Comment by arcfour
18 days ago
Ah, so, in addition to turning off automatic updates (everyone knows patches are for wimps! The real threat is supply chain compromise, not 1-days!), you also have taken all of the other necessary steps to protect yourself from the NSA? What if they just compel Microsoft to backdoor Windows/WinGet against you?
And these updaters almost universally use HTTPS, which network-based adversaries can't see except for SNI, and even that's going away...?
> What if they just compel Microsoft to backdoor Windows/WinGet against you?
You are confusing cause with effect. Leaking this type of fingerprint data over time is what allows users of Palantir-like systems to decide you're somebody worth individually targeting.