• Katana314@lemmy.world
    link
    fedilink
    English
    arrow-up
    13
    arrow-down
    11
    ·
    1 天前

    Unpopular opinion: The most-used operating system in the world must automatically apply security updates, eventually even overriding user preference if people never restart.

    Right now it’s Windows. If someday it’s Ubuntu, they should do it too. If they don’t, we’d see giant botnets of every computer that people don’t want to update, all compromised by exploits.

    To be clear, this doesn’t excuse MS for abusing this update cycle to push shitty products or AI features.

    • renegadespork@lemmy.jelliefrontier.net
      link
      fedilink
      English
      arrow-up
      19
      ·
      1 天前

      The meme isn’t complaining about auto-updates. The meme is complaining that “Update and Shutdown” doesn’t actually turn off the PC when it’s done updating.

    • Rin@lemm.ee
      link
      fedilink
      arrow-up
      7
      arrow-down
      1
      ·
      1 天前

      for me, a good test of whether i own something or not is to see if your device forces you to update. I’m sure 90% people using computers understand the security implications of not updating and not rebooting, they just have work they need to do now and rebooting the computer would make it go away.

      we really need to stop babying users. If they fuck their own system up, it’s on them. give them warnings, sure. Give them heads up. but don’t take it into your own hands to protect someone who doesn’t want protecting.

      • misteloct@lemmy.dbzer0.com
        link
        fedilink
        arrow-up
        4
        ·
        edit-2
        1 天前

        If users cared about security or privacy, even in the slightest, they’d be using Linux. That’s the other few percent. Ubuntu Livepatch solves any problem from automatic updates, I think Linux will eventually support this and then automatic updates by default. But on Windows? Not a chance.

        • Rin@lemm.ee
          link
          fedilink
          arrow-up
          2
          ·
          edit-2
          1 天前

          You cannot live patch everything and also linux doesn’t run everything

      • Katana314@lemmy.world
        link
        fedilink
        English
        arrow-up
        4
        arrow-down
        2
        ·
        1 天前

        I mean, it’s the same situation as vaccine mandates. You’re hoping that it’s a perfect system of karma that reflects upon the user, but it’s not. Someone practices bad security or bad personal health, and it might not necessarily be them that suffers the most. (Botnet victims come in wide varieties)

        I think owning your own device is a great ideology and I want to promote it however possible; I just don’t feel comfortable pushing that over general worldwide computer safety.

      • TrickDacy@lemmy.world
        link
        fedilink
        arrow-up
        2
        arrow-down
        2
        ·
        edit-2
        1 天前

        I’m sure 90% people using computers understand the security implications of not updating and not rebooting,

        Deranged. 9% is probably higher than reality. 0.9% maybe.

        Also you’re responding to a comment about widespread collective damage as though only a few individuals would be hurt.

        • Rin@lemm.ee
          link
          fedilink
          arrow-up
          2
          arrow-down
          2
          ·
          edit-2
          1 天前

          Every single yearly security training at work talks about keeping devices up to date. We get quizzed on it. Every place i’ve been at has talked about keeping your device up to date. I’m talking since school up to my degree at university (~10 years).

          if at this point people don’t know that you should update, it’s on them for being ignorant about it or on them for not doing so.

          • CyberEgg@discuss.tchncs.de
            link
            fedilink
            arrow-up
            2
            ·
            1 天前

            Story time. I used to work for an IT service for businesses. We also offered such basic security trainings (how to not get fished by mails, keeping workstations up to date, do not insert USB drives some stranger handed you, that stuff). We had one customer, big company, several branches all over the country, even some abroad. They booked our training once a year for each branch office in our local region, six offices and a couple dozen office workers attending each time.
            We had to automate reboots. First, you get an information there’s a necessary update pending that needed a reboot. You could push that reboot a week down, then it got enforced. We had several tickets each month about that. We also had to restore systems twice in the two and a half years I worked there from backups due to ransomware, and other, mostly minor security incidents about once a month.

          • TrickDacy@lemmy.world
            link
            fedilink
            arrow-up
            1
            arrow-down
            1
            ·
            edit-2
            1 天前

            firstly, you’re assuming everyone works in an office.

            then, that those lessons stick.

            then, that malware only affects those who essentially opt into it.

            All of these are beyond-stupid assumptions.

            PS. not one security training I’ve had did more than just mention in passing updating your device, if even that. Because guess what, IT departments don’t give a choice. They manage that and force-install updates.

            Your other weak-ass assumption is that work lessons (if even applied at work) also come home.

            Yeah dude, you’re just wrong in your thinking. Top to bottom.

            • Rin@lemm.ee
              link
              fedilink
              arrow-up
              1
              ·
              1 天前

              maybe this is a xkcd 2501 moment and if it is, it makes me feel very depressed that people can be this stupid

              • TrickDacy@lemmy.world
                link
                fedilink
                arrow-up
                2
                ·
                1 天前

                just looked that # up. Yes, it is. People are very stupid, but in this case it’s more of 1) a case of needing to know. many people do not need to know how to maintain a computer; many don’t even own a desktop these days and other systems do many auto-updates. and 2) again, these bad practices affect other people who do properly update their machine. We don’t live in a vacuum.