Welcome | Sign In
TechNewsWorld.com
Privacy

MS to Users: You Can't Handle the Truth

Print Version
E-Mail Article
Reprints
MS to Users: You Can't Handle the Truth

By Chris Maxcer
TechNewsWorld
09/14/07 1:26 PM PT

One might think that turning off the feature that allows Windows Update to automatically download and execute new patches would, in fact, disable automatic updates. Apparently, one would be wrong. This behind-the-back updating, said Microsoft, is necessary in order to avoid misleading customers. Some users found it rude, and others said it could even potentially upset criminal cases.


Listen to Your Customers, Grow Your Bottom Line.
Learn how loyal customers can be your best advocates for evangelizing your products and brand, while helping you to dramatically gain new business. Download "Customer Experience Management: Engaging Loyal Customers to Evangelize Your Brand."

Users of Microsoft's (Nasdaq: MSFT) Windows operating system may be surprised to learn that Microsoft has been secretly updating their PCs even after they've activated a feature that seemingly prevents automatic updates.

So far, discovery that Microsoft is changing code on users' PCs without their knowledge is limited to a single program -- the Windows Update program that goes online to check for, and initiate the download of, other Windows updates.

"The upshot is that a longstanding procedure in Windows Update requires it to self-update before it is able to recognize that new updates are available," noted Nick White, a Microsoft product manager, on the Microsoft Windows Vista Blog.

"This self-updating is done regardless of whether the user has enabled automatic checking, download and/or installation of updates. It does so in an effort to avoid WU misleading the user to think s/he is up-to-date simply because s/he was not receiving notification that updates are available," he wrote.

For more detail, White pointed to a post from the Microsoft Update Product Team Blog, where Nate Clinton, Microsoft's Windows Update program manager, failed to offer any true technical reason Microsoft couldn't let end users manually start a Windows Update process on their own, at their own discretion.

"Had we failed to update the service automatically, users would not have been able to successfully check for updates and, in turn, users would not have had updates installed automatically or received expected notifications," he wrote.

For tech professionals, Microsoft's explanation may ring hollow. It may be easier for Microsoft to automatically update Windows Update, but it is by no means the only technical way to get the job done.

Truth and Consequences

While the practice of secret automatic updates may seem relatively benign, it can have severe consequences.

"The most concerning part of this is the potential for instability within in your environment. Historically, we've had problems with patches from Microsoft in the past where they would break things," Paul Henry, vice president of technology evangelism for Secure Computing, told TechNewsWorld.

"Within the enterprise space, most customers don't automatically update -- they prefer to user a lab environment to test the updates to make certain they don't break anything. That's been taken away from us with Microsoft treading down this path of automatic updates. Personally, I find it rather frightening," he explained.

Potential for Havoc

Even if a Microsoft update doesn't break an application, it can have far-reaching ramifications outside of the PC's plastic case.

"I know a great many people are concerned -- I have friends in the forensic community that are very concerned that an update could make a change to a platform that is being used in a forensic investigation that could potentially alter the outcome of that investigation," Henry said. PCs used in forensic investigations must be very tightly controlled so that no evidence can be altered, and even a possible opening for such alterations could compromise the use of the evidence in a criminal case.

"Some people in law enforcement are now considering blocking access to Microsoft's update servers to prevent this in the future," Henry noted.

Public Awareness

The biggest issue with the update seems to be that Microsoft didn't provide a clear public notice of how the update process works, leading to uncertainty about how it may be used in the future.

"I think what people are fearing is that, if you read Microsoft's license agreement very carefully, Microsoft retains the right to automatically update their code," Henry explained. "Today, Microsoft is updating the update program itself -- tomorrow are they going to be updating my operating system?"

More Faux Pas Than Tech Problem?

"Personally, I don't think it's inappropriate for Microsoft to keep Windows Update updated so that it continues function," Stephen O'Grady, an industry analyst for Redmonk, told TechNewsWorld.

"What is inappropriate is to not be overly transparent in logistical terms, because customers that have chosen non-automatic updating should not be surprised in this fashion," he said.

Most distributions of Linux, O'Grady said, automatically update themselves too. "My Ubuntu [installation], for example, keeps itself updated," he said.

Could a user turn it off entirely?

"Certainly," O'Grady said. "Like most things in Linux, updating is configurable. But out of the box, it keeps itself updated. The difference is that most users are inclined to trust Linux distributions further than Microsoft because there are no licensing or DRM issues involved."

Print Version E-Mail Article Reprints More by Chris Maxcer

Talkback: Be the first to comment on this story.

Related News Alerts

Microsoft Activate Alert | Search Archives

More by Chris Maxcer

The iPad's Cruel Teaser
March 09, 2010
The iPad ad that debuted on Sunday was remarkable in how many functions it managed to cram into just 30 seconds. Document creation, email, e-books, media viewing -- all that and more was demoed using just two hands and a hip soundtrack. However, the ad left quite a few important questions about the iPad unanswered. 		The iPad Catalyst Will Light a Lot of Fires
March 02, 2010
I think we're going to get a lot of fantastic content options for mobile devices in 2010, even if you don't pony up for an iPad. While the iPad will likely be a raging success, it'll also help generate a market for alternatives. The question is, can we credit -- or blame -- the iPad for generating all this mobile action? Maybe not the iPad alone, but it's certainly the latest catalyst. 		With Smut Ban, App Store Exposes a Jiggly Set of Rules
February 23, 2010
Apple's stance on risque iPhone and iPod touch apps is understandable, but the whole incident does underscore the App Store's frustratingly fickle nature. Apple should either draw up a precise, crystal-clear set of guidelines for app developers or just admit it's completely subjective -- "If we like it, it's in; if we don't, it's rejected." Right now, its policy seems to be somewhere in between.
Don't miss a story -- sign up for our FREE e-mail newsletters and view the latest headlines at a glance.
Tech News Flash [ View Sample ]
E-Commerce Minute [ View Sample ]
ECT News Network Weekly Newsletter [ View Sample ]
Free eBook: Secure Your Datacenter
Click here to download today.
Shortcuts
> Get Business and Technology News Alerts
> Most Popular | Spotlight Features | Exclusives
> This Week on ECT News Network | Podcasts
> WiFi Hotspot Locator
> Inside TechNewsWorld
TechNewsWorld
E-Commerce Times
MacNewsWorld
CRM Buyer
LinuxInsider
Today's TechNewsWorld Sponsors
Secure Your Datacenter
Mitigate risk and maximize the benefits of virtualization. Get the free eBook today.
Data Deposit Box Online Storage
Sign up for a 2 week free trial and start earning recurring revenue today.
ECT News Network Information
Reader Services
Corporate
ECT News Network
Terms of Service | Privacy Policy | How To Advertise
Copyright 1998-2010 ECT News Network, Inc. All Rights Reserved.