Windows 8 Looks to Ditch the "Zombie" Security Restarts of Windows 7
November 15, 2011 4:38 PM
comment(s) - last by
Windows 8's Automatic Update will now always give you time to save and won't interrupt your gaming/movies
It's 3 a.m.; do you know what your PC is doing? Well, if it's a Windows 7 machine, it may be in the process of automatically restarting. Microsoft pushes out security updates the second Tuesday of each month, but other critical updates can land at off times. For those who forgot to save their work the evening before, they are often in for the rude surprise.
I. Windows Update Automatic Mode -- Boon to Security, Bane to an Unlucky Few
blog, Microsoft Corp. (
) engineer Farzana Rahman, writing with Windows Division President Steven Sinofsky, explains how Microsoft hopes to eliminate this problem in the upcoming Windows 8 release.
Automatic updates are a very important thing as they allow Microsoft to deliver important trusted content like security patches that a user might never go out and install on their own. With over a billion Windows PCs in the wild, Microsoft is under an immense amount of security risk, risk that is mitigated by the Automatic Update program.
Ms. Rahman shares 89.3 percent of Windows users opt to use automatic update. She comments, "That’s 90% of the total user base telling us to automatically install updates without showing any notifications, or asking for confirmation."
That might not be entirely accurate -- a lot of users simply don't understand what exactly auto update is and what the ramifications of turning it on and off are. But the important message is that a lot of people have Automatic Update turned on -- whether or not they know it.
The benefit is seen in Microsoft's metrics for one important update, which showed -- despite internet connection variability -- 85 percent of users downloading and installing the update within three days. A three-day turnaround means that Microsoft can quickly target malware threats and be guaranteed that its actions will take effect across a large amount of its installs.
Install rate v. days for a critical patch. [Image Source: Microsoft]
Interestingly, Microsoft indicates that while 31 percent of updates in computers with Windows Automatic Update turned on are installed interactively, the majority of users instead rely on shutdowns.
Microsoft says the "best case" scenario occurs in the 39 percent of updates that install alongside user shutdowns. Microsoft has tried to squeeze its updates in this Windows. Ms. Rahman writes, "This is the least disruptive experience for users, and so we do want to “hitch a ride” whenever we can on user-initiated shutdowns instead of inconveniencing users with a separate restart."
II. Toning Down the Auto Reboots
To remedy this Microsoft is making some important changes to Windows Update Automatic (WU Auto) with Windows 8.
Time to Save Your Work
WU Auto will now only restart your locked machine after you log in, preventing restarts on locked machines overnight
WU Auto will now give you a big message on login informing you that you have 15 minutes to save your work.
If programs are running (active use) and you're logged in when the restart order rolls in, you will be given the same message.
No Interruption to Media
In presentation mode
Watching a fullscreen movie
Playing a game
Your machine won't attempt the restart until you're done.
An important issue not really explained here is whether third-party movie players (in fullscreen mode) are supported, and similarly whether third-party slide presentation software (like Open Office Impress) will be caught by this check.
Less Updates and New Login Warnings
The auto restart is now changed to once a month, barring critical security updates. Important stability updates and their ilk will no longer force restarts at other times of the month.
The update day, as always is the second Tuesday of the month and the time is 3 a.m. in the user's selected time zone.
For users with WU Auto enabled, you'll now be informed by a message at the bottom right corner of the login screen how many days remain until the big shutdown and restart day.
These users will see a message that reads "Your PC will restart in [X] days to finish installing security updates."
For users with WU Auto disabled, you'll get similar messages, instead informing you about whether you need to download or install important updates. For these users -- who represent roughly 5.82 percent of the total Windows 7 install base, a message "Important updates are ready to be installed." will display.
Clicking the power button beneath the message for either WU Auto on or off, allows the user to manually choose "Update and shut down" or "Update and restart".
Lastly IT administrators who disable WU Auto for their enterprise users, will now have their users presented with a "Your PC needs to restart to finish installing security updates." message on the login screen. The users are offered equivalent options to the home users via a power button.
In Win. 7's implementation of Windows Update, you can actually turn off automatic restarts by:
Clicking the Windows button
Typing "regedit" in the search bar
Navigating to "HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate\AU"
Selecting to creat a new 32-bit DWORD value named "NoAutoRebootWithLoggedOnUsers"
Set the new variable to 1.
However, Windows Update's automatic restarts are a natural and (relatively) healthy process that prevents user procrastination from crippling the security of the Windows platform. With its changes, Microsoft appears to be on the right track to making WU's "Automatic" less destructive when it comes to forced restarts.
To the end user that means less headaches and more peace of mind.
III. What About the Third Parties?
Ms. Rahman also tossed in an interesting note in the conclusion, stating that some customers have expressed interest in programs (e.g. games, etc.) having the chance to send users patches via Windows Update. She comments that this isn't feasible because of the risk of sacrificing the trust of WU if a destructive update (be it unintentional or intentional) slipped through.
[U]sers have also told us that they trust the quality of updates distributed by WU and hence are comfortable with choosing to automatically update their systems. We would not want to do anything that might reduce trust in the system by encouraging people to take on this management task manually and exposing their PCs to potential vulnerabilities for even short times.
Through WU and the “Microsoft Update” option (opt-in) we also offer updates for Microsoft products and for 3rd-party device drivers, with a common set of setup tools for each. All of these updates are carefully screened, and must adhere to the Windows conventions for updates regarding rollback and recovery, and overall system impact.
This seems like a smart line of thinking. Some updates -- like
a recent AntiVir Guard update
-- have had unintended destructive effects on Windows machines. The last thing Microsoft needs -- given the already precarious position of being the world's biggest OS maker and hence the world's biggest target -- is to be blamed for the issues caused by negligent third-parties, which would be the likely scenario if Windows Update delivered the offending patch.
On the other hand, she points out that Microsoft's upcoming Windows Store -- which will deliver Metro styled apps in Windows 8, similar to App Store in OS X -- will offer developers that ability to send out automatic updates. The key here, appears to be that Microsoft is happy to provide developers with a sound update framework; they just want to keep it separated from the base operating system updates for reputation and trust purposes.
pops up in 2012
and will be the first Windows operating system refined for multi-touch tablets. Thus far
the beta program
has been a big success, like its Windows 7 predecessor.
This article is over a month old, voting and posting comments is disabled
RE: Here's a good idea
11/15/2011 7:29:30 PM
This is not an "issue". End of discussion. I can't even get into it or I fear the stupid will wear off on me.
MS got railed on for being not secure enough. MS goes a long way to fixing that, but if someone is inconvenienced a little bit, they get railed on for that too. Even though they can freaking TURN OFF the automatic update reboot!
Hence why so many people flock to Mac
So many? Barely anyone relative to Windows.
RE: Here's a good idea
11/15/2011 9:48:43 PM
stupid is ingrained in you, it will never wear off.
RE: Here's a good idea
11/15/2011 10:23:02 PM
I love this place. :)
RE: Here's a good idea
11/16/2011 8:38:48 AM
I am going to agree with you here reclaimer... (boy that sounds funny to say aloud.)
This falls into the area of "can't please everyone". Given the nature of the problem in the short time one might expect that MS would simply for now disable any forced application shut downs and cancel the reboot process if a dialog box pops up. Then the user would be left with xyz "do you want to save" dialog box and another one for windows update saying "Reboot after updates failed, reboot now?"
Although I have to admit for the overall picture I would think no restart updates would be a focus as well as reality by now. I find myself puzzled that we even demand restarts for anything at this point, and that ms can not design things in a way that allows component restarts without system restarts. Why can ms not for example virtualize the component receiving the update running a second copy of xyz until updates are complete, then re-point back to the original component on completion?
Or maybe allow "soft resets" where applications are told the system is going to sleep or similar, then told it is resuming from the low power state once work has been completed?
I'm also an internet armchair programmer here trivializing something so massive as an operating system and I know it isn't "that easy". I suppose my expectation is more that easy or not windows has been around long enough to have a solution.
Think 100% live patching for severs that does not include bringing them down, and passing that down to consumer machines. You can not say that would be anything but praised and likely increase adoption rates.
"We don't know how to make a $500 computer that's not a piece of junk." -- Apple CEO Steve Jobs
Quick Note: Windows 8 Developer Preview Already Tops 500,000 Downloads
September 14, 2011, 6:08 PM
Ballmer: Windows 8 Will Land in 2012, Pop up in Tablets
May 24, 2011, 2:49 PM
AVG Update Cripples Users' Windows 7, Vista Computers
December 3, 2010, 10:28 AM
Quick Note: Whoops, Microsoft Pushed Unwanted Windows 10 to Some Users
October 15, 2015, 9:04 PM
Quick Note: Windows 10 Insider Preview Build 10565 Fixes Boot Camp 6.0 Issues
October 13, 2015, 11:39 AM
Microsoft's HD-500 ("Display Dock"), the Magic Sauce Behind Continuum
October 6, 2015, 5:30 PM
Quick Note: Windows 10 Hits 110 Million Devices, VMs
October 6, 2015, 4:30 PM
Windows 10 on Raspberry Pi, IoT Devices Sees Developer Debut
August 12, 2015, 2:41 PM
Sony Issues Bizzare "Do Not Update" Edict to VAIO PC Owners
August 11, 2015, 9:42 PM
Most Popular Articles
Free Windows 10 offer ends July 29th, 2016: 10 Reasons to Upgrade Immediately
July 22, 2016, 9:19 PM
Smart Security Cameras: 5 Good Choices For Any Budget
July 25, 2016, 7:13 PM
2017 Porsche Panamera: I’ll Take Three of These.
July 24, 2016, 6:44 PM
Top 5 Smart Watches
July 21, 2016, 11:48 PM
Latest Blog Posts
Sceptre Airs 27", 120 Hz. 1080p Monitor/HDTV w/ 5 ms Response Time for $220
Dec 3, 2014, 10:32 PM
Costco Gives Employees Thanksgiving Off; Wal-Mart Leads "Black Thursday" Charge
Oct 29, 2014, 9:57 PM
"Bear Selfies" Fad Could Turn Deadly, Warn Nevada Wildlife Officials
Oct 28, 2014, 12:00 PM
The Surface Mini That Was Never Released Gets "Hands On" Treatment
Sep 26, 2014, 8:22 AM
ISIS Imposes Ban on Teaching Evolution in Iraq
Sep 17, 2014, 5:22 PM
More Blog Posts
Copyright 2016 DailyTech LLC. -
Terms, Conditions & Privacy Information