Slashdot videos: Now with more Slashdot!
We've improved Slashdot's video section; now you can view our video interviews, product close-ups and site visits with all the usual Slashdot options to comment, share, etc. No more walled garden! It's a work in progress -- we hope you'll check it out (Learn more about the recent updates).
Unfortunately, it requires hard coding the drive letter of the user partition, which may not be desirable for some people.
That said, Microsoft absolutely should support changing it optionally (they won't do it as default for compatibility with poorly written applications; this is why there is a junction at C:\Documents and Settings\ for C:\Users, etc.)
Games and applications can be installed on a separate partition, on a per-application basis. Not all applications support this, but for the most part it works well.
Some programs used their own temp settings, others use the system variable %TEMP% (which can be changed to the new partition if you'd like).
Moving existing accounts is frustrating (I've done it under Vista), but can be done.
Every time a technology is introduced to make the world look a little more Orwellian (and I hate the word) or not, there is a lot of discussion/dissent and backlash and the net result is positive. We (assuming you are from a 'Western'/modern country) live in a time where personal freedoms and liberties are higher than ever before, why wouldn't that trend continue? We have been faced with technologies which people thought would oppress us, and it has never stayed.
Anyway, those are my thoughts on it. To your credit and those who think like you, at this point in the game, it's harder to say exactly what will happen. I respect you for arguing for your freedoms.
tl dr; My only point is that TPM/TC is a technology, not a conspiracy. People are the ones who are oppressing, not technology, and oppression has a poor track record.
The point of security isn't total security. It's to make the effort not worth it.
A TPM or Trusted Computing scheme is a way to have a very difficult to modify part memory in the CPU where private keys can be stored. It does not mean trusting the user or trusting the machine, it is a way for the machine to verify software signed with a private key has not been altered. Period.
Obviously, Like all security (perhaps excluding quantum cryptography without a lot of luck) it can be broken. However, the idea is to make that break valid for one machine (keys are different, unless the generation scheme was broken with some fancy crytography) and involve a lot of time (like looking at the circuitry through an electron microscope.
As the GP said, there is potential for abuse. If you feel that this may happen, why would you run an OS that would want to abuse you in this way? If MS makes it so that Windows requires a TPM and scans your computer every minute, and that can't be disabled (as Windows would be modified/stop running), run Linux. A computer with a TPM (which, btw, have been out for awhile, you may already have one) doesn't require a "signed OS" or anything like that. That would be stupid, and would not actually work (as then the TPM would have to have knowledge of how the rest of the machine is running, which would mean that the chain of trust is broken, and the whole scheme could then be much more easily broken).
The greatest problem Windows has is their licensing scheme and the people behind it. Engineers and developers do not run that company.