Gruber again asks: “Honest question to those who think Apple is in the wrong here: Would it make a difference is the checkbox for Safari were off by default instead?”
Let’s define our domain here. Let’s outline a few cases of what Software Update could theoretically do in order from worst to best.
Case A: Software Update installs Safari silently, with no method to opt out of it; there isn’t even a checkbox. This is the worst case. This would indeed be malware tactics, not just act very closely to them.
Case B: Software Update installs Safari by default, unless you explicitly opt out of each and every version; there is a checkbox, checked by default. (You have to uncheck the checkbox every time you run Software Update, and “ignoring” its entry in the “update” list will only ignore that particular version of Safari.) This is also bad, and this is what actually happens today.
Case C: Software Update installs Safari by default; there is a checkbox, checked by default. You can choose to ignore every version of the Safari product. This is slightly better.
Case D: Software Update does not install Safari by default; there is a checkbox, unchecked by default. You can choose to ignore this entry entirely but you have to ignore each and every version.
Case E: Software Update does not install Safari by default; there is a checkbox, unchecked by default. You can choose to ignore every version of the Safari product. In a world where we assume that Apple does want to deliver new applications through Software Update, this is by far the best choice for them to do so, way better than even Case D since you only have to decline once.
The reason that case B and C are bad, despite the fact that you can uncheck Safari in them, and the reason I call this malware-like tactics is simple. Most people will click the big button and install every update because that’s what they’ve been told is good for security. After doing so, they will find a new icon on their desktop that they don’t remember authorizing and that they probably don’t recognize; something that should set off bells saying holy crap, I’m insecure. Calling these people morons doesn’t really change anything; if they act precisely according to the advice they’ve been given by people who they trusted to secure their computers — automatic updates GOOD, mysterious new apps BAD — this shit is what will happen.
What’s the alternative? That they read the notes attached to each update? While I think it would be great if everyone could make a reasonable judgement regarding whether they need to install certain updates or not, it’s also not something that’s going to happen. Automated updates are optimized towards letting you be able to just hit “update”, and for the right stuff to happen regardless. The application (or applications) you’re updating will just automatically become more secure. This is a wonderful tenet of usability in security; it’s not a substitute for every computer user everywhere being able to make informed decisions about security, but it’s terribly convenient since we’re not going to get there for now. As long as people’s updaters keep pumping out updates, this will keep working.
By introducing things that aren’t “updates to things you’ve already gotten installed” as a second class of items that will also be installed when you hit Update without changing anything (something the vast majority of users will do), Apple’s well on their way to ruining “just install everything the updater tells you and you’ll be fine” as a golden rule. That Safari (and iTunes, if you’ve only gotten QuickTime installed) will end up as new icons on the desktop and be likely to trigger the “fuck, there’s stuff on my computer that I didn’t [knowingly] install” reflex only makes this worse, especially since if a connection is made, people will stop updating their apps, and we’ll all be worse off.
It’s not really relevant what Microsoft does with Windows Update (Microsoft owns the OS and has an extended license to keep finishing the OS; sometimes that includes shipping new system tools like Windows Defender), or how good Windows is, or how good Internet Explorer or Firefox or Safari are. The real takeaway is that when Apple does shit like this, it degrades Software Update and the extent to which people can unconditionally recommend it as a useful and convenient security precaution. Good security precautions don’t come with caveats.
Update: Gruber comes around to a different side of the argument:
The reason reactions to this controversy have been so polarized is that we’ve been mostly arguing about the wrong thing: how or whether Apple should offer new applications to Windows users via the current Software Update app. The problem is with the design of the Software Update app itself.
The reader is right: updates to currently-installed software are an entirely different thing than offers to install new software. Different things should look different; the current design of Software Update doesn’t allow for such a visual differentiation.
Case F: Software Update only lists items which are currently installed or are required for newer versions of items currently installed to function. Safari is not displayed in this list unless it is already installed. If you want Safari you have to download it from Apple’s website.
By ManxStef · 2008.03.23 00:10
Entirely correct; however, the list of cases was intended to answer the question “so let’s say that Apple should be able to distribute Safari via Software Update; how could they do so in a less horrible way?” by providing small variations in the current implementation.
I wouldn’t personally object to Software Update asking me “Have you heard about Safari?” and letting me say “OK, let’s try it out” or “Bite me”. I know about a few IT departments where going from “provider of updates, solely” to “hybrid update provider and non-obvious new application installer” flings Software Update into another bin of software, though.
By Jesper · 2008.03.23 00:24
[...] He speaks pretty raional truths, here, but I have a personal Best Case Scenario, that goes like this: When you install any app that include Apple Software Update, there should just be a step in the process that asks you if you’re interested in it notifying you of totally new (not new versions of software you have already installed) software at all. Any/all future new offerings are filtered by this little preference. Simple, no? [...]
By Jesper Is Basically Right On This Whole Apple Software Update Thing | Phil Nelson · 2008.03.23 01:06
[...] In response to Gruber describing this practice as interesting Jesper over at Waffle summed up very nicely the problem with this here and here. [...]
By Roll A Monkey » Blog Archive » Jackass of the Week · 2008.03.23 23:50
An alternate Case F that keeps things in Software Update:
Case F: Software Update does not install Safari* by default; there is a checkbox, unchecked by default. Safari appears on a separate list, clearly labeled as new software and not as an update. You can choose to ignore every version of the Safari product.
This is essentially what I suggested on Friday when this was first exploding. It’s a win-win solution. Apple still gets to advertise Safari through the update mechanism, but no one gets a surprise when something they thought was just going to update their current software puts another icon on the desktop.
*More precisely, some Apple program that isn’t installed. If you already have Safari but not iTunes, then substitute iTunes in the scenario.
By Kelson · 2008.03.26 00:43
[...] Waffle:The Sliding Scale of Right [...]
By A lot of hub-bub about Apple Software Update for Windows · 2008.03.28 20:01