Microsoft admits it sent Office nag to all WSUS servers
Admins, furious, say their Office installs have been falsely fingered as fake
Computerworld - Systems administrators have ripped Microsoft Corp. for pushing a trial antipiracy program meant for limited distribution to all enterprise update servers, a mistake that has triggered false warnings of Office counterfeits.
Earlier this month, Microsoft announced it would kick off a pilot program for software to display nagging notices on copies of Office that it deems fake. The program, part of the Office Genuine Advantage (OGA) initiative, which already requires users to validate their software as legitimate, was to run in only four countries: Chile, Italy, Spain and Turkey. The notices would appear on machines running phony copies of Office XP (called Office 2002 by some), Office 2003 and Office 2007.
Last Tuesday, however, Microsoft published the test update to all Windows Server Update Services (WSUS) servers and did not limit its delivery to end users in Chile, Italy, Span and Turkey. WSUS is the primary update mechanism used by businesses to patch their Microsoft software. Later, Microsoft said the mistake had seeded the OGA update to WSUS servers for about 24 hours.
By early Wednesday, administrators in the U.S., the U.K., New Zealand and elsewhere were posting messages on Microsoft support newsgroups, asking why their WSUS systems had received the Office nag. In some cases, administrators reported that the update had fingered large numbers of desktop PCs as running counterfeit copies of Office.
"Update KB949810 arrived via WSUS yesterday, and now all my XP workstations running Word 2002 are telling me it needs activating," said a user identified as "morriswoodyman," who said he is in the U.K. "The only problem is that the software is genuine and was activated three years ago," the user added in a message to a Microsoft support newsgroup.
The support document that morriswoodyman referred to -- KB949810 -- is the one associated with the OGA notification update and was how WSUS labeled the update in its listings.
Another user named James, said that he is with the U.S. Army and that the systems he manages had also been falsely accused. "I have [hundreds] of systems now giving me errors," he said on the same support thread. "These are U.S. government computers with legitimate licenses! MS needs to fix this FAST!"
Some users were blunt in their criticism. "I'm legal. My software is legal," said Susan Bradley on the same newsgroup. "There is nothing more frustrating as a Microsoft shareholder to constantly see Microsoft shoot themselves in the foot by treating legal customers in this manner."
Although Microsoft representatives acknowledged that there had been a glitch as early as Wednesday, it wasn't until Friday that Microsoft issued an official explanation in a post to its WSUS team blog.
- Silicon Valley's 19 Coolest Places to Work
- Is Windows 8 Development Worth the Trouble?
- 8 Books Every IT Leader Should Read This Year
- 10 Hot Hadoop Startups to Watch
- Slideshow: 7 security mistakes people make with their mobile device
- iOS vs. Android: Which is more secure?
- 11 sure signs you've been hacked
- Radicati: Cloud Business Email - Market Quadrant 2013 Google was named the top cloud business email provider in a recent report by research firm Radicati. Out of 14 key players, Google...
- Tablets in the Enterprise: A Checklist for Successful Deployment How can you enterprise manage and secure tablets in order to protect corporate data while providing access to the information and applications employees...
- Enterprise Mobility: A Checklist for Secure Containerization The advantages and disadvantages of the multiple approaches to containerization. Learn More>>
- Enterprise File Sync & Share Checklist File sync and share has changed the way people work and collaborate in today's tech-savvy world. Gone are the email roadblocks, clunky FTP...
- Live Webcast LIVE EVENT: 5/7, The End of Data Protection As We Know It. Introducing a Next Generation Data Protection Architecture. Traditional backup is going away, but where does this leave end-users?
- LIVE EVENT: 5/7, The End of Data Protection As We Know It. Introducing a Next Generation Data Protection Architecture. Traditional backup is going away, but where does this leave end-users?
- On-demand webinar: "Mobility Mayhem: Balancing BYOD with Enterprise Security" Check out this on-demand webinar to hear Sophos senior security expert John Shier deep dive into how BYOD impacts your enterprise security strategy... All Security White Papers | Webcasts