Backtrack:  
 
showing all posts
 
by lunarg on November 5th 2019, at 09:55
Ever since Windows 2000, by default, Numlock is turned off at the logon screen. This can be annoying if you use the numpad to type in (part of) your password. Luckily, you can change this behaviour through a registry fix.

The registry key to change is the same for all versions of Windows, but the value to enter is different depending on the version of Windows.

Fire up regedit.

Navigate to the key HKEY_USERS\.DEFAULT\Control Panel\Keyboard.

Look for the registry value InitialKeyboardIndicators, which needs to be changed to:Windows 7: set the value to 2

Windows 8, 8.1, 10 (older builds): set the value to 80000002

Windows 10 (newer builds): set the value to 2147483650



Note that for Win  ...
by lunarg on October 30th 2019, at 12:26

If you're looking for the Group Policy Templates (ADM/ADMX) for configuring Acrobat Reader DC, you can download them from the Adobe FTP:

ftp://ftp.adobe.com/pub/adobe/acrobat/win/AcrobatDC/misc/

by lunarg on October 29th 2019, at 13:01

There's no proper uninstall tool for Office on Mac. To completely uninstall Office for Mac, follow these official instructions:

https://support.office.com/en-us/article/troubleshoot-office-for-mac-issues-by-completely-uninstalling-before-you-reinstall-ec3aa66e-6a76-451f-9d35-cba2e14e94c0

by lunarg on October 29th 2019, at 12:59
To get rid of Microsoft AutoUpdate on Mac, remove these files and folders:

In the System Library (you need "sudo"):

Folder: /Library/Application Support/Microsoft/MAU2.0

File: /Library/LaunchDaemons/com.microsoft.autoupdate.helper.plist

File: /Library/LaunchAgents/com.microsoft.update.agent.plist

File: /Library/PrivilegedHelperTools/com.microsoft.autoupdate.helper

In your user's Library (needs to be done for each user):

File: ~/Library/Preferences/com.microsoft.autoupdate2.plist

File: ~/Library/Preferences/com.microsoft.autoupdate.fba.plist

Folder: ~/Library/Application Support/Microsoft AU Daemon

Folder: ~/Library/Application Support/Microsoft Update Assistant

File: ~/L  ...
by lunarg on October 27th 2019, at 11:48

If you're not ready/able to upgrade to macOS Catalina, you can hide the update from Software Update.

Note that because of sudo, you'll need to be an admin on your Mac.

Open Terminal and enter the following command:

sudo softwareupdate --ignore "macOS Catalina"

Enter your password when prompted.

When you are ready to update, you can un-hide Catalina the same way:

sudo softwareupdate --reset-ignored
by lunarg on October 27th 2019, at 11:09

If you want to set the Dock size in macOS to a specific value, you can use the Terminal to do so:

defaults write com.apple.dock tilesize -int 32; killall Dock

This will set the icon size to 32px, and then restart Dock. Note that if you replace "write" with "read", you can get the current value of the Dock size.

by lunarg on October 11th 2019, at 13:55

Not straightforward to find on the website (but with a little bit of Googling, here it is): an overview of the system requirements for VMware Fusion. All versions are listed:

https://kb.vmware.com/s/article/2005196

by lunarg on October 9th 2019, at 15:19

A very nice article explaining how to migrate from an external Platform Service Controller to an embedded one:

https://blogs.vmware.com/vsphere/2019/02/understanding-the-vcenter-server-converge-tool.html

A note about versioning: use the same version of the converge tool as the version of your vCenter and PSC. Otherwise the converge will most likely fail (as it did when using 6.7 tool on a 6.5 environment).

by lunarg on September 26th 2019, at 12:11
Check_MK, standalone or as part of OMD (The Open Monitoring Distribution), has built-in support for monitoring AeroHive wireless infrastructure through a Hive Manager. It uses the on-premise Hive Manager in order to collect information from devices registered to the Hive Manager.

Note for HMOL users
Because the agent uses the Hive Manager API, HMOL environments are not supported, as they do not allow the HM API to be enabled.

By default, HM API is turned off. Log on to the Hive Manager using an admin account. Go to:

Home → Administration → HiveManager Settings

Scroll down to API Authorization Settings, then click Settings.

Check Enable API Access, and type in a username, and t  ...
by lunarg on September 24th 2019, at 16:37

You can use Powershell to get the block size of a Windows NTFS volume:

On newer systems:

Get-CimInstance -ClassName Win32_Volume | Select DriveLetter,Label, BlockSize | FT -AutoSize

On older systems, the Get-CimInstance may not be available, in which case you can use the (deprecated) Get-WmiObject:

Get-WmiObject -Class Win32_Volume | Select DriveLetter,Label, BlockSize | FT -AutoSize
by lunarg on September 18th 2019, at 12:02
When adding a new disk to a live system (e.g. a linux VM), the new disk may not always show up. Additionally, when resizing a disk through the hypervisor, the VM may not always immediately have the new size available for use. Luckily, you can trigger a rescan of the SCSI bus through the sysfs system.

For this to work, you'll need to have shell and root access to the server/VM.

Modern linux kernels automatically detect the addition of a disk, but in case it doesn't, you can trigger a rescan of a specific (virtual) SCSI controller:

echo "- - -" > /sys/class/scsi_host/hostX/scan

Replace hostX with the number of the SCSI controller, where host0 is the first, host1 is the second, et  ...
by lunarg on September 13th 2019, at 10:55
To quickly block traffic from/to a specific IPv4 address using iptables, you can use the commands below.

Warning!
Do not use these commands when you are already running an iptables-based firewall as this may result in unexpected results.

Block incoming traffic from a specific IP:

iptables -A INPUT -s 1.2.3.4 -j DROP

Block outgoing traffic (i.e. traffic initiated from the host itself) to a specific IP:

iptables -A OUTPUT -d 1.2.3.4 -j DROP

To block outgoing traffic to a specific port and protocol, you can also do something like this (the example below blocks DNS and HTTP):

/sbin/iptables -A OUTPUT -p tcp --dport 80 -d 1.2.3.4 -j DROP/sbin/iptables -A OUTPUT -p udp --dport 53 -d 1.2.3.4  ...
by lunarg on September 9th 2019, at 16:54
On VCSA, the database is stored on a separate disk. It could happen that this disk runs out of room, causing Vcenter to no longer function properly. One way to resolve this is by running database clean up as mentioned in KB 2110031. However, if this is not possible, or you don't want to clear out the data, you can also resize the disk.

For this to work, you'll need root access and access to the bash-shell, either on the console or through SSH.

Before resizing, identify the physical disk to be resized. For VCSA 6.5 and 6.7, this should normally be Disk 8 (device node in linux = /dev/sdh), but your setup may vary, so it's best to double-check this.

In VCSA 6.5 and 6.7, the database is locat  ...
by lunarg on September 9th 2019, at 12:45
Handling snapshots (creating, deleting, restoring) is rather intuitive when you already have some experience with PowerCLI. As a reference, here are some one-liners. As always with Powershell, there's more than one way to achieve a goal... The examples used here assume a VM named "SRV01". Adjust as needed.

Create a snapshot:

Get-VM SRV01 | New-Snapshot -Name "My snapshot"

Remove all snapshots (disabling confirmation request in the process):

Get-VM SRV01 | Get-Snapshot | Remove-Snapshot -Confirm:$false

To handle a specific snapshot, you could do something like this:

$vm = Get-VM SRV01$snap = Get-Snapshot -VM $vm -Name "My snapshot"# do something with the sn  ...
by lunarg on September 5th 2019, at 16:43
For users which really want to prevent Windows 10 from automatically installing updates, here are some methods to disable automatic updates. Depending on which method you use, you will still be able to manually check and install updates, or not be able to install updates at all...

Note that the methods leverage group policies, which is not supported on Windows 10 "Home/Essential" editions. A minimum of Windows 10 Pro or better is needed.

Caution
It is generally not recommended to disable automatic updates. Doing so (and not subsequently regularly installing the updates yourself) increases the risk of data loss and/or stealing due to potentional vulnerabilities in Windows 10.

The  ...
by lunarg on August 29th 2019, at 11:29
There's an easy method for extracting hard disk S.M.A.R.T. testing logs using the CLI. This is useful if you require support on Synology and need an easier method to get the data (other than creating screenshots from your web-browser), and if more detailed data is needed.

Before getting the logs from the CLI, first run an extended SMART analysis from the DSM. This will take a while (usually several hours). Running the analysis on multiple disks is possible and can be done concurrently, but it needs to be initiated manually for each disk.

Once tests have completed, log onto the CLI (using your favourite SSH client, such as PuTTY) using the "admin" or "root" account.

As   ...
by lunarg on July 23rd 2019, at 09:54
To quickly generate a self-signed certificate, follow the steps below. Note that self-signed certificates should be avoided in production environments.

Generate the private key (here, 1024-bit is used, but you can change that to lower/higher):

openssl genrsa –out ca.key 1024

Generate the certificate signing request:

openssl req –new –key ca.key –out ca.csr

You will be asked for information to include in the signing request:

Country name (2 letters)

State or province

Full locality name (city)

Organization name

Department / organizational unit

Common name (or distinguished name): should be set to the FQDN of your server

E-mail address: set to a local contact (usually the sy  ...
by lunarg on June 7th 2019, at 11:22

If you need to rename all folders and files to lowercase on a case-sensitive filesystem (e.g. ext4 on linux), you can use the following at the bash prompt:

If rename is available (if you have Perl installed, then it usually is):

find . -depth -exec rename 's/(.*)\/([^\/]*)/$1\/\L$2/' {} \;

If you can't use rename, try this:

for SRC in `find my_root_dir -depth`
do
    DST=`dirname "${SRC}"`/`basename "${SRC}" | tr '[A-Z]' '[a-z]'`
    if [ "${SRC}" != "${DST}" ]
    then
        [ ! -e "${DST}" ] && mv -T "${SRC}" "${DST}" || echo "${SRC} was not renamed"
    fi
done
by lunarg on May 13th 2019, at 13:48
It may happen (on badly configured SQL Servers) that the event log for maintenance plans fills up your storage and that it is no longer possible (because the volume is full) to use a task to clear the history. In that case, you can use the script attached to manually clear out the data.

The maintenance plan history is stored in the system database MSDB. If maintenance plans are defined and there's no task to occassionally clear the history, it will continue to fill up the database (and the volume it is on). If there's insufficient disk space, manually running the clean up task will fail because it will temporarily require additional space. The attached script drops some specific constraints  ...
by lunarg on May 2nd 2019, at 13:50

Attached is Microsoft's latest password guidance document.

With the application of the guidelines in this document, you should be able to get better overal security without compromising too much of the user-friendly experience.

 
showing all posts
 
 
« November 2019»
SunMonTueWedThuFriSat
     12
3456789
10111213141516
17181920212223
24252627282930
 
Links
 
Quote
« I needed a password with eight characters so I picked Snow White and the Seven Dwarves. »