Saturday, December 31, 2022
Friday, December 23, 2022
Thursday, December 15, 2022
CVE-2022-37971 - Security Update Guide - Microsoft - Microsoft Windows Defender Elevation of Privilege Vulnerability
If your Windows Defender engine version is 1.1.19700.2 or above, you will be save from CVE-2022-37971
Reference:
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-37971
Thursday, December 8, 2022
How to fix failed to login Windows 10 by using Microsoft account
- Use a local administrator to login the machine
- Run "sfc /scannow" in command prompt
- Run "Dism /Online /Cleanup-Image /ScanHealth" in command prompt
- Run "Dism /Online /Cleanup-Image /CheckHealth" in command prompt
- Run "Dism /Online /Cleanup-image /RestoreHealth" in command prompt
- Reboot your machine
- You should able to use your Microsoft account to login now
Reference:
Fix: "We can't sign in to your account" Error on Windows
https://www.youtube.com/watch?v=I3vpwuRoW9I
Tuesday, December 6, 2022
SAN Storage Migration method
| Oracle ASM Storage Migration | Huawei SmartMigration | |
| LUN Type | ASM | Block |
| File System | ASM | Any OS file system |
| Down Time | Zero | Time needed to build logical relationship |
| Fallback Method | Rollback Snapshot | Rollback Snapshot |
| Implementation Complexity | Need Oracle Knowledge | More Steps |
| Automatic Cutover | Yes | Yes |
| Volume Group Information | N/A | Need to export before migration |
| Scenarios | Oracle Database with ASM | All |
| Huawei SmartMigration | Host copying | |
| LUN Type | Block | File |
| File System | Any OS file system | Any OS file system |
| Down Time | Time needed to build logical relationship | The application need to be offline during copying |
| Fallback Method | Rollback Snapshot | Use Source LUN |
| Implementation Complexity | More Steps | Simpler |
| Automatic Cutover | Yes | No |
| Volume Group Information | Need to export before migration | N/A |
| Scenarios | All | File level |
Friday, September 23, 2022
Sunday, September 11, 2022
PMI Talent Triangle update in 2022
PDUs in the "Technical" Project Management category be replaced with "Ways of Working."
PDUs in the "Strategic and Business" Management category will be replaced with "Business Acumen."
PDUs in the "Leadership" category will be replaced with "Power Skills."
For detail:
https://www.pmi.org/certifications/certification-resources/maintain/pmi-talent-triangle-update-faqs
https://gururo.com/impact-of-the-new-pmi-talent-triangle-on-pmp-renewal/
https://www.velociteach.com/2022/05/the-pmi-talent-triangle-is-changing/
Friday, September 2, 2022
SSH connect to Security Onion 2.3.140 error
PuTTY fata error:
Couldn't agree a key exchange algorithm….
Issue: Putty 0.60 cannot connect to Security Onion 2.3.140
Solution: Use Putty 0.76
Wednesday, August 24, 2022
Deepin 20.6 enable full disk encryption
If you enable full disk encryption during the installation, you need to remember the password. Since you will need the password before you able to see the OS login page. It seems like a harddisk password in your BIOS to unlock your harddisk before login to the OS.
Remark: You need to remember your password, otherwise you will lost all of your data. And also, you need to backup your data regularly.
Unless your machine is powerful on CPU and also using high speed SSD, otherwise, you will see the performance impact on the encryption. It is not recommend to enable on the old machine.
Deepin OS 20.6 Support Secure Boot but not support TPM
Deepin OS 20.6 Support Secure Boot but not support TPM on Lenovo X240
Sunday, August 21, 2022
(Kidd IP's blog) 呢個Blog主要目的係希望用黎分享一D Microsoft Azure 同 Microsoft M365經驗
My friend of friend blog which is aims to share the experience of Microsoft Azure and Microsoft M365
Thursday, August 4, 2022
Citrix receiver request you to downgrade suddenly when you reconnect to Citrix Gateway
Situation:
Citrix receiver request you to downgrade suddenly when you reconnect to Citrix Gateway
Workaround:
Reboot your client machine
Environment: Windows 10 21H2
Tuesday, July 26, 2022
Saturday, July 23, 2022
Nutanix HCI vs Sangfor HCI
| | Nutanix HCI | Sangfor HCI | Remarks |
| Hypervisor Support | AHV / vSphere ESXi / Hyper-V | SANGFOR aSV | Nutanix AHV officially certified and support third-party mainstream application or OS (e.g. Oracle / RHEL / Security virtual appliance / Backup software). Sangfor aSV Sangfor Hypervisor aSV Named in the Gartner Magic Quadrant for Hyperconverged Infrastructure, Sangfor's hypervisor able to virtualize x86 servers and create virtual servers based on that, it comes with built-in VM management, backup, high availability, distributed resource scheduling and automated hot add for VM. Ref: https://www.sangfor.com/downloads/sangfor-hci-brochure IDC 2021 Q1 HCI market share in China, Sangfor is 13.3% higher than SmartX and Nutanix in China mainland market. Ref: https://mp.weixin.qq.com/s/4BOErtnuNNW2RgGMKbAQXg |
| HCI Management | Nutanix Cloud Management | SANGFOR Cloud Platform(SCP) | Nutanix not only provide HCI management capability, but also advance features like cloud like operation console that automate IT operation tasks, forecast resource usage and capacity planning…etc Sangfor HCI Management: Sangfor's management HCI and SCP is web-based and visualized, VM resource consumption is displayed in real-time, all of Sangfor's cloud features are unified and able to be managed from the web UI, it also includes comprehensive logs and alerts. Sangfor cloud platform, runs on HCI, supports multi-tenancy, self-service portal, billing, approval workflow customization and automation, also supports management for x86 physical servers, VMware and AWS. Ref: https://www.sangfor.com/downloads/sangfor-hci-user-manual https://www.sangfor.com/downloads/sangfor-scp-user-manual |
| Automation features | DBaaS (Era) / App Self Services / Playbook | IT Automation, Self-Service Portal, Sangfor DMP, security automated response | Nutanix provide different automation features to helps you simplify application management and operation tasks. E.g. DBaaS (Era) – Multiple DB automation and management IaaS – Automated application deployment and management Playbook – Automate IT operations tasks Sangfor Automation Features: IT Automation, Self-Service Portal Sangfor DMP Standardized database service delivery, automated operation and maintenance management, real-time monitoring and data backup protection Ref: https://www.sangfor.com.cn/product-and-solution/sangfor-cloud/dmp Cyber Command correlated security service 1. For scenarios like zombie network, CC works with distributed firewall to quarantine infected cloud host automatically. 2. In ransomware scenario, CC leverages storage snapshot API to take snapshot of the infected VM to minimize loss. 3. For mining scenario, CC sends command to power off/ suspend the mining VM to avoid unnecessary resource consumption |
| Security feature | Network micro segmentation / Ransomware protection / WORM unified storage | SANGFOR aNET/ NFV | Nutanix HCI platform are security ready HCI platform that help you meet certification and standards with ease
Sangfor aNET: 1. Sangfor aNET support network micro segmentation, Distributed firewall, NFV(NFV-NGAF, NFV-SSL and so on). 2. Can integrate with Sangfor NDR solution 3. Built-in WAF protect HCI console |
| Cloud Native Application | Cloud native ready | PaaS-KubeManager | Nutanix are ready for cloud native solutions. It offer k8s deployment and management on AHV. Also certified for Redhat Openshift platform for advance DevOps environment Sangfor PaaS Features: PaaS-KubeManager: Sangfor PaaS KubeManager is based on Kubernetes, it supports built-in Harbor-based image registry, application store, auto-scaling for PODs, multi-cluster management, integrated web interface as well as KubeCtl interface, CSI integration with aSAN, supports 3rd party App Store and standard Kubernetes API. Ref: https://www.sangfor.com/downloads/sangfor-kubemanager-brochure https://www.sangfor.com/downloads/sangfor-kubemanager-whitepaper https://www.sangfor.com/downloads/sangfor-paas-solution---kubemanager |
Thursday, July 21, 2022
McAfee Endpoint Security deteced a file with an unknown reputation pop up after deploy McAfee TIE
User will receive a pop up like the following:
In the McAfee report, you will find a event prompt – timed Out (If user did not respond) and the action taken will be "Adaptive Threat Protection Allowed"
| Event Category | Threat Type | Action Taken |
| Prompt - Timed Out | Trojan | Adaptive Threat Protection Allowed |
Cybersechub announced several threat intelligence (TI) feeds provided by HKCERT, FortiGuard Labs and TrendLabs
Cybersechub announced several threat intelligence (TI) feeds provided by HKCERT, FortiGuard Labs and TrendLabs today (20/7/2022). For members, who is able to subscribe it to put into your firewall and SIEM to automate security and respond. It is for free.
You can automate the integration with your systems via the machine-to-machine (M2M) threat intelligence application programming interface (API) feature. By subscribing the M2M sharing service, you can collect the latest indicators of compromise (IoCs) data in machine readable formats (CSV / JSON / STIX) from multiple sources in one go and correlate the IoCs with the system logs of your organisation in order to react promptly to potential cyber attacks.
Saturday, July 16, 2022
VooV Meeting and WeMeet troubleshooting
If you receive the following errors:
Delete those file at the following:
C:\Users\<Username>\AppData\Roaming\Tencent\VooVMeeting\Global\Database
腾讯会议
C:\Users\<Username>\AppData\Roaming\Tencent\WeMeet\Global\Database
Remark:
The proxy setting and also some saved setting will be removed. (You can backup the proxy setting by backup the file "proxy.dat")
Saturday, July 9, 2022
Nutanix HCI vs SmartX HCI
| | Nutanix HCI | SmartX HCI | Remarks |
| Hypervisor Support | AHV / vSphere ESXi / Hyper-V | ELF / vSphere ESXi/Citrix XenServer | Nutanix AHV officially certified and support third-party mainstream application or OS (e.g. Oracle / RHEL / Security virtual appliance / Backup software). SmartX SMTX software is certified by Citrix and Vmware. And SMTX software is also certified by many domestic vendors, such as UOS OS, Kylin OS, Kunpeng and Phytium. |
| HCI Management | Nutanix Cloud Management | SmartX CloudTower | Nutanix not only provide HCI management capability, but also advance features like cloud like operation console that automate IT operation tasks, forecast resource usage and capacity planning…etc SmartX HCI management: CloudTower provides advanced features including: 1. Cross-cluster migration 2. Content library 3. Self-service portal 4. Resource optimization and recommendation 5. USB device 6. One-click upgrade 7. Active-active cluster 8. Restful API and CLI management 9. VM level or volume level storage QoS 10. Placement group |
| Automation features | DBaaS (Era) / App Self Services / Playbook | No such product | Nutanix provide different automation features to helps you simplify application management and operation tasks. E.g. DBaaS (Era) – Multiple DB automation and management IaaS – Automated application deployment and management Playbook – Automate IT operations tasks Currently, SMTX does not have DBaaS or PaaS products. |
| Security feature | Network micro segmentation / Ransomware protection / WORM unified storage | Everoute | Nutanix HCI platform are security ready HCI platform that help you meet certification and standards with ease
Everoute is an SMTX micro-segmentation product. 1. It supports setting network security policies according to vm labels. 2. It also supports isolating abnormal VMs in the cluster. |
| Cloud Native Application | Cloud native ready | Roadmap only | Nutanix are ready for cloud native solutions. It offer k8s deployment and management on AHV. Also certified for Redhat Openshift platform for advance DevOps environment Cloud native solution is in the roadmap. The new solution will support managing VM and containers (k8s-based) in one platform. |
Friday, July 1, 2022
Fireeye (Trellix) Network Security (NX) failed to reconnect (via proxy to connect Internet) when Cisco Umbrella (OpenDNS) traffic routed to another DC during schedule maintenance
Error message: 'Critical: 1# subscriber:OpenDNS is with http response code:502 details…..502 Bad Gateway
Check Cisco Umbrella Service status: there are schedule maintenance the traffic being re-routed to another DC.
https://status.umbrella.com/#/
Resolution:
Run CLI – 'show health system warning' and show fenotify healthcheck' to check the Details for subscriber status. Fix the subscriber
Run CLI – 'fenotify healthcechk recheck' fter fix the subscribers config and server
Subscribe to:
Posts (Atom)