alt Hacker NewsI’m trying to understand your threat model. Microsoft software is allowed to access the network and communicate with peers on the internet, with the exception of its source of security updates?
Struggling to see anything but more risk with no benefit with this security posture.
Much more simple. MS = evil so every domain name associated with it is blocked. I do not use MS software, have no need to update it, and certainly do not need to submit any telemetry info to them. So it is a non-issue until a guest wants to update their laptop using my wifi.