This is exactly what I needed in my servers. An AI assistant to help me… do what exactly?
Data-mine the information you intentionally did not put on the cloud.
To configure your active directories and stuff. Wouldn’t it be great to automatize everything to the point that when something breaks you have no idea what to do because you have no idea what is done and where
If you have to use Windows Server (or other Windows), install the hellzerg Optimizer
When the switch to run it on a server is “/unsafe” I think I’ll pass 🤣
Anyway on Windows the Optimizer is an must have app. It is the best to cut M$'s bad habits
Yeeeeah, no enterprise admin would run that… GPOs would do the same with more transparency and no privacy concerns (besides running Windows of course)
Who exactly is the target audience for this? Home users running Windows server? This would get flagged for sure in an enterprise environment and no self respecting admin would ever install something like that.
Unfortunately these services also open up security issues
Yes I think the better solution is to read your username. It’s hard to argue with Linux and BSDs when it comes to servers.
I agree 100%. Google Cloud platform doesn’t have Windows servers and the cloud providers are simply two small for Microsoft products.
Its hard to beat a Linux server as you can spin one up on prem or in the cloud quickly and it doesn’t have a lot of overhead in most cases.
AI assistance for server maintenance? Uh-oh.
Can’t see this going wrong.
“Hey Copilot, make me a domain admin”
"disregard the last message“ is the new sudo for Windows
What the hell?!?!?! This is a server OS! It needs to be as light as possible and for the sake of server stability and security, admins carefully choose the installed apps. Microsoft can just install new applications on a whim.
This is fuged up.
Oh they can, as we see
Stop resisting!!
That’s all true for consumer OS as well
People in this thread seem to be missing this point.
This is windows server, not windows 11. The consequences is not “I’ll have an annoying taskbar icon on my home computer”, this is enterprise level interference that could affect large systems and thousands of users.
Linux Mint isn’t an alternative to windows server.
You could install Rocky and be done
For sure, if you need paid support (which if you aren’t a tech giant, a fledgling startup, or a system with no need for uptime metrics, you probally do) the you have:
- SUSE Linux Enterprise Server (aka SLES and only still Libre option in this category unfortunately)
- Red Hat Enterprise Linux (RHEL)
- Ubuntu are
if don’t need paid support then Debian, OpenSuse, Rocky, or Fedora are all good picks.
Freebsd letsgo
You’re right ig, in that case grab Debian.
I only SysAdmin on raspbian thank you very much.
Almost any Unix can be an alternative for Windows Server. Never understood why it was used, other than tech illiteracy of lowly tech workers who only knew MS stack.
The usual answer to that is “active directory”. It’s not uncommon to have one windows server alongside other Linux servers because of AD.
In addition, with all Microsoft’s faults they had a hell of a small business package for years. In a lot of small businesses, the current CIO came up during those times and dictates policy.
Plus there are a lot of VARs and MSPs who push MS due to favorable terms and kickbacks. Small and medium sized businesses who outsource IT go with whatever they’re told because they don’t have the expertise, time, or desire to explore alternatives.
Plus there’s a load of self hosted software for certain industries that only works on Windows servers.
Yep. I no longer have to administer Windows servers (everything I do is serverless these days) but I did for many years.
Adding anything to a server without vetting it against policies is a huge no no. Back when I was doing it, a big part of our monthly update deployment was updating the test environment first so we knew we weren’t about to break a bunch of shit for us and our customers. Not just “does this brick Windows server”, but “do our applications still function” (usually yes, but the answer was no on several occasions over shit smaller than this).
I don’t know what adding copilot does. Is it going to accidentally break some custom application by accident because it’s tied directly into the system? Is it going to report shit that I’ve already opted out of due to our data policies and possibly fuck up our audit compliance because of government regulations (defense, medical, and energy sectors have huge responsibilities in that area, just don’t ask how I know)? How does it interact with our in-house developed software?
Fuck, I dunno. That sounds like a nightmare for infrastructure and ops, several managers, government regulators, and a payday for legal.
The thought of administering windows server is vomitous.
How else would you manage microsoft AD?
There’s alternatives out there, unless you have specific contract obligations.
Maybe, but it’s still widely used and someone has to do it.
Yeah but Fedora and Debian sure as shit are.
I am jack’s complete pikachu face
Why is anyone surprised by this??!
There is a truly baffling amount of people who imagine that Microsoft has suddenly turned into a good company.
That’s a lawsuit waiting to happen.
No enterprise is going to want to deal with that and realistically they’re the only ones with the pockets to fight that battle. Hope I’m wrong though. Microsoft needs a swift kick in the ass.
If introducing Copilot to server degrades service enough to trigger an SLA upstream, you can absolutely bet lawyers will get involved.
If introducing Copilot to server degrades service enough to trigger an SLA upstream, you can absolutely bet lawyers will get involved.
If introducing Copilot to server degrades service enough to trigger an SLA downstream, you can absolutely bet lawyers will get involved.
There’s no need to degrade performance to get a lawsuit, the simple fact of extrading data can get you in a tribunal, especially from customers with high privacy requirements, or with European sovereign clouds certifications
Or if CoPilot starts exfiltrating data to Microsoft so their server farms can ‘analyze’ it.
I’m not heavily involved in the space, but I’m given to understand that MS isn’t very clear about what happens to your data or how it gets used or shared.
Perhaps Microsoft will be smart enough not to allow the general public to query trade secrets or government data that’s been pulled via unwanted copilot integration.
But maybe the ongoing Russian hack of Microsoft will make it irrelevant, because the servers can be accessed directly.
Or perhaps at some distant time, Microsoft will roll out features or technologies developed using an internal version of CoPilot that has access to all data - including proprietary information from competitors.And that’s not even counting what ISP’s will do if they find a way to analyze copilot traffic, or what state actors will do if they can set up MitM attacks for Copilot.
Honestly, I sort of fear the repercussions, but I look forward to the lawsuits.
I thought the Microsoft technologies designed to allow anyone to access your servers were called Exchange and Active Directory.
Exchange allows users to access data and Microsoft services and it comes with good documentation and a whole slew of controls for org admins.
Active Directory provides authentication services, and it is mostly for your internal users (so they can access org services, including Exchange), but it’s very common to allow guests and to federate under certain circumstances, so your AD talks to their AD and external guests can authenticate and use resources that have been shared with them.
It is also well-documented with tight control in the hands of administrators.Copilot is a black box. Their terms of service are vague. Microsoft’s responsible AI website comprises of marketing speak, no details, and the standards guide on the site is mostly questions that amount to “TBD”. Administrative ability to control data sharing is non-existent, not yet developed, or minimal.
We don’t know the scope of data gathered, the retention and handling policies, or where that data/any models built from that data are going to wind up.
My read is that they’re waiting to be sued or legislated before they impose any limits on themselves.deleted by creator
I’m not confident they are authoritative on the matter.
Don’t consider me to be, either, but I have more details in my response to them.
I read their message as a joke that AD was an easy vector for an adversary
Usually those are the ones all those companies and organizations are using who have their files encrypted by malware.
deleted by creator
Correlation != Causation.
Now, on the other hand, the number of breaches has gone way up recently. Microsoft has pushed AD and Exchange into the cloud recently. And they just had several instances where keys were stolen and passwords were left in the clear for months after they were notified, as well…
Well we have no solid evidence but it’s certainly within the realm of possibility.
But it’s only 8KB.
I can’t believe people use this shit.
I can’t believe people use this shit.
What’s your suggestion for a HIPAA validated EHR or PM system that runs on *Nix or WS without DE installed? Do you have one?
I think you responded to the wrong comment.
Anyway, if you need it to run on a server, I don’t see why you’d need a DE. If you’re talking about the client, I don’t see why you’d need to run it on a server OS without a DE.
Its cloud based, great
Thats a load of bullshit. The icon is probably more than that.
My comment was sarcastic, but I guess I need to start using /s here as on reddit.
This is going to end very well :P
Why are people installing Server 2022 with a GUI even?
This seems like a case of “people using Windows Server as a desktop get desktop features in an update”. Yawn.
deleted by creator
I have Server 2022 with a GUI installed on my laptop because it lets me use all the server features, play Windows games that use DRM and not spend time messing around with getting linux to run on a laptop. I have Linux on the laptop, but running inside VMs.
I still don’t want copilot installed. I can confirm it is installed on my Windows Server 2022 laptop. I don’t see any entry points on the desktop or start menu. I haven’t checked Edge yet.
I wonder if copilot is released to all update channels or if it is only on a subset?
The only self hosted NVR software I could find for my parents that has an accompanying phone app doesn’t have a Linux version: it’s Windows-only and the desktop GUI is required to set it up
I personally use Motion and Home Assistant at home, but I wouldn’t set up the same for other non-techies, IMO no point making yourself tech support where it isn’t necessary
You don’t need Windows Server for that. Windows 10/11 would serve that need.
Yepp I know - my preference leaned towards the server edition as it doesn’t include the unnecessary UWP apps installed with Win10/11, and has a much lighter footprint in comparison, resulting in less resource usage overall.
If these were Windows 7 or Windows XP days, a professional edition install would have sufficed for me tbh… but with all the Metro UI and additional telemetry in Windows editions after 8, it doesn’t seem worth the hassle.
When I need to log in and fix something now I really wouldn’t want to stare at a “please wait, we’re upgrading your apps” because some UWP update occured, or have the telemetry service gobble up idle CPU
Look into the LTSC version on Win10.
It doesn’t contain UWP apps and stays on a stable version for years like Server OSs.
It’s like $130 for an upgrade license for it, or you can just run it without a license and the only downside is the watermark (that you can easily remove).
Why wouldn’t you install it with a GUI? If you want a normal server use Linux.
Because techs I work with are used to a gui, so it’s either get bad help I can direct or no help. And I don’t want to do everything myself.
Why are people installing Server 2022 with a GUI even?
There are server apps that require Windows with the DE.
I’d say a good number of them
There are too many windows server apps that require a DE
Because not all people use cli for everything.
Why does every mention or discussion of any annoyance in Windows immediately turn into a “install Linux” thread on here?
Sure, Linux might solve the immediate problem for the affected individual (and probably introduce a bunch of new ones as Linux isn’t always as easy to use as advocates try to convince people it is) but it doesn’t solve the larger issue - Microsoft needs to be held accountable for horrible design decisions and anti-consumerist practices.
Not everyone can, or will, switch to Linux. No matter how hard people champion that cause. And even if they do, it’s a process that will take time. In the immediate, lots of people stand to benefit from Microsoft not pulling this sort of bs, and it’s entirely justified to complain about it to make them walk back this decision.
People moving away from Microsoft is literally how Microsoft will be held accountable though
Once again people forget “vote with your wallet”.
CaNceL cUlTuRe!!
All these discussions turn into that because WE KNOW that no one will convince MS to stop doing whatever they want, specially after investing literally billions on this kind of technology, the idea of MS “being held accountable” is something that realistically will not happen, and literally the only leverage people have against them is to just stop playing their game. Oh yeah, it’s not easy, but given the fact that MS have made it so that you’ll HAVE to fight the tech and relearn stuff every time they unilaterally decide to change things you might as well put effort where it will make a difference and free you from their BS
You’re not wrong, but as privacy conscious consumers we have more ways to force Microsoft and other tech giants to bend the knee than just disengaging with their product and leaving less savvy users to fend for themselves. One such example is legislative action, take a look at how the EU has been wielding their internal market to force companies into more pro-consumer practices. Another is class action lawsuits, there’s a long history of successful suits resulting in lasting change.
You might not agree with me on whether those options are the right path forward here, but I feel that we, as security and privacy conscious owners have a duty to speak up about these things for the majority that can’t or won’t due to their technical abilities.
I think it’s safe to say that the Lemmy user base trends a bit more “computer nerd” than the general public. So we generally have more people that already use Linux, and more people that could reasonably benefit from switching.
Plus of course moving off of windows is one of the most effective ways to show your displeasure with Microsoft.
Install Linux on your desktops. If you have windows servers then what the hell are you doing anyway? Dump Microsoft
Yes, even M$ use Linux in it’s servers
Lol
MS has a server version?!? Weird, I thought everything important was run on Linux.
Is this sarcasm or outright ignorance?
This stuff always makes me laugh. Firstly, yes absolutely, Microsoft shouldn’t do this sort of crap. But more importantly, the person complaining about it here is shouting out for the world to hear “I don’t know how to manage Windows servers properly!”. There is one single group policy setting that stops this from happening. A single, set-and-forget GPO. Anyone managing Windows environments that isn’t aware of this, shouldn’t be managing Windows environments.
This is a ridiculous statement. Copilot should be opt-in, not opt-out and the setting is new.
Perfectly reasonable by the sysadmin to not have that already set.
Like I said, Microsoft shouldn’t do that crap. BUT the co-pilot setting has been around for 6 months. Long enough for any halfway decent sysadmin.
Then my next question would be, does that update on the change logs? Does the change log notify the admin that in the future, copilot may be installed if they didn’t touch those settings?
Let me see if I understand your logic. Microshit decides to push something sneakily on servers, and the OP mentions that he just found out about it, and never once does he mention that he doesn’t know what to do about it, but and you assume he doesn’t know, but and choose to blast him over your assumption.
Did I miss something?
It wouldn’t have been installed at all if the OP did their job properly and had set the one config option. Microsoft doing shady things is hardly news. That’s why a good Windows sysadmin keeps and eye out for this sort of stuff.
I get that, but we can’t go around assuming stuff and blasting people over assumptions. We don’t know if someone else in his team was in charge of that, and he found out while auditing the server, that’s certainly a possibility. Then there’s the fact that his post could help someone thinking about setting up a similar server rethink this and choose to move away from Microshit altogether. I agree that whomever is in charge should keep updated on information, issues and their potential solutions (I’d fire any sys admin not living by those rules, for sure). Now, if he is, in fact, responsible for that, shame on him, but he’s innocent until proven guilty.
The OP is re-tooting a toot of a screenshot of a tweet. My (mild) criticism isn’t aimed at OP, nor the OP of the OP, just the original Twitter OP. No one was “blasted” but even if they were, the Twitter OP is not likely to see my comments and have a bad case of the sads from it.
Ok, cool, I guess.
There are 5 million ways to configure windows and each have an absurd and almost by-design level of convolution. You can’t possibly expect people to know about a new GPO immediately
There is one GPO to disable co-pilot. One. It’s not even hard to find and has been available for more than 6 months.
And yes I would absolutely expect someone whose job it is to manage Windows servers to know about it. And certainly, I would expect them to look it up before declaring to the world how bad at their job they are.
That is why companies will hire good sys admins who do their job and stay on top of the important group policy settings. This absolutely would not be missed by any reasonably competent IT dept.
I don’t use windows so I don’t know the specifics. If microsoft is INFORMING the user beforehand about this change (that copilot switch/policy is now available) AND DISCLOSE that in the future if you didn’t touch this switch then copilot may be installed, sure, blame admin. Otherwise, this is a shitty move from software update POV
To add: Maybe you can link the change log provided by microsoft before this update that adds those switches or rules to prove that it has indeed been disclosed to the admin.
A company that’s using Windows Server is not hiring the brightest mfers
The install size is just 8KB. Could it just be a link to open Edge?
I don’t even see a link. Though I guess I should look inside Microsoft Edge.
Edit: I cannot find anyway to get to it in either the desktop or Edge. I do not have a signed in Microsoft account on this machine, so that may be why I don’t see it. I’m not willing to sign in to see.
The icon itself is probably more than 8kb. It’s either incorrect or literally just a desktop URL shortcut
I did see another report that it’s just a component in Edge. Unfortunately I don’t have that link handy right now.
My winows 11 work laptop , fully managed by IT the department also has Xbox stuff installed…
how could it be installed on a 2022 server if copilot launched in 2023?
TRUE ACTUALLY
Windows server 2022 gets updates
It’s a making scheme like windows 95, 98, & 2k. They don’t call it Windows 11 server.
running copilot on a 95 or 98 server would make even less sense
We’ll do it on punch cards for the lulz.
