Feeds

Microsoft EULA asks for root rights – again

PC, heal thyself

  • alert
  • submit to reddit

Security for virtualized datacentres

An addition to Microsoft's End User Licensing Agreement has alarmed Register readers.

Windows XP Service Pack 1 and Windows 2000 Service Pack 3 contain a new condition which asks you to allow Windows to go and install future updates.

"You acknowledge and agree that Microsoft may automatically check the version of the OS Product and/or its components that you are utilizing and may provide upgrades or fixes to the OS Product that will be automatically downloaded to your computer," is the new bit you'll be interested in.

Consent-based push, then. And pretty similar to what you already get in Windows Update, for sure. But what's it doing in the installation sequence?

"I don't agree to let Microsoft 'automatically' (for which, read 'at Microsoft's discretion, and without my knowledge or consent'), install 'updates or fixes' (for which, read 'digital rights management facilties') so I hit 'I don't agree' and cancelled out," writes Joel Hanes from Santa Clara, CA.

We think that the word "may" absolves Microsoft of the consent argument, but this isn't exactly clear.

And as he points out, this could be back door for future DRM technologies. Such a clause was smuggled into a security patch in June.

On the other hand, users already consent to similar conditions whenever they use the Windows Update facility - and few complain.

The change needn't apply to corporate users. Microsoft recently introduced Software Update Services, which allows managed upgrades across the Intranet to users with Active Directory. (So you don't have thousands of desktops hitting Microsoft servers at once).

We've asked Microsoft if this was a legal or a technical decision, and what was behind the decision to make installation of the service packs conditional on this clause. We await their reply.

Related Stories

MS security patch EULA gives Billg admin privileges on your box
Anti-EULA script removes offending text

Providing a secure and efficient Helpdesk

More from The Register

next story
New 'Cosmos' browser surfs the net by TXT alone
No data plan? No WiFi? No worries ... except sluggish download speed
iOS 8 release: WebGL now runs everywhere. Hurrah for 3D graphics!
HTML 5's pretty neat ... when your browser supports it
Mathematica hits the Web
Wolfram embraces the cloud, promies private cloud cut of its number-cruncher
Mozilla shutters Labs, tells nobody it's been dead for five months
Staffer's blog reveals all as projects languish on GitHub
'People have forgotten just how late the first iPhone arrived ...'
Plus: 'Google's IDEALISM is an injudicious justification for inappropriate biz practices'
SUSE Linux owner Attachmate gobbled by Micro Focus for $2.3bn
Merger will lead to mainframe and COBOL powerhouse
iOS 8 Healthkit gets a bug SO Apple KILLS it. That's real healthcare!
Not fit for purpose on day of launch, says Cupertino
prev story

Whitepapers

Providing a secure and efficient Helpdesk
A single remote control platform for user support is be key to providing an efficient helpdesk. Retain full control over the way in which screen and keystroke data is transmitted.
A strategic approach to identity relationship management
ForgeRock commissioned Forrester to evaluate companies’ IAM practices and requirements when it comes to customer-facing scenarios versus employee-facing ones.
Saudi Petroleum chooses Tegile storage solution
A storage solution that addresses company growth and performance for business-critical applications of caseware archive and search along with other key operational systems.
WIN a very cool portable ZX Spectrum
Win a one-off portable Spectrum built by legendary hardware hacker Ben Heck
The next step in data security
With recent increased privacy concerns and computers becoming more powerful, the chance of hackers being able to crack smaller-sized RSA keys increases.