave up, asked for prayers from me friends on facebook and cried myself to sleep.

--
The shepherds did so well protecting the flock that the sheep no longer believed that wolves existed.
Re:All in the name... by gweihir · 2017-05-28 03:03 · Score: 1

Microsoft might self-destruct if they push Windows S too hard, that is just a nightmare. That'll drive everyone toward Linux in a hurry. Please do it, Microsoft. Push Windows S harder.
I do hope so. The Windows "Shit" edition should make it clear even to the dumbest user.

--
Most ACs are not even worth the keystrokes to insult them. Be generically insulted by this and ignored otherwise.
Re:All in the name... by Cro+Magnon · 2017-05-30 04:03 · Score: 1

It's changing. Windows is a household name, yes, but it becomes more and more something that people despise for two reasons. First, for a real one, because they get to hear time and again "bad news" about it. Privacy? Shady business tactics? Nah. Malware. Crypto trojans. And it does only happen to Windows users.
Heh! My mom knows squat about computers and doesn't even have one. But she heard, on TV & the radio, about this "crying" virus on Microsoft (she didn't remember "Windows", but she remembered the company).

--
Slow down, cowboy! It has been 4 hours since you last posted. You must wait another few hours.

Ditch proprietary software. Not just Windows. by jbn-o · 2017-05-27 17:49 · Score: 3, Insightful

I'm not saying ditch Windows. I'm saying let's fix this. If we can't fix it, then we ditch Windows.

You should be saying ditch proprietary software precisely because nobody but the proprietor (the very party you can't trust) is legally allowed to fix this (where the word "fix" is a fix from the user's perspective, of course, since the software already works as the proprietor has programmed it to work). That's what proprietary software means and that power over the user is why proprietors distribute their software without respecting a user's freedoms to run, share, and modify the software at any time for any reason. The system's behavior can change at any time, so even if someone monitors what a particular variant of a non-free, user-subjugating OS does now that can change later. Perhaps the software only does something bad under conditions one doesn't typically reach, or maybe an update changes how the software behaves. Furthermore, said software updates don't have to come through an updating program which seeks a user's approval before installation (such as Windows Updates).

The GNU Project has no shortage of proprietary Microsoft malware and that includes universal backdoors, snooping on user's activities, ignoring user's settings on so-called 'privacy' settings, and sending identifiable data to Microsoft and third parties ("even if a user turns off its Bing search and Cortana features, and activates the privacy-protection settings").

--
Digital Citizen

Re:BS by davester666 · 2017-05-27 17:57 · Score: 5, Insightful

While the guy might not be a world-class IT specialist, he does report the truth. Window 10 does track too much, and you can't even opt out of it.

Unfortunately, the last sentence of the summary is delusional. There is only one company that can "fix" it, and they refuse to.

--
Sleep your way to a whiter smile...date a dentist!

Re: Will you finally get to work already? by Anonymous Coward · 2017-05-27 18:01 · Score: 2, Insightful

I've found the opposite to be true. Linux ships with 99% of the drivers you'll ever need, on Windows part of the install is traditionally using another machine to search vendor sites for drivers. Also many things that are trivially simple on Linux, like channel bonding, are hard or impossible on Windows depending on vendor and hardware support.

If you need a real OS, find one by AHuxley · 2017-05-27 18:07 · Score: 1

Just enjoy Microsoft for games.
Let Microsoft track all the hours spent playing games.
Anything of value use a real OS.
Why risk all the malware, CIA, NSA code and other security services?

--
Domestic spying is now "Benign Information Gathering"

Re:If you need a real OS, find one by gweihir · 2017-05-28 03:01 · Score: 1

Indeed. As soon as Win7 goes out of security-support I am doing that. Not quite sure how yet, but possibly just by using two machines and a KVM switch. Alternatively, if Graphics passthrough works well by then, I might jail Win10 in a VM.

--
Most ACs are not even worth the keystrokes to insult them. Be generically insulted by this and ignored otherwise.

So What's the Right Way to do Telemetry? by rsmith-mac · 2017-05-27 18:33 · Score: 1

I want to zig-zag here a bit. We all agree that MS is doing it wrong with telemetry on Windows 10. So then, fellow Slashdotters, what is the right (or at least, righter) way to do it?

Do we make it opt out or opt in? If it's opt out then most people unknowingly participate, which increases the chance of telemetry seeing something it shouldn't. If it's opt in then most people unknowingly don't participate, and the pool of telemetry-enabled systems will be very small and biased towards power users.
What's okay to collect? What should be forbidden? Very roughly speaking, the more you understand how your users use your software, the better you can optimize it for their needs. But the opposite side of that is again privacy issues. So where's the line?
How do you communicate with users what you're doing with the data? No one seems like MS's built-in descriptors or the website. People want details, but then many more of them will gloss over anything that's more than a paragraph long...

I don't see telemetry ever going away entirely, and I'm not sure that would be a good thing even if it could. If there's one lesson to take from the first couple of decades of computing, it's that the general public and their computers-as-appliances attitude have no idea what they want, and even when they do, they can't explain it very well. Whereas telemetry, for better or worse, tells you precisely what the user is actually doing.

Re:So What's the Right Way to do Telemetry? by Some+nick+or+other · 2017-05-27 19:21 · Score: 1

How about you let the users opt in, and if you need a more representative sample, you actively get a focus group. It costs more, but it's not like MS is broke or anything.
Re:So What's the Right Way to do Telemetry? by Megane · 2017-05-28 00:45 · Score: 1

Do we make it opt out or opt in?
The problem right now is that it is neither. Opt-out would be an improvement.

--
#naabhaprzrag, #sverubfr-000, #agi-fcbafberq, negvpyr[pynff*=' negvpyr-ary-'] { qvfcynl: abar !vzcbegnag; }
Re:So What's the Right Way to do Telemetry? by swb · 2017-05-28 00:59 · Score: 1

A big problem with telemetry in my opinion is that it's being used as a form of retroactive quality control, encouraging rapid version cycling and the release of immature code.
I don't think they're using telemetry to identify edge cases that reasonable testing wouldn't catch, they're using it to find common problems that thorough testing would identify. I have a hard time believing that edge cases can even be found in the fire hose of data presented by mass telemetry. I'd wager it takes pretty serious analytics to even find common problems in the large and messy data set presented by mass telemetry, and that for the most part on the common problems, widely experienced would register.
Telemetry is beta testing brought to production.
Re:So What's the Right Way to do Telemetry? by gweihir · 2017-05-28 02:57 · Score: 1

Sounds plausible.

--
Most ACs are not even worth the keystrokes to insult them. Be generically insulted by this and ignored otherwise.
Re:So What's the Right Way to do Telemetry? by Kernel+Kurtz · 2017-05-28 05:35 · Score: 1

Very roughly speaking, the more you understand how your users use your software, the better you can optimize it for their needs.
You don't actually think that is why they are doing it, do you?

Direct edit by sir-gold · 2017-05-27 19:21 · Score: 1

The author puts the difficulty of opting-out in term of numerous, confusing, and hard-to-find settings that need to be changed.

All of these settings must be stored in a database somewhere on the HD, why not create something that directly edits the values and automates the process?

Re: Will you finally get to work already? by Anonymous Coward · 2017-05-27 19:40 · Score: 1

The (soon manned!) SpaceX Falcon9 rocket runs on linux, including control of each of the 9 engines and in-flight updating of orbital parameters in case of an engine problem. The Windows license specifically forbits using Windows for anything more serious than a coffee machine.

Re: Will you finally get to work already? by Anonymous Coward · 2017-05-27 20:21 · Score: 1

>Those cute little Rovers that we have on Mars right now, Linux.

Ackchyually, they're running vxworks.

Spybot anti-beacon by nospam007 · 2017-05-27 21:06 · Score: 3, Interesting

Spybot abti-beacon fixes mst of it, even if it can't kill cortana.

https://www.safer-networking.o...

Fix: Restore "Customer" instead of "User" by Anonymous Coward · 2017-05-27 21:13 · Score: 1

The ultimate problem is that Microsoft, Apple, Adobe, etc. have paying customers but over the past few years their marketing and business wonks have been looking covetously at how Facebook, Snapchat, Twitter, etc. exploit... err... I mean "interact" with their non-paying users and have decided that they want their have their cake and eat it to. If Microsoft wants to give away the software or hardware (without attaching conditions about what software the vendor can or can't sell) great, but if I'm buying a license for software to run on equipment I own that should (in an ideal world) mean you have no right to exploit me or my equipment for further monetary gain.

Re:Will you finally get to work already? by Orphis · 2017-05-27 21:18 · Score: 1

It works so well that I'm currently bisecting my kernel to find a regression for sound over HDMI on my HTPC that broken some versions ago.
I'm currently down to some long list of 200 changes from some "drm-next" branch. Yay, so fun!

Linux (the kernel) works like just any other kernel. The problems are usually in the userspace though.

Re:BS by iampiti · 2017-05-27 22:21 · Score: 5, Informative

Yes, only Microsoft can fix Windows, but they won't do it unless they feel threatened.
When the PS4 and Xbox one were about to be released Microsoft revealed that the Xbox would require constant connection to the Internet to play. They players revolted and Sony said they wouldn't do it. Microsoft (correctly, IMO) sensed that could be a fatal blow to their console and backtracked really fast.
Something of that caliber would have to happen for they to remove all the spying in Windows. What could that be? I can only think of mass migration of governments and big companies. Alas, that is very unlikely to happen.
In the end this is just another thing that shows how bad monopolies can be (In this case is a monopoly in the sense of "OS that can run Windows software and drivers", ReactOS could theoretically be an alternative but realistically they'd need billions of dollars to get close to Windows).

Comment removed by account_deleted · 2017-05-27 22:37 · Score: 1

Comment removed based on user account deletion

Re:Will you finally get to work already? by Opportunist · 2017-05-27 22:38 · Score: 1

About 10 years I'd have agreed with you. But today? Aside of your gaming argument, this isn't the case anymore. Installation of tools and drivers is actually easier in Linux today than it is in Windows because way more tools are part of the whole distribution package. There are very few tools and programs I had to install manually lately, and I tend to use rather exotic tools due to my job.

Your argument about games is (still) valid, though even there you can see improvement. With more and more games using standard platforms like Unity or Unreal Engine which come prepared to compile your programs in Windows/Linux/MacOS without any major code changes, games running natively in Linux becomes at least a reality in Non-AAA games with their own engines.

--
We used to have a Bill of Rights. Now, with the rights gone, all we have left is the bill.

Re:BS by zifn4b · 2017-05-27 22:53 · Score: 5, Informative

Window 10 does track too much, and you can't even opt out of it.

True, you can't opt out of it within Windows which is pretty much unethical in my book. There are third party tools available (like Spybot Antibeacon) where you really can turn it off.

Know what the problem is? Remember all that talk about big data being the next big thing? It's here and all this "telemetry" data is being sold because it is considered very valuable.

--
We'll make great pets

Re: BS by Anonymous Coward · 2017-05-28 00:48 · Score: 2, Informative

Spybot Antibeacon is decent, but best paired with W10Privacy.

Here's the thing about Win10 though: changing general settings, registry keys, and group policy settings isn't enough. You also have to block many domains and ip's of various Microsoft telemetry servers! The thing still spits out data even with every conceivable setting and tweak utilized!

W10Privacy includes adding firewall rules and hosts file entries to achieve this. I suggest copying those entries and blocking them at the gateway as well. Even then, every time a new MS patch comes out, I discover yet another process sending out unfocumented data to yet another telemetry server. It's fucking ridiculous.

Re: BS by TheNarrator · 2017-05-28 00:51 · Score: 2

The one advantage of closed source over open source is it lets the IP owner keep things broken that would otherwise be fixed by the community.

Re:BS by LVSlushdat · 2017-05-28 01:40 · Score: 5, Interesting

The *REAL* problem is you can use the Antibeacon tool to turn off the spyware aspects of Windows, but every time you get another "update" or new version from MS, they default those spyware aspects back on, so you're playing an endless game of "whack-a-mole" trying to keep MS's nose of your bidness.. I used/supported Windows for 20 years as a sysadmin, and never really trusted MS, but since Windows 10 came out, ANY trust I may have had for MS has evaporated. When I retired in 2010, I moved all of my computers over to Linux and thats where they'll stay..

--
THANK YOU, Edward Snowden!! Americans owe you a debt of gratitude (whether they know it or not..)

Re: BS by Z00L00K · 2017-05-28 02:03 · Score: 1

The only way to solve this is to beat Microsoft at their own game by figuring out the telemetry data that's sent then spam them with faked data that's completely weird.

If enough people do that then the data they collect is useless.

--
If builders built buildings the way programmers wrote programs, then the first woodpecker would destroy civilization.

I will mostly do without Win10 by gweihir · 2017-05-28 02:51 · Score: 1

As I am a gamer, unless Vulcan makes Linux version of most games a reality by the end of security support for Win7, I cannot fully get rid of it. But I will likely go for one machine for gaming only and a Linux box for everything else. Alternatively, if graphics passthrough works well by then, I will jail Win10 in a VM on a Linux base. But there is no way in this universe I am going to give Win10 access to my email, browsing, and other things.

--
Most ACs are not even worth the keystrokes to insult them. Be generically insulted by this and ignored otherwise.

Re:everything tracks get over it by gweihir · 2017-05-28 02:53 · Score: 1

There is a difference between things you can turn of and things you cannot. That is the whole point of the discussion. You seem to have missed that.

--
Most ACs are not even worth the keystrokes to insult them. Be generically insulted by this and ignored otherwise.

Re:Linux you say? by gweihir · 2017-05-28 02:55 · Score: 1

You should cut back on the drugs. They are not good for you.

--
Most ACs are not even worth the keystrokes to insult them. Be generically insulted by this and ignored otherwise.

What setup will DOD, CIA and NSA use internally? by schwit1 · 2017-05-28 02:57 · Score: 1

I doubt they would permit this data leaving their networks. Same for some law firms and any other orgs working with sensitive data.

Re: BS by Anonymous Coward · 2017-05-28 03:07 · Score: 1

You can use the Data Protection Act in the UK to request that "a company provides all digital information that they store about you, and that where in binary/electronic format, a detailed easy to read clear, legible text explanation is provided alongside a digital copy". It will only cost a tenner.

Re: BS by eneville · 2017-05-28 03:16 · Score: 1

It would be quite hard to contest the data you get back though. It is also quite hard to ensure that their process costs them more money than the telemetry data they're selling on.

--
Why UNIX?

Shit "article" by DogDude · 2017-05-28 03:27 · Score: 1

Where's the info? This article is about a Twitter rant, but then has no actual information in it. This was a waste of my time to even look at.

--
I don't respond to AC's.

It does worse than that!!! by Khyber · 2017-05-28 04:43 · Score: 1, Interesting

I caught Microsoft fucking my entire system over when I got new hardware and HAD to go with Windows 10 - after installing Windows 10 (Legit license) I had to install an audio driver.

Naturally, the driver prompts me to reboot.

First fucking thing it does - go straight into the "Updating computer, please wait."

It wasn't updating. What it was doing was scanning my hard drive and wiping out anything that wasn't Microsoft-related - EVERYTHING in my Windows.old directory was wiped out - my music player (which was then replaced by Groove Player,) anything that was in my old Windows 7 user profile (in-progress design work, photography work I had JUST paid for and received, future business plans, almost-finished bylaws drafts,) the ONLY things it did not touch in the Windows.old directory were Microsoft's own things, anything and everything else was deleted from my system during that 'update.' PRogram Files (x86) and regular x64 directories were wiped of anything that wasn't Microsoft, as well.

And there was no reason for that to happen, I had over 300GB free space on my drive and I know full and goddamned well Windows 10 updates didn't need to free up any space.

So, here's see what Microsoft's Windows 10 actually does:

1. Violate antitrust law by removing competing programs and replacing them with their own.
2. Violate CFAA by purposefully scanning and deleting files without explicit permission.
3. Violate IP law by destroying IP which doesn't belong to them.
4. Possibly committing corporate espionage by sabotaging plans for the formation of corporations by destroying their charter and bylaw data which is in construction.
5. Trespass to Chattels by violating the state of my system.
6. Wire Fraud by committing such crimes over wire.

I'm heading to the DA's office Tuesday to file charges. I'm done with these motherfuckers and I'm personally going directly after Satya Nadella's fucking wallet.

--
Still waiting on Serviscope_minor to wake up to fucking reality and realize that Jessica Price isn't going to fuck him.

cashed cow by epine · 2017-05-28 04:52 · Score: 1

Also known as "battered user syndrome".

When all you've got is a deep frier, everything looks like browbeaten Timbit tempura.

42 years now, and still haven't changed the original oil.

Re:Will you finally get to work already? by knorthern+knight · 2017-05-28 06:32 · Score: 1

> Installing drivers are not automatic, like the are for most devices under Windows today.

Windows Update automatically installed new drivers for webcams... which made the webcams useless... oops. http://www.telegraph.co.uk/tec... And if you manage to revert the update, the next update will re-install the bad driver. Ask yourself... unless there is a security fix or a genuine feature improvement involved, ***WHY*** do you need constant driver updates?

--

I'm not repeating myself
I'm an X window user; I'm an ex-Windows user

Re:BS by mea2214 · 2017-05-28 14:31 · Score: 1

You can also firewall all your Windows boxes, run your own DNS server, and hijack microsoft.com, msn.com, live.com, etc. Or simply whitelist IP ranges you need for various Windows 10 services and use Linux VMs for all other Internet related activities. Between this and the forced reboots which require a certain level of "hacking" to reliably disable Microsoft needs to have a big fat class action suit filed against them. There could be anti trust issues too if our current government were honest brokers of justice.

fix it! by sad_ · 2017-05-28 22:45 · Score: 2

easy, just fork the code and remove all those tracking bits...
what is that? you can't do that?
well then there is nothing you can do to fix it, so ditch windows.

--
On a long enough timeline, the survival rate for everyone drops to zero.

Re:Gaming VMs by Opportunist · 2017-05-28 23:18 · Score: 1

I bet my TrackIR that the Asus-Soundcard I have will crap out earlier...

But I'm intrigued, could you give me some pointers?

--
We used to have a Bill of Rights. Now, with the rights gone, all we have left is the bill.

WHY do they feel they need to do this anyway? by iq145 · 2017-05-29 07:06 · Score: 1

Why is it so important to them to know what we're doing online? Why can't we opt-out? Are they that nosey? It gains them nothing! (This is why people kiss Ed Snowflake's butt to this very day, even though what he did was traitorous. He wasn't "exposing spying". He falsified his credentials and used other agents' identification so he could flat out steal sensitive information...)

Hundreds of settings? by sabbede · 2017-05-30 00:16 · Score: 1

That can't be right. Dozens, sure, but not hundreds.

Re:BS by zifn4b · 2017-05-30 05:12 · Score: 1

When I retired in 2010, I moved all of my computers over to Linux and thats where they'll stay..

Kudos to you and I would do the same if it weren't for the fact that I can't use all the software I like on Linux and that is the problem. If Linux supported all the hardware and software that people commonly use, Windows would be a thing of the past.

--
We'll make great pets

Slashdot Mirror

Security Analyst Concludes Windows 10 Enterprise 'Tracks Too Much' (xato.net)

135 of 284 comments (clear)