In my last issue, I reported that Microsoft’s in-house Windows Update routine
is now likely to download marketing gimmicks such as Windows Genuine Advantage to your
PC. I advised all Windows users, other than novices, to turn off Automatic
The Internet interprets Microsoft as damage and routes around it.
My apologies to John Gilmore for tweaking his famous 1993
quote about censorship. But the above statement just happens to sum up the
alternatives Windows users are adopting ever since Microsoft’s “Windows Genuine
Advantage” (WGA) debacle.
Windows Genuine Advantage — the controversial program Microsoft
auto-installed as a "critical security update" on many PCs starting on Apr. 25 —
not only causes problems for many users but has now been proven to send
personally identifiable information back to Redmond every 24 hours.
This behavior clearly fits any plausible definition of "spyware." Some tech
writers have said categorizing WGA as spyware is arguable. But I have no
hesitation in calling the program a security nightmare that Microsoft should
never have distributed in its present form.
I published a Woody Leonhard column as the top story
last issue while I
was traveling, knowing that he’s opinionated and always gets strong reactions.
Well, he didn’t disappoint me.
Reacting to several mistakes Microsoft made in its Automatic Updates downloads
in April, Woody railed against Redmond’s patching strategy, saying, “Windows
auto-update is for chumps.”
For years I’ve been advising Windows consumers to disable Automatic Updates:
Keep Microsoft’s mitts off your machine until you’re darn sure the
proffered patches do more good than harm.
I’ve taken a lot of flak for that heretical stance, vilified for intimating that
Microsoft’s patching process leaves consumers in the lurch. Bah. Recent events
have proved my point conclusively: Windows auto-update is for chumps.
Microsoft re-released on Apr. 25 a security patch that had been issued 14
days earlier in the company’s monthly Patch Tuesday schedule.
The original version of security bulletin MS06-015 causes problems with Microsoft
Office and other apps when you try to open or save files in the My Documents
folder; with Internet Explorer when you type Web addresses into the Address Bar;
and with an untold number of other programs.
The Redmond company says the problems are being caused older versions of HP
Share-to-Web software, nVidia graphics drivers, and Kerio Personal Firewall. But
I believe there may be other conflicts at work, as I discuss below.
I described in the
newsletter how to use "disposable" e-mail addresses. These are
unique addresses that you give to Web sites and other
people who want to send you mail. If they happen to reveal your address to spammers,
you simply turn off that one address rather than trying to filter out a wave
My readers, it turns out, have a lot of ideas about using disposable addresses.
Follow along with me as we hear about some great tricks, many of which cost little
Every time you give out your e-mail address, you take a risk that your address will
get on spammers’ lists and you’ll be bombarded with junk mail.
As a test (which I’ll describe in my
Datamation column in a few weeks), I entered an e-mail address into a signup box at one of
those “get a free laptop” promotional sites. In less than six weeks, the address
I provided was hit with more than 1,000 junk messages — over 23 per day — and they
show no sign of slowing down.
Patching Windows is good, and rebooting right after you’ve patched is good,
too. But if you’re right in the middle of something, seeing Windows reboot
when you didn’t expect it can be very bad.
A raging controversy over whether Windows patches ever reboot a PC without
permission has been solved. Reboots can happen when you’re not expecting
it — but you can minimize the problem or eliminate it entirely.
This subject sparked a debate when reader Evan Katz wrote in to ask whether
Microsoft patches had started rebooting Windows automatically, even when the
Automatic Updates control panel is configured to notify the user of downloads
instead of installing them without notice. His comments were printed in the paid
version of our Dec. 15, 2005,