The Windows 10 Tweak Thread
So with the deal with privacy issues and such what tweaks are people making to windows 10.
Personally I added this lot to my hosts file:
Code:
# Skype Ads Blocker
127.0.0.1 rad.msn.com
127.0.0.1 live.rads.msn.com
127.0.0.1 ads1.msn.com
127.0.0.1 static.2mdn.net
127.0.0.1 g.msn.com
127.0.0.1 a.ads2.msads.net
127.0.0.1 b.ads2.msads.net
127.0.0.1 ac3.msn.com
# End Skype Ads Blocker
#Windows 10 Privacy Blocker#
127.0.0.1 localhost
127.0.0.1 localhost.localdomain
255.255.255.255 broadcasthost
::1 localhost
127.0.0.1 local
0.0.0.0 vortex.data.microsoft.com
0.0.0.0 vortex-win.data.microsoft.com
0.0.0.0 telecommand.telemetry.microsoft.com
0.0.0.0 telecommand.telemetry.microsoft.com.nsatc.net
0.0.0.0 oca.telemetry.microsoft.com
0.0.0.0 oca.telemetry.microsoft.com.nsatc.net
0.0.0.0 sqm.telemetry.microsoft.com
0.0.0.0 sqm.telemetry.microsoft.com.nsatc.net
0.0.0.0 watson.telemetry.microsoft.com
0.0.0.0 watson.telemetry.microsoft.com.nsatc.net
0.0.0.0 redir.metaservices.microsoft.com
0.0.0.0 choice.microsoft.com
0.0.0.0 choice.microsoft.com.nsatc.net
0.0.0.0 df.telemetry.microsoft.com
0.0.0.0 reports.wes.df.telemetry.microsoft.com
0.0.0.0 wes.df.telemetry.microsoft.com
0.0.0.0 services.wes.df.telemetry.microsoft.com
0.0.0.0 sqm.df.telemetry.microsoft.com
0.0.0.0 telemetry.microsoft.com
0.0.0.0 watson.ppe.telemetry.microsoft.com
0.0.0.0 telemetry.appex.bing.net
0.0.0.0 telemetry.urs.microsoft.com
0.0.0.0 telemetry.appex.bing.net:443
0.0.0.0 settings-sandbox.data.microsoft.com
0.0.0.0 vortex-sandbox.data.microsoft.com
0.0.0.0 survey.watson.microsoft.com
0.0.0.0 watson.live.com
0.0.0.0 watson.microsoft.com
0.0.0.0 statsfe2.ws.microsoft.com
0.0.0.0 corpext.msitadfs.glbdns2.microsoft.com
0.0.0.0 compatexchange.cloudapp.net
0.0.0.0 cs1.wpc.v0cdn.net
0.0.0.0 a-0001.a-msedge.net
0.0.0.0 statsfe2.update.microsoft.com.akadns.net
0.0.0.0 sls.update.microsoft.com.akadns.net
0.0.0.0 fe2.update.microsoft.com.akadns.net
0.0.0.0 65.55.108.23
0.0.0.0 65.39.117.230
0.0.0.0 23.218.212.69
0.0.0.0 134.170.30.202
0.0.0.0 137.116.81.24
0.0.0.0 diagnostics.support.microsoft.com
0.0.0.0 corp.sts.microsoft.com
0.0.0.0 statsfe1.ws.microsoft.com
0.0.0.0 pre.footprintpredict.com
0.0.0.0 204.79.197.200
0.0.0.0 23.218.212.69
0.0.0.0 i1.services.social.microsoft.com
0.0.0.0 i1.services.social.microsoft.com.nsatc.net
0.0.0.0 feedback.windows.com
0.0.0.0 feedback.microsoft-hohm.com
0.0.0.0 feedback.search.microsoft.com
#End Windows 10 Privacy Blocker#
I also went through all the privacy controls and turned everything off, and went to update settings and disabled updates from non MS sources.
Re: The Windows 10 Tweak Thread
I make sure that my wifi passwords are not shared with anyone. For some reason this is on by default.
Re: The Windows 10 Tweak Thread
same as marvs. huge hosts file and disabling all the phonehome parts within control panel.
Re: The Windows 10 Tweak Thread
Quote:
Originally Posted by
Hingy
I make sure that my wifi passwords are not shared with anyone. For some reason this is on by default.
This setting really, really confused me! Went straight off.
I followed a guide on Ars Technica and did a coue of other tweaks I forgot (editing the registry)
Re: The Windows 10 Tweak Thread
nice list of blocks, good shout
Re: The Windows 10 Tweak Thread
Using 0.0.0.0 instead of 127.0.0.1 (shortformed to "0" = "0.0.0.0").
Hosts:
Code:
0 vortex.data.microsoft.com
0 vortex-win.data.microsoft.com
0 telecommand.telemetry.microsoft.com
0 telecommand.telemetry.microsoft.com.nsatc.net
0 oca.telemetry.microsoft.com
0 oca.telemetry.microsoft.com.nsatc.net
0 sqm.telemetry.microsoft.com
0 sqm.telemetry.microsoft.com.nsatc.net
0 watson.telemetry.microsoft.com
0 watson.telemetry.microsoft.com.nsatc.net
0 redir.metaservices.microsoft.com
0 choice.microsoft.com
0 choice.microsoft.com.nsatc.net
0 df.telemetry.microsoft.com
0 reports.wes.df.telemetry.microsoft.com
0 wes.df.telemetry.microsoft.com
0 services.wes.df.telemetry.microsoft.com
0 sqm.df.telemetry.microsoft.com
0 telemetry.microsoft.com
0 watson.ppe.telemetry.microsoft.com
0 telemetry.appex.bing.net
0 telemetry.urs.microsoft.com
0 telemetry.appex.bing.net:443
0 settings-sandbox.data.microsoft.com
0 vortex-sandbox.data.microsoft.com
0 survey.watson.microsoft.com
0 watson.live.com
0 watson.microsoft.com
0 statsfe2.ws.microsoft.com
0 corpext.msitadfs.glbdns2.microsoft.com
0 compatexchange.cloudapp.net
0 cs1.wpc.v0cdn.net
0 a-0001.a-msedge.net
0 statsfe2.update.microsoft.com.akadns.net
0 sls.update.microsoft.com.akadns.net
0 fe2.update.microsoft.com.akadns.net
0 diagnostics.support.microsoft.com
0 corp.sts.microsoft.com
0 statsfe1.ws.microsoft.com
0 pre.footprintpredict.com
0 i1.services.social.microsoft.com
0 i1.services.social.microsoft.com.nsatc.net
0 feedback.windows.com
0 feedback.microsoft-hohm.com
0 feedback.search.microsoft.com
0 rad.msn.com
0 preview.msn.com
0 ad.doubleclick.net
0 ads.msn.com
0 ads1.msads.net
0 ads1.msn.com
0 a.ads1.msn.com
0 a.ads2.msn.com
0 adnexus.net
0 adnxs.com
0 aidps.atdmt.com
0 apps.skype.com
0 az361816.vo.msecnd.net
0 az512334.vo.msecnd.net
0 a.rad.msn.com
0 a.ads2.msads.net
0 ac3.msn.com
0 aka-cdn-ns.adtech.de
0 b.rad.msn.com
0 b.ads2.msads.net
0 b.ads1.msn.com
0 bs.serving-sys.com
0 c.msn.com
0 cdn.atdmt.com
0 cds26.ams9.msecn.net
0 c.atdmt.com
0 db3aqu.atdmt.com
0 ec.atdmt.com
0 flex.msn.com
0 g.msn.com
0 h1.msn.com
0 live.rads.msn.com
0 msntest.serving-sys.com
0 m.adnxs.com
0 m.hotmail.com
0 pricelist.skype.com
0 rad.live.com
0 secure.flashtalking.com
0 static.2mdn.net
0 s.gateway.messenger.live.com
0 secure.adnxs.com
0 sO.2mdn.net
0 ui.skype.com
0 www.msftncsi.com
0 msftncsi.com
0 view.atdmt.com
0 msnbot-65-55-108-23.search.msn.com
0 settings-win.data.microsoft.com
0 schemas.microsoft.akadns.net
0 a-0001.a-msedge.net
0 a-0002.a-msedge.net
0 a-0003.a-msedge.net
0 a-0004.a-msedge.net
0 a-0005.a-msedge.net
0 a-0006.a-msedge.net
0 a-0007.a-msedge.net
0 a-0008.a-msedge.net
0 a-0009.a-msedge.net
0 msedge.net
0 a-msedge.net
0 lb1.www.ms.akadns.net
0 pre.footprintpredict.com
0 vortex-bn2.metron.live.com.nsatc.net
0 vortex-cy2.metron.live.com.nsatc.net
Re: The Windows 10 Tweak Thread
Re: The Windows 10 Tweak Thread
Quote:
Originally Posted by
Rob_B
Interesting article.
It seems to me that the core of this is that Win10 is still doing things we wouldn't expect when relevant things are turned off, and it therefore comes down to trusting what MS say is going on. And frankly, I no longer do. At all.
That article absolutely reinforces the point I've made several times in Win10 discussions, which is what, if anything, components like Cortana are doing if we disabled them. My expectation was that, if disabled, what they should be doing is NOTHING. Nothing at all.
And, exactly as I suspected, they're still doing something. And we just have to accept MS's assurances as to what that is.
All these hosts entries are useful, but I can't help but feel that :-
- it shouldn't be necessary. Off should mean OFF.
- it'd be very easy to miss something.
- if you build a wall in front of MS's goal, they'll move the goalposts.
So, relying on hosts means endless checking to update it, or risking missing it when MS move the goal.
Too much like hard work and hassle for me. It's easier to just avoid Win10 entirely, as it has nothing I really need, and a fair bit I don't want at all.
Re: The Windows 10 Tweak Thread
I really wanted to give MS the benefit of the doubt. I'm no longer willing to do that - I've backed off all but one of my computers, and that's the only one that may benefit from the upgrade (aka the gaming computer). I'm still of the opinion that 10 is the superior OS, and I'll also be leaving an insider version running on my test-bed machine for printers, usb devices, etc that are donated to the charity I volunteer for, simply and mainly because I know a large number of people are going to change over and are mostly ambivalent about the data collection thing. But the simple truth is, I want an OS that just works. I don't want to be messing about with the hosts file. I don't want to be monitoring a firewall above and beyond the one installed by MS. I really don't want to feel like I need to continue doing packet inspections of my own computer. At this point, it's gone from just works to it's work... and it's not worth it on multiple machines. It's not really worth it on the one machine, but I do like the performance boost.
And until MS makes a solution available that doesn't require pulling the ethernet cable, it's going to remain that way. I'll take the one that's free, more or less. I won't take any more, and I won't be paying for the privilege a year from now.
Re: The Windows 10 Tweak Thread
Quote:
Originally Posted by
GuidoLS
I really wanted to give MS the benefit of the doubt. I'm no longer willing to do that - I've backed off all but one of my computers, and that's the only one that may benefit from the upgrade (aka the gaming computer). I'm still of the opinion that 10 is the superior OS, and I'll also be leaving an insider version running on my test-bed machine for printers, usb devices, etc that are donated to the charity I volunteer for, simply and mainly because I know a large number of people are going to change over and are mostly ambivalent about the data collection thing. But the simple truth is, I want an OS that just works. I don't want to be messing about with the hosts file. I don't want to be monitoring a firewall above and beyond the one installed by MS. I really don't want to feel like I need to continue doing packet inspections of my own computer. At this point, it's gone from just works to it's work... and it's not worth it on multiple machines. It's not really worth it on the one machine, but I do like the performance boost.
And until MS makes a solution available that doesn't require pulling the ethernet cable, it's going to remain that way. I'll take the one that's free, more or less. I won't take any more, and I won't be paying for the privilege a year from now.
It kinda saddens me to see that, but .... I'm not surprised.
I think we've long been in a similar place, but not quite the same. The difference (it seems to me, anyway) is you were provisionally prepared to take more on trust, until demonstrated that it was misplaced. I was more not prepared to put much on trust, until MS demonstrated it would be justified.
And it is really, at this point, about trust. Or rather, lack thereof.
I hoped my cynicism was misplaced. It looks increasingly like it wasn't.
I think you hoped for the best, but feared the worst. I expected the worst, but hoped for the best.
Re: The Windows 10 Tweak Thread
Followed this guide from El Reg
https://fix10.isleaked.com/
Re: The Windows 10 Tweak Thread
Re: The Windows 10 Tweak Thread
Quote:
Originally Posted by
aramil
You probably shouldn't have...
I know there are many legitimate concerns about privacy and security, but comments like - I know this because I observed it - with no data, no verification, no listing of software used, etc, make this particular link as valid, IMO, as news reports from the Onion. Which is to say, not at all. There's got to be better sources than a Google translated Czech blog. Yes, I have some serious issues with Windows 10. No, Cortana still isn't one of them.
Re: The Windows 10 Tweak Thread
Quote:
Originally Posted by
Marcvs
So with the deal with privacy issues and such what tweaks are people making to windows 10.
Personally I added this lot to my hosts file:
Code:
# Skype Ads Blocker
127.0.0.1 rad.msn.com
127.0.0.1 live.rads.msn.com
127.0.0.1 ads1.msn.com
127.0.0.1 static.2mdn.net
127.0.0.1 g.msn.com
127.0.0.1 a.ads2.msads.net
127.0.0.1 b.ads2.msads.net
127.0.0.1 ac3.msn.com
# End Skype Ads Blocker
#Windows 10 Privacy Blocker#
127.0.0.1 localhost
127.0.0.1 localhost.localdomain
255.255.255.255 broadcasthost
::1 localhost
127.0.0.1 local
0.0.0.0 vortex.data.microsoft.com
0.0.0.0 vortex-win.data.microsoft.com
0.0.0.0 telecommand.telemetry.microsoft.com
0.0.0.0 telecommand.telemetry.microsoft.com.nsatc.net
0.0.0.0 oca.telemetry.microsoft.com
0.0.0.0 oca.telemetry.microsoft.com.nsatc.net
0.0.0.0 sqm.telemetry.microsoft.com
0.0.0.0 sqm.telemetry.microsoft.com.nsatc.net
0.0.0.0 watson.telemetry.microsoft.com
0.0.0.0 watson.telemetry.microsoft.com.nsatc.net
0.0.0.0 redir.metaservices.microsoft.com
0.0.0.0 choice.microsoft.com
0.0.0.0 choice.microsoft.com.nsatc.net
0.0.0.0 df.telemetry.microsoft.com
0.0.0.0 reports.wes.df.telemetry.microsoft.com
0.0.0.0 wes.df.telemetry.microsoft.com
0.0.0.0 services.wes.df.telemetry.microsoft.com
0.0.0.0 sqm.df.telemetry.microsoft.com
0.0.0.0 telemetry.microsoft.com
0.0.0.0 watson.ppe.telemetry.microsoft.com
0.0.0.0 telemetry.appex.bing.net
0.0.0.0 telemetry.urs.microsoft.com
0.0.0.0 telemetry.appex.bing.net:443
0.0.0.0 settings-sandbox.data.microsoft.com
0.0.0.0 vortex-sandbox.data.microsoft.com
0.0.0.0 survey.watson.microsoft.com
0.0.0.0 watson.live.com
0.0.0.0 watson.microsoft.com
0.0.0.0 statsfe2.ws.microsoft.com
0.0.0.0 corpext.msitadfs.glbdns2.microsoft.com
0.0.0.0 compatexchange.cloudapp.net
0.0.0.0 cs1.wpc.v0cdn.net
0.0.0.0 a-0001.a-msedge.net
0.0.0.0 statsfe2.update.microsoft.com.akadns.net
0.0.0.0 sls.update.microsoft.com.akadns.net
0.0.0.0 fe2.update.microsoft.com.akadns.net
0.0.0.0 65.55.108.23
0.0.0.0 65.39.117.230
0.0.0.0 23.218.212.69
0.0.0.0 134.170.30.202
0.0.0.0 137.116.81.24
0.0.0.0 diagnostics.support.microsoft.com
0.0.0.0 corp.sts.microsoft.com
0.0.0.0 statsfe1.ws.microsoft.com
0.0.0.0 pre.footprintpredict.com
0.0.0.0 204.79.197.200
0.0.0.0 23.218.212.69
0.0.0.0 i1.services.social.microsoft.com
0.0.0.0 i1.services.social.microsoft.com.nsatc.net
0.0.0.0 feedback.windows.com
0.0.0.0 feedback.microsoft-hohm.com
0.0.0.0 feedback.search.microsoft.com
#End Windows 10 Privacy Blocker#
I also went through all the privacy controls and turned everything off, and went to update settings and disabled updates from non MS sources.
How do you do this?
Re: The Windows 10 Tweak Thread
Quote:
Originally Posted by
neonplanet40
How do you do this?
Edit HOSTS? Or edit privacy settings and updates fton non-MS sources?
If the latter, it's in W10 settings. There's quite a collection of settings and you need to do them all for maximum locking down, but be aware, if you do, some things stop working, like Cortana.
And, clearly, if you disable location tracking, things relying legitimately on location can't work.
As for hosts, there should be a HOSTS (no extension, IIRC) already on your machine. If not, you need to create a basic file. Use either a text editor, or something like Notepad saving as straight text, NO FORMATTING.
And it needs to be in the right place. I don't remember exacyly where, off-hand, but there's countless how-to's out there, which will tell you where, and even provide a basic starter HOSTS.
Even aside from Win10, HOSTS is a good place to start simple privacy protection, and there are several privacy sites that will advise on updated lists of ad-tracking sites to "block", by re-redirecting requests to talk to specified IPs back to self, I.e. your system, on 127.0.0.1
Re: The Windows 10 Tweak Thread
Quote:
Originally Posted by
Saracen
Edit HOSTS? Or edit privacy settings and updates fton non-MS sources?
If the latter, it's in W10 settings. There's quite a collection of settings and you need to do them all for maximum locking down, but be aware, if you do, some things stop working, like Cortana.
And, clearly, if you disable location tracking, things relying legitimately on location can't work.
As for hosts, there should be a HOSTS (no extension, IIRC) already on your machine. If not, you need to create a basic file. Use either a text editor, or something like Notepad saving as straight text, NO FORMATTING.
And it needs to be in the right place. I don't remember exacyly where, off-hand, but there's countless how-to's out there, which will tell you where, and even provide a basic starter HOSTS.
Even aside from Win10, HOSTS is a good place to start simple privacy protection, and there are several privacy sites that will advise on updated lists of ad-tracking sites to "block", by re-redirecting requests to talk to specified IPs back to self, I.e. your system, on 127.0.0.1
c:\Windows\System32\drivers\etc\HOSTS
EDIT - when you save it make sure you don't leave the .txt file extension, or it'll not work
