Stories
Slash Boxes
Comments

SoylentNews is people

Telemetry in Windows 7: Upgrade Readiness Deployment Script and DiagTrack

posted by chromas on Friday July 12 2019, @08:48PM   Printer-friendly

Microsoft stirs suspicions by adding telemetry files to security-only update

As expected, Windows Update dropped off several packages of security and reliability fixes for Windows 7 earlier this week, part of the normal Patch Tuesday delivery cycle for every version of Windows.

[...] What was surprising about this month's Security-only update, formally titled the "July 9, 2019—KB4507456 (Security-only update)," is that it bundled the Compatibility Appraiser, KB2952664, which is designed to identify issues that could prevent a Windows 7 PC from updating to Windows 10.

[...] I spent the afternoon poking through update files and security bulletins and trying to get an on-the-record response from Microsoft. I got a terse "no comment" from Redmond.

My research did, however, confirm that this is not a mistake, and it led me to a theory for why these mysterious files are shipping in an unexpected location. I strongly suspect that some part of the Appraiser component on Windows 7 SP1 had a security issue of its own. If that's the case, then the updates indisputably belong in a Security-only update.

And if they happen to get installed on systems where administrators had taken special precautions not to install those components, Microsoft's reaction seems to be, "Well ... tough." The Appraiser tool was offered via Windows Update, both separately and as part of a monthly rollup update two years ago; as a result, most of the declining population of Windows 7 PCs already has it installed.

Also at BetaNews & Ghacks

yuhong writes:

https://docs.microsoft.com/en-us/windows/deployment/upgrade/upgrade-readiness-deployment-script

ConfigScript.ps1 is pretty interesting.

Of note is there are different versions of DiagTrack (the script checks the version):
https://github.com/MicrosoftDocs/windows-itpro-docs/issues/3347

There is a blog post on it:
https://techcommunity.microsoft.com/t5/Windows-Analytics-Blog/How-does-Upgrade-Readiness-in-WA-collects-application-inventory/ba-p/213586

Upgrade Readiness in Windows Analytics provides an inventory of devices and applications for enrolled devices. We've had a lot of customers ask about the details of how this works, and this blog post is meant to answer those questions.

[...] This data is collected by an OS component called "Appraiser", which is built into Windows (require a KB to be installed on Windows 7/8.1 devices, per below).

[...] Core Inventory (apps, drivers) data collection is triggered via a scheduled nightly task "Microsoft Compatibility Appraiser" which runs every 24 hours. This assumes the system is awake and idle for long enough period to complete the scan. If the device was found inactive we resume the scan on the next available opportunity. This data is only sent to Microsoft if the device is opted in for CDO (Commercial Data Opt-in) on Win7/8.1 or Basic level in Windows 10.

Mozilla have https://bugzilla.mozilla.org/show_bug.cgi?id=1197768

Original Submission

 
This discussion has been archived. No new comments can be posted.
Telemetry in Windows 7: Upgrade Readiness Deployment Script and DiagTrack | Log In/Create an Account | Top | 22 comments | Search Discussion
Display Options Threshold/Breakthrough Mark All as Read Mark All as Unread
The Fine Print: The following comments are owned by whoever posted them. We are not responsible for them in any way.

  • (Score: 1) by fustakrakich on Saturday July 13 2019, @01:48AM (2 children)

    by fustakrakich (6150) on Saturday July 13 2019, @01:48AM (#866473) Journal

    Sorry, I didn't even try to sort anything out. I just assume the system sends everything the bandwidth allows. I can't drown myself in the details.

    But then, I would never discuss my plans to take over the world on a Windows machine, so I don't sweat the small shit.

    --
    La politica e i criminali sono la stessa cosa..

  • (Score: 1, Funny) by Anonymous Coward on Saturday July 13 2019, @07:19AM (1 child)

    by Anonymous Coward on Saturday July 13 2019, @07:19AM (#866521)

    There is a Win 8.1 install on my laptop. It came with the machine. I boot it once in a while, just to torture it. I have never allowed it to be on a network. So far as it knows, it is the only Win8.1 in the universe. Which, I guess, saves it from some shame.

      But I regularly deny its attempt to register itself, and upgrade itself, so it is left just more or less playing with itself, and the one hardware driver I keep it for, a video camera whose manufacturer is not smart enough to provide open drivers. And then I tell Windows 8.1, "it applies the lotion, or it gets the hose again!" Cruel, but you should see the look on Win8.1's face! Ha! Almost worth it.

      Of course, the day will come when the appropriate drivers will be available, and my Win8.1 will no longer be required. A merciful death, "wipe /Win32 -R" Poor bastard.

    • (Score: 0) by Anonymous Coward on Saturday July 13 2019, @07:07PM

      by Anonymous Coward on Saturday July 13 2019, @07:07PM (#866693)

      You fucking terrorist!!!

      You made me feel sympathy for windows 8....