back to article Microsoft freaks out users with Windows 11 warning: 'LSA protection is off'

A recent security update to Windows 11 has put the scare on some users by warning that Microsoft's Local Security Authority (LSA) feature is turned off and their system is vulnerable to attack. The warnings are triggered by the KB5007651 update, according to Microsoft. In messages to Redmond's support sites and on Reddit, some …

  1. stiine Silver badge
    Flame

    Hey Microsoft, Stop beta-testing on the general public. Instead get your legal and finanace departments to patch and upgrade before you publish the updates to windows update.

    1. eldakka

      And marketing.

      And the entire C-suite.

    2. ChoHag Silver badge

      Why pay for an entire QA department when your users will pay you?

      1. NoneSuch Silver badge
        FAIL

        "Why pay for an entire QA department when your users will pay you?"

        Why pay for an entire QA department when your users are forced to pay you monthly to do nothing? - Fixed it for you.

        1. 43300 Silver badge

          If they did nothing that would in may cases be better - most of their 'development' consists in foisting unwanted shit on users.

          Has anyone on here ever come across anyone who uses that not-Teams chat thing in Windows 11?

    3. NATTtrash
      Megaphone

      Please raise hand if you have heard this one being claimed before?

      PRODUCTIVITY SOFTWARE

      Maybe it is time that financial compensation is sought legally if apparent claims turn out to be bogus.

      Then again, you can also continue to pay your subscription tax.

      1. ComputerSays_noAbsolutelyNo Silver badge

        The magic of the EULA

        ... absolves any software company from anything.

        Hands up, if you use a software that declares that it actually is fit for purpose.

    4. Captain Scarlet
      Mushroom

      This is Microsoft, never use a Microsoft OS before Service Pack 2.

      O_O except there are no Service Packs anymore, we need to go back NOW!

      1. 43300 Silver badge

        It's 'Perpetual Beta' for everyhting these days, apart from (to an extent) server OSs / Exchange / SQL - but even those periodically get borked with bad updates.

        1. hoola Silver badge

          Not just Microsoft, pretty much every large software provider is the same.

          The benefits of "Agile"

          Do lots of stuff really fast, if there is a bug fix it on the next sprint but in the process break a load of other stuff.

          There is pretty much nothing that anyone can do anything about it.

  2. aerogems Silver badge
    Facepalm

    You would think

    After they fired a bunch of the QA staff they started suffering more and more embarrassing gaffes with botched updates and other issues. The logical thing would seem to be to hire some of those people back. They may seem like a cost center to the beancounters, but if you drive away your paying customers with shoddy quality products, you won't have any of the revenue that they love so much.

    1. Terry 6 Silver badge

      Re: You would think

      The problem is that Windows is still the automatic default OS for most people. They can't/won't pay the Apple tax and switch to fruit OS and have barely if at all heard of the 'Nuxes. And if they do, ordinary users aren't as enthusiastic about the idea of there being a squillion competing distros as commentards here might be. So Microsoft can push their appalling stupidity as far as they want to. If Win 8 didn't break them, this sort of thing certainly won't.

      1. aerogems Silver badge

        Re: You would think

        We individuals aren't really Microsoft's customer. We're incidental compared to large corporations who buy expensive volume license packages for multiple products. You start making Exchange or SQL Server patches that are flaky and that's how you get antsGoogle and or Oracle sniffing around looking to poach a customer.

        1. Anonymous Coward
          Anonymous Coward

          Re: You would think

          Windows 11 license costs $140 and they say I’m not a customer…

          1. aerogems Silver badge

            Re: You would think

            It's the 80/20 rule of business. About 80% of your revenue will come from about 20% of your customers. So, Microsoft is happy to sell the one-off Windows license to you or me, but really they're focused on Fortune 500 companies that will buy in bulk. Meaning, for all intents and purposes, we aren't Microsoft's customers.

            1. vtcodger Silver badge

              Re: You would think

              @aerogems Are you suggesting that there is an alternate version of Windows that is given to Fortune 500 customers and which gets updates that have been tested and actually work? I suppose all things are possible. But that does seem a bit unlikely.

              1. J. Cook Silver badge
                Boffin

                Re: You would think

                Yes. It's called Windows 10 Enterprise, and you need to have an Enterprise Agreement for it; Coupled with System Center Configuration Manager, it allows for staged updates to a testing farm, then general deployment.

                There's also Windows 10 LTSC (formerly LTSB) that is specifically intended for specific purposes; it doesn't get updates nearly as often as the normal channels.

                1. 43300 Silver badge

                  Re: You would think

                  The Enterprise version gets the same patches (and dubious 'new features') as the Home / Pro version - only difference is that it's normally possible to actively block many of them using Intune or GPOs (this applies to Pro most of the time too).

                  LTSC has its own issues, such as Office compatibility (not sure whether the 365 apps are officially supported on it now, but don't think they were). Plus it may not play nicely with software like Adobe CC which looks at build numbers and throws a tantrum if it doesn't like what it sees.

              2. Anonymous Coward
                Anonymous Coward

                Re: You would think

                Yup. They get it after the likes of you and I have tested it for Microsoft.

                And paid for the privilege.

                Don't forget to doff your cap and tug your forelock as you pay your MS tax.

        2. Anonymous Coward
          Anonymous Coward

          Re: You would think

          You start making Exchange or SQL Server patches that are flaky

          WIth Exchange, the number of "OMG PATCH THIS RIGHT NAO!!!!111oneoneone" bugs over the last six months has been... ridiculous. And I've looked, there's no easy drop-in replacement for it that won't involve a huge amount of user retraining, reconfiguring every. single. client. to use POP3 / IMAP instead of RPC over https (aka Exchange's own protocol), and all the associated headaches that brings.'

          In our case, we are taking the wimp's way out and shoving our users to EXO, because that way when it falls over, we can say "We know it's broken, we have a ticket in, and are calling our TAM on an hourly basis to push for resolution."

          (and even that's being a paint in the tuckus, because MS has deprecated one of the features we use...)

          1. 43300 Silver badge

            Re: You would think

            They have a long history of periodically breaking things in Exchange with dodgy patches too - it's less common that with client products but it certainly happens, I recall one a number of years ago, when we had all mailboxes on prem, when an Exchange patch caused it to refuse to communicate with a particular version of Outlook (which was in support at the time and on the supported clients list). Only solution was to remove the Exchange patch and wait for a non-borked replacement to appear.

      2. Captain Scarlet
        Stop

        Re: You would think

        hmm i would say very few people actually use a computer anymore, most use tablets and smartphones

  3. Omnipresent Bronze badge

    nothing to worry about folks.

    Just the AI pushing code onto stack over flow to test what it can get away with.

    1. spireite Silver badge

      Re: nothing to worry about folks.

      Don't give them ideas, they'll be having ChatGPT do all the testers work..... maybe it'll do the job better.

      1. DJV Silver badge

        Re: maybe it'll do the job bette

        Well, it certainly couldn't be any worse!

        1. David 132 Silver badge
          Happy

          Re: maybe it'll do the job bette

          Careful. The obligatory XKCD suggests otherwise!

  4. Kev99 Silver badge

    How many years has mictosoft been pushing windows out? How many patches/bug fixes/updates (they're all the same at mictosoft) have they pushed out? And they STILL can get a fully functional, stable and reliable OS to the masses?

    1. ChoHag Silver badge

      If we're including DOS it's over 40 years, otherwise just shy of 30.

      I'm going to assume you typod "can't" and well ... why bother? If after 3, 4 decades people are still buying turds, wouldn't you keep selling turds?

      They're a lot cheaper to make and they don't even need to try and hide it any more.

      The real question is: Why do the masses eating them?

      1. John Brown (no body) Silver badge

        Because MS are an effective monopoly and they know it.

  5. sanmigueelbeer
    Coat

    Hello. My name is Bill and I am calling from Microsoft. I am calling because your computer has reported that Local Security Authority is disabled and your computer is vulnerable to hacking. I will need remote access to your computer just to check. And don't worry, I know what I am doing.

    1. NATTtrash
    2. Steve Davies 3 Silver badge
      Pirate

      Hi Bill

      Why don't you stuff that broom in the corner of your Mumbai sweatshop up your jaxi. When you have done that, we might... just might talk. Until then F the hell off.

      1. Richard 12 Silver badge

        Re: Hi Bill

        Better to string them along for as long as you can.

        See if you can get them to swear at you before they hang up.

        After all, time they spend talking to the likes of El Reg commentards is time they aren't scamming someone vulnerable.

        1. Andy E

          Re: Hi Bill

          We used to run competitions in the office to see how long you could string them along before they hung up on you. I think the record holder was one hour, 3 minutes and 4 seconds.

          1. 43300 Silver badge

            Re: Hi Bill

            Over an hour? That is seriously impressive. Don't think I've managed more than 10 minutes or so.

        2. sanmigueelbeer

          Re: Hi Bill

          Better to string them along for as long as you can.

          Oh, I totally agree 100%. I even think we should turn this into a competitive sport.

          Before I turned on Lenny, I used to get two Indian scam/spam calls per week. Nowadays, I barely get one a year.

        3. 43300 Silver badge

          Re: Hi Bill

          Yeah, I do that if I'm not in the middle of something (if I am I just tell them to fuck off).

          Best tactic is to act dumb, "yes, I'm doing that and it's not working. Click where? How do I click? What's the start button", etc. How long can you string them along for before they give up?!

    3. 43300 Silver badge

      Don't forget that "Bill" will also need your credit card details too so that he can "renew your license".

  6. Anonymous Coward
    Anonymous Coward

    Since Windows 10, Microsoft has abolished QA and outsourced the work that QA should have done to a group of amateurs called Windows Insiders. It is natural that bugs occur frequently. Furthermore, even Windows Insiders are not involved in monthly patches, so it’s strange that bugs do not occur. Moreover, Windows 11 has raised hardware requirements for security reasons, but it’s ironic that bugs occur due to security-related issues.

  7. Zippy´s Sausage Factory
    Devil

    But what does LSA actually do?

    The cynical side of me thinks that if I were in their position I'd write something called "Local Security Authority" but it would be more concerned with making Edge the default browser and replacing the file associations of Libre Office with MS 365 ones than actually providing user security. But I'm sure Micros~1 aren't as devious and sneaky as I am, though, and they would never consider exploiting their monopoly position in unfair manners. At least not after last time.

    1. emfiliane

      It probably took you longer to write that comment than it would have to google it, and find out that it's the kernel module that keeps and verifies passwords and issues auth tokens to local and network resources. It's basically worked in exactly the same boring way since NT 4.0, so your knowledge (paranoia?) is only 25 years out of date, no biggie.

  8. emfiliane

    An lsass update is in March's patches...

    ...and in all older versions, that means a guaranteed reboot after updating. It's a critical enough kernel service that if it dies, the OS will warn you that it died and will shut down in 30 seconds. (Remember sasser and its kin?) Windows 11 finally allowed hotpatching with a momentary process restart to even such deep kernel juju... except there's also a new guardian service that watches for any tampering with the process, since it's so critical. Oops, several someones forgot about that.

    QA would have caught this in 30 seconds, but now we're the only QA left. Thanks, Microsoft.

  9. Zazu56

    Feeling Fruity

    After yet another Win10 update that seems to stop at least one thing working as it did.

    I have now bought an M2 MacBook Air. So far so good.

    1. RedGreen925 Bronze badge

      Re: Feeling Fruity

      Don't worry Apple will get around to screwing you too when they decide it is time. Two OSs in a row a "security" update killed off my old supposedly supported operating system forcing an upgrade to the new shinny. The second had me giving up on their trash.

  10. Mike 137 Silver badge

    "Why would you create an update that would leave your users vulnerable to attack?"

    Because your development processes are way out of control and you don't carry out security testing properly. Plus, you don't really give a damn about anything except the revenue stream and that comes from an essentially captive user base. Next question...

  11. wsm

    A mixture of anger, frustration, and anxiety

    That about sums up working with Windows, or Microsoft in general. Is this news?

    1. A.P. Veening Silver badge

      Re: A mixture of anger, frustration, and anxiety

      That about sums up working with Windows, or Microsoft in general. Is this news?

      No, this is olds (thanks, PTerry).

  12. Anonymous Coward
    Anonymous Coward

    Loopy

    That Loop app sure looks a lot like Notion …

  13. MOH

    So create security software that you deem so vital that you enable it by default.

    (Though this definitely won't break anything because you'll check for incompatibilities first, even though you just failed to do this with your own update).

    And then immediately train users to ignore warnings about this vital security setting.

    Genius.

  14. FirstTangoInParis Bronze badge

    Fortune 500 first?

    I saw this on a W11 PC yesterday….. Perhaps M$ should be forced to roll out all patches to the Fortune 500 first. Or perhaps the stockbrokers. If they don’t complain (and by complain I mean sue the pants off them for losing millions on trades) then they’re good for the rest of us.

  15. Wzrd1 Silver badge

    Ah, give it time to persist and eventually mostly forgotten

    For with Microsoft, a bug with seniority is then a feature.

  16. Huckleberry Muckelroy

    KB5023706 destroys SSD boot time.

    #Microsoft sent down an update to #Windows11 , #KB5023706 around 3/13/2023.

    Before this my great RYO PC booted from POST beep to login in 23 SECONDS.

    After #KB5023706 my stodgy POS PC boots in 2 MINUTES 25 SECONDS.

    It won't uninstall. #MS disavows any prob.

    And I am pissed off!

    Lots of other victims have asked about relief from this hideous mistake.

    But like MS's other hideous mistakes, maybe it is a feature.

    It seems to bork SSDs. If you never reboot, you'll never notice.

POST COMMENT House rules

Not a member of The Register? Create a new account here.

  • Enter your comment

  • Add an icon

Anonymous cowards cannot choose their icon

Other stories you might like