Problem is, even manual/custom updates will attempt to download the dreaded Windows 10 nagware.
MS really needs to stop letting the marketing dept run the security dept.
It could be worse. For instance, I recently acquired a refurb win7 machine for research purposes with w7Home preinstalled and with the valid (I assume) SerNo and RegNo stickers attached from a recognized Microsoft Refurb Agency... and upon bootup the machine promptly stated that it needed to be connected to the internet to validate the installed copy of Win7 or a number needed to be called to speak to a MS rep and get a valid CertNo to verify the installed version or the machine would cease functioning in 30 days.
Needless to say, I was quite displeased. So if I need to use the machine after any given 30-day period I need to reinstall the OS or it simply sits there upon boot-up.
NOT what I bargained for, and I think we are fortunate that MS has not yet done the same thing for anyone who does not install their vaunted “upgrade”.
Then again, it may be only a matter of time...