Would you recommend using UniGetUI on a Windows system instead of installing apps manually? Is more data being sent to MS if using UniGetUI?
It’s equally good for privacy from Microsoft compared to downloading software from the website, but it is better for privacy from the website analytics (whether that’s Google, MS, or Amazon analytics etc).
I mean, you’re using Windows. Privacy is merely a concept there. To me, it doesn’t really matter. Telemetry or any other analytics is still going to exist, in some shape or form.
Few quick points:
- you use a 3rd party rather than downloading from the source, it would hence be less secure
- you won’t really benefit from any privacy at all, even the opposite
- makes your life potentially more convenient and easy because you can see all the programs in a single place
- maintainer looks cool at least, not sure if as trustworthy as someone like Chris Titus but good enough I suppose
- there are quite a few tools to patch the issues with Windows, so it’s better than nothing for sure
(but don’t get your hopes high, it’s still Windows)
1 Like
Not inherently but is also not good OPSEC. I half agree if I am being pedantic. Best to always download directly the old fashioned way unless you have to use such tools if you’re admin of many computers.
1 Like
So what would you recommend to use for installing and keeping programs up to date in Windows? In the Privacy Guides tutorial I read about Winget - but that would mean using the Microsoft Store, which I don’t want, I only have a local account anyways.
I am okay with installing from the website or Github directly, but how would you keep up with all patches, updates etc?
You can use winget in Powershell to install and update applications or set up UnigetUI to work as a UI for winget if you don’t want to interact with the command line. The latter is what I usually do when I set up a machine for a family member, so they have a central place where they can install new apps via winget instead of downloading some .exe from a website. You can also set UnigetUI to check for updates regularly and do automatic updates if you wish to do so.
2 Likes
Maybe I’m fully wrong (feel free to correct me if it’s the case) but wouldn’t it be possible to have some linux package management via WSL2? Because apt upgrade could be a way to go forward.
But yeah, I’m not sure if it works in the GUI realm with Windows’ way of handling the programs.
It is possible to some extent, but far from production ready I’d say.
2 Likes
Thanks, I know how WInget and UnigetUI work, my question is whether it is recommended to use them from a privacy AND security standpoint. I do not want to use the MS store and in general obviously want to restrict the data sent.
It is just a pain having to manually check all software for updates, that is why I am asking.
By default the winget cli does have some kind of telemetry enabled, but you can opt out as documented here
Whatever you do, don’t install Windows Store. It creates a hidden account tied to your hardware that remembers your entire App history even after reinstalling Windows. There’s a thread on this:
1 Like
@mkvd I have never used the store nor do I want to - I was actually surprised to read that Privacy Guides is recommending to do so. I am assuming it is not possible to use winget without the store, but again, what do you recommend to keep track of updates and patches? Is there something like Obtainium for desktop?
I wouldn’t be so sure unless you’ve specifically removed it during or after installation. Many applications like Notepad, Calculator, and others are Microsoft Store apps. It’s ironic because people go through such much trouble to avoid telemetry by setting policies, modifying reg keys etc. – yet they’re still being tracked by Microsoft Store.
As far as I know Winget does not depend on Microsoft Store, nor do OS updates. I would suggest to remove Windows Store right after installing Windows.
1 Like
Why are you so sure that you’re tracked by Microsoft Store, not Windows? As far as I know, they added a new service (wlidsvc) in Windows 11 that links applications to the account. Without this service, new apps won’t even start. I think you’re tracked by Windows, and the Store just confirms it.
I use Scoop. Winget is just a dumpster where manifests are updated by third parties and a bunch of different bots that constantly throw errors, there’s no unified standard, and everyone does whatever they want.
Yes, I do. Just for the sheer amount of convenience it gives you, and given the fact that you can download apps from winget and MS store, even if you don’t have those installed (for example on IoT Enterprise versions of Windows).
I have uninstalled all of them and never used them and also used privacy.sexy.
When I use winget list in the terminal, I am getting this prompt though:
Failed in attempting to update the source: winget
The msstore source requires that you view the following agreements before using.
Terms of Transaction: https://aka.ms/microsoft-store-terms-of-transaction
The source requires the current machine’s 2-letter geographic region to be sent to the backend service to function properly (ex. “US”).
Do you agree to all the source agreements terms?
[Y] Yes [N] No:
So I can’t even list anything I have installed without the MS store and its terms.
Is this in any way dependent on MS? I know there is also Chocolatey but not sure if that is dependent on MS or the MS store either…
I’m not sure to understand the question here.
Most softwares have auto-update features now. Or are those niche softwares you’re using?
I know of people who use UnigetUI or winget and sometimes they look for updates there and get a lot of update notifications even though the programs themselves did not notify for any updates.