rysiek ✅ is a user on mastodon.social. You can follow them or interact with them if you have an account anywhere in the fediverse. If you don't, you can sign up here.
rysiek ✅ @rysiek

Wait, what. Windows 10 sends info on USB devices plugged in directly to Microsoft?

And it does that using pure HTTP?
pastebin.com/ttYp5rLg

You gotta be kidding me.

· Web · 106 · 78

@rysiek Microsoft is digging at rates not yet seen!

@rysiek
As early as Windows 7, when you opened up the Devices and Printers control panel, there was an option to "Obtain device information from the internet" (or some wording to that effect) which would retrieve graphics for printers and such, so they wouldn't show up with generic icons. I wonder if this is *that*, but perhaps without asking for permission, and of course being done insecurely as it may have been all along.

Windows 7+: Device Metadata Packages Show more

Windows 7+: Device Metadata Packages Show more

Windows 7+: Device Metadata Packages / Security Show more

Windows 7+: Device Metadata Packages / Security Show more

@rysiek well I guess Microsoft and the world now knows I've been running with a cheap knockoff XBox 360 wireless receiver. maybe that's why it gets increasingly difficult to use :P
@rysiek interesting, I have always expected that. Probably Microsoft (and Google Chrome) also collects MAC addresses.
@rysiek interesting, I have always expected that. Probably Microsoft (and Google Chrome) also collects MAC addresses.

@mcscx yeah, but the biggest WTF for me is the clear text channel used.

@rysiek
Simple fix, block the address your machine is connecting to on your router. Boom no more "Telemetry" to that address.

@taek sure. How does that affect updates? Are the IP addresses the same? Will it potentially fsck with automatic updates?..

This is not a solution.

@rysiek
Well, it shouldn't affect updates or IP addresses at all, since you're blocking the hostname not the IP address.

@taek ah, ok. Well, that requires DPI on the router, though.

@rysiek
pfSense and Untangle shouldn't have a problem doing it. If you have a SOHO (cheap wifi/router/switch combo), it probably wont do it. Some do though.

@taek yeah, question is how many other hostnames do I have to block to stop leaking this kind of info.

Ugh, or I could move people off of Windows. Fun fact, slowly this is happening.

@rysiek
That's a very good question, the answer is, I don't freakin know, could be thousands!

@taek @rysiek Why not just resolve it to 0.0.0.0 in the hosts file?

@taek @rysiek

Like putting duct tape over a single hole in a sinking ship, the simple fix is installing an OS that doesn't spy on you.

@dvn yeah, posted the same image today, in a different context. ;)

@rysiek
This is Microsoft you're talking about. There is no level of incompetence or amorality to which they will not sink.