A short post for my colleagues at the customer support and anyone else wondering the same: how to turn off the FTP over TLS default in FileZilla?
Continue reading “How to turn off the TLS default in FileZilla?”
Disable SMB1 using Group Policy Administrative Templates
Group Policy Central writes about how to disable SMB1 using Group Policy Administrative Templates. This makes it easier for you to disable SMB1 to prevent WannaCry throughout your entire Active Directory domain(s). Here’s how…
Continue reading “Disable SMB1 using Group Policy Administrative Templates”
WsusPool keeps crashing: stops again and again
Sometimes you find your WSUS server keeps crashing over and over again. WSUS is unavailable and/or the WSUS management console hangs. When you start to investigate as to why Windows Server Update Services crashes, you’ll notice the following error message being logged in the HTTPErr log files:
Continue reading “WsusPool keeps crashing: stops again and again”
Merge multiple files into one new file in Windows
A quicky: if you need to merge multiple text files into one new file in Windows, you can use the copy command in cmd.exe, and here is how:
Continue reading “Merge multiple files into one new file in Windows”
3 Important security measurements for Windows Server & IIS
Windows Server security: When you have just installed your new Windows Server, with or without IIS as web server, it is important to take a few extra security measurements. Securing your (web) server is important to keep hackers out and your data safe. Here are some steps you can take to secure and harden your Windows Server (IIS) web or file server.
Continue reading “3 Important security measurements for Windows Server & IIS”
How to disable SMBv1 in Windows 10 and Windows Server
The WannaCry/WanaCrypt0r worm exploits a vulnerability in Windows Server Message Block (SMB) version 1 (SMBv1), and it spreads like wildfire. It is urged to disable SMBv1 in your Windows variant (Windows 10, 8.1, Server 2016, 2012 R2), and here is how if you haven’t done so yet.
Continue reading “How to disable SMBv1 in Windows 10 and Windows Server”
How to detect ethernet network speed in Windows
Ideal for Windows Server Core or Nano: Detect the ethernet network speed using PowerShell or WMI is ideal for Windows Server Core or Nano. If you ever need to lookup the speed of your ethernet network card in Windows on the command-line, use one of the following WMIC commands on your PowerShell prompt:
Continue reading “How to detect ethernet network speed in Windows”
DisableNSRecordsAutoCreation with Dnscmd
This post explains how to restrict automatic NS resource record registration in Windows Server DNS using Dnscmd. This prevents Windows Server DNS to automatically create NS records for zones that it hosts on the server.
Penetration Testers’ Guide to Windows 10 Privacy & Security
Andrew Douma, a vendor-neutral consultant, writes in Penetration Testers’ Guide to Windows 10 Privacy & Security:
Continue reading “Penetration Testers’ Guide to Windows 10 Privacy & Security”
Enable NTFS long paths in Windows Server 2016 by Group Policy
Windows Server 2016 was finally released last week, meaning we can finally lift the idiotic 260 characters limitation for NTFS paths. In this post I’ll show you how to configure the Enable Win32 long paths setting for the NTFS file system, through Group Policy (a GPO).
Continue reading “Enable NTFS long paths in Windows Server 2016 by Group Policy”
Intrusion Detection with Windows Event ID’s
Found via cyber-ir.com: This paper is the best I have ever read on how to build IOC’s with Windows Event ID’s. I highly recommend you to read it, it contains very useful information and some very interesting behavioural examples of attacker activity. If you are looking to enhance your detection in your core network this is the document!
Continue reading “Intrusion Detection with Windows Event ID’s”
5 Extra ways to clean up disk space in Windows Server
Disk cleanup in Windows Server 2012 (R2) using DISM is one of the most popular posts here on Saotn.org. It’s also valid for Windows Server 2016. So apparently, disk space usage is an issue on Windows Server. And that made me wonder: what more ways to clean up disk space in Windows Server are there?
Continue reading “5 Extra ways to clean up disk space in Windows Server”
Windows Server 2016 licensing model
Mark O’Shea writes on TechNet that the licensing model for Standard and Datacenter were changed with Windows Server 2016, and he introduces the changes. The information is pulled from the Windows Server 2016 Licensing Datasheet, and if you need more details you can also download the Windows Server 2016 and System Center 2016 licensing FAQ. Spoil alert (tl;dr): you’ll be paying on a core-basis, instead of per CPU.
KB3157663: Cumulative Update for Windows Server 2016 Technical Preview 5
When you’re installing Windows Server 2016 Technical Preview 5, don’t forget to install KB3157663 before installing any server roles, features, or other products. Installing KB3157663 prior to any other software will fix an error with DISM and Install-WindowsFeature, error code 0x800F081F:
Continue reading “KB3157663: Cumulative Update for Windows Server 2016 Technical Preview 5”
KMS Migration from 2008 R2 to Windows Server 2012 R2 and KMS Activation Known Issues
How to migratie an Windows Server 2008 R2 KMS to Windows Server 2012 R2, for volume activation of Microsoft products? On a new KMS server? You don’t, apparently there is no Windows Server 2008 (R2) KMS to Windows Server 2012 R2 migration. There is no way to automatically transfer your KMS role along with the products its activating to another server. Luckily Charity Shelbourne wrote up a handy how to for this task.