中国历史上影响最大的十首古诗

中国历史上影响最大的十首古诗
(source: internet:天山隐士)

李白《静夜思》




床前明月光，疑是地上霜。

举头望明月，低头思故乡。



孟郊《游子吟》



慈母手中线，游子身上衣。

临行密密缝，意恐迟迟归。

谁言寸草心，报得三春晖。



白居易的《赋得古原草送别》



离离原上草，一岁一枯荣。

野火烧不尽，春风吹又生。

远芳侵古道，晴翠接荒城。

又送王孙去，萋萋满别情。




王之涣的《登鹳雀楼》



白日依山尽，黄河入海流。

欲穷千里目，更上一层楼。

王维的《九月九日忆山东兄弟》



独在异乡为异客，每逢佳节倍思亲。

遥知兄弟登高处，遍插茱萸少一人。





《诗经》的第一首《关雎》



关关雎鸠，在河之洲。

窈窕淑女，君子好逑。

参差荇菜，左右流之。

窈窕淑女，寤寐求之。

求之不得，寤寐思服。

悠哉悠哉，辗转反侧。

参差荇菜，左右采之。

窈窕淑女，琴瑟友之。

参差荇菜，左右毛之。

窈窕淑女，钟鼓乐之。



李清照的《夏日绝句》



生当作人杰，死亦为鬼雄。

至今思项羽，不肯过江东。




曹植的《七步诗》



煮豆燃豆萁，豆在釜中泣。

本是同根生，相煎何太急？



王勃的《送杜少府之任蜀州》



城阙辅三秦，风烟望五津。

与君离别意，同是宦游人。

海内存知己，天涯若比邻。

无为在岐路，儿女共沾巾。



李绅的《悯农》



锄禾日当午，汗滴禾下土。

谁知盘中餐，粒粒皆辛苦。

re-activate windows 2003 --- a wrangle wirth MS

re-activate windows 2003 --- a wrangle wirth MS

I tried phone activate, connected to a human

but the keys given by the droid is not working, he asked for the product key, i tried to give me the license key, he hang up

I tried 4 times, eventually got it activated

my black Friday -- a day of restore and recovery of BSODs

my black Friday -- a day of restore and recovery of BSODs

the company I work for decided to move Xen VMs to Windows 2016 Hyper-V

the current Xen host was installed about a few month ago  - Xen 5.6 or 6.x

the backup software is StorageCraft 's shadow protect

so I started to restore backup images today

the speed is not bad, its about 1GB per minute

the servers are windows 2008 as DC and a windows 2003 terminal server

1/ blue screen of death --- on the windows 2008 DC

the W 2008 crashed to bluescreen with active directory errors, I have to boot the server to directorty recovery mode to do a ese util repair on the ntds.dit

so you need DSRM password handy, as I installed this server 6 years ago, my typical habitual password worked

2/ bluescreen of death on the restored windows 2003 server,
the windows 2003 crashed to blue screen, the error is like c*.dll error, I blogged this error in 2015. so I did the fix again, the fix is to copy 5 files from ddlcache folder.

ntdll.dll and 4 nt*.exe files, very bizare because current ones got 2007 timestamp, but the dll cache got 2015 time stamp


one thing worth notice is that I dont see insert integration services disc in the action manual as probably those two servers are legacy servers

I have to manually add a lagecy network card to the w2003 server

w2003 still supported on hyper-v 2016 , but I dont see fully supported

3/ continue to recover
then the dhcp server wont start
tried to repair the dhcp.mdb , got error, delete it, and start the dhcp server again, ending up with re-creating dhcp configuration

grub error 17 ---- it is a boot loader issue in my case

I loaded Android 6.x on an windows 8 hard drive , it detected it and loaded grub

but It could not boot

Grub error 17

tried a lots of tricks , no luck

eventually , I used Gparted cd to boot the PC

Gparted found out there is a small space like 8MB in front of the android partition

I deleted all the partition, and re-install the android

Android 6.x boots on my PC

test install a windows 2016 domain controller in Azure

test install a windows 2016 domain controller in Azure

its kind of straight forward

need join the the W2016 to the current domain first

then install AD DS

and then premote

the remove process is kind of reverse

demote and then remove AD DS

there seems no more new domain function level than 2012 R2

or FFL more than 2012 R2

林语堂先生曾说过，中国有一类人，身处社会最底层，权利时时刻刻在受到着侵害，却有着统治阶级的思想，处处为统治阶级辩护，在动物界能找出这么弱智的东西都几乎不可能。

林语堂先生曾说过，中国有一类人，身处社会最底层，权利时时刻刻在受到着侵害，却有着统治阶级的思想，处处为统治阶级辩护，在动物界能找出这么弱智的东西都几乎不可能。

my last netgear access point -- Netgear access point gave me heart ache this morning

my last netgear access point

the IP interface is not always responding to pings

the web interface is sometimes not accessible

the SSID / connection sometimes just disappears

stop save to onedrive

http://www.pcworld.com/article/2993360/windows/how-to-stop-windows-10-from-saving-files-to-onedrive.html

Right-click Documents in the Navigation pane (I’m referring to the Documents library, not any of the folders listed below it) and select Properties. In the resulting dialog box, select the local location (probably C:\Users\yourname, where yourname is your login name) and click Set save location button.

right - click on the documents Library

System requirements for Hyper-V on Windows Server 2016

https://technet.microsoft.com/windows-server-docs/compute/hyper-v/system-requirements-for-hyper-v-on-windows

General requirements

Regardless of the Hyper-V features you want to use, you'll need:

• A 64-bit processor with second-level address translation (SLAT). To install the Hyper-V virtualization components such as Windows hypervisor, the processor must have SLAT. However, it's not required to install Hyper-V management tools like Virtual Machine Connection (VMConnect), Hyper-V Manager, and the Hyper-V cmdlets for Windows PowerShell. See "How to check for Hyper-V requirements," below, to find out if your processor has SLAT.
• VM Monitor Mode extensions
• Enough memory - plan for at least 4 GB of RAM. More memory is better. You'll need enough memory for the host and all virtual machines that you want to run at the same time.
• Virtualization support turned on in the BIOS or UEFI:
• Hardware-assisted virtualization. This is available in processors that include a virtualization option - specifically processors with Intel Virtualization Technology (Intel VT) or AMD Virtualization (AMD-V) technology.
• Hardware-enforced Data Execution Prevention (DEP) must be available and enabled. For Intel systems, this is the XD bit (execute disable bit). For AMD systems, this is the NX bit (no execute bit).

Shielded virtual machines

These virtual machines rely on virtualization-based security, which supports several new features in Windows Server 2016w.

Host requirements are:

UEFI 2.3.1c - supports secure, measured boot

The following two are optional for virtualization-based security in general, but required for the host if you want the protection these features provide:

TPM v2.0 - protects platform security assets

IOMMU (Intel VT-D) - so the hypervisor can provide direct memory access (DMA) protection

Virtual machine requirements are:

Generation 2

Windows Server 2016, Windows Server 2012 R2, or Windows Server 2012 as the guest operating system

windows server 2016 hyper-v -- requirements

bit disappointed that I could not install server 2016 with hyper-v role on my old hardware

it is that SLAT is required for Server 2016 hyper-v, but that is not a server 2012 R2 requirement

differences between AAD and AD DS -- Azure AD and traditional on-premise AD DS

differences between AAD and AD DS
- no support for Group policy settings
- no OU or computer objects
- no support for forests ( rely on federation to extend scope)

- no forest AD trust

(source MVA)

cisco dcloud is very interesting -- kind of a nice demo setup play ground

have trialed


Cisco ASA with FirePOWER for SMB Overview v1

Cisco ASA with FirePOWER for SMB Integrated Threat Defense v1

If I integrate the firepower with Fightsite online

then the firepower tab will disappear from the CISCO ASA, then click the link to goto the cloud

funny as a sales guy I can still open ebay (supposed to be blocked)

a component of the operating system has expired --- windows 2012 R2 trial truying to install windows server 2016 trial

a component of the operating system has expired --- windows 2012 R2 trial truying to install windows server 2016 trial

windows server 2016 hyper-v new features

https://technet.microsoft.com/en-us/windows-server-docs/compute/hyper-v/what-s-new-in-hyper-v-on-windows

Compatible with Connected Standby (new)

Discrete device assignment (new)

Host resource protection (new)

Hot add and remove for network adapters and memory (new)

Hyper-V Manager improvements (updated)

Integration services delivered through Windows Update (updated)

Linux Secure Boot (new)

Nested virtualization (new)

Networking features (new)

Production checkpoints (new)

Shielded virtual machines (new)

Windows Containers (new)

windows 2016 is here --- with not much fanfare

https://blogs.technet.microsoft.com/hybridcloud/2016/09/26/announcing-the-launch-of-windows-server-2016/?MC=WinServer&MC=DevOps&MC=SysMagSof&MC=EntMobile&MC=MSAzure

here is the Microsoft announcement

• Advanced Multi-layer Security: Nearly every morning when I read the news, I see a new headline about a security breach. Attacks have become more sophisticated, so organizations must respond with a more sophisticated environment that presents new layers of defense at every level of potential compromise. As the operating system that runs mission-critical applications and databases, Windows Server can play a strategic role in an organization’s security arsenal. Windows Server 2016 gives IT the power to help prevent attacks and detect suspicious activity with new features to control privileged access, protect virtual machines and harden the platform against emerging threats. Learn more about the new security features.
• Software-defined Datacenter: Many people don’t realize that our Azure public cloud is actually one of my Windows Server customers. This means they use Windows Server and Hyper-V at a massive scale to deliver some of the most efficient datacenters in the world. Not every organization needs this type of scale, but every organization can definitely benefit from the new models of cloud efficiency. We worked hard to build that into this release so every customer can benefit. As a result, Windows Server 2016 delivers a more flexible and cost-efficient operating system for any datacenter, using software-defined compute, storage and network features inspired by Azure. Learn more about the new software-defined datacenter features.
• Cloud-ready Application Platform: Applications are at the heart of every organization and its ability to serve customers and compete effectively for their loyalty. As the digital transformation accelerates in every organization, nearly every application needs to transition or transform. Windows Server 2016 delivers new ways to deploy and run both existing and cloud-native applications – whether on-premises or in Microsoft Azure – using new capabilities such as Windows Server Containers and the lightweight Nano Server deployment option. And to make life easier for developers, today we announced with Docker a new agreement that will make the Commercially Supported Docker Engine (CS Docker Engine) available to Windows Server 2016 customers at no additional cost. Learn more about the new application platform features.

my weekend rescue series cotinues -- this time -recover my own windows 10 enterprise preview

my weekend rescue series cotinues -- this time -recover my own windows 10 enterprise preview

I am an updating freak --- I updated my w10 insider preview to the lastest version, did a reboot
still good

a few hours later , I did a shutdown , I know outlook open, some notepads open, I did the shutdown anyway

then I am trying to get a cisco dcloud url .... to my horror , my HP notebook failed to start ... blue screen of death

Recovery

Your PC / device need be repaired

the boot configuration file ....

file: \boot\bcd

error code: 0x0000034

you need revovery tools

its w10, no more F8 to enter safe mode any more

so I have to download W10 enterprise preview from MS website

burn to usb pen drive

I tried start up recovery , no luck

then I did
https://support.microsoft.com/en-nz/kb/2004518

Method 2: Rebuild the BCD store by using the Bootrec.exe tool

If the previous method does not resolve the problem, you can rebuild the BCD store by using the Bootrec.exe tool in the Windows Recovery Environment.

Determine the partition where \boot\bcd file is located.

Notice that the boot\BCD file may not be on the C: partition but on a separate system partition.

(OEM's are unlikely to assign a volume letter to the system partition.)

If the Bootrec.exe tool cannot locate any missing Windows installations, you must remove the BCD store, and then you must re-create it. To do this, type the following commands in the order in which they are presented. Press ENTER after each command.

• Bcdedit /export C:\BCD_Backup
• ren c:\boot\bcd bcd.old
• Bootrec /rebuildbcd

that saved my weekend

btw: I tried a BCD repair tool, not wroking either

probably due to HP original hard drive put the bcd atcitve partition on the 1GB system partition, i,e diferent from the windows partition

Junk Mail Filtering in Outlook - it will be gone

On No1/11/20166,  1/11/2016, Microsoft will stop releasing updates to Junk Email definitions for Outlook's junk Email filter. The junk email filter will continue to work in Outlook, using the last definition installed, it just won't be updated going forward, which will reduce its effectiveness in the future. The SmartScreen filter in Exchange Server is also affected and will not be updated going forward.

SmartScreen Spam filtering was introduced in Outlook 2003, moving suspected spam (and occasionally, valid messages) into the Junk Email folder. It's not perfect by any means as client-side filtering has a couple of problems: if you use multiple computers, each Outlook w

Palo Alto Network single pass Platform architecture

Date plane

Control plane

windows 10 join windows 2003 domain and windows 2003 domain upgrade to windows 2016 domain

windows 10 join windows 2003 domain and windows 2003 domain upgrade to windows 2016 domain

it is all supported

https://technet.microsoft.com/en-us/windows-server-docs/identity/ad-ds/windows-server-2016-functional-levels

(quote)

With the end of life of Windows 2003, Windows 2003 domain controllers need to be updated to Windows Server 2008, 2012 or 2016. As a result, any domain controller that runs Windows Server 2003 should be removed from the domain. The domain and forest functional level should be raised to at least Windows Server 2008 to prevent a domain controller that runs an earlier version of Windows Server from being added to the environment.

We recommend that customers update their domain functional level (DFL) and forest functional level (FFL) as part of this, since the 2003 DFL and FFL have been deprecated in Windows Server 2016 and they will no longer be supported in future releases.

For customers who need additional time to evaluate moving their DFL & FFL from 2003, the 2003 DFL and FFL will continue to be supported with Windows 10 and Windows Server 2016 provided all domain controllers in the domain and forest are either on Windows Server 2008, 2012 or 2016."

At the Windows Server 2008 and higher domain functional levels, Distributed File Service (DFS) Replication is used to replicate SYSVOL folder contents between domain controllers. If you create a new domain at the Windows Server 2008 domain functional level or higher, DFS Replication is automatically used to replicate SYSVOL. If you created the domain at a lower functional level, you will need to migrate from using FRS to DFS replication for SYSVOL. For migration steps, you can either follow the procedures on TechNet or you can refer to the streamlined set of steps on the Storage Team File Cabinet blog.

The Windows Server 2003 domain and forest functional levels continue to be supported, but organizations should raise the functional level to Windows Server 2008 (or higher if possible) to ensure SYSVOL replication compatibility and support in the future. In addition, there are many other benefits and features available at the higher functional levels higher. See the following resources for more information: 

migrate SBS server to server 2012 / 2012 R2

migrate SBS server to server 2012 / 2012 R2

https://blogs.technet.microsoft.com/infratalks/2012/09/06/transition-from-small-business-server-to-standard-windows-server/

https://social.technet.microsoft.com/Forums/en-US/59f66dcf-f74f-4b4c-aa84-c631724b3d13/sbs2011-to-2012-r2-migration-wo-exchange?forum=winserverMigration

(quoted here)

• For SBS 2011 to 2012 R2 migration without Exchange, brief steps here:
  1. Install Server 2012 on the new server, join to the domain. ( Upgrade the schema etc... on the old server with 2012 DVD)
  2. Promote it to a domain controller, make it a global catalog server and a DNS Server.
  3. Wait for everything to replicate, then move your data if needed.
  4. Install DHCP on the new server (same scope as the SBS 2011), then shut down DHCP services on the SBS server and activate on the new server.
  5. Transfer the FSMO roles.
  6. DC Promo the SBS server out of the domain.
  7. Shut down the SBS server.
  Please refer to following articles and threads to get more information:
  These steps are applicable for transition from all the versions of Small Business Server to Windows Server 2008/ 2008 R2/ 2012.

image my notebook hard drive to a replacement hard drive - HP notebook PC Probook 650 G1

image my notebook hard drive to a replacement hard drive - HP notebook PC Probook 650 G1

it turns out as a challenge,

my notebook hard drive OS upgraded from w7 to w10.

to my horror the other week, it failed to create recovery discs. it says there are bad clusters on the hard drive

it still under warranty, so i called HP, actually chatted with HP support. they sent me a replacement hard drive

now I want to copy my current disc to the target disc

I tried reflect.exe -- Macrium - free version could not do as my drive has dynamic volumes

I turned to the paid Stagecraft IT edition, I captured the image, but after I restore the image to the new drive, i got press ctrl+alt+del

the disc wont boot ....

contact StorageCraft support, I am told use the x64 RE, I did, same issue

something like BCD broken, repair failed

I checked the source drive structure again, there are heaps of partitions ,

I NOTICED there is 1 partition NTFS - 1GB -- no drive letter -- pri, active, in addition to C: D: I did previously

I imaged this over, BCD error disappeared on C:

then my w10 boots up

but I dont have to do this for w7. I have to do this system partition for w10 on my notebook

took a long

clone / resize a windows 8.1 drive, clone / resize a windows xp drive

here I did it again,

put the new hard drive in an enclosure

install Macrium free edition, it will do the clone

the only challenge is windows xp could not do extend partition on its own.

so I downloaded minitool partition wizard free to extend the windows xp volume

both products high recommended

my father teaches me how to decide a oven lamp is faulty ---

my father teaches me how to decide a oven lamp is faulty ---

I am ashamed to blog about my cooker oven - I was supposed to be an electronics man

anyway, here is the big story

the oven or cooker in English English is not working. it is found out the oven clock could not be zero for the oven to work,

the oven started to work, but the oven lamp is not, on.

the oven lamp costs 6 dollars, the pretty lightning girl assure me it is the exact match -- 300 C

the oven lamp cover is located in a tractable cage as told by my brother in law

how do i know my old oven lamp (bulb) is faulty. my father told me to use a multu-meter to measure it.

the new proper is measured at 195.95 ohm.

the old one is definitely faulty at .... open circuit

what a lession

Cooker or oven not working --- clock need set

http://www.fixya.com/support/t340381-fisher_paykel_electric_cooker_pepper

We have bought this cooker but can't set the clock. Nothing happens when you push the hand and the - or + buttons as the manual directs. Oven won't work without the clock working.

===========

you will have to set the clock before the oven start to work

demise of Azure RemoteApp is

MS declared

Azure RemoteApp is dead

Outlook 2013: Control Panel Mail Won't Open --- not just me having this issue

Outlook 2013: Control Panel Mail Won't Open --- not just me having this issue

Outlook 2013's Mail applet will not open from the Control Panel following the June 2016 updates. Click-to-run installations are affected on all operating systems. When users click on the Mail applet the mouse cursor circles, then stops without the applet opening. Right clicking and choosing Open, or using the Run dialog to open the applet also fail.

Microsoft is investigating this issue and until it is fixed, users who need to create a new profile or open a different profile can either open Outlook using the /profiles switch or set a registry key to always display the Choose Profile dialog.

To use the /profiles switch when you open Outlook, open the Run command using Windows key + R then type or paste Outlook.exe /profiles into the Open field and click Ok.

The option to always prompt for a profile when starting Outlook is stored in the registry. To add or change the value, open the registry editor and browse to and change the PickLogonProfile value. If PickLogonProfile does not exist, you'll need to add it.

HKEY_CURRENT_USER|Software​|Microsoft|Exchange|​Client|Options
REG_SZ: PickLogonProfile
Value: 1 = Prompt for a profile to be used; 0 = Always use this profile

(source: EMO)

phases in the windows boot process

Post Boot

PreSession Init

Session Init

Winlogon Init

Explorer Init

default time out value for a GPO

10 minutes

new Office 365 provision --- mail-enabled public folder could not accept external emails

new Office 365 provision --- mail-enabled public folder could not accept external emails

this is a cut-over migration

exchange 2003 to office 365 exchange  online

newly created public folder not getting external emails

bounced

the fix is to change the accepted domain from authoritative to internal relay ....

interesting ---- gotta remember that to do this kind of work for a living

another thing with the O365 public folder is that

the root mailbox is created in the portal

the root public folder is created in the portal

you better assign a owner of the whole pubic structure

all subfolders under that are created by the owner ( a designed owner)

To mail-enable a folder , you go back to the portal to do that

office 365 - exchange online --- its all about auto-discover

office 365 - exchange online --- its all about auto-discover

I am migrating exchange 2003 to O365

without-cuting over, I manually configured outlook 2013 to test

and found out it could not should public folders

it could not should shared mailboxes

I manually edit the hosts file to get those show up

btw ... could not manually configure with outlook 2016

Find which DC a computer is authenticated to

https://community.spiceworks.com/how_to/40451-find-which-dc-a-computer-is-authenticated-to

echo %logonserver%

reset Azure VM password

could not find my password for my azure VM

even if its a domain controller

I can still reset the password for admin user

setup Hmail for Office 365 relay / POP3s

Hmail is very interesting, as it is only a few MB

it is useful as it can do SSL/TLS Pop3

so it can be used for bridging legacy apps and O365

options for non-domain member

options for non-domain member
-
confgiure workplace join

configure work folders

(mva)

threats from Pete - Microsoft licensing

-----------
after v3 of ELOP, Pete suddenly become angry ...

Please note that this document identifies a license shortfall.  We would ask you to please remedy the shortfall identified within the attached by acquiring the necessary licenses within the next 10 working days.  We will be able to complete this process once we see that an order has been placed.  Please feel free to email me confirmation of the purchases you have made, e.g. agreement numbers, copy/ies of invoices, etc so that we can expedite the completion of this process.

We encourage you to speak with an authorised Microsoft Reseller/Partner on this matter.  If you do not have an incumbent partner we would be happy to arrange for a preferred Microsoft Partner to reach out to you.  Please let us know via return email if you would like us to initiate a referral.

-------------------

I feel shocked and angry as previously Microsoft asked for 5 windows server 2012 R2 licenses which I proved the customer already bought.

now I have to prove local ms pete is correct in saying the shortfall for the un-priviledged customer

-------------------------------------------------------------------------

one - click convert O365 user mailbox to a user mail box and the other way around

one - click convert O365 user mailbox to a user mail box and the other way around

https://blogs.technet.microsoft.com/exchange/2015/02/06/single-click-mailbox-conversion/

Admins can now convert a cloud-based user mailbox to a shared mailbox with a single click in the Exchange Admin Center (EAC). No more needing to use PowerShell. Similarly, a cloud-based shared mailbox can be converted to user mailbox with a single click, as well.

office on demand -- not any more

MS discontinued office on demand

Office 365 manage office installations

Office 365 manage office installations

-

https://community.office365.com/en-us/f/153/t/409077

-- basically

 1.Sign into the Office 365 portal and click Admin.
 2.Choose Users> Active Users in the left.
 3.Choose yourself and click Edit Office Installations.
 4.Deactivate the device.

exchange 2016 - message transport services and components

smtp receive and smtp send
the categorizer
pick up and replay directories
store driver
submission queue and delivery queue
transport agents

AD DS and Exchange server integration -

AD DS and Exchange server integration -  (source : mva)

forest  ---------- Exchange organization

schema -------- exchange object classes and attributes

configuration ------ exchange configuration

domain 000 exchange recipients

global catalog ---- exchange object attributes for mail-enabkled and mailbox-enabled objects

default passwords -- where I can find those

http://www.defaultpassword.com/

default passwords -- where I can find those

can you join a windows embedded to a domain

can you join a windows embedded 7 or the likes to a domain

look like -- yes

https://www.microsoft.com/windowsembedded/en-us/windows-embedded-7.aspx

Enterprise connectivity and device management: Active Directory, Domain Join, Group Policy Network Access Protection, Windows Update, System Center

Bullet

Bullet

Bullet

office 2013 automatically upgraded to Office 2016

on 2 PCs, on this Mothers Day

offcie 2013 upgraded to office 2016

I have Office 365 E3 licenses

quotes and expressions in powershell

https://technet.microsoft.com/en-us/library/hh847740.aspx

https://blogs.msdn.microsoft.com/powershell/2006/07/15/variable-expansion-in-strings-and-here-strings/

retrieve the properties and methods for an object in PowerShell

retrieve the properties and methods for an object in PowerShell

Using the Get-Member Cmdlet

Cryptolocker targets some of the most important files on a PC: things like pictures, documents, movies, music files, etc.

http://searchitchannel.techtarget.com/tip/Cryptolocker-ransomware-protection-A-new-reason-for-old-advice

, according to reports on those who admit to having paid the ransom, less than half say they received a decryption key after payment.

( all quotes)

Ransomware is an absolute pandemic. Threat actors are increasing

Ransomware is an absolute pandemic. Threat actors are increasing 

http://searchwindowsserver.techtarget.com/feature/Ransomware-protection-is-futile-but-all-hope-is-not-lost?utm_medium=EM&asrc=EM_NLN_56585633&utm_campaign=20160504_Ransomware%20prevention%20isn%27t%20feasible,%20so%20do%20the%20next%20best%20thing_tholman&utm_source=NLN&track=NL-1810&ad=907489&src=907489

The ultimate ransomware protection is a backup that is physically disconnected from the rest of your network. The next closest thing is something that can read your network but cannot be written to or controlled by your network.

Everything is about compartmentalization

( all quotes)

Set mobile device management authority - intune

Set mobile device management authority - intune

as there are many ways to manage

need to set an authority

Microsoft cloud device management stack --- Office 365 , intune, SCCM + iNtune

Microsoft cloud device management stack --- Office 365 , intune, SCCM + iNtune

actually

there are a plethora of Microsoft offering on the cloud for managing devices

1/ Office 365 device management

2/ intune device management

3/ SCCM device management

3/ SCCM + intune

complicated -- heh

update my windows 10 enterprise to the latest insider version

not sure why my w10 enterprise v 10240 not being auto-updated to v 1151,

maybe it is managed by intune?

anyway, I turned on insider install, it did upgrade to a v 1151 insider version

but my licensed enterprise copy become a preview

what a bummber

install MAC OS X on a windows computer --- hacked way

install MAC OS X on a windows computer --- hacked way

it is not a normal way to do it, but fun to play with

http://www.macbreaker.com/2015/01/virtualbox-yosemite-zone.html

you will download a Niresh hackintosh ido - Yosemite

not the latest verson, but interesting to tinkering


and use virtual box

I had a 6 m / 2 m freezing issue

do a single user fix

as above link -- quote here

Solution for '2 minutes left' problem:

1. Close the VMachine when stuck on 2 minutes left (Power off)
2. Start it again, select newly created

hd(0,2)

and type options:

-s -v -x

3. You will get to bash, run two given commands to mount root device:

/sbin/fsck -fy

and when it finishes:

/sbin/mount -uw /

4. Now move to the directory:

cd /.OSInstallSandboxPath/Scripts/

and show its files:

ls

5. In the result you need to find the .xxxxxx from Hackintosh.Zone.Post-Script.xxxxxx line (it's different for everybody, for example xSDnsS for me) and then move to that directory:

cd Hackintosh.Zone.Post-Script.xSDnsS ( <- .xxxxxx="" be="" changed="" for="" must="" p="" this="" your="">

and execute:

./postinstall

6. When it finishes just type:

exit

and in a minute you should see the login screen of your newly booted OS X Yosemite VM :)

心神不定，输得干净

老话说，心神不定，输得干净
心神不定，输得干净
心神不定，输得干净

bitlocker and TPM

bitlocker and TPM

tpm 1.2 to start with

Manage-bde as cmd line

windows pro and enterprise version

tpm.msc

what's the difference between MDT and ADT

The Microsoft Deployment Toolkit is a unified collection of tools, processes, and guidance for automating desktop and server deployment. In addition to reducing deployment time and standardizing desktop and server images, MDT enables you to more easily manage security and ongoing configurations. MDT builds on top of the core deployment tools in the Windows Assessment and Deployment Kit (Windows ADK) with additional guidance and features designed to reduce the complexity and time required for deployment in an enterprise environment.

The tools available in the Windows ADK include:

• Application Compatibility Toolkit (ACT)
The Application Compatibility Toolkit (ACT) helps IT Professionals understand potential application compatibility issues by identifying which applications are or are not compatible with the new versions of the Windows operating system. ACT helps to lower costs for application compatibility evaluation by providing an accurate inventory of the applications in your organization. ACT helps you to deploy Windows more quickly by helping to prioritize, test, and detect compatibility issues with your apps. By using ACT, you can become involved in the ACT Community and share your risk assessment with other ACT users. You can also test your web applications and web sites for compatibility with new releases of Internet Explorer. For more information, seeApplication Compatibility Toolkit.

• Deployment Tools
Deployment tools help you customize, manage, and deploy Windows images. Deployment tools can be used to automate Windows deployments, removing the need for user interaction during Windows setup. Deployment tools include Deployment Imaging Servicing and Management (DISM) command line tool, DISM PowerShell cmdlets, DISM API, Windows System Image Manager (Windows SIM), and OSCDIMG. For more information, see Deployment Tools.

• User State Migration Tool (USMT)
USMT is a scriptable command line tool that IT Professionals can use to migrate user data from a previous Windows installation to a new Windows installation. By using USMT, you can create a customized migration framework that copies the user data you select and excludes any data that does not need to be migrated. USMT includes ScanState, Loadstate, and USMTUtils command line tools. For more information, see User State Migration Tool.

• Volume Activation Management Tool (VAMT)
VAMT helps IT professionals automate and centrally manage the activation of Windows, Windows Server, Windows ThinPC, Windows POSReady 7, select add-on product keys, and Office for computers in their organization. VAMT can manage volume activation using retail keys (or single activation keys), multiple activation keys (MAKs), or Windows Key Management Service (KMS) keys. For more information, see Volume Activation Management Tool.

• Windows Performance Toolkit (WPT)
Windows Performance Toolkit includes tools to record system events and analyze performance data in a graphical user interface. WPT includes Windows Performance Recorder, Windows Performance Analyzer, and Xperf. For more information, see Windows Performance Toolkit.

• Windows Assessment Toolkit
Windows Assessment Toolkit is used to run assessments on a single computer. Assessments are tasks that simulate user activity and examine the state of the computer. Assessments produce metrics for various aspects of the system, and provide recommendations for making improvements. For more information, see Windows Assessment Toolkit.

• Windows Assessment Services
Windows Assessment Services is used to remotely manage settings, computers, images, and assessments in a lab environment where Windows Assessment Services is installed. This application can run on any computer with access to the server that is running Windows Assessment Services. For more information, see Windows Assessment Services.

• Windows Preinstallation Environment (Windows PE)
Windows PE is a minimal operating system designed to prepare a computer for installation and servicing of Windows. For more information, see Windows PE Technical Reference.

remote desktop client on Android -- Parallels

remote desktop client on Android

MS RDC keeps crashing on me, not sure why the fail at this stage

Parallels remote desktop client can get me to the RDS 2012 R2 logon screen

check Android memory usage

check Android memory usage

https://www.linux.com/blog/5-commands-check-memory-usage-linux

- top works , that's one I still remember

- vmstat

- /proc/meminfo

cat /proc/meminfo

- free -m


- htop  dmidecode not working

install office 365 on android

install office 365 on android

https://products.office.com/en-us/mobile/office-android-tablet

click on word excel , outlook to download

and login to office 365 account to enable extra features

odd jobs I can do ---

odd jobs I can do ---
(source: https://www.care.com/a/101-odd-jobs-you-can-hire-someone-else-to-do-1403241327)

Do weekly grocery shopping runs

Help cook for a big party

Pick up dry cleaning, alterations or clothing repairs

Wash the car

Rake leaves

Write thank you notes

Organize the garage

Set up for a yard sale

Clean the pool and empty the skimmers

Organize photo albums (digital or paper)

Take the trash to the dump

Assemble furniture (no more IKEA instructions for you!)

Put lights up for the holidays

Move furniture

Shovel snow

Mow the lawn

Weed the garden

Clean out the attic/basement

Paint a room

Write out holiday cards

Water the plants

Serve food at a house party

Return unwanted purchases

Fold laundry

Clean the fridge

Organize contacts and email addresses

Sync computer to devices

Organize the pantry

Wash dishes

Return library books -- and get new ones

List unwanted furniture on sites like Craigslist or eBay

Drive kids to soccer practice

Hand out flyers around town for a new business

Prep and cook meals to freeze

Wash the windows

Set up for a birthday party

Scan and digitize your child's artwork

Water the lawn and garden

Help at a child's birthday or pool party

Bake for a bake sale

Clean out the gutters

Housesit while you’re on vacation

Clean up after a party

Prepare a guest room before family visits

Pick-up and deliver anything you need

Set up electronics around the house

File and organize your recipes

Clean the boat

Take your elderly mother grocery shopping

Drive elderly parents to doctor's appointments

Organize the shed

Create and stuff goodie bags

Stock up on essentials at a big box store.

Paint nails and do hair at a party for little girls

Set up for an event (chairs, food table, drinks)

Schedule appointments

Use a "Pooper Scooper" in the backyard

Teach basic computer skills

Organize a library of books

Enter data into an Excel doc

Address and mail cards

Practice dances before an event

Assist with estate sorting after a death

Provide personal shopping

Help with interior decorating

Lead a craft project at a birthday party

Edit a resume

Organize CDs or records

Make reservations

Rehearse a job interview

Set up outdoor furniture after the winter

Hold a sign for an event

Direct traffic in a parking lot during an event

Tend the campfire at an outdoor party

Grill at a barbeque

Edit college essays

Prepare for a wedding speech or a presentation

Play music at an event

Organize a closet

Set up a website or blog

Guide a tour around a new town

Plan a vacation

Organize and file papers

Wrap presents around the holidays

Chop firewood

Clean and organize gardening and yard tools

Bartend at a party

Spread mulch on flower beds

Open and close the pool

Set up yard toys (trampoline, swing set, etc.)

Polish and buff a shoe collection

Participate in a focus group or experiment

Organize office documents

Pick up from the airport or train station

Collect mail, newspapers and packages while you're on vacation

Buy tickets for an event

Pack and unpack after a move

Organize and assist a busy professional

Deliver car for maintenance and inspections

Assist in daily routine after an injury

Respond to letters and emails 

now how do I shutdown the android emulator -- halt

open a terminal

su

shutdown -g0 - ---- does not work

halt worked for me

install Android on a windows notebook

I did this based on

http://www.fitzweekly.com/2016/01/how-to-install-android-marshmallow-on.html

I used a CD-RW to do it instead of using a usb thumb drive

in summary

in windows 7, shrink partition to make room for a 64GB partition for the android install

use Gparted to create an ext4 partition 

use android iso install it to the ext4 partition

move dropbox folder to another location --- like on the same drive as the OS, dont like network locations

move dropbox folder to another location

https://www.dropbox.com/help/89

Please note that Dropbox is not compatible with network filesystems. The problem is that network file systems do not send messages when files change.


 If you decide to move the folder, we strongly recommend choosing a location on the same hard drive as your operating system. Dropbox won't work correctly should the Dropbox folder ever become inaccessible.

十个湾湾九个骗，还有一个在训练; (source internet)

十万呆湾九万骗，还有一万在训练，
　　肯尼亚，菲律宾，遍地都有连锁店，
　　发信息，打电话，誓把中国骗个遍，
　　如果被抓不要紧，遣回台湾继续骗，
　　三一群，俩一伙，全球遍地是团伙，
　　台政客，湾名嘴，寡义廉耻不要脸，
　　保护诈骗为己任，道德水准无下限，
　　十万呆湾九万骗，总部设在台北县。

  

十个湾湾九个骗，还有一个在训练;
蓝绿两党是教练，总部设在立法院；
肯尼亚，菲律宾，遍地都有连锁店;
发信息，打电话，誓把大陆骗个遍;
如果被抓不要紧，遣回台湾继续骗;
三一群，俩一伙，全球遍地是团伙;
台政客，湾名嘴，寡义廉耻不要脸;
保护诈骗为己任，道德水准无下限

   

Azure VM load balancing vs Traffic Manager

http://stackoverflow.com/questions/14546554/azure-vm-load-balancing-vs-traffic-manager

- VM load balancing:

1. Works only with VMs that are in the same region
2. Only does Round Robin
3. Works at the TCP/UDP level, routing traffic between one or more private endpoints that sit behind a public endpoint

Traffic Manager is different in that:

1. It can work across regions
2. It offers traffic management policies other than round robin (e.g. failover, performance)
3. It works at the DNS level, “routing”** traffic between one or more public endpoints that sit behind a common DNS name

You can indeed use the Load Balancer and the Traffic Manager in tandem

(all quotes)