top | item 45636418

(no title)

bkraz | 4 months ago

In Win11 as admin, take ownership of the following files, and remove all permissions for the system user. This prevents any updates and can be easily undone at any time. I turned off updates, and life is much better. I no longer feel guilty about having my system "at risk". It's no longer worth the pain of updates.

C:\Windows\System32\WaaSMedicSvc.dll C:\Windows\System32\usosvc.dll C:\Windows\System32\wuaueng.dll

discuss

tacker2000|4 months ago

Yea at this point updating stuff is just almost more pain than pleasure, since new features are very limited nowadays and most of the time things end up being more broken.

For example, the latest MacOS sequoia security update broke the touch id reader when logging in, i need to type my password now everytime. And lets not forget about the new glass design and UI changes in the latest iOS.

Im pretty tired of updates at this point and will push them out unless absolutely necessary.

Yeul|4 months ago

Yep the recent Windows update broke a videogame that I was playing.

Windows used to be about backwards compatibility. Microsoft was proud of it. Twenty year old software ran on it.

Now it is all about AI stuff that I do not give a fuck about.

esseph|4 months ago

> Im pretty tired of updates at this point and will push them out unless absolutely necessary.

As a systems guy by trade and now a security guy by role, that scares the every living fuck out of me.

prmoustache|4 months ago

I'd rather use a non broken operating system than disable updates.

Arrath|4 months ago

I can't wait to try this. Long have I feuded with the Task Scheduler and its slippery ability to reenable the update services when I look away. Thanks!

bakugo|4 months ago

> I no longer feel guilty about having my system "at risk".

The risk of not updating your desktop OS every week is vastly overstated, and I believe this is at least in part due to fear mongering by companies like Microsoft who use said fear as a tool to keep people on the latest version with the latest tracking and ads.

rkagerer|4 months ago

I've encountered a lot more grief from ill-managed updates - and abuse of their delivery mechanism as a perverse means to shove unwanted software down my throat - than from the impact of any security incidents arising out of missing, delaying or contravening one.

The first issue is you don't meaningfully control the timing (ie. defer until you have time to deal with any fallout, which may be >30 days), and that you can't manage your risk by reviewing what's in them and selectively picking the ones you want (ie. true security fixes with limited surface area to bork things).

Once upon a time both those things were easy (eg. meaningful descriptions) and under your control.

tgv|4 months ago

I pinned the system version on 23H2. It does get other updates still.

2OEH8eoCRo0|4 months ago

Our update trust has been abused