Why Not Windows 10?

I have been asked one too many times why I oppose Windows 10. Here is some more fodder for thought.

Besides all eventual arguments for or against technical merit here are only three facts that everybody can check out in Microsoft's Terms of Use for Windows 10. Every single install of Windows 10 must agree to Microsoft's Terms And Conditions for use of Windows 10. This is (supposedly) a 12,000 word document. Everybody I know, me included, just clicks on Agree - and Microsoft knows that.


We usually allow Windows 10 to install with Express Settings (the default that most people choose!); in the Terms of Use we can find that we agree among others goodies to:

1. Windows 10 is logging all keystrokes
    
2. Windows 10 is always listening to the microphone
    
3. Microsoft will turn over all your data and info about you to authorities

Re. point #1: 

Programs that log our keystrokes on the functional level of the operating system (or even below that) have always been called Key Loggers and always have by all security systems been flagged as viruses and removed.

Just think of every keystroke being logged and stored at MS (Microsoft); what about your username(s) and password(s)? What about account details like credit card or bank or investment account numbers?

Re. point #2:

Many desktop computers and virtually all laptop computers have a microphone. Windows 10 will record and store on MS's servers every spoken word that reaches the microphone while the computer is running. Big Brother is always listening!

Windows 10 will (at least try to) make an automatic backup copy of every file you create on your computer and store that copy on MS's servers. What about confidentiality requirements? No lawyer, doctor, real estate agent, CPA or PI can ever use Windows 10; actually everybody who by law is required to respect and guarantee any degree of confidentiality should never use Windows 10. 

Re. point #3:

That sounds kind of "normal" and okay - on the surface at least.

BUT: MS does not say that they require a court order or warrant for that.
Any "authority" can request and will receive all your files and all information about you that MS has gathered.

With no court order at all!

Then there is yet another side to the whole thing that, for me at least, is even more scary; although I have to warn you, it will take 30 minutes away from your busy day to listen to this "video" - which actually is a recorded audio interview.

As usual I welcome comments and suggestions right here in the blog. Thank you in advance.

For whatever reason the darned TOC (Table Of Contents) feature that I got from Google does not work any longer, sorry. And I just don't have the time to hunt down another solution; if you know one please tell me in a comment. Thank you.

Windows 10 - Better Instructions to Make it "SAFE"

After writing the previous long, long article about how to make Windows 10 running without the glaring privacy issues I discovered on a forum a link to a MUCH better organized article with visual examples for everything from installation to changing the relevant settings.

You find it here: https://fix10.isleaked.com/

I thank the author(s) of this web page; GREAT work!


As usual I welcome comments and suggestions right here in the blog. Thank you in advance.

Click here for a categorized Table Of Contents.
   

Windows 10 Settings - What I Recommend

Please click this link if you are looking for general information on Windows 10.

If you absolutely do not mind to be followed by "Big Brother" then please do not read the remainder of this article, you are excused and may leave.

By now I have decided to recommend to my customers NOT to upgrade to Windows 10. There are way too many IMHO serious privacy issues that go along with a so called Microsoft account.

In the following I will give some tips on how to remedy at least some or much of that messy situation. For every instance of something I deem in need of correcting or changing I will preface the paragraph with "Gripe:".

Because virtually all of my customers work on the desktop and use a mouse and a keyboard all the following step by step instructions are for desktop mode only.

Immediately after upgrading to Windows 10 your computer will work quite differently than it did before the upgrade.


Gripe:
If you gave the system on first start your email address Microsoft has created on their servers the storage for an immense wealth of information about you that Win10 and it's programs will collect from and about you; and that besides the fact that every email address will have it's unique "advertisement ID" assigned. Guess what that will be used for!

If you want to change your inadvertently created Microsoft Account back into a normal, local account then:

1. Right click on the Start button
2. Open Control Panel
3. Click Settings
4. Click  ====================to be finished 

Gripe:
Synchronizing personal settings between various computers could under certain circumstances be a convenience. But some of us don’t want the same settings on all of our various Win10 computers. Just imagine using Win10 on your “old” keyboard/mouse computer and on a tablet; ARGGHH!

Plus: My settings are my personal preference and are none of Microsoft's business! Obviously I am way too old for that brave new world where everything is made public! If you are like me here is how to turn synching off:

1. Right click on the Start button
2. Open Control Panel
3. Click Settings
4. Click Accounts
5. Click Sync your settings 
6. Turn OFF Sync settings to disable synchronizing

  
Gripe:
Microsoft Edge, the new web browser, will be the default for all things Internet. You should set that back to Firefox following these steps:

1. Right click on the Start button
2. Open Control Panel
3. Click Default Programs
4. Click on "Set your default programs"
5. You should see a list of installed programs
6. Find and highlight the entry for Firefox
7. Click on  "Set this program as default" (my cursor points to it)
8. Click OK to close the window

 

Gripe:
System Protection is the Win10 name for the feature that creates Restore Points. This is turned off after the upgrade on many systems! It is by no means a good backup system but still better than nothing. Here is how to turn it on again:

1. Right click on the Start button
2. Open Control Panel
3. Click System
4. In the left sidebar click System protection
5. Highlight your system disk C:
6. Click Configure (see screen shot)

 

     7. Click on "Turn on system protection" (see screen shot below)
     8. Click OK and OK to close all windows

Gripe:
 Especially important to users of laptops computers are Wi-Fi-credentials

A new Win10 feature — WiFi Sense (online FAQ) — has generated more than its share of controversy. Just read what well renowned security researcher Brian Krebs has has to say about it in a recent column.

Simply said WiFi Sense allows all your Facebook friends, Outlook and Skype contacts to automatically sign in to your WiFi router when they are in range; likewise you can use their WiFi network as soon as you are in range of their router. In short, it “blabs” access to your WiFi network to numbers of people who you might not know well enough. And that feature is turned ON by default! Here is how to turn it off:

1. Right click on the Start button
2. Open Control Panel
3. Click Settings
4. Click Network & Internet
5. Click Wi-Fi.
6. Scroll past your wireless networks and click Manage Wi-Fi settings. 
7. Turn off  Connect to suggested open hotspots and
8. Turn off Connect to networks shared by my contacts.

Gripe: 
Simply said, I hate Cortana, the so-called “digital assistant” in Win10.
 
My wife and my best friend may know a lot about me that you don't know and likely even don't want to know. The NSA, Apple and now Microsoft want to know more about every Apple or Win10 user then we want to know about ourselves.

The End User License Agreement (EULA) for Win10 clearly states that Cortana has the ability to collect and use various types of personal information, including your location, calendar data, and programs (called "apps") you use. Cortana collects information about your choice of music, alarm settings, what you view and purchase online, your Bing search history, your use of other Microsoft services, and can even use the camera and microphone of the computer. In short, it is ALWAYS listens when the computer is on. Remember, practically all laptop computers have a microphone and a camera.

This sort of always on data collection worries me deeply; 1984 anyone?

Here is a decent PC World article explaining how to disable Cortana. And don't forget additionally and separately to disable Cortana in the new Edge browser, even if you don't use it!

Remember, Big Brother is always listening, always watching.


Gripe:
Since Microsoft announced that the upgrade to Windows 10 will be free, I have been waiting for the catch. And, surprise, it's very first installment comes with the ubiquitous game of Solitaire.This popular app is included with the new OS, but it includes advertising. To remove the ads, you have to pay a monthly subscription, as reported in a Business Insider story.

Currently I do not know of a hack to get around this.

Just do not go into the trap of recurring payments. There are many free alternatives on the internet. 




Gripe:
Along with forced updates, Win10 also includes — again, on by default — the option to share patches with other computers on your local network or the Internet; this is called peer-to-peer updating. You might want to disable update sharing.

There are serious concerns that attackers might find a way to inject malicious code into the process; many internet connections are metered and with the almost 3GB download size of Win10 you can easily run over your limit and that costs dearly.
 You want to disable peer-to-peer updating obtain patches only directly from Microsoft? Here is how:

1. Right click on the Start button
2. Open Control Panel
3. Click Settings
4. Click Update & Security
5. Click windows Update (it is no longer in the Control Panel!)
6. Select Advanced Options
7. Click Choose how updates are delivered
8.  Turn Update Sharing OFF

So much for today. This article is meant to be continued as more details become available.

As usual I welcome comments and suggestions right here in the blog. Thank you in advance.

Click here for a categorized Table Of Contents.
 
 

Windows 10 Broadcasts Wi-Fi Passwords

Please click this link if you are looking for information on Windows 10.

I "stole" the following VERBATIM from a blog post at The Register. 

If you upgrade to Windows 10 and if you have a wireless home network you better turn Wi-Fi Sense in Windows 10 OFF! 

 Wi-Fi Sense is a feature from the world of Microsoft Mobile (cell phones) that sneakily appears in Windows 10.

Here now the article from The Register:

--------------------------    

theregister.co.uk

UH OH: Windows 10 will share your Wi-Fi key with your friends' friends

30 Jun 2015 at 20:59,

Updated A Windows 10 feature, Wi-Fi Sense, smells like a security risk: it can share access to Wi-Fi networks with the user's contacts.

Wi-Fi Sense has been on Windows Phone since 8.1

Those contacts include their Outlook.com (nee Hotmail) contacts, Skype contacts and, with an opt-in, their Facebook friends. There is method in the Microsoft madness – it saves having to shout across the office or house “what’s the Wi-Fi password?” – but ease of use has to be teamed with security. If you wander close to a wireless network, and your friend knows the password, and you both have Wi-Fi Sense, you can log into that network.

Wi-Fi Sense doesn’t reveal the plaintext password to your family, friends, acquaintances, and the chap at the takeaway who's an Outlook.com contact, but it does allow them, if they are also running Wi-Fi Sense, to log in to your Wi-Fi. The password must be stored centrally by Microsoft, and is copied to a device for it to work; Microsoft just tries to stop you looking at it. How successful that will be isn't yet known.
"For networks you choose to share access to, the password is sent over an encrypted connection and stored in an encrypted file on a Microsoft server, and then sent over a secure connection to your contacts' phone if they use Wi-Fi Sense and they're in range of the Wi-Fi network you shared," the Wi-Fi Sense FAQ states.
Microsoft also adds that Wi-Fi Sense will only provide internet access, and block connections to other things on the wireless LAN: "When you share network access, your contacts get internet access only. For example, if you share your home Wi-Fi network, your contacts won't have access to other computers, devices, or files stored on your home network."
That sounds wise – but we're not convinced how it will be practically enforced: if a computer is connected to a protected Wi-Fi network, it must know the key. And if the computer knows the key, a determined user or hacker will be able to find it within the system and use it to log into the network with full access.
In theory, someone who wanted access to your company network could befriend an employee or two, and drive into the office car park to be in range, and then gain access to the wireless network. Some basic protections, specifically ones that safeguard against people sharing their passwords, should prevent this.
The feature has been on Windows Phones since version 8.1. If you type the password into your Lumia, you won’t then need to type it into your laptop, because you are a friend of yourself. Given the meagre installed base of Windows Phones it's not been much of a threat – until now.
With every laptop running Windows 10 in the business radiating access, the security risk is significant. A second issue is that by giving Wi-Fi Sense access to your Facebook contacts, you are giving Microsoft a list of your Facebook friends, as well as your wireless passwords.
In an attempt to address the security hole it has created, Microsoft offers a kludge of a workaround: you must add _optout to the SSID (the name of your network) to prevent it from working with Wi-Fi Sense.
(So if you want to opt out of Google Maps and Wi-Fi Sense at the same time, you must change your SSID of, say, myhouse to myhouse_optout_nomap. Technology is great.)
Microsoft enables Windows 10's Wi-Fi Sense by default, and access to password-protected networks are shared with contacts unless the user remembers to uncheck a box when they first connect. Choosing to switch it off may make it a lot less useful, but would make for a more secure IT environment.
Yes, wireless passwords can be written down and trivially passed along to others: we know network security shouldn't end at the Wi-Fi login prompt. But there's nothing like an OS automating the practice of blabbing passphrases to your mates, eh?

Updated to add

A Microsoft PR rep has been in touch about the headline, pointing out that when you share access to your network via Wi-Fi Sense, your contacts cannot share that access to other people. We know this.
The headline still stands because: imagine you and I are friends, and you visit my house. I tell you the Wi-Fi password, or you read it off the fridge. You type it into your Windows 10 device, and access to my network is shared via Wi-Fi Sense with your Windows 10 friends. Your friends now have access to my network, or in other words, my friend's friends now have access to the network.
And that's not good.
--------------------------

So far for the article from The Register.

By now I have installed several versions of Windows 10 Preview and the install process has changed over time - which is to be expected in a preview for testing of a product that is in active development. The last install(s) have asked questions about sharing Wi-Fi keys and I have declined. By the way, I am planning an extensive article about the install process of Windows 10.

I have declined to share Wi-Fi keys because I read the questions before I ACCEPT the default settings. These preselected default settings more often that not help Microsoft rather than the individual user; that at least is my experience with Microsoft software and products since I know them - and that is only since about the early 1980s.

As usual I welcome comments and suggestions right here in the blog. Thank you in advance.

Click here for a categorized Table Of Contents.