@JaredBusch

Everything works fine now.

The issue was a DNS resolution for devices within the LAN. I added an A record on the router for split dns. That solved the problem.

Thank you so much for your support

@Pete-S said in What's behind the scenes of Windows network discovery?:

Just found out with some network sniffing that Win 10 is not using DNS to find the IP for hostnames. It's using multicast queries. WTF.

First something called LLMNR (Link-local Multicast Name Resolution). If you ping xyz, it will ask for xyz.

Secondly it will use mDNS (multicast DNS). If you ping xyz, it will ask for xyz.local.

Well, I found out why.

If you don't have a DNS suffix in the network settings, Win10 will use multicasting to try to resolve a hostname that doesn't have a top-level domain suffix (such as xyz).

If you have a DNS suffix in your settings, it will use standard DNS.

@Grey said in Powershell countdown on servers?:

@Pete-S said in Powershell countdown on servers?:

@Grey

If you wanted to show the progress % you could do something like this as well:

$quantity = $systems.count $i = 0 foreach ($server in $systems){ //stuff $i = $i + 1 $progress = 100 * $i / $quantity }

Another trick is to not count it at all, just print a dot (".") for each iteration.
.........

Tested and this needs a try/catch for a divide by zero. The math is also off.
9d767202-8760-4564-a5fa-0f1adc903aea-image.png

You probably had --$quantity still in there. It decreases $quantity by one each time it executes.

But use @Obsolesce example.

@dbeato said in Outlook failing to open from multiple customers...:

@Dashrender said in Outlook failing to open from multiple customers...:

@WLS-ITGuy said in Outlook failing to open from multiple customers...:

@Dashrender said in Outlook failing to open from multiple customers...:

@dbeato said in Outlook failing to open from multiple customers...:

Fix for this is to revert to an earlier version of Microsoft. I have a .bat file here

https://github.com/dbeato/scripts/blob/master/Office 365/Fix-Outlook-Restart.bat

Do you know - does this only affect O365 Office users?

So far Windows O365 users are the only ones that are chirping to me. I do have two users who aren't on O365 who aren't complaining...yet.

Right - I'm 100% non O365, and no chirps yet - WSUS is used here, and those office updates are approved to push.

What Office version? Office Click-to-Run would be affected, Office 2013 and up would have been affected.

I have zero click 2 run - I'm all office 2016

@Dashrender said in Force Microsoft Store apps to update:

@Obsolesce said in Force Microsoft Store apps to update:

@JaredBusch said in Force Microsoft Store apps to update:

I've been hitting a bunch of machines lately that need updated and one thing I noted was that the Store apps were seeming to never update by themselves while I had the device.

I could manually log in and open the Store app, and then click through to the updates and then tell it to update. But man that is a pain..

A little searching and I found this gem. Execute this, it takes a while to return, and then the Store apps begin to update in the background immediately.

Get-CimInstance -Namespace "Root\cimv2\mdm\dmmap" -ClassName "MDM_EnterpriseModernAppManagement_AppManagement01" | Invoke-CimMethod -MethodName UpdateScanMethod

Why don't you just turn on the update apps automatically option?

There's also a policy setting.

I thought that was ON by default?

I assume it is. Because systems do eventually update. The key there is eventually....

Sec+ is good to have. But important to note unlike a CISSP, it will do essentially nothing for a career. but it's a nice to have.

@dbeato said in Patch all your Windows DNS servers - CVE-2020-1350 - CVSS score of 10:

@pmoncho said in Patch all your Windows DNS servers - CVE-2020-1350 - CVSS score of 10:

Just wondering - Is anyone seeing a patch for 2019 with a reference to the KB article?
Checked yesterday, last night and this morning. No update that I can see.

Currently performing the workaround.

c46cc947-cad4-4bfc-877c-dbd1c1ddfd16-image.png

https://www.catalog.update.microsoft.com/Search.aspx?q=KB4558998

Thanks. Forgot about the update catalog.

@coliver said in How to download Win 10 Enterprise ISO.:

@JaredBusch said in How to download Win 10 Enterprise ISO.:

@Dashrender said in How to download Win 10 Enterprise ISO.:

or you could just download it from VLSC.

But the gets around having to deal with signing in to VLSC which sucks balls most days.

If it even works in a modern browser.

If it even works. Full stop.

I have the 2nd and 3rd one along with some other models. They work as advertised. I really like how Samsung and HPE have made some excellent chromebooks without breaking the bank.

Online tuition takes place via a programme called Zoom. it is very quick and is much more stable than Skype. I use a variety of online whiteboards, including Bitpaper, Openboard and Zoom's own whiteboard. I also use a document camera to demonstrate the use of manipulatives during the lesson. To enable the student to write more easily on the whiteboard, you may wish to use a graphics tablet such as those produced by Wacom or XP-Pen. I am more than happy to give a 15 minute demonstration to parents/students who are thinking about taking up the online option.

Here is an example of a relatively inexpensive XP-Pen Star G430 graphics tablet:

https://www.xp-pen.com/product/46.html

I would do it, it never hurts. Hey it might be positive and negative. Someone can learn how great a job someone did or how poorly a job was done. The point is to make sure it is documented.

https://github.com/ElasticHQ/elasticsearch-HQ

So I don't believe it handles snapshots yet, but it still looks like a pretty useful tool that I have been meaning to try out for people who don't want to manage through the API.

I wanted to make sure I followed up and let you all know that we confirmed that there was no bug. There was a propagation delay that impacted @JasGot which caused it to appear that the 10 digit vs 11 digit input mattered.

@Obsolesce said in Open Source hosting control panel - to host real websites for learning and fun!:

@scottalanmiller said in Open Source hosting control panel - to host real websites for learning and fun!:

@openit said in Open Source hosting control panel - to host real websites for learning and fun!:

@scottalanmiller said in Open Source hosting control panel - to host real websites for learning and fun!:

I'd heavily recommend not doing this at all. You get such a better, simpler system but just doing... nothing. Web hosting is easy, control panels are hard.

Sorry, not clear, could you elaborate?

Web hosting is a pretty basic task. Like... you copy files, you copy the database... voila. That's all you really do. It's all super easy stuff. Using a "panel" adds a lot of complication that you have to manage the panel and learn how it works - all stuff you could just skip by just doing a normal web server without the panel.

I've never seen a panel that made things easier, only harder. And it limits you a lot, generally they don't work with all of the pieces that you'd want to use so you end up with a half assed web server, with a heavy panel on top, that's more risky and more work, with no benefits.

I thought he was talking about something like how web hosts use cPanel. I like Vesta Control Panel, but there are some others such as CentOS Web Panel and ISPConfig. They all do everything.

That's what I mean, too. It makes using a web host so hard.

@scottalanmiller said in Exchange 2013 - User deleted all emails - recovery options:

@syko24 said in Exchange 2013 - User deleted all emails - recovery options:

Just another thought, I backup the server with Veeam Agent for Windows (free). If I installed Veeam Backup and Recovery, can I read the contents of my Agent backups? Then I could potentially use Veeam Explorer for Exchange to extract the contents?

that should work.

Just a follow up, I was able to install Veeam Backup and Replication (Community) and imported my Veeam Agent for Windows (Free) in to it. I was then able to use Explorer for Exchange to mount the backup file and export the emails from the user to a PST.

This week was a learning experience.

#!/usr/bin/env bash source "/home/datatransfer/company/master.sh" encryptedFolderPath="/home/datatransfer/company/in /" decryptedFolderPath="/home/datatransfer/company/out" archiveFolderPath="/home/datatransfer/company/archive" for i in $(ls $encryptedFolderPath.pgp) do gpg --batch --passphrase $PASS --list-only --list-packets --yes $i | grep -q "encrypted" if [ $? != 0 ]; then echo "$i is not a pgp file" continue fi v=${i%.} encryptedFile="$v" fileName=${encryptedFile##/} timeNow=$(date +%Y%m%d%H%M) extension=${fileName##.} newFileName=${fileName%.*} fileWithTimestamp="$newFileName""_""$timeNow.$extension" gpg --batch –passphrase $PASS --yes --decrypt $i > $decryptedFolderPath/$fileWithTimestamp ls -lr $decryptedFolderPath/$fileWithTimestamp if [ $? != 0 ]; then echo "$fileWithTimestamp is not a readable file" continue fi mv $i $archiveFolderPath done

Thanks to @scottalanmiller @stacksofplates and my friend Erik

@gjacobse said in Parental Control options: AD, LDAP, piHole, Other:

Was asks recently about what options he could look at to try to keep his kids on task with the up coming school year and the high likelihood of having to contin he with non-traditional instruction, ie: classes at home.

His first though was of course some kind of Domain; costly and hardly worth setting up for a maximum of five computers.

Another option that came up was LDAP - which I will admit I dont have much experience with.

And then there is piHole, knowing that this is a great tool to blacklist ads, and harmful sights, but could likely be a simple solution.

He’s recently admitted that one of the kids has managed to hack a cell phone to by-pass some or many of the parental settings that had been set.

Costs are of course a factor ,...

We have a domain here at home. But then, I'm in the industry. 😉

We also have a SonicWALL TZ300 set up with security and site monitoring.

DC DNS is set to check OpenDNS (we have a subscription). Root Hints are disabled.

DC provides DNS for the home network. Firewall is set to allow TCP/UDP 53 from the DC only (this is default for client setups anyway).

This catches about 90% of everything that could possible. OpenDNS helps with the search stuff too. It filters out stuff they should be seeing.

We have Microsoft Family set up on all of the kid's machines.

NOTE: Tech companies have deemed themselves owners of our kids. How? When the kid turns 13 they can turn off monitoring. I was right p*ssed off when I figured that out as I wasn't getting parental reports for my eldest son. That changed RPQ.

Use Microsoft Parental Monitoring on all Windows devices. It is helpful though not perfect. We schedule device usage time.

RULE: No. Devices. In. The. Bedroom. PERIOD
RULE: All device work must be done such that the screens face public.
RULE: Devices are Tools not Toys (No gaming here. Go outside, Build something, Clean something)

Note: We home school. Our main goal was, and is, to give our kids the best d*mned education that we can versus the cookie cutter factory schools that teach closet Marxism/Socialism here. Eldest daughter is an amazing artist at 16, 13yo son is into REVIT, Fusion 360, SolidWorks, stress engineering and more, while our youngest just is. They are turning out great.

There you go
http://nitindupare.blogspot.com/2012/08/uninstall-kms-host.html

@JaredBusch said in Vyos Configure DHCP Server:

@EddieJennings his second error is related to DNS.

This is a working DNS setup.

set service dns forwarding cache-size 150 set service dns forwarding listen-on eth7 set service dns forwarding listen-on eth7.2 set service dns forwarding name-server 1.1.1.1 set service dns forwarding name-server 8.8.8.8 set service dns forwarding options server=/domain.local/10.202.0.21 set service dns forwarding options server=/domain/10.202.0.21

Correct. I gambled from his title the immediate interest was DHCP. I lost. 🙂

@AshKetchum said in Dish Network Alternative:

So our Dish network is down and not sure when it will go back. We are outside US, our TV system diagram is like this --- DISH > Encoder (HDMI to IP) > Enseo System/IP network > STB > TV. SInce our source channel Dish is down, can i use roku as source channel? is there a roku channel that continuously going to play movies?

We cut the cord over a decade ago.

Just drop it.

Cache a set of Blu-Ray movies and series that are worth watching.

Put the money saved away.

Take a vacation with it.