Users of Windows who have set the Automatic Updates option to "Download updates for me, but let me choose when to install them" were surprised to find that the latest WMF patch had overridden these settings and not only installed the patch, but rebooted the machines as well.
Post a Comment
Member since:
2005-08-26
Fans: 1
Same settings, no automatic reboot here.
In fact, I had to wait several days before I found an opportunity to actually reboot.
Windows 2000 Pro SP4 and Windows XP Pro SP2 tried.
I'm guessing that these cases are due to obscurities in the configurations of the affected systems, and not any widespread problem.
Member since:2006-01-12
Fans: 2
Member since:2005-06-29
Fans: 5
I believe it happened here on one computer that didn't have the first wmf update installed when the other was released. I was told by a family member who's claim was that her computer did more or less what was reported in the article. I don't know how valid this claim is since the person is honest but also computer illiterate, but since I heard of it before this article was out, and now there is an article about it, I'm inclined to give the article the benifit of the doubt.
Just because it didn't happen to you doesn't mean it couldn't have happened to someone else.
Member since:
2005-10-02
Fans: 21
Member since:
2005-07-06
Fans: 13
Member since:2005-10-02
Fans: 21
Member since:2005-07-12
Fans: 2
Member since:2005-11-14
Fans: 0
but then, read your EULA, Microsoft is in no way ever responsible for a loss in data if you use its systems.
What about if Microsoft was the one who caused the data loss without the user's knowledge or consent? These aren't normal circumstances, and I would be very appreciative if someone were to point out the specific line(s) in the EULA that give Microsoft the right to remotely override your system settings and reboot your machine while it is unattended, which may or may not have resulted in the loss of data.
Member since:2006-01-12
Fans: 1
How did you verify that microsoft changed any setting on your system?
The majority of the posts from people complaining about the reboots shows they never understood their settings.
They always had this policy configured, they realized this particular reboot just because of the media attention around this patch.
Please note that I don't like MS policies at all, but with so much REAL problens from it we could avoid ghosts hunting.
Edited 2006-01-12 08:50
Member since:2005-07-08
Fans: 0
Well, since I'd say that most EULAs are legally enforceable...any judge would have to rule in favour of the complainant in such a situation...but then, given the Sony fracas, and the inability of any government body to take Sony to task for their illegal activities, I don't hold much hope of the ordinary average user's rights being protected by the system. The system now exists to protect the large and rich corporations, not the ordinary people like you and me.
Dave
Member since:2005-07-06
Fans: 3
This isn't strictly a Microsoft thing. Other companies and even independent developers of OSS have something similiar. I've seen it many times in the licenses where it will state "use at your own risk" or "Company is not responsible for any data loss, malfunctions, or harm caused by use of this software" or as simple as "the developer claims no responsibility".
Member since:
2006-01-12
Fans: 1
Ths is just the usual Anti MS Paranoia .
Some research revealed this is an usual policy for non administrative users, however this can also be changed on the registry:
HKEY_LOCAL_MACHINESoftwareMicrosoftWindowsWindowsupdateAUNoAutoRebootW ithLoggedOnUsers" = 1
Edited 2006-01-12 08:31
Member since:2006-01-04
Fans: 0
Non-administrative users applying patces? Weird! What
does the admin do then? Ohhh. I see.. he/she is enjoying
the privilege of rebooting the system manually!
Furhermore, if you go deep enough into the registry, or
even deep into the code, you can change ANY option; and
even can remove vulnerabilities!
I cannot understand why an admin should have an
equivalent of a PhD degree in undocumented registry
features. We, UNIXers do such things in human readable
AND documented config files. (See OpSYS-101 notes/text books).
Member since:2006-01-12
Fans: 1
Uh ?
The patches are not applied by non-administrative users, the patches are installed by the windows update software when non-administrative users are logged on, however this was an administrator decision (wether the admin understood it or not).
If you are system administrator (even just for your home pc) and you are using an update option that you do not understand read something about it. This is valid for both linux and windows admins.
This entire topic just demonstrates how much windows users/admins don't care much about the details of their system until they get something they don't expect.
If there is a feature/option which they were not aware of, its MS overriding their decisions... what a joke.
Member since:2005-07-09
Fans: 12
Member since:2005-09-07
Fans: 0
Member since:2005-06-29
Fans: 5
Like someone is really going to read all four books, or for that matter even one. Sysadmins for companies maybe, because it's their job to know every feature, but all the people I know who use programs like sendmail simply read one man page and then experiment a little to get the application working. It's not that hard.
Bad example too frankly, since Linux has no shortage of graphical e-mail clients that works very well. Another shortcomming with your argument is that you probably picked a fairly complicated configuration file, although never having used sendmail I really don't know how involved that is. Consider that the /etc/fstab configuration file is very straightforward and after spending a few minutes reading a man page I made changes to it that worked perfectly my very first time even opening the file.
Frankly whether you like configuration files or not is a matter of personal taste, I preffer well designed configuration applications, but I also preffer that settings be saved in configuration files than that they be saved in a regestry.
Member since:2005-09-07
Fans: 0
...Another shortcomming with your argument is that you probably picked a fairly complicated configuration file, although never having used sendmail I really don't know how involved that is...
Erm, my posting was tounge in cheek and anyone who has had to learn sendmail.cf would be able to relate to it.
Yours is, by your own admission, utterly uninformed. Worse, it got voted up...
Member since:2005-07-08
Fans: 0
Member since:
2005-10-06
Fans: 0
they used the WMF exploit to install the patch without delay.
Seriously, I'm pretty sure they wouldn't do this on purpose, but the fact that it can apparently happen by accident makes me glad I'm on Linux these days. The fact that users are (probably) given a warning when it happens does little to comfort me. I'm away from the keyboard (and the monitor) at least 50% of the time that my computer's switched on. I try not to leave anything unsaved for too long as a general rule, but it still happens regularly.
If I got a nice warning box saying "Your system will reboot in a minute, please save any unsaved data" there's a 50% I wouldn't be there to see it, and a 50% chance that there would be unsaved data. Which means a 25% chance of (some) data being lost. Not a chance I particularly want to face.
Member since:2005-07-06
Fans: 9
Member since:2005-07-10
Fans: 1
Member since:2005-07-06
Fans: 9
Member since:2005-07-26
Fans: 1
So, some people claim that it does reboot.
While most others claim it did not for them.
Your conclusion: Those 'reboot' people are liars or idiots that don't know what is going on???
It would be much more reasonable to say that this is possible under certain circumstances, rather than just assume it isn't.
Member since:2005-07-02
Fans: 23
Yeah, then I read many more comments stating the opposite.
You really didn't bother to count, didn't you? See, that's what happens when you're biased: you only count the resutls that reinforce your preconceived notions.
Only in this comments section, there were seven (7) people who said this didn't happen to them while they had the same settings (or didn't specifically say they didn't have the same settings), while there are 12 comments that say that this DID happen to them (most of them mentioning that they did have the same settings). So an informal survey of this comments section (which you yourself indicated as a valid source to form an opinion) shows that the problem is quite prevalent.
But then again, some people will go out of their way to defend Microsoft, not matter what...
Member since:
2005-07-06
Fans: 0
Member since:
2005-07-06
Fans: 27
Security isn't about fancy security systems, as Microsoft seems to think it is. It's about simple, predictable, and transparent software. This is the key flaw in Window's design, and its not something you fix with code. It's an institutional problem, rooted in the mentality of the programmers. It's a question of dependability. Does anyone here trust Windows Update? I know I don't, not since a bad network patch hosed my Windows network at home. If the user cannot trust the system, then any pretense of security is illusory. The game is over before it even begins.
Member since:
2005-07-06
Fans: 0
Member since:
2006-01-12
Fans: 0
I have seen this before - after having ignored the "new patches available" for a few days it did greet me one morning with a message "patches installed, now rebooting". Personally, I was not surprised at all - for one it deems to be considerable measures to me and second it matches my opinions about microsoft and their mode of conduct with their beloved costumers. Damn it, they know you guys - who else would using a normal win xp box for an internet server machine.
Member since:
2005-07-06
Fans: 0
From Wikipedia, the definition of Spyware
"n computing, the term Spyware covers a broad category of malicious software designed to intercept or take partial control of a computer's operation without the informed consent of that machine's owner or legitimate user "
..........
"Gaining unauthorized access to a computer is illegal, under computer crime laws such as the United States Computer Fraud and Abuse Act. Since the owners of computers infected with spyware generally claim that they never authorized the installation, a prima facie reading would suggest that the promulgation of spyware would count as a criminal act."
Member since:2005-06-29
Fans: 5
Ok, a few things to point out here:
(1): Microsoft can afford much better and many more lawyers than you can.
(2): Microsoft engineered their EULA to keep themselves safe from the consiquences of stuff like this.
(3): The Microsoft patch as is understood by the general public, was not malicious but rather an important update.
I do not condone what Microsoft did, but at the same time I don't think you'll see them loosing in court over it during your lifetime.
Member since:
2006-01-12
Fans: 0
Member since:2005-07-06
Fans: 0
Did it to me too. I have Windows set to tell me when updates are available. It told me of the WMF update, I ignored it for a few hours, then it installed it without permission. Every 15 minutes or so it would pop up a box telling me it would reboot in 5 minutes unless I clicked cancel. After doing that a few times, I put the laptop to in standby, and came back a few hours later to find that Windows had apparantly woken it up, rebooted, and gone back to sleep.
Finally, when I woke it up and logged in, it told me that there had been an important security updated that required these drastic measures.
Look, MS, I'm a smart user, I'm behind a NAT, AND I run a software firewall. I've let my desktop go unpatched for months without getting hacked. When I say I don't what updates being done behind my back, I mean it.
Member since:2005-06-29
Fans: 5
I have NEVER heard of the OS pulling a laptop or any computer out of standby, if Windows did anything it would have to have been before or after, and it's possible that it was just subtle enough for you not to notice.
When a computer is in standby there shouldn't be any OS code still running in the processor. I'd say there is none at all but that'd be a gamble since I'm not entirely sure.
Member since:2005-07-06
Fans: 0
Did it to me too. I have Windows set to tell me when updates are available. It told me of the WMF update, I ignored it for a few hours, then it installed it without permission. Every 15 minutes or so it would pop up a box telling me it would reboot in 5 minutes unless I clicked cancel. After doing that a few times, I put the laptop to in standby, and came back a few hours later to find that Windows had apparantly woken it up, rebooted, and gone back to sleep.
Finally, when I woke it up and logged in, it told me that there had been an important security updated that required these drastic measures.
Look, MS, I'm a smart user, I'm behind a NAT, AND I run a software firewall. I've let my desktop go unpatched for months without getting hacked. When I say I don't what updates being done behind my back, I mean it.
Member since:2005-07-06
Fans: 0
Member since:2005-07-06
Fans: 1
Yes.. I had this happen as well. Was not happy.
1) "Would you like to restart or delay ?"
- Clicked delay
3-5 mins or so passes.
2) "Would you like to restart or delay ?"
- Clicked delay
3) "Would you like to restart or delay ?"
- Clicked delay
5 minutes later, while I was still in a game, it boots me out and reboots. nice huh?
Member since:2006-01-12
Fans: 0
That's terrible.
There should be like a message saying, something like:
"A very critical security patch has been installed on
your system. You will need to restart your system for
this patch to take effect. Please save your work first,
and then click OK."
(How hard is it to write a dialog like that? It takes
you less than 5 minutes)
There shouldn't be any of this automatic restart
nonsense.
The point of software is to still have the user
controling the system. You do not trust a system
that does things by itself when you tell it not to
do things...Its a fundamental thing.
Member since:
2005-11-15
Fans: 0
Member since:
2006-01-01
Fans: 0
Member since:
2005-07-11
Fans: 1
The other night my machine rebooted in the middle of the night. I had left the speakers on, so when it rebooted and logged in I got the starting up sound (nice and loud (must have slept through the shutting down sound ;-)).
I was worried there was something wrong with my machine, and it might do it again one day, so in a way am glad to hear it's MS's fault, but still, not happy that MS did this. I hope it's just a one off bug/oops thing :-)
Member since:
2005-07-06
Fans: 0
Member since:
2005-12-20
Fans: 0
Member since:
2005-12-02
Fans: 0
Member since:
2005-10-13
Fans: 0
I don't know where I stand on this. I'm normally quite anti-MS, but I'm not a *nix zealot. I can see that this is the only way a LOT of PCs will get patched, the average windows user knows nothing about WindowsUpdate, and the settings are purely defaults. There are others that have tried to avoid SP2 and disabled WU, the only way everyone's going to be rid of this problem is if MS take the initiative and force the update.
If they'd not forced an update, we'd not be writing here about how MS forced us to reboot our machines :o We'd be posting about how awful it was that they were leaving lay-people vulnerable, by not ensuring they install the update.
Member since:
2005-11-09
Fans: 0
Member since:
2005-08-19
Fans: 0
I had the same thing happen some weeks ago on my PVR running XP and SageTV. I went to use the PVR one day and was surprised to see a dialog box telling me that my system had been automatically rebooted. Nothing was lost, but still, what if there had been a show I had really wanted to see?
Member since:
2006-01-12
Fans: 0
I'm in IT at a large distributor and all of our Windows 2003 servers are set to automatically download patches, but to let *me* install them. this is a 24/7 business. we have machines that HAVE to be running flawlessly at all times of the day. I install available patches at certain times of the day when I know it wont affect users/data.
came in this morning to see our RAS, exchange, file and home folder servers were sitting at login prompts. walked into the warehouse and talked to the night managers who were getting ready to go home. they told me that all of a sudden a meassage appearred on their screens during production asking them if they wanted to reboot now due to a update. thankfully they clicked no, otherwise we would have lost thousands of $$ worth of time/labor in production costs.
Member since:2005-07-10
Fans: 1
Nicc,
I understand your concern and frustration. The enterprise sector is more affected by this issue than home users due to some businesses can be financially affected both with downtime not planned and data loss. Forcing an update to be installed which reboots systems with out the end users permission is not acceptable. Microsoft should be held accountable for not ensuring this wouldn't happen. This is one of the differences between Windows and Linux systems where on Linux systems providing auto-update such as "SUSE Watcher" for SUSE Linux in most cases doesn't require a reboot. This in turn means providing less downtime while ensuring the system is up to date. The exception typically being only when a kernel or graphics driver is updated is when it's preferred to reboot on Linux.
Member since:2005-08-16
Fans: 0
Member since:
2006-01-08
Fans: 1
I have seen this twice now. both time it happened in the middle of someone using the computer. after using the computer the user would just get a pop up telling them they needed to reboot now. they had the option to reboot later and selected that but the message would just come back in 5 min. After about 3 time they just rebooted. If the the user had not told the machine to reboot it would have rebooted on its own.
Member since:
2006-01-12
Fans: 0
I have two machines, one work station and a test machine, with the same settings as far as automatic update is concerned. As I was working a 'balloon of hate' appeared asking me to download the WMF update; which I did and then went over and did same on the test machine and then set both off to install while I went on working. My workstation kept asking me if I wanted to restart as expected. To which I kept telling it to bugger off as I was busy.
Anyway to cut a long story short when I went back to my test machine that I had been ignoring, to restart it in fact and found it had already done it it's self.
The only major difference between the two is that the test machine runs a checked build of the kernel. (only the kernel though)
I however thought nothing of this at the time!
RE: typical anti-MS hype
Member since:2005-07-06
Fans: 0
Member since:2005-07-26
Fans: 1
Member since:2005-07-02
Fans: 23
So because it didn't happen to you it's only happened "a few times"?
Seems that only by reading the comments on this board it's happened quite a few times.
And the point is not that one wouldn't want the security flaw patched, but rather that some people may want to decide WHEN it's patched...
Member since:
2005-12-31
Fans: 1
Member since:
2005-10-11
Fans: 0
I cant believe people are advocating for someone else to have total control of their pc. I dont want ms or anyone but ME controlling how MY pc behaves. This smells alot like the beginning of "trusted" computing.
Where the pc controls what YOU can do not the other way around. This was the last straw for me 
I removed windows from my kids computer which was used for games.
Ill use gnu/linux and osx only from now on.
Member since:
2005-07-06
Fans: 11
Member since:2005-07-13
Fans: 0
Member since:2005-06-29
Fans: 5
I wonder if commercial servers did the same thing, that could be very bad if they weren't intended to simply be rebooted spontaneously like that. Companies do build in redundancy and backup systems, but that doesn't eliminate the possibility of data loss when a machine goes down.
It might be possible to block the built in Windows update feature with a firewall rule though, and then just open up the firewall when you want to check. Given this I'd certainly consider it.
Member since:2005-07-06
Fans: 0
"poor people Their computers rid themselves of a bad vulnerability and rebooted.. *cries* "
no! I think you are changing the topic... the patch is not the problem at all, it is a solution to a problem. but no matter how serious a problem [unless its something to do with aliens 
] - it still doesn't give someone sitting in Redmond a right to reboot anyone's PC without EXPLICIT Permission!
of course this has only happened in a few PCs [mountain out of molehill situation] but I am commenting generally that this situation shouldn't happen!
I once saw a video against the Trusted Computing Project and it ended with something like this ... '.. in the process of establishing trust, *they* decided not to trust you !! ' [not the exact words, but somewhat similar]
Ironic!
Member since:2005-10-05
Fans: 0
poor people Their computers rid themselves of a bad vulnerability and rebooted.. *cries*
If I were an admin running a W2k3 production server system, I would VERY WELL want the system to ask me before it reboots!!
Ever seen a large, complex DB system come down hard? Sure, usually you can recover nicely, but it's extra work you just don't need.
Member since:2005-07-06
Fans: 13
No, people like him, (and other sheep around here who blindly defend Microsoft, NO MATTER WHAT), would not have seen a DB come down.
In fact they would never have seen a mission critical app, as the only experience they have of "computing" is playing games and running Microsoft Office.
Member since:
2005-12-02
Fans: 0
The easiest way to fix this is to not use that option. Personally I never let anything get downloaded to any machines I admin unless I tell it to download it. The best setting for this is the one below the one in question, which is to "Notify me but don't automatically download or install them." No problems here with any machines. I agree this may be an issue for those with the settings in the article, but nothing new as this happened to me awhile back with other updates, so I switched to the next option down. From an administrative view anyway, all patching should be done manually at all times, and NEVER left to a 3rd party, which in this case is Microsoft. Though my Linux machines have the same options running Suse, as I can set it for a fully automatic update, but then I effectively lose control over what software is installed on the machine. Just IMHO of course.
Edited 2006-01-12 15:57
Member since:2005-10-19
Fans: 0
"The easiest way to fix this is to not use that option. Personally I never let anything get downloaded to any machines I admin unless I tell it to download it."
Common sense is a very powerful thing.
I'm still laughing at the so called "admin" who claimed his server rebooted as a result of this.
Member since:2005-07-06
Fans: 13
I am still laughing at people like you, who blindly defend Microsoft no matter what wrong-doings they do.
What's next ?
Next weeks patch against WMF, (and there probably will be one), will auto-install on your PC, reboot the PC without your consent, send a listing of all the files in My Documents. Then every week report back to Microsoft telling which files were added/changed/deleted.
BUT
people like you will say " Microsoft fixed my PC, they are the greatest, why can linux not do this" etc etc etc
same old story from the same old sheep.
Member since:
2005-07-13
Fans: 0
I was wondering why my machine had rebooted for no apparent reason last week after getting out of bed, I couldn't find ANY explanation. It seemed to have rebooted at ~11pm and I noticed it at 7am the next day, scanned the event viewer logs and found nothing, now it's obvious what did this.
So my machine was running for 8h without doing anything because the software it had been running before the reboot of course wasn't running anymore. I saw something about an update but didn't make anything out of it since I believed I knew it wouldn't install anything without my permission.
Seems like it's time to turn automatic updates _OFF_.