Kerry said:
You have to turn off the Background Intelligent Transfer Service as well.
In addition, the following, which looks to be the "meat" of the article,
in no way, I would hazard to guess, describes the vast majority of
windows users.
As it turns out, Dunn may have been looking in the wrong place. A brief
check of the table of contents on Microsoft's TechNet reveals a page
entitled, "Automatic Updates Must Be Updated." Though there is no
explicit sentence here that says, "By the way, the IIS-marshaled update
channel still functions even when the option in this dialog box is set
to 'Turn off Automatic Updates,"' a fairly knowledgeable person reading
this page should be able to deduce that this self-update channel is
separate and operative.
But should it be? Shouldn't there be a way for the user to say, "I don't
want updates, and I mean I don't want updates!" As it turns out, there
is. Using the Services panel in Computer Management, a user can very
easily switch the active state of Automatic Updates from "Automatic" to
"Stopped." A moderately skilled administrator - or certainly any
administrator who legitimately received his or her certification -
should also be able to disengage WSUS by stopping its service host from
the command line.
To me, the troubling aspect of the above is that of the named categories
of users, "fairly knowledgeable" would seem to be hard to quantify, and
open to widely varying skill levels. Fewer still will fall into the
category of "a moderately skilled administrator" and certainly there
will be yet even fewer that will fall into the category of "any
administrator who legitimately received his or her certification". It is
all well and good that such info exists and can be found, but it has
very little relevancy to the world of the average user, or even the
fairly knowledgeable user who may or may not even read what is directly
in front of him, let alone be aware that such technet articles exist.