556
Sysadmin shock as Windows Server 2025 installs itself (www.theregister.com)
submitted 1 month ago by superkret@feddit.org to c/technology@lemmy.world
83 comments fedilink hide all child comments
top 50 comments
sorted by: hot top controversial new old
[-] GreeNRG@slrpnk.net 284 points 1 month ago* (last edited 1 month ago)

Since rolling back to the previous configuration will present a challenge, affected users will be faced with finding out just how effective their backup strategy is or paying for the required license and dealing with all the changes that come with Windows Server 2025.

Accidentally force your customers to have to spend money to upgrade, how convenient.

[-] Dremor@lemmy.world 193 points 1 month ago

Congratulation, you are being upgraded. Please do not resist. And pay while we are at it.

load more comments (1 replies)
[-] Maestro@fedia.io 81 points 1 month ago

Since MS forced the upgrade, you should get 2025 for free. That would probably be really easy to argue in court

[-] boonhet@lemm.ee 77 points 1 month ago

Ah, but did you read the article?

MS didn't force it, Heimdal auto-updated it for their customers based on the assumption that Microsoft would label the update properly instead of it being labeled as a regular security patch. Microsoft however made a mistake (on purpose or not? Who knows...) in labeling it.

[-] MaggiWuerze@feddit.org 91 points 1 month ago

Then it's still on Microsoft for pushing that update through what is essentially a patch pipeline

[-] gravitas_deficiency@sh.itjust.works 8 points 1 month ago

MS will be sued over this and they will lose. This is not an ambiguous case. They fucked up. It’s essentially an unconsentual/unilateral alteration to a contract, which kinda violates the principle of, you know, a contract.

[-] boonhet@lemm.ee 7 points 1 month ago

It is, but they never forced anyone to take the update, so that might save their asses, or it might not

[-] WhatAmLemmy@lemmy.world 49 points 1 month ago

This would be no different to you ordering food in a restaurant, them bringing you the wrong meal, you refusing because you didn't order it, then they tell you to go fuck yourself and charge you for it anyway.

If this argument is valid in your judicial system then you live in a clown world capitalist dictatorship.

[-] Maestro@fedia.io 39 points 1 month ago

Have you seen the state of the US? A "clown world capitalist dictatorship" is a pretty apt description

load more comments (1 replies)
[-] boonhet@lemm.ee 7 points 1 month ago

I'm saying they might send people the bill and then these people (well, companies) are going to have to fight it in court, where they'll be right for sure, but Microsoft can make a lot of stupid arguments to prolong the whole thing, to the point where it's cheaper to pay the license fee. For one they could say that continued use of the operating system constitutes agreement to licenses and pricing.

Either way this is server 2025 not windows 12. We're talking about companies here, not people.

load more comments (1 replies)
[-] Maggoty@lemmy.world 12 points 1 month ago

Uh, if they didn't ask for it, how is Microsoft going to make them pay for it?

[-] Evotech@lemmy.world 9 points 1 month ago

Good luck arguing with Ms if you aren't a giant company

[-] MonkderVierte@lemmy.ml 93 points 1 month ago

Misleading title. It was installed by a third-party updater, Heimdall, but MS labeled a Windows 11 update wrong.

[-] superkret@feddit.org 114 points 1 month ago

They labelled an OS version upgrade as a security update.

[-] dditty@lemm.ee 28 points 1 month ago

Yet another reason to not do auto-updates in an enterprise environment for mission-critical services.

[-] superkret@feddit.org 40 points 1 month ago

In an enterprise environment, you rely on a service that tracks CVEs, analyzes which ones apply to your environment, and prioritizes security critical updates.
The issue here is that one of these services installed a release upgrade because Microsoft mislabelled it as security update.

[-] NocturnalEngineer@lemmy.world 14 points 1 month ago

Should still be doing phased rollouts of any patches, and where possible, implementing them on pre-prod first.

[-] SomeGuy69@lemmy.world 11 points 1 month ago

For security updates in critical infrastructure, no. You want that right away, in best case instant. You can't risk a zero day being used to kill people.

load more comments (1 replies)
[-] mosiacmango@lemm.ee 11 points 1 month ago* (last edited 1 month ago)

Pre-prod is ideal, but a pipe dream for many. Lots of folks barely get prod.

We still stagger patching so things like this only wipe some of the critical infrastructure, but that still causes needless issues.

[-] Wooki@lemmy.world 9 points 1 month ago

Wrong.

Microsoft labelled the update as a security update

load more comments (3 replies)
[-] Aceticon@lemmy.world 88 points 1 month ago

I'm truly, totally, completely shocked ... that Windows is still being used on the server side.

[-] Hobo@lemmy.world 57 points 1 month ago

A bunch of enterprise services are Windows only. Also Active Directory is by far the best and easiest way to manage users and computers in an org filled with a bunch of end users on Windows desktops. Not to mention the metric shitload of legacy internal asp applications...

load more comments (2 replies)
[-] uniquethrowagay@feddit.org 10 points 1 month ago

We run a lot of Windows servers for specialized applications that don't really have viable alternatives. It sucks, but it's the same reason we use Windows clients.

load more comments (1 replies)
[-] Buttflapper@lemmy.world 46 points 1 month ago

Do system administrators still exist? Honest question. I was one of those years ago and layoffs, forced back to office bullshit drove me away

[-] superkret@feddit.org 62 points 1 month ago

yes, but we spend most of our time in meetings with cloud service vendors now.
I haven't been inside the server room for a month.

[-] Toribor@corndog.social 21 points 1 month ago

I only go in the server room to t-pose in front of the giant air conditioner to cool off.

[-] Buttflapper@lemmy.world 7 points 1 month ago

I'm not necessarily talking about being in the server room, I'm talking about more like doing power shell stuff and the stuff you would think system administrators do. They are still teaching active directory in IT classes in college

load more comments (1 replies)
[-] floridaman 37 points 1 month ago

1000020048

[-] njordomir@lemmy.world 10 points 1 month ago

I knew a guy with almost that exact resume, except he told me it was chickens. He worked in Lagos during the week and went back to his chickens in rural Nigeria on the weekend.

[-] johannesvanderwhales@lemmy.world 30 points 1 month ago

I think they call them devops now.

load more comments (2 replies)
[-] Passerby6497@lemmy.world 15 points 1 month ago

There are dozens of us (working for MSPs because in house doesn't pay as well and companies are cheap and want to outsource that cost center)!

[-] superkret@feddit.org 28 points 1 month ago

I switched from an MSP to a unionized in-house position, doubled my salary and my days of paid time off.

[-] Lettuceeatlettuce@lemmy.ml 8 points 1 month ago

I worked for a classic MSP a while back, barely lasted 3 months. Such a toxic environment, tons of pressure to spread yourself thinner and thinner.

It was one of those places where you were expected to be there an hour early, stay an hour late, and work through your lunch.

Even though that's illegal, it was never explicit, just one of those, wink wink type things. But the workload was always so heavy, you couldn't stay on top of everything unless you were working 50+ hours a week.

And of course, all salary, no overtime or double time for weekend work.

I do internal IT now, much better. Trying to get my own one-person shop going to eventually be fully self-employed. Actually, it would be really cool to become a worker-owned co-op, but that's still a faint dream.

load more comments (3 replies)
load more comments (4 replies)
[-] Dashi@lemmy.world 8 points 1 month ago

That's my job title.

load more comments (5 replies)
[-] VantaBrandon@lemmy.world 35 points 1 month ago

When the OS becomes the virus

[-] Appoxo@lemmy.dbzer0.com 11 points 1 month ago

When reading comprehension is limited to the title.
MS mislabeled the update
Heimdal (apparently a patchmanagement) auto-installed the falsely labeled update.

If OP (this was reported by a Redditor on r/sysadmin) and their company is unable to properly set grace periods for windows updates I can't help them either.
IMHO you are supposed to manually review and release updates either on a WSUS or the management interface of your patching solution.
Not just "Hehe, auto install and see what happens".
And if you do that shit, set a timeout for 14 days at least for uncritical rated updates.

load more comments (4 replies)
[-] DirkMcCallahan@lemmy.world 33 points 1 month ago

I know this has nothing to do with my home computer, but this just further affirms my decision to switch to Linux earlier this year.

[-] DragonTypeWyvern@midwest.social 15 points 1 month ago* (last edited 1 month ago)

Copilot just forced itself onto my personal machines again so it's just typical Windows fuckery all around.

[-] CriticalMiss@lemmy.world 28 points 1 month ago

Hate to be that guy but if you automatically patch critical infrastructure or apply patches without reading their description first, you kinda did it to yourself. There’s a very good reason not a single Linux distribution patches itself (by default) and wants you to read and understand the packages you’re updating and their potential effects on your system

[-] festus@lemmy.ca 14 points 1 month ago

Many distros (at least Ubuntu) auto-installs security updates, and here a mislabeled "security update" was auto-installed. This is not the fault of the sysadmins.

[-] starman2112@sh.itjust.works 7 points 1 month ago

here a mislabeled "security update" was auto-installed.

To be fair, you would have to read all the way to the first paragraph to get this information from the article. Hard to blame people for not knowing this critical bit of information when it was buried so deep

load more comments (3 replies)
[-] xia@lemmy.sdf.org 18 points 1 month ago

You thought you were in control?

load more comments (1 replies)
[-] GatoEscobar@lemmy.dbzer0.com 13 points 1 month ago

Crowdstrike moment

[-] Semi_Hemi_Demigod@lemmy.world 10 points 1 month ago

Meanwhile I've still got customers who are running CentOS 6.

[-] superkret@feddit.org 9 points 1 month ago

We have an app running on CentOS 6. The vendor of the app informed us they expect to have a new version that can run on RHEL 8 by the end of the year - 2025.

load more comments (1 replies)
[-] vordalack@lemm.ee 9 points 1 month ago

"Labeling error"

Lol, okay.

load more comments
view more: next ›
this post was submitted on 07 Nov 2024
556 points (100.0% liked)

Technology

60083 readers
2189 users here now

This is a most excellent place for technology news and articles.

Our Rules

  1. Follow the lemmy.world rules.
  2. Only tech related content.
  3. Be excellent to each another!
  4. Mod approved content bots can post up to 10 articles per day.
  5. Threads asking for personal tech support may be deleted.
  6. Politics threads may be removed.
  7. No memes allowed as posts, OK to post as comments.
  8. Only approved bots from the list below, to ask if your bot can be added please contact us.
  9. Check for duplicates before posting, duplicates may be removed

Approved Bots

founded 2 years ago
MODERATORS
L3s@lemmy.world
L3s@fry.gs
L4s@fry.gs
L4s@lemmy.world
enu@lemmy.world