After 4 years of using Fedora KDE as my main OS with 0 issues or drawbacks, my workplace is now requiring all computers to be on Windows 11. Any suggestions to make the transition back more bearable?
My dissapointment is immeasurable, and my day is ruined :(
Do not, under any circumstances, conduct any private business on it. What isn’t being logged by Microsoft and shared with your employer, advertisers, various governments will be screenshot’d every n seconds. Additionally, I highly suggest, if you haven’t already, to setup a separate VLAN for this device if you ever bring it home and connect it to your home network. Defender absolutely does passive sniffing and active network scanning now. It will also be collecting and logging visible SSIDs as well. Enjoy!
This is true of any work device regardless of the OS
My company PC (Windows 11 ) is set on the guest wi-fi when I work from home, is that enough?
It should but you can test that assumption by trying to ping any other device on the non-guest wifi. (and try ping in the other direction)
One could hope for a hardware kill-switch on WiFi, but those are increasingly rare. I don’t necessarily trust toggling the WiFi slider off actually stops the scanning.
At home I have my PC behind a DMVPN router (being a former network engineer has its perks) and that DMVPN router’s “external” link is further segmented on my home network.
My wife has had her dog shit work PC on the network all this time without any of my forethought about this. She has problems everyday with that stupid OS. Fuck.
I’d like to add that you can setup Adguard or Pihole in your network to use microsoft telemetry blacklists to limit their sniffing. My work laptop constantly reminds me that I’m not connected to the internet although everything works fine, because it can’t reach the captive portal 😄
Do you have links to those blacklists
I’m at work right now, but here is one I think I remember adding: https://github.com/pschneider1968/pihole-bl-msft-telemetry-bsi