Refresh ENVironment Variables
2022-03-11
The „refreshenv“-CMD/Powershell-Command updates all Environment-Variables e.g. after installing a new software package.Read More →
Windows Client Setup: Disable Teredo/ISATAP
2022-01-19
Both Protocols are absolutely useless for all common use-cases, but enabled – just „providing“ potential security issues. Disable like this:Read More →
Enable ESXi-Host as VNC-Server to access a vSphere-VM remotely
2021-11-25
I prefer accessing VMs using SSH or RDP directly. Sometimes, the IP-Address of the VM isn’t reachable, or protocols for remoteaccess need to be disabled for security reasons. In these cases, if an IP-connection to the ESXi-Server is available this could be an option to use the ESXi hypervisor as VNC-Server to provide access to VM keyboard, video, mouse… Three VM advanced Configuration Parameters need to be set: „password“ is optional, but mRemoteNG as VNC-Client doesn’t work without password set.Read More →
Old Firefox Stable for Admins
2021-11-11
This is not for general usage, but an „admin-Jumphost“-computer/vm which needs to get flash enabled from time to time and is never used for public internet browsing… There it might be an un-dogmatic solution to install the last Firefox 78.15 ESR Release. Find it here: https://ftp.mozilla.org/pub/firefox/releases/78.15.0esr/win64/de/ Disable Auto-Update That’s easy Firefox Settings => Update Settings => „Disable Automatic Updates“ Disable Update-Notification That’s harder – Firefox guys (think to) know better what’s good for their users and they don’t even provide an „about:config“-switch: fail! Add the following registry Key: Add the following 32-Bit DWORD with value set to and restart Firefox.Read More →
Get your Web-Browser under control: Remove PopUp-Windows
2021-10-11
No „do you really want to leave“ windows any more, how nice is that!? https://romanisthere.github.io Read More →
Windows CCM Cache eats diskspace
2021-09-23
Don’t delete the content of „c:\windows\ccmcache\“ manually with the File-Explorer: it is managed by „Windows System Center Configuration Manager (SCCM)“. You need „local Administrator“ access to your computer. Let SCCM to cleanup it’s cache for you: 1) open the „Control Panel“ 2) select „Configuration Manager“ 3) go to „Cache“-Tab 4) click „Delete Files“ Wait a second and the CCM-Cache is empty.Read More →
Cisco IOS – Public-Key User-Authentication
2018-10-20
It’s a two step process to get rid of insecure username/password-authentication. Generate a RSA keypair at your SSH-client btw. Cisco-IOS doesn’t support DSA-keys Configure your network device(s) to assign the (public-)key of this keypair to an user-account This user-account could get privileges from a Radius/TACACS+-Server which could provide access-logs, too. Generate RSA-Key: Windows as SSH-Client I prefer Putty, usually in form of „mRemoteNG“, so i use PuttyGen to generate the RSA keypair. Windows.Start => PuttyGen (x) RSA, 4096-bits are supported, use it [Generate] move the mouse to improve the randomgenerator change the „comment“ – for example replace it by an username add a passphrase –Read More →
Chrome – Using with HTTPs-Proxy
2017-11-13
Security is important. But sometimes it’s important, too, to be productive, for example during work hours. Maybe at a trusted customer site with a restrictive security policy to intercept all HTTPs-Traffic using a customer-provided certificate which never fits to the visited web-sites. Most of my technical research jobs using Google aren’t secret, otherwise I won’t pass them to Google, so HSTS for at least Google-Sites doesn’t makes sense in these cases. Google knows that and invented the no-HSTS-Switch: –ignore-certificate-errors Thank you!Read More →