News: 1731317414

  ARM Give a man a fire and he's warm for a day, but set fire to him and he's warm for the rest of his life (Terry Pratchett, Jingo)

When Windows Server 2025 is delivered like it's 1999, nobody gets to party

(2024/11/11)


Opinion A seemingly simple, single mistake in metadata that auto-trashes a critical, major component in the Windows ecosystem sounds bad. And it is, in so many ways.

Let's start with Microsoft, which at the very least appears to have committed a self-induced supply chain attack on its own customers. The Windows Server 2025 complete OS upgrade was labeled as a security patch, the affected company claimed. People make mistakes, which is why you have automation that doesn't. Or you have people whose job it is to spot mistakes before pushing live. Or you have automation that spots mistakes before pushing live. Or, if you're a trillion-dollar company whose code runs quite a lot of the world, you have all three options.

Sysadmin shock as Windows Server 2025 installs itself after update labeling error [1]READ MORE

Microsoft, one might assume, has none of these three options in place. You cut and paste the wrong data into the wrong field? Congratulations, you are today's Malware Emperor, and have just pushed the launch button on an intercontinental ballistic pain missile. Whoosh! Off it goes into the internet. Isn't it pretty?

There is still hope for humankind, still time to catch the mistake before it blossoms into calamity. It's a security update that's five fricking gigabytes? That expects to find 32 GB spare storage to land on? Mister, that's no security patch. What's the biggest security patch bundle that a Microsoft product has ever needed? Those who just shouted "Linux" can pop back to 2015 when that was still clever, but at the very, very least an "Are you sure?" query should go up somewhere a carbon-based life form has to see it.

Likewise, a patch that claimed to be for Windows 11 but had a Windows Server payload should require modern intervention. Nope, a third-party patch management service had been configured to auto-install anything labeled as a security fix, no matter how much evidence there was otherwise.

[2]

All along this particular trajectory of tragedy, automation was doing the wrong thing because humans had done the wrong thing. It doesn't help that Windows Update has its roots in computing's Imperial Age, where economies of distribution and the chokeholds on supply chains meant most updates were full OS installations arriving on fleets of physical media. The need for faster, finer-grained updates only arrived with the internet providing both the mechanism to deliver them and the security threat environment that made them necessary.

[3]

[4]

For an internet-native OS like Linux, there are no real lines between patches. Updates and upgrades are extremely fluid. There is no one right way to manage updates. In enterprises, sysadmins must simultaneously delay changes to critical systems until they are absolutely sure they are safe, while applying patches as quickly as possible to maintain maximum stability and security. That's a lot of work reading change logs, creating, maintaining, and running test systems, and keeping up with both big-picture and vendor-specific trends.

This is not the world Windows Update was designed for, though. Sanity checks, manifests of what's being altered where and why, detailed update process progress, and control options are not in its nature. The basic idea came in with Windows 9x, and it shows. The best you can hope for with Windows Update for Business is the chance to defer deployment for a while to run up test systems.

[5]Public sector cyber break-ins: Our money, our lives, our right to know

[6]Huawei's farewell to Android isn't a marketing move, it's chess

[7]WinAmp's woes will pass, but its wonders will be here forever

[8]Smart homes may be a bright idea, just not for the dim bulbs who live in 'em

Closed source thinking means a legacy of secrecy and central control, where the end customer's knowledge of what's going on is a blue progress bar and a percentage completed count with as much connection to reality as Salvador Dali had to watchmaking.

There's no fundamental reason for update, patching, and upgrade mechanisms to be OS-specific at all. The job is the same, and interacts with running OS and app code in a limited way. From the system updater's point of view, target machines can be thought of as a database of static data that needs to be rewritten from time to time.

[9]

The rules for how and the metadata for what will vary, but the mechanism need not. An open framework that gives maintainers the roles for fine-tuning updates, and OS and app creators the ability to create a single unified ecosystem? Increased reliability, far better tools, and no loss of commercially important differentiation? It would be a properly designed supply chain for the most important part of the digital world, the code that makes it run.

It would also fix the dreadful discordant mess that is package management, a sin from which open source is most definitely not exempt. Which is not to say proprietary pond life isn't far uglier, where there's been no package management before the concept of the app store was kidnapped from mobile and roughly bolted in. Even Apple can't be bothered to put a proper package manager into its macOS CLI environment. Because there are no security or reliability implications in making the most powerful and system-intimate tool in the OS needlessly difficult to manage, right?

The whole business of patching, updating, and upgrading is criminally under-thought, under-invested, and under-appreciated across the board. This time, it was a single point of failure that automatically fried core services and reduced stocks of clean underwear.

[10]

What will it be next time? Because there will be a next time, and a time after that, until we stop patching and do the full upgrade we need. ®

Get our [11]Tech Resources



[1] https://www.theregister.com/2024/11/06/windows_server_2025_surprise/

[2] https://pubads.g.doubleclick.net/gampad/jump?co=1&iu=/6978/reg_software/oses&sz=300x50%7C300x100%7C300x250%7C300x251%7C300x252%7C300x600%7C300x601&tile=2&c=2ZzHj11PLBgOPLAjC-o7OPAAAAFA&t=ct%3Dns%26unitnum%3D2%26raptor%3Dcondor%26pos%3Dtop%26test%3D0

[3] https://pubads.g.doubleclick.net/gampad/jump?co=1&iu=/6978/reg_software/oses&sz=300x50%7C300x100%7C300x250%7C300x251%7C300x252%7C300x600%7C300x601&tile=4&c=44ZzHj11PLBgOPLAjC-o7OPAAAAFA&t=ct%3Dns%26unitnum%3D4%26raptor%3Dfalcon%26pos%3Dmid%26test%3D0

[4] https://pubads.g.doubleclick.net/gampad/jump?co=1&iu=/6978/reg_software/oses&sz=300x50%7C300x100%7C300x250%7C300x251%7C300x252%7C300x600%7C300x601&tile=3&c=33ZzHj11PLBgOPLAjC-o7OPAAAAFA&t=ct%3Dns%26unitnum%3D3%26raptor%3Deagle%26pos%3Dmid%26test%3D0

[5] https://www.theregister.com/2024/11/04/public_sector_breakins_opinion/

[6] https://www.theregister.com/2024/10/28/opinion_column_huawei_harmony_os/

[7] https://www.theregister.com/2024/10/20/opinion_column_winamp/

[8] https://www.theregister.com/2024/10/14/opinion_column_smart_gadgets/

[9] https://pubads.g.doubleclick.net/gampad/jump?co=1&iu=/6978/reg_software/oses&sz=300x50%7C300x100%7C300x250%7C300x251%7C300x252%7C300x600%7C300x601&tile=4&c=44ZzHj11PLBgOPLAjC-o7OPAAAAFA&t=ct%3Dns%26unitnum%3D4%26raptor%3Dfalcon%26pos%3Dmid%26test%3D0

[10] https://pubads.g.doubleclick.net/gampad/jump?co=1&iu=/6978/reg_software/oses&sz=300x50%7C300x100%7C300x250%7C300x251%7C300x252%7C300x600%7C300x601&tile=3&c=33ZzHj11PLBgOPLAjC-o7OPAAAAFA&t=ct%3Dns%26unitnum%3D3%26raptor%3Deagle%26pos%3Dmid%26test%3D0

[11] https://whitepapers.theregister.com/



Well said

Pascal Monett

I approve absolutely everything written in this article.

The fact that Redmond has cut QA teams is well known, the fact that it also has oodles of money is also well-known. Those two facts are contradictory in nature, but their coexistence is the entire basis of the problems millions of people and businesses are facing on a monthly basis.

Maybe a class-action lawsuit across five continents will do some good, because it's quite obvious that Borkzilla will continue on its merry way of not giving a flying fuck about delivering a proper product in the proper manner.

Somebody is missing a good whipping.

Tubz

From reports I have read, Win25 is being a bit of a bitch when it comes to installing and running smoothly, with many saying it is nowhere near production ready.

A long time ago, in a server room far, far away..

Windows Episode 2025 : The Empire Strikes Back

It is a dark time for the Rebellion. Although the Windows 8 has been destroyed, Imperial coders have driven the Rebel Linux forces from their hidden base and pursued them across the internet.

Evading the dreaded Imperial Office 365, a group of freedom coders led by Luke Redhat have established a new secret base on the remote ice world of Ubuntu.

The evil lord Darth Nadella, obsessed with finding young Redhat, has dispatched thousands of remote probes into the far reaches of the internet to deploy Windows Server 2025....

Doctor Syntax

"From reports I have read, Win25 is being a bit of a bitch when it comes to installing and running smoothly, with many saying it is nowhere near production ready."

Will anybody notice?

Doctor Syntax

"There's no fundamental reason for update, patching, and upgrade mechanisms to be OS-specific at all."

Is this really the case? With Linux the underlying mechanism allows you to slip in a new executable, program or library on the fly and provided it's has the same interfaces the next time it's invoked the new version will be loaded into memory. If it's a regular program that gets invoked as needed then there's nothing further to do. If its a service then it can often be restarted without ill-effects. There are few things* that need a reboot to reload.

While Windows isn't monolithic I get the impression it's a bit like the trilithons and you just can't quietly replace a small library as an o the fly update in the same way.

* At one time I'd have said just kernel and init but then I came across a dbus-related service.

<doogie> Culus: my bug with openssh appears to be fixed in 2.5.2, but
master runs 2.3.0
<Culus> Don't even start
<doogie> I just did.
<Culus> You guys are going to drive me to build a huge giant robot and
destroy all of texas, aren't you?