• BigBoyShuanzee@aussie.zone
    link
    fedilink
    arrow-up
    5
    ·
    7 hours ago

    My company is moving to Windows 11, I had one of my service desk teammates tell me that for an IT support person I’m very critical of change

    Before Windows 11 I was critical of change because every change came with no new training for my team and a giant email to the company explaining very lazily about the changes and with the same text at the end of every email… “Any problems call the service desk”.

    Now we’ve lost active directory… Now I’m in a position where an incredibly incompetent IT security have restricted our access to intune and Entra and then the business wants me to still perform my daily duties as normal.

    Upside is that same IT security is getting removed in the next few weeks.

    Probably to be replaced by someone else even worse.

    I just want to learn how to use Entra and Intune… Everything Microsoft touches turns to shit.

    Active directory just worked… It was built when people at Microsoft actually knew how the operating system worked… None of those people are still at Microsoft…

  • mazzilius_marsti@lemmy.world
    link
    fedilink
    arrow-up
    6
    ·
    12 hours ago

    the fucked up thing is this GDID thing apparently also show up for VM. So that would mean any VM and even a Quebe?

    Fuck microsoft

    • 0_o7@lemmy.dbzer0.com
      link
      fedilink
      English
      arrow-up
      10
      ·
      1 day ago

      Okay, buy the thing to take note here is what tech companies can hide.

      You know they’re tracking users but there are still things we’ll never find out unless they reveal it themselves or are made to reveal in indirectly.

      • BlackLaZoR@lemmy.world
        link
        fedilink
        arrow-up
        8
        ·
        1 day ago

        On the other hand, open source software has everything revealed by default. It has no dirty secrets to hide

  • StellarExtract@lemmy.zip
    link
    fedilink
    arrow-up
    87
    ·
    2 days ago

    Something this article glosses over is the fact that Microsoft knew all of the web URLs he was visiting. I don’t know if that’s because he was dumb enough to sign into Edge with his Microsoft account or if they were collecting that a different way, but the GDID wouldn’t have been nearly as useful without that info.

    • Daryl76679@lemmy.ml
      link
      fedilink
      arrow-up
      32
      ·
      2 days ago

      And able to identify the specific accounts he was logging into. How are they able to do that?

    • gila [any, any]@hexbear.net
      link
      fedilink
      arrow-up
      10
      ·
      1 day ago

      IIRC that’s been a known function of Edge ever since its redesign around 5-6 years ago, regardless of whether you’re signed in all URLs go to Microsoft in plaintext

    • FineCoatMummy@sh.itjust.works
      link
      fedilink
      English
      arrow-up
      19
      ·
      2 days ago

      IDK either. But so much is now like, ppl wanting privacy have to be right every time. The co’s wanting our data, only once! A single hidden backdoor siphon to our data and we didn’t protect ourself from it. A single telemetry that encodes every URL we visit. A single statistical way to fingerprint us.

      That Sisyphus dude knows our pain.

      • hitmyspot@aussie.zone
        link
        fedilink
        arrow-up
        16
        ·
        2 days ago

        Which is why open source is important. Holes can be found and software telemetry can be avoided.

        A lot of the telemetry is sold to people as being in their benefit. Monitor installed software for updates, location data for weather etc.

        If the companies had to document the amount they collected in cash for each user based on ads and send it as a mk though report, it might be eye opening. The source if the cash would also be good. So did companies pay directly or dodgy intermediaries and data brokers.

        • Zarobi@aussie.zone
          link
          fedilink
          English
          arrow-up
          6
          ·
          1 day ago

          I know people in real life that prefer targeted advertising because it’s “more relevant to their interests”. I think they drank the kool-aid

    • blackwall@lemmy.world
      link
      fedilink
      arrow-up
      7
      ·
      2 days ago

      I don’t think Microsoft recorded the URLs, just activity from a GDID and IP address at particular timestamps. The authorities would also have subpoenaed records from other accounts they knew were his e.g. Snapchat and Facebook. The GDID was just a way of assigning activity from his device to particular VPN endpoints at particular times. The point of the story is essentially that the GDID allowed them to track his device across multiple IP addresses. But this wouldn’t have been possible without at least some other pieces of the puzzle such as knowing which was his Microsoft account, or Facebook account etc. in the first place.

      • aurelar@lemmy.ml
        link
        fedilink
        arrow-up
        1
        ·
        10 hours ago

        Read the federal complaint against Peter Stokes. Microsoft has a record of the URLs.

  • Bieren@lemmy.today
    link
    fedilink
    arrow-up
    15
    arrow-down
    8
    ·
    1 day ago

    Does MS track what you do in Edge and Windows, yes. Does Google track you in Crome and any app of theirs, yes. Does Apple track everything you do on their devices, yes. Does meta, twitter, all social media sites track the fuck out of you, also yes.

    • whatiswrongwithyou@lemmy.ml
      link
      fedilink
      arrow-up
      14
      arrow-down
      1
      ·
      2 days ago

      The same user posted a thread in this comm about the Linux equivalent, device-id, which is possibly more problematic.

    • const_void@lemmy.ml
      link
      fedilink
      arrow-up
      13
      arrow-down
      5
      ·
      2 days ago

      Seems like the answer is never. The masses are too addicted to PC games to give it up.

      • jtrek@startrek.website
        link
        fedilink
        arrow-up
        33
        arrow-down
        1
        ·
        2 days ago

        It’s not the PC games keeping people so much. Proton solved a lot of that problem. It’s inertia.

        Most people don’t care about things. They just don’t. Their brains just don’t have the juice.

        • geneva_convenience@lemmy.ml
          link
          fedilink
          arrow-up
          7
          ·
          1 day ago

          A lot is professional software. Many people have one or two pieces of software they use a lot which doesn’t run on Linux.

          • mic_check_one_two@lemmy.dbzer0.com
            link
            fedilink
            English
            arrow-up
            3
            ·
            1 day ago

            This is my issue. There are two specific pieces of software that only run on Windows. Even worse, there is one program that only runs on Mac. So in order to properly do my job, I need to maintain both a Windows laptop and a Mac. And ditching them is virtually impossible, because the Windows machine is used to control/configure a lot of gear, and the Mac program is an industry standard program that virtually every technician is expected to know.

          • jtrek@startrek.website
            link
            fedilink
            arrow-up
            2
            ·
            1 day ago

            I don’t think that’s actually very many people. Not for their personal computers. Most people don’t run much more than a web browser, if they don’t play games.

            • geneva_convenience@lemmy.ml
              link
              fedilink
              arrow-up
              2
              ·
              1 day ago

              People tend to use the stuff they’re already used to. They could probably use Linux but if they buy a Laptop which has Windows preinstalled and they’re used to Windows it’s hard to get them to make the jump

          • shneancy@lemmy.world
            link
            fedilink
            arrow-up
            2
            ·
            1 day ago

            i miss photoshop. not enough to boot into my windows partition, but it sure would be nifty if it would just work on linux. krita is decent but danggit, not the same

              • shneancy@lemmy.world
                link
                fedilink
                arrow-up
                2
                ·
                10 hours ago

                i got both but decided to first learn krita as i like drawing more than image manipulation. though i’ll be needing to hop into gimp soon i feel, as krita’s text editing options are clunky at best

            • madthumbs@lemmy.world
              link
              fedilink
              English
              arrow-up
              2
              arrow-down
              4
              ·
              1 day ago

              It’s nifty on Windows where I can run all kinds of other professional productivity programs. I went back to Windows because Linux can’t deliver and likes to break on updates. -Someone that loves CLI and didn’t mind that about it.

        • NKBTN@feddit.uk
          link
          fedilink
          English
          arrow-up
          3
          ·
          1 day ago

          The bigger problem is that most people just aren’t up for installing an OS themselves. I’ve certainly never had the chutzpah to replace Android, and I’m more tech savvy than most

          • jtrek@startrek.website
            link
            fedilink
            arrow-up
            2
            ·
            1 day ago

            100%. I think a lot about one of my friends when trying to think about that kind of user. Smart lady. Advanced degree. Has her life together. Would absolutely not want to try to install an OS. Wouldn’t even know how to start.

            But I’m confident if I handed her a Linux laptop, she’d use it just the same as a Mac or Windows machine.

      • FineCoatMummy@sh.itjust.works
        link
        fedilink
        English
        arrow-up
        4
        ·
        2 days ago

        I agree. But I think more to the other side of it. I worry that a vast influx, who don’t care about privacy and computing freedom, would make for huge market pressure to lock down Linux. Same way we see Windows, IOS, Android locked.

        Game co’s, big tech, and others will demand it, if the masses flee to Linux. Today, most Linux users go nah, we want freedom more than your AAA game. If that changes, we could lose the very culture that resists locked down corporate controlled computing.

        • mic_check_one_two@lemmy.dbzer0.com
          link
          fedilink
          English
          arrow-up
          3
          ·
          1 day ago

          There are certain games that refuse to enable anticheat on Linux. So if you play one of those games, you’re forced to use Windows. But that isn’t Linux’s fault. It’s simply the game makers refusing to enable Linux support. Multiple game devs have even stated that it’s basically an “enable on Linux” checkbox on their end, but the publishers want that sweet kernel-level access on Windows.

    • iamtherealwalrus@lemmy.world
      link
      fedilink
      arrow-up
      5
      arrow-down
      4
      ·
      1 day ago

      I have tried over and over for 30 years now and every time I discover something is missing, something I’m not willing to give up. Today it was Google Drive. There are multiple solutions for Linux to mount Google Drive as a folder in the local filtersystem, none of them offer decent performance compared to the windows client. Every time I try Linux something like this comes up.

      • shneancy@lemmy.world
        link
        fedilink
        arrow-up
        4
        ·
        1 day ago

        could you elaborate on what you mean by “performance” of cloud storage? the speed of upload, download?

        • iamtherealwalrus@lemmy.world
          link
          fedilink
          arrow-up
          3
          ·
          1 day ago

          The time it takes to open and list a directory using Nautilus in GNOME desktop. It can take 5-10 seconds with a directory of 5 files, a lot longer if there are 50 files in a directory. And all the “solutions” I find on the web involve some kind of guesswork and tweaking settings left and right, hoping to somehow hit a magic combination that works.

    • ☆ Yσɠƚԋσʂ ☆@lemmy.mlOP
      link
      fedilink
      arrow-up
      48
      ·
      2 days ago

      Imagine your computer has a secret ID number that Microsoft gives it when you sign in with your Microsoft account. This number is like a permanent nametag that your computer wears. Even if you use a VPN to hide your location, that nametag stays the same.

      A hacker used a VPN to hide while breaking into a jewelry store’s computer system. But Microsoft helped the FBI find him because his computer’s secret nametag kept showing up everywhere he went online. They matched that nametag to his social media accounts and other stuff he did, and that’s how they caught him. Most people didn’t even know this secret nametag existed, and you can’t turn it off without breaking your computer.

  • Maeve@kbin.earth
    link
    fedilink
    arrow-up
    26
    arrow-down
    1
    ·
    2 days ago

    The complaint quotes a Microsoft representative describing the GDID as “a persistent, device-level identifier designed to uniquely identify an installation of a Windows operating system on a device, either a physical device (e.g., a mobile phone or laptop) or virtual machine, across certain Microsoft services and scenarios”

    A Global Device ID (GDID) is a permanent, unique digital fingerprint that Microsoft automatically assigns to your computer when you install Windows or sign into a Microsoft account.

  • Michael@slrpnk.net
    link
    fedilink
    arrow-up
    10
    ·
    edit-2
    2 days ago

    Then there’s activation. Massgrave, the group behind Microsoft Activation Scripts, notes that Windows setup sends hardware info to Microsoft and gets identifiers back, the same tokens later used for Store access and licensing: “It’s impossible to prevent Windows from getting a GDID without breaking activation and UWP app[s].” Anyone who lost a license after swapping a motherboard has already met a smaller version of this.

    I guess this is why people always said it was impossible to remove the watermark that appears when you are not activated, when it was rolled out many years ago.

    Defeating the reasons for activation might’ve lead the more tech-savvy to figuring out the nature of the identifiers being sent for activation and seeing where else they are sent.

  • shortwavesurfer@lemmy.zip
    link
    fedilink
    arrow-up
    3
    ·
    1 day ago

    This sounds so much like the snitch code from Thieves’ Emporium by Max Hernandez, written in 2014.

    Or at least I believe it was 2014.

  • Aria@lemmygrad.ml
    link
    fedilink
    arrow-up
    3
    arrow-down
    3
    ·
    1 day ago

    Smug Reddit-level takes left and right in this thread. The kid successfully hacked a website, you can assume he knows what he’s doing better than you and followed all the best practices short of not using Windows. They didn’t get his account from his Edge credential store. He probably used some Firefox-derivative. Tor browser if he was stupid. He probably “hardened” Windows every way he could think of, again, short of disconnecting from the internet. Windows simply does a good job of spying on you, that’s all it is.

    There are even people in the thread recommending running Windows games on Linux as a way to avoid this surveillance. If you put Microsoft Flight Sim on your Linux computer, then that’s now a Windows computer. Microsoft owns that computer, same as the Windows one. If you install Nvidia drivers, Nvidia owns that computer, and the USA can ask Nvidia for your accounts and whereabouts instead of Microsoft. If you put Steam on your Linux computer, that’s now Steam’s computer and the USA can ask Steam.

    There is no “safe” amount of malware.

      • Aria@lemmygrad.ml
        link
        fedilink
        arrow-up
        3
        ·
        21 hours ago

        The security of Tor is built on the assumption that one actor owning a majority of the nodes is improbable to the point of being written off as a non-concern. The tool has always been run and maintained by the USA government. When they opened access to the public, they owned the majority of the nodes, and with the amount of compute available to the NSA (look up the size of their official data-centres, add in their hacked bot-farms), it’s almost certain they still do. If it wasn’t their plan to always have supremacy, they aren’t doing their job. The purpose of Tor is to hide traffic from USA’s enemies. A few tens of thousands of private users is just reducing their power bill and painting targets on their own backs, not successfully hiding from the NSA.

        • chinaski@lemmy.ml
          link
          fedilink
          arrow-up
          2
          arrow-down
          1
          ·
          20 hours ago

          I appreciate the explanation. If not Tor, for very obvious reasons you specified, what is the better alternative?