I always remember WannaCry as a reason to keep Windows updated (no, I wasn’t affected by it), but every new update is full of AI bloat :S
I keep all the communication with the mothership blocked and open just the Wuauserv, Bits and few domains just for updates, and every new update that are new services trying to call home, and this one update sitting here waiting for me to allow internet access I read the content and it is very descriptive about “Copilot+ PCs unique features”, “AI-Powered experience”, “Accessibility and input” (they added AI to a bunch of stuff), “User interface and experience” (more AI and widgets), then they say they added this Windows Hello and Windows Share that I don’t even want to know, and for security all they say is “Critical security fixes are included to help keep your system protected against emerging threats.” but to get this I need to get all their AI crap that might be a bigger security and privacy risk than whatever “Critical security fix” they included :S
not updating only works if your so out of date that there are tons more machines with new attack vectors that have not been patched. As time goes by new sotware is not all that new in the way it functions. Its just not a good way to go. I will say to that all the work with blocking windows telemetry is more than any work dealing with linux. Especially so if you use an easy distro.
Updates are needed for security and not a problem in a gutted Windows 11 (mine use <700 MB RAM), with third party privacy tools, like Portmaster, blocking not needed telemetries and unwanted traffic. Updates almost security patches and Defender definitions
Not to be adversarial but it’s either their way or the linux way 🤷♀️
I think it’s way more fun to mess around and problem solve Linux issues than do whatever is you’re doing on windows.
Maybe you have some specific windows use case, in which case my condolences, but you will probably never be as safe you’d like on windows ever
Honestly just emulating a jaikbroken windows 10 on linux might be a decent idea.
You won’t get the weird AI updates and VM helps with security/privacy if you are smart about it.
Alternatively a jailbroken windows 10 on metal BUT with competent, 3rd party antivirus and security software.
Why not just use wine on Linux instead of emulating windows
Like everyone else is saying, updating is the best policy for security, especially/ironically with the increasing internet connectedness of the OS. I’ve heard of things like Windows Shut Up! That disables various undesirable “features” of windows forcefully, there might be something like that for Win11 that you can run after updates. Or maybe a YouTube channel that tells you what new things to combat. If there is someone please let me know.
I’m partial to Privacy.Sexy. I like to be able to see the code and know what’s being done when I click the button. There is also WPD, which is good too. I also employ scripts from Black Viper’s work, reducing the number of unnecessary services that run in the background. These scripts are based on Black Viper’s scripts.. I also use a program called HostsMan which allows you to block various things like Windows telemetry in the host file itself. Some people have reported that Windows treats hostfile modifications as a virus, but I haven’t encountered that on W10 Pro.
Your safest bet would be to install Linux and be done with closed source software completely
If I had to use Windows as my main machine’s OS I’d:
- Consider moving to W11 LTSC
- Wait if there are way to ‘break’ the correct service/stopping the update
- Move back to W10 LTSC, if possible, temporarily
I always removed a bunch of the Windows bloat, but more and more they made them intertwined with core system functionalities so you can’t remove them. This update reinstalled Copilot, but just like Edge, I’m sure soon if you remove it completely you are killing core functionalities - now, without Edge WebView you can’t even connect to the internet.
To use windows at all.
Join the Linux revolution!
Try to get as much as possible off Windows. You can transfer the remaining Windows-only programs to a virtual machine in snapshot mode, or if necessary, a real machine with a backed up image, that you can reimage regularly.
Not everyone can get off Windows. But get as much as you can. Isolate what’s left.
The only winning move is not to play.
Linux!
Updating windows is (usually) great for security and terrible for privacy.
You have only 2 choices. Windows 11, or anything else.
go w10 iot ltsc 21h2
I’d still install security updates but hold off on the bigger, optional updates until some time has passed. I don’t quite fancy being MS’s unpaid beta tester.
Sadly, the only totally-safe way to use ANY computer - windows, mac, linux, anything - is to never connect it to a network in the first place.
Everything else is complicated.
