Advent of Windows 10 and Microsoft’s more aggressive and sophisticated practices to shove it to their users is a perfect moment to completely switch to GNU+Linux. Haha
Intel Active Management Technology (AMT) is hardware and firmware technology for remote out-of-band management of personal computers. Almost all AMT features are available even if PC power is off, the OS is crashed, the software agent is missing, or hardware (such as a hard drive or memory) has failed.
A Ring -3 rootkit was demonstrated by Invisible Things Lab for the Q35 chipset; it does not work for the later Q45 chipset as Intel implemented additional protections. The exploit worked by remapping the normally protected memory region (top 16 MB of RAM) reserved for the ME. The ME rootkit could be installed regardless of whether the AMT is present or enabled on the system, as the chipset always contains the ARC ME coprocessor. (The “-3” designation was chosen because the ME coprocessor works even when the system is in the S3 state, thus it was considered a layer below the System Management Mode rootkits.) For the vulnerable Q35 chipset, a keystroke logger ME-based rootkit was demonstrated by Patrick Stewin.
Another security evaluation by Vassilios Ververis showed serious weaknesses in the GM45 chipset implementation. In particular, it criticized AMT for transmitting unencrypted passwords in the SMB (small business) provisioning mode when the IDE redirection and Serial over LAN features are used. It also found that the “zero touch” provisioning mode (ZTC) is still enabled even when the AMT appears to be disabled in BIOS. For about 60 euros, Ververis purchased from Go Daddy a certificate that is accepted by the ME firmware and allows remote “zero touch” provisioning of (possibly unsuspecting) machines, which broadcast their HELLO packets to would-be configuration servers. Source: Wikipedia
Run PowerShell and run following commands:
$UserCredential = Get-Credential
$Session = New-PSSession -ConfigurationName Microsoft.Exchange -ConnectionUri https://outlook.office365.com/powershell-liveid/ -Credential $UserCredential -Authentication Basic -AllowRedirection
Remove-MailboxFolderPermission -Identity user@mycompany:\calendar -user firstname.lastname@example.org
After that, re-grant the calendar permission Review, Editor or Owner to the user. In this case:
Add-MailboxFolderPermission –Identity A@contoso.com:\Calendar -AccessRight Editor,Owner -User B@contoso.com
This is the list of Android phones that support this feature:
Samsung Galaxy S5
Samsung Galaxy S6
Samsung Galaxy S6 Edge
Samsung Galaxy Note 4
Google Nexus 4-7
Motorola Droid Maxx
Nokia Lumia 920
Nokia Lumia 928
Nokia Lumia 929
Nokia Lumia 930
Nokia Lumia 1020
Nokia Lumia 1520
We expect future furniture to have this build in so you can charge things just by putting them on the table or drawer. IKEA has announced it.
Mocreo has some nice and cheap wireless chargers.
Our civilization is advancing, Microsoft Windows window logo is becoming every time plainer and Google logo too. People cannot hand write properly anymore and serif font does not look right too.
If you experience this issue just follow THESE instructions.
For shortcuts on the desktop do not bother with crap group policies to deploy shortcuts.
Just create them and copy to C:\Users\Public\Desktop and if you have icons of choice copy them over lets say to C:\Users\Public\Pictures
To pin useful shortcuts to Outlook or Word use THIS guide.
The best location for e.g. autotext templates is
especially if you have a group policy that overrides templates and the one you have added just for yourself will get unticked again by GPO, very annoying.
1. In Outlook Select File – Options – Customise Ribbon
2. Tick the Developer
3. Open an Email
4. Click on Developer – Macros
5. Type in “PrintOnePage” as the Macro Name
6. Select Create
7. Close and return to Outlook Continue reading Print first page only
The normal ARP request/response is like below.
A ask who is B.
B replies B is xx-xx-xx-xx-xx-xx.
However, in some cases the behavior will like this.
A ask who is B.
C replies B is xx-xx-xx-xx-xx-xx.
When Vigor detects this behavior, Vigor will send the ARP mismatch messages.
This abnormal ARP was blocked by Vigor with former firmwares.
However, some networks will have this ARP so Draytek allows this in most of new firmwares.
The issue was with the franking machine not able to connect to their central server.
I have tried multiple things with no avail.
Then my intuition told me to check VPN settings and voila!
SSL VPN was enabled which in case of Drayteks sticks to port 443 which is exclusively used by franking machine service.
This VPN SSL port has to be changed to something else away from 443 then franking machine should work again.
Applications can be “1-dimensional” or 3-dimensional, depending on the type of zone to protect. Periodic sounds, even complex ones, are easier to cancel than random sounds due to the repetition in the wave form.
Protection of a “1-dimension zone” is easier and requires only one or two microphones and speakers to be effective. Several commercial applications have been successful: noise-cancelling headphones, active mufflers, and the control of noise in air conditioning ducts. The term “1-dimension” refers to a simple pistonic relationship between the noise and the active speaker (mechanical noise reduction) or between the active speaker and the listener (headphones). Continue reading Noise cancellation
In this case I was having problems fixing a DVD drive on a laptop. The main issue was with a corrupt registry. The idea was to delete a corrupt key and allow the system to recreate it, but the following issue was inability to delete the registry key even as administrator.
The solution is to use PSEXEC tool available from Microsoft HERE
Run this from CMD as administrator:
psexec -i -d -s c:\windows\regedit.exe
The you should be able to delete the registry. Make sure to backup the registry key beforehand.
Once deleted the device should disappear. Restart the laptop and scan for devices. Recover the key from a backup and DVD should come back to life.
Sky is messing around. Their router is at least once a day losing the connection, then it asks you to run some troubleshooting in the web-browser then as a mandatory step redirects you to their sky.com website.
I think they do this on purpose to force their customers to view it. Strange thing is that for some time you can browse their website, read articles while the rest of the Internet is still unavailable.
Not good Sky, not good.
Some people where upset when this IEM is missing in Windows Server 2012.
This didn’t work for me anyway. I use registries to change these settings. It work like a harm.
On the Server 2012 for instance? In my case it was failing when using Add Roles & Features
Please just run this command in elevated PowerShell.
Install-WindowsFeature –name NET-Framework-Core –source
I hope you have an installation DVD at hand.
Useful thing if you want to increase performance on server 2012. Not very recommended, but does the trick.
I ran into this problem so I ran the Authoritative FRS restore procedure using the D4 flag on the old server.
Click Start, and then click Run.
In the Open box, type cmd and then press ENTER.
In the Command box, type net stop ntfrs.
Click Start, and then click Run.
In the Open box, type regedit and then press ENTER.
Locate the following subkey in the registry:
HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\NtFrs\Parameters\Backup/Restore\Process at Startup
In the right pane, double click BurFlags.
In the Edit DWORD Value dialog box, type D4 and then click OK.
Quit Registry Editor, and then switch to the Command box.
In the Command box, type net start ntfrs.
Quit the Command box.
Continue reading NTRFS: error event 13508
This is the desired IP and DNS configuration with one or two DC
Lets say you want to migrate your system to a new hard drive.
Of course the best practice is to buy a hard drive with the exact same size. This will save you problems.
I think instead of changing the files where disk UUIDs reside just swap UUIDs between the old and new disk.
invalid partition -- table wrong signature 0
This means something went wrong with the partition table and you want to use fdisk to write a valid partition table.
There is an extensive discussion about benefits and disadvantages of this features.
I have decided to disable it.
1. open “/etc/sysconfig/prelink” in a text editir (such as vi)
2. you should see this line: PRELINKING=yes
3. change ‘yes’ to ‘no’
4. save the change you just made & exit the text editor
5. manually run “/etc/cron.daily/prelink” as root.
6. prelinking is now disabled and will not reactivate the next time you reboot.
Unfortunately this dangerous ransomware has reappeared on the network and managed to inflict heavy damages to business across the Europe especially Spain and then UK.
Bad guys have figured out how to effectively penetrate antispam and antivirus scanning gateways including Symantec.cloud.
Someone has bought the source code and released upgraded malware collecting ransom from desperate businesses.
Read about THIS serious security enhancement in my opinion. Usually as we know local Administrators are left orphaned with weak passwords which then can compromise relatively healthy domain environment.
I have just checked a detailed benchmark of my hard drive and the information is breaking my heart. I think I have to look for some upgrade.