Microsoft will try the data-scraping Windows Recall feature again in October | Initial Recall preview was lambasted for obvious privacy and security failures
Initial Recall preview was lambasted for obvious privacy and security failures.
Microsoft will begin sending a revised version of its controversial Recall feature to Windows Insider PCs beginning in October, according to an update published today to the company's original blog post about the Recall controversy. The company didn't elaborate further on specific changes it's making to Recall beyond what it already announced in June.
For those unfamiliar, Recall is a Windows service that runs in the background on compatible PCs, continuously taking screenshots of user activity, scanning those screenshots with optical character recognition (OCR), and saving the OCR text and the screenshots to a giant searchable database on your PC. The goal, according to Microsoft, is to help users retrace their steps and dig up information about things they had used their PCs to find or do in the past.
The problem was that other users on the same PC, or attackers with physical or remote access to your PC, could easily access, view, and export those screenshots and the OCR database since none of the information was encrypted at rest or protected in any substantive way.
Among the changes Microsoft has said it will make: The database will be encrypted at rest and will require authentication (and periodic reauthentication) with Windows Hello before users will be allowed to access it. The feature will also be off by default, whereas the original plan was to turn it on by default and make users go into Settings to turn it off.
I saw a comment back when they announced they were "canceling" it, saying the same thing. It seems they were right. Microsoft will do anything to get their grubby hands on as much user data as possible; of course they're not going to give up that easily.
For those who want to escape this bullshit, Linux welcomed you with open arms and gives you control of your PC. Microsoft doesn't respect you, ditch them and move to something that will.
Guys guys, I think you're exaggerating a bit with this feature.
I mean, what's so bad in it to be hated like this?
Whatever is so wrong in giving a company known for their awful privacy respect and incredibly high data collection they do on the computes a history of literally everything you do on your pc, key presses included?
It's encrypted! They surely won't be able to do anything with it, right?
Haven't tried it myself, but it looks interesting. I figure that GNOME and KDE are probably more comfortable than XFCE for general users and gamers, respectively.
Or, please consider Devuan as well, to ensure there are distros without hard dependencies on systemd, an expansive attempt to cement IBM/RedHat's control over the direction of Linux through foundational changes to the init, filesystem, login, homedir, and other components...
Please don't bother replying to change my mind... never gonna like systemd no matter what. If it works for you, fine. Some of us still find it wholly unnecessary.
I specifically pointed out Debian instead of Fedora because of my discomfort with what happened to CentOS, even though Fedora comes with more out-of-the-box for desktop-users/gamers.
Linux has already switched to systemd, whether you like it or not. 99.9% of new users will only ever learn systemd, if they even learn what an init system is at all.
Debian switched to systemd in 2013, and IBM was not involved with systemd before 2019. Poettering works for Microsoft, not IBM.
The changes to init were necessary. The init scripts were legacy bloat, even in 2013. Furthermore, the work from the systemd project on creating separate daemons for other parts of the OS have brought a lot of new features and innovation to Linux.
In case anyone has to use Windows for certain things like I do,
HERE is a link that will provide ways to turn off Windows bullshit until you can either move over to Linux full time, or at least make your Windows partition slightly better.
You’re not stupid! I think they have a dedicated user guide that explains what the options do. You can also see what they do when you run the PowerShell command, and hover over one of the tweaks.
No matter what, and at the cost of absolutely everything else, the line must go up. In no way, shape, or form does anything else matter. The line. Must. Go. Up.
I'll start by saying my username is quite true, but, they're gonna have to send the data back to microsoft, so couldn't someone block the ports they use?
Ports? Hah, they'll send it straight through https if they want. To the base Microsoft domain so you can't block without basically disconnecting your install. Objectively that's what any security conscious user should do.
It seems to me that the major issue people were complaining about was the thing even existing in the first place (and rightly so). So by them still wanting to implement it, they have fixed absolutely nothing.