[32] A few Vista related questions

Quote:

---

Originally Posted by SuperSparks

Yes, I seem to recall reading about this recently - MS will still update the update system automatically irrespective of your Windows Update settings.

---

Quote:

---

Originally Posted by bistro

According to the article, it seems the only way to completely prevent the auto updates is to go into the Group Policies and whack it from there. Doesn't sound like MS plans on "correcting" the issue.

---

Quote:

---

Originally Posted by Broni

It never happened to me, but if this is true, it's just ridiculous!

---

You'll get a new Windows Update, like it or not
http://windowssecrets.com/comp/080814#story1

Quote:

---

Microsoft will soon install a new version of Windows Update on your computer, even if you've set your PC not to download and install any updates.

With such a potential for confusion, it's a good idea for you to know what's going to be done to your machine by this important but often misunderstood tool.

When turning updates off really doesn't

Windows Secrets first disclosed on Sept. 13, 2007, that Microsoft had been silently downloading Windows Update (WU) executable components on users' computers — even when the users' auto-update settings required advance permission. At the time, Microsoft admitted in its Update Product Team blog that it has carried out this practice for many years, as I wrote in a follow-up column.

[...continues...]

---

Liars! Cheats! Thiefs in The Night! Dastardly Dastards! All Around Bad guys!
:D

Just goes to show that MS wants to control PCs, not just provide a service.

This looks like the makings of a movie...OS provider puts on front to look like they are serving mankind, only secretly downloading instructions to every PC in the world so that at the opportune moment they are taken over to form a giant supercomputer and so the corporation takes over the world and the upper management of that corporation becomes super-rich and powerful and.....*!*......nah.....wait a minute....didn't they already do this idea in Hercules vs. The Mole People?

Wait a sec. I'm little bit confused:

Quote:

---

Consequently, Windows Update itself may be updated even if you select

---

Does it mean, that M$ may update WU application only, without my knowledge, or install some actual updates, without my knowledge?
If the latter, I'm gonna turn updates off, right away.

My understanding is that they will forceably install a new windows update application on consumer PCs using their push technology.They have had for a long time the ability to push other updates indipendant of end user system settings but have not as yet chosen to use it elsewhere.

But the mentioned article seems to be talking about WU application only, not about any particular update, or...I'm reading it wrong?
I need to know, because I'm getting nervous...LOL

I think you are reading it right Broni. just the WU application only.

Remember all those HP rigs with AMD cpu's and the intel junk in the regs.
Can you imagine the mess that would have been if pushed. :(

Thanks for saving my sanity....:)

Microsoft has confirmed that Windows Update (WU) periodically installs certain files even if you've selected a "do not install" option. It has been silently installing nine small executable files on Windows XP and Vista, despite the fact that users had disabled auto-installation. The files that WU has overwritten to date consist of benign support files -- but many Windows users have expressed outrage that any process was installing files without notification.

http://windowssecrets.com/2007/09/20...indows-updates

Quote:

---

Independent test labs confirm the behavior

One of the first test centers to independently confirm WU's silent installs was eWeek Labs. An eWeek analyst, Andrew Garcia, published a blog entry on Sept. 13 documenting the logs of two test machines that had been set to Notify but do not install updates. According to Garcia, even though one of the PCs hadn't been touched in months, both machines showed evidence that version 7.0.6000.381 of the files had been installed in August.

The lab had acted at the request of eWeek's Microsoft Watch columnist Joe Wilcox, one of several journalists who picked up on a press release issued by Windows Secrets publicist Revell-Pechar Inc.

In a series of three blog posts, Wilcox wrote that nothing in the Windows Update Privacy Statement gives Microsoft "permission to update without user consent" (Sept. 12); that "the silent downloads also raise questions about ownership" of users' PCs (Sept. 13); and that Microsoft was using the existence of its employees' blog posts "to avoid answering tough questions the news media might ask about privacy and Windows Update" (Sept. 14).

One blog, Nynaeve, recounted yet another downside to the silent updates. The patching process had awakened the blogger's portable computer from standby mode at 3:00 a.m. while stored in an insulated laptop bag. Because the update process failed to put the computer back into standby after the installation, the laptop's battery was exhausted by the time the writer discovered the problem later that day. Furthermore, the fact that the computer was running in a bag for so long could damage the machine and might even pose a fire hazard.

To say this story has sparked controversy would be an understatement. The comments flying around the Web vary from outrage to the exact opposite position: that Microsoft is completely right to install WU support files, regardless of the user's Automatic Updates preferences.

One account, in the Handler's Diary blog, said there was no cause for concern since the Turn off Automatic Updates setting in the Automatic Updates control panel prevents the silent updates from occurring. (This is true, although it generates repeated boot-up warnings, as described below. Some readers incorrectly inferred from my article that even this setting allows stealthy updates; it does not.)

Perhaps the situation is best summed up by reporter Todd Bishop, who wrote in a Seattle Post-Intelligencer article:

• "But all of those details shouldn't obscure the bottom line: According to the evidence assembled by Windows Secrets, these updates were silently downloaded and installed, without notifying end users, even in cases where those end users had specifically told Microsoft, through their PC settings, not to install updates without letting them choose to do so."

Reaction from Microsoft to the article was almost immediate. Nate Clinton acknowledged that the silent file writes are not what users expect after they disable automatic installs:

• "The point of this explanation is not to suggest that we were as transparent as we could have been; to the contrary, people have told us that we should have been clearer on how Windows Update behaves when it updates itself. This is helpful and important feedback, and we are now looking at the best way to clarify WU's behavior to customers so that they can more clearly understand how WU works."

Soon after Clinton's post, Vista product manager Nick White wrote his own response to the reactions pouring in from angry Windows users:

• "Your comments are completely understandable and I'm making sure the WU team is well aware of how the community feels on this issue. You'll note in Nate's post (the one I linked to) that we freely admit to having fallen down on this issue and that we can, and should, do better when it comes to behaviors of this type and the necessary disclosure of same. Please know that we hear what you have to say and are taking your feedback seriously. (I, for one, want to avoid similar events in the future, as reactive posts such as this one are not what I want to spend my time blogging about.)"

Clinton's initial explanation, which suggested that Windows Update had no choice but to install support files silently, drew a large number of critical remarks from Microsoft's normally supportive developer community. For example, a commenter identified as TheDave wrote that WU could easily notify users that updates were needed:

• "The situation I am describing is *exactly* the same thing as happens with a out of the box XP SP2 install, you see a WU update available and nothing more. Once you install WU, you see the dozens of other updates available. Works great in theory, and in practice.
  
  "There is absolutely no excuse for updating executable code on a customer's machine when the customer has selected a choice of 'but let me choose whether to install them.' Period. Full stop. No exceptions."

---

Well, this is upsetting....

I agree.

Microsoft's stealth updates altered nine files on either Vista or XP, including (on both), wuapi.dll, wuauclt.exe and wups2.dll.

As Windows Secrets' Scott Dunn put it, "To have this done behind our backs is disconcerting".

The Vista EULA (pdf) does not explicitly give permission to Microsoft to download and apply updates without consent.

The Windows Update Privacy Statement also does not explicitly give permission to update without end user consent.

How to put an end to silent updates
http://windowssecrets.com/2007/09/20...indows-updates

Quote:

---

... if you're an individual or a small business using Windows Update (or its enhanced sibling, Microsoft Update), you may be concerned about Microsoft installing patches before you've had a chance to research their reliability. In that case, you can completely turn off the Automatic Updates Agent, thereby preventing updates or even notifications from occurring.

If you take this step, you'll become solely responsible for learning about new Microsoft patches yourself. I'll explain below how to adapt to this situation. In the meantime, here's how to turn off Automatic Updates and prevent stealth installs:

In Windows XP, take these steps:

Step 1. Open Control Panel and launch Automatic Updates (in the Security Center category).

Step 2. Select Turn off Automatic Updates. Click OK.

In Windows Vista, take these steps:

Step 1. Open Control Panel and launch Windows Update (in the System and Maintenance category).

Step 2. In the left pane, click Change settings.

Step 3. Click Never check for updates (not recommended). Click OK.

Step 4. Click Continue, if prompted by User Account Control.

With Automatic Updates turned off, Windows Update will still update itself (and notify you of patches), but only when you manually launch Windows Update and give your consent.

What to do about repeated boot-up warnings

Turning off Automatic Updates can cause Windows Security Alert pop-up balloons to appear in the taskbar tray every time you log on. (See Figure 1.)

http://windowssecrets.com/images/wsn...pdates-off.gif
Figure 1. Turning off Automatic Updates causes scary error balloons featuring a red shield.

If this bothers you, Windows XP allows you to suppress any warnings that relate to Automatic Updates. You can also do this in Vista but, unfortunately, the newer OS forces you to turn off all security alerts just to suppress the Automatic Updates warnings.

To eliminate the warning balloons about Automatic Updates in both XP and Vista, take these steps:

Step 1. Double-click the red shield icon in the taskbar, or open the Control Panel and launch the Security Center.

Step 2. In the left pane or box, click Change the way Security Center alerts me.

Step 3. In XP, uncheck Automatic Updates and click OK. In Vista, select the second or third option.

Use Secunia's Online Software Inspector (OSI) to check for updates

With the Windows Update Agent turned off, how will you know if you have the latest security patches and updates you need?

First, read the Windows Secrets Newsletter that comes out two days after Patch Tuesday. Look in our paid section for descriptions of any patches that are reported to have negative side-effects, and use our recommended workarounds if any problems might affect you. (How to get the paid version.)

Then, to check for needed updates to Windows and dozens of other programs, use the Secunia's Online Software Inspector (OSI). This free service was described in the Aug. 16 and Sept. 6 issues of Windows Secrets.

Once you know what updates you need, you can visit the Microsoft Update Web site, which offers updates for both Windows and Microsoft Office. The Secunia report includes a link to Microsoft's site and other update sites so you don't even have to bookmark them.

Users don't expect Microsoft to be perfect. But because of the company's very human mistakes with some previous updates, many customers understandably want to do their homework before installing every patch Microsoft offers. If the company's own software settings can't be trusted to provide that level of control, users will continue to seek alternatives.

---

Quote:

---

Originally Posted by Broni

windowsupdate.log is a file where history of updates comes from.
Can you actually post a content of that log?

---

The file size is currently 1.34MB, I'm not quite sure how many posts it would take to post it in its entirety, but it would probably be a lot. I also can't attach it to this post because it exceeds the size limit. The log goes all the way back to when I installed Vista, so is there something I should look for that will indicate why my Update History in the control panel only shows the last two updates installed?

Just look when are the latest entries from...

That helps me to see when past updates were installed, but I'm still wondering why I can't view the update history from the control panel anymore.

Are you saying


Open Uninstall a Program from the Control Panel
Click 'View installed updates' in the task bar on the left

Does not work?

http://www.scottgu.com/blogposts/sp1vista/step1.jpg

I can view my installed updates if I go to Control Panel > Programs > Programs and Features > View Installed Updates. My question is why I can't view past Update History by going Control Panel > Check For Updates > View Update History. I cann only see the past two Windows Defender updates by doing that. The day I attempted the system restores, that list became empty until I got the last two Windows Defender Updates.

Also, this is for a Vista computer, if it's possible to have that view, I don't know how to get it. I've only seen it like that on my XP computer.