• GreeNRG@slrpnk.net
    link
    fedilink
    English
    arrow-up
    4
    ·
    edit-2
    20 days ago

    Since rolling back to the previous configuration will present a challenge, affected users will be faced with finding out just how effective their backup strategy is or paying for the required license and dealing with all the changes that come with Windows Server 2025.

    Accidentally force your customers to have to spend money to upgrade, how convenient.

    • Dremor@lemmy.world
      link
      fedilink
      English
      arrow-up
      3
      ·
      20 days ago

      Congratulation, you are being upgraded. Please do not resist. And pay while we are at it.

    • Maestro@fedia.io
      link
      fedilink
      arrow-up
      1
      ·
      20 days ago

      Since MS forced the upgrade, you should get 2025 for free. That would probably be really easy to argue in court

      • boonhet@lemm.ee
        link
        fedilink
        English
        arrow-up
        0
        ·
        20 days ago

        Ah, but did you read the article?

        MS didn’t force it, Heimdal auto-updated it for their customers based on the assumption that Microsoft would label the update properly instead of it being labeled as a regular security patch. Microsoft however made a mistake (on purpose or not? Who knows…) in labeling it.

        • MaggiWuerze@feddit.org
          link
          fedilink
          English
          arrow-up
          0
          ·
          20 days ago

          Then it’s still on Microsoft for pushing that update through what is essentially a patch pipeline

          • boonhet@lemm.ee
            link
            fedilink
            English
            arrow-up
            0
            ·
            20 days ago

            It is, but they never forced anyone to take the update, so that might save their asses, or it might not

            • WhatAmLemmy@lemmy.world
              link
              fedilink
              English
              arrow-up
              1
              ·
              20 days ago

              This would be no different to you ordering food in a restaurant, them bringing you the wrong meal, you refusing because you didn’t order it, then they tell you to go fuck yourself and charge you for it anyway.

              If this argument is valid in your judicial system then you live in a clown world capitalist dictatorship.

              • Maestro@fedia.io
                link
                fedilink
                arrow-up
                1
                ·
                20 days ago

                Have you seen the state of the US? A “clown world capitalist dictatorship” is a pretty apt description

  • Aceticon@lemmy.world
    link
    fedilink
    English
    arrow-up
    2
    ·
    19 days ago

    I’m truly, totally, completely shocked … that Windows is still being used on the server side.

    • Hobo@lemmy.world
      link
      fedilink
      English
      arrow-up
      2
      ·
      19 days ago

      A bunch of enterprise services are Windows only. Also Active Directory is by far the best and easiest way to manage users and computers in an org filled with a bunch of end users on Windows desktops. Not to mention the metric shitload of legacy internal asp applications…

        • Hobo@lemmy.world
          link
          fedilink
          English
          arrow-up
          1
          ·
          13 days ago

          No not really. It does the various services for the most part, but Active Directory is exclusively a Microsoft product. Group Policy in particular also does not have a drop in replacement that’s any sort of sane.

    • ikidd@lemmy.world
      link
      fedilink
      English
      arrow-up
      1
      ·
      19 days ago

      Basically AD and the workstation management that uses it. Could all be run on a VM and snapshotted because you know it’s going to fuck up an update eventually. Perhaps SQL Server but that’s getting harder to justify the expense of anymore.

    • uniquethrowagay@feddit.org
      link
      fedilink
      English
      arrow-up
      1
      ·
      19 days ago

      We run a lot of Windows servers for specialized applications that don’t really have viable alternatives. It sucks, but it’s the same reason we use Windows clients.

  • MonkderVierte@lemmy.ml
    link
    fedilink
    English
    arrow-up
    1
    ·
    20 days ago

    Misleading title. It was installed by a third-party updater, Heimdall, but MS labeled a Windows 11 update wrong.

      • Appoxo@lemmy.dbzer0.com
        link
        fedilink
        English
        arrow-up
        0
        arrow-down
        2
        ·
        edit-2
        17 days ago

        Do you know that’s not a mistake and done fully malicously knowing that? Please give me your source.

          • Appoxo@lemmy.dbzer0.com
            link
            fedilink
            English
            arrow-up
            0
            arrow-down
            2
            ·
            edit-2
            17 days ago

            And you make absolutely no error?

            Besides that:
            Should MS have caught the errorenous ID (assuming it truly was errourneous and not knowingly falsely labeled)? Absolutely. Should the patch management team blindly release all updates that MS releases? No?

      • ditty@lemm.ee
        link
        fedilink
        English
        arrow-up
        1
        arrow-down
        1
        ·
        20 days ago

        Yet another reason to not do auto-updates in an enterprise environment for mission-critical services.

        • superkret@feddit.orgOP
          link
          fedilink
          English
          arrow-up
          3
          ·
          20 days ago

          In an enterprise environment, you rely on a service that tracks CVEs, analyzes which ones apply to your environment, and prioritizes security critical updates.
          The issue here is that one of these services installed a release upgrade because Microsoft mislabelled it as security update.

            • SomeGuy69@lemmy.world
              link
              fedilink
              English
              arrow-up
              1
              ·
              19 days ago

              For security updates in critical infrastructure, no. You want that right away, in best case instant. You can’t risk a zero day being used to kill people.

            • mosiacmango@lemm.ee
              link
              fedilink
              English
              arrow-up
              1
              ·
              edit-2
              19 days ago

              Pre-prod is ideal, but a pipe dream for many. Lots of folks barely get prod.

              We still stagger patching so things like this only wipe some of the critical infrastructure, but that still causes needless issues.

  • Kokesh@lemmy.world
    link
    fedilink
    English
    arrow-up
    1
    ·
    20 days ago

    It must have been the same fun as when back in 2012 (or 2013?) McAfee (at least I think it was them) identified /system32 as a threat and deleted it :)

    • superkret@feddit.orgOP
      link
      fedilink
      English
      arrow-up
      1
      ·
      19 days ago

      We have an app running on CentOS 6. The vendor of the app informed us they expect to have a new version that can run on RHEL 8 by the end of the year - 2025.