this post was submitted on 07 Nov 2024
555 points (97.9% liked)

Technology

59166 readers
2122 users here now

This is a most excellent place for technology news and articles.


Our Rules


  1. Follow the lemmy.world rules.
  2. Only tech related content.
  3. Be excellent to each another!
  4. Mod approved content bots can post up to 10 articles per day.
  5. Threads asking for personal tech support may be deleted.
  6. Politics threads may be removed.
  7. No memes allowed as posts, OK to post as comments.
  8. Only approved bots from the list below, to ask if your bot can be added please contact us.
  9. Check for duplicates before posting, duplicates may be removed

Approved Bots


founded 1 year ago
MODERATORS
top 50 comments
sorted by: hot top controversial new old
[–] Semi_Hemi_Demigod@lemmy.world 8 points 10 hours ago (1 children)

Meanwhile I've still got customers who are running CentOS 6.

[–] superkret@feddit.org 7 points 9 hours ago

We have an app running on CentOS 6. The vendor of the app informed us they expect to have a new version that can run on RHEL 8 by the end of the year - 2025.

[–] CriticalMiss@lemmy.world 20 points 16 hours ago (3 children)

Hate to be that guy but if you automatically patch critical infrastructure or apply patches without reading their description first, you kinda did it to yourself. There’s a very good reason not a single Linux distribution patches itself (by default) and wants you to read and understand the packages you’re updating and their potential effects on your system

[–] festus@lemmy.ca 9 points 4 hours ago (1 children)

Many distros (at least Ubuntu) auto-installs security updates, and here a mislabeled "security update" was auto-installed. This is not the fault of the sysadmins.

[–] starman2112@sh.itjust.works 1 points 2 hours ago

here a mislabeled "security update" was auto-installed.

To be fair, you would have to read all the way to the first paragraph to get this information from the article. Hard to blame people for not knowing this critical bit of information when it was buried so deep

[–] rumba@lemmy.zip 1 points 2 hours ago

There's a lot of people out there running automation to keep their servers secure. Well I agree any automation out there should be able to flag and upgrade excluded, It would seem to me like Microsoft should own some of the blame for a full ass hard to uninstall OS update fed in with the same stream and without it interaction. I kind of expect my OS in stall pop up a window and say hey a****** this is going to upgrade your system, are you cool with that. I don't know how it works these days but I know back in the day going between versions you would have to refresh your licensing on a large upgrade.

[–] Gimpydude@lemmynsfw.com 23 points 13 hours ago

While you are generally correct, in this case the release notes labeled this as a security update and not an OS upgrade. The fault for this is Microsoft's not the sysadmin.

[–] vordalack@lemm.ee 8 points 16 hours ago

"Labeling error"

Lol, okay.

[–] SapphironZA@sh.itjust.works 7 points 17 hours ago

Why do my windows upgrades never run this smoothly?

[–] Aceticon@lemmy.world 80 points 1 day ago (3 children)

I'm truly, totally, completely shocked ... that Windows is still being used on the server side.

[–] ikidd@lemmy.world 4 points 10 hours ago

Basically AD and the workstation management that uses it. Could all be run on a VM and snapshotted because you know it's going to fuck up an update eventually. Perhaps SQL Server but that's getting harder to justify the expense of anymore.

[–] uniquethrowagay@feddit.org 9 points 14 hours ago

We run a lot of Windows servers for specialized applications that don't really have viable alternatives. It sucks, but it's the same reason we use Windows clients.

[–] Hobo@lemmy.world 59 points 1 day ago (1 children)

A bunch of enterprise services are Windows only. Also Active Directory is by far the best and easiest way to manage users and computers in an org filled with a bunch of end users on Windows desktops. Not to mention the metric shitload of legacy internal asp applications...

[–] pineapplelover@lemm.ee 2 points 18 hours ago

Yeah at work we do a lot of internal microsoft asp stuff, poweshell, AD, ms access, all that old legacy ms stuff

[–] DirkMcCallahan@lemmy.world 35 points 1 day ago (1 children)

I know this has nothing to do with my home computer, but this just further affirms my decision to switch to Linux earlier this year.

[–] DragonTypeWyvern@midwest.social 14 points 23 hours ago* (last edited 23 hours ago)

Copilot just forced itself onto my personal machines again so it's just typical Windows fuckery all around.

[–] VantaBrandon@lemmy.world 31 points 1 day ago (1 children)

When the OS becomes the virus

[–] Appoxo@lemmy.dbzer0.com 8 points 19 hours ago (3 children)

When reading comprehension is limited to the title.
MS mislabeled the update
Heimdal (apparently a patchmanagement) auto-installed the falsely labeled update.

If OP (this was reported by a Redditor on r/sysadmin) and their company is unable to properly set grace periods for windows updates I can't help them either.
IMHO you are supposed to manually review and release updates either on a WSUS or the management interface of your patching solution.
Not just "Hehe, auto install and see what happens".
And if you do that shit, set a timeout for 14 days at least for uncritical rated updates.

[–] Cethin@lemmy.zip 3 points 17 hours ago (1 children)

They said they believe it was a mislabeled update. MS didn't respond. Before criticizing others for their reading comprehension, I think you could work on yourself too.

There is a world, and it may be ours, where MS purposefully pushes this out. As the end of the article makes clear, this will be only a minor issue for those with good backup (which they probably all should but they don't), but for those who don't they'll be stuck with the new version and have to pay for the license of it. This is a large benefit to MS while they also get to pretend like it's just a mistake and not having backups makes it your issue, not theirs.

[–] Appoxo@lemmy.dbzer0.com 1 points 8 hours ago

Shouldnt you be able to just downgrade?
Dunno if that works on the server version.

load more comments (2 replies)
[–] xia@lemmy.sdf.org 17 points 1 day ago (1 children)

You thought you were in control?

[–] Agent641@lemmy.world 6 points 1 day ago

Our server, comrade.

[–] GreeNRG@slrpnk.net 284 points 1 day ago* (last edited 1 day ago) (3 children)

Since rolling back to the previous configuration will present a challenge, affected users will be faced with finding out just how effective their backup strategy is or paying for the required license and dealing with all the changes that come with Windows Server 2025.

Accidentally force your customers to have to spend money to upgrade, how convenient.

[–] Dremor@lemmy.world 197 points 1 day ago (2 children)

Congratulation, you are being upgraded. Please do not resist. And pay while we are at it.

[–] Atherel@lemmy.dbzer0.com 121 points 1 day ago (1 children)
[–] Hupf@feddit.org 4 points 18 hours ago

I have a message and a question.

A message from ESR and a question from me.

Where do you want to go today?

load more comments (1 replies)
[–] Maggoty@lemmy.world 10 points 1 day ago (1 children)

Uh, if they didn't ask for it, how is Microsoft going to make them pay for it?

[–] Evotech@lemmy.world 9 points 19 hours ago

Good luck arguing with Ms if you aren't a giant company

[–] Maestro@fedia.io 78 points 1 day ago (1 children)

Since MS forced the upgrade, you should get 2025 for free. That would probably be really easy to argue in court

[–] boonhet@lemm.ee 69 points 1 day ago (1 children)

Ah, but did you read the article?

MS didn't force it, Heimdal auto-updated it for their customers based on the assumption that Microsoft would label the update properly instead of it being labeled as a regular security patch. Microsoft however made a mistake (on purpose or not? Who knows...) in labeling it.

[–] MaggiWuerze@feddit.org 92 points 1 day ago (8 children)

Then it's still on Microsoft for pushing that update through what is essentially a patch pipeline

MS will be sued over this and they will lose. This is not an ambiguous case. They fucked up. It’s essentially an unconsentual/unilateral alteration to a contract, which kinda violates the principle of, you know, a contract.

load more comments (7 replies)
[–] MonkderVierte@lemmy.ml 92 points 1 day ago (4 children)

Misleading title. It was installed by a third-party updater, Heimdall, but MS labeled a Windows 11 update wrong.

[–] superkret@feddit.org 115 points 1 day ago (1 children)

They labelled an OS version upgrade as a security update.

[–] dditty@lemm.ee 28 points 1 day ago (1 children)

Yet another reason to not do auto-updates in an enterprise environment for mission-critical services.

[–] superkret@feddit.org 38 points 1 day ago (4 children)

In an enterprise environment, you rely on a service that tracks CVEs, analyzes which ones apply to your environment, and prioritizes security critical updates.
The issue here is that one of these services installed a release upgrade because Microsoft mislabelled it as security update.

load more comments (4 replies)
load more comments (3 replies)
[–] Buttflapper@lemmy.world 35 points 1 day ago (19 children)

Do system administrators still exist? Honest question. I was one of those years ago and layoffs, forced back to office bullshit drove me away

[–] floridaman@lemmy.blahaj.zone 35 points 1 day ago (1 children)
[–] njordomir@lemmy.world 9 points 1 day ago

I knew a guy with almost that exact resume, except he told me it was chickens. He worked in Lagos during the week and went back to his chickens in rural Nigeria on the weekend.

[–] johannesvanderwhales@lemmy.world 30 points 1 day ago (2 children)

I think they call them devops now.

load more comments (2 replies)
[–] superkret@feddit.org 63 points 1 day ago (3 children)

yes, but we spend most of our time in meetings with cloud service vendors now.
I haven't been inside the server room for a month.

[–] Toribor@corndog.social 20 points 1 day ago

I only go in the server room to t-pose in front of the giant air conditioner to cool off.

load more comments (2 replies)
load more comments (16 replies)
load more comments
view more: next ›