Control Flow Guard (CFG) is used to help protect against memory corruption vulnerabilities in .NET software. We can implement Control Flow Guard in Visual Studio 2015 to help protect against these problems in Windows.
Monthly Archives: April 2017
Implement Control Flow Guard in Visual Studio 2015
Posted by Jarrod Farncomb
on April 28, 2017
No comments
The Difference Between su and sudo Commands In Linux
Posted by Jarrod Farncomb
on April 26, 2017
2 comments
“What is the difference between the su and sudo commands?” Is a question commonly asked to those new to *nix based operating systems that we’ll explain and answer here.
In order to discuss the differences, let’s first establish what each command actually does with some examples.
Determine usage scenarios for Encrypting File System (EFS)
Posted by Jarrod Farncomb
on April 24, 2017
1 comment
This post will help you determine usage scenarios for encrypting file system (EFS) in Windows Server 2016 as per the 70-744 objectives. We’ll cover how you can use EFS to encrypt files in Windows.
Configure Windows Defender scans using Windows PowerShell
Posted by Jarrod Farncomb
on April 21, 2017
No comments
We can configure Windows Defender scans using Windows PowerShell as an alternative to configuring them through the graphical user interface. This allows us to integrate Windows Defender features into PowerShell scripts, and configure settings that are not available through the graphical user interface.
How To Disable Specific Package Updates In RHEL/CentOS Linux
Posted by Jarrod Farncomb
on April 19, 2017
No comments
We can exclude a list of packages from being installed or updating from all repositories by specifying that we want to exclude them in the yum.conf file.
This will prevent yum from updating these packages and all future updates will be ignored as we will see here.
Configure Windows Defender using Group Policy
Posted by Jarrod Farncomb
on April 17, 2017
1 comment
While Windows Defender can be configured at a high level through the graphical user interface, we can instead configure Windows Defender using group policy which gives us more control and allows us to roll out the settings to the whole domain from a central location.
Disable SMB Version 1.0 in Windows 10
Posted by Jarrod Farncomb
on April 16, 2017
11 comments
By default SMB version 1.0 is enabled in Windows 10. As this was last needed in Windows XP and Windows Server 2003 it’s quite old, newer versions of SMB are more secure and have additional features. If you no longer need to support these older versions of SMB file shares, it’s a good idea to disable SMB version 1.0, or even remove it completely, as a number of recent vulnerabilities specifically affect SMB version 1.
Disable SMB Version 1.0 in Windows Server 2016
Posted by Jarrod Farncomb
on April 15, 2017
5 comments
By default SMB version 1.0 is enabled in Windows Server 2016. As this was last needed in Windows XP and Windows Server 2003 it’s quite old, newer versions of SMB are more secure and have additional features. If you no longer need to support these older versions of SMB file shares, it’s a good idea to disable SMB version 1.0, or even remove it completely, as a number of recent vulnerabilities specifically affect SMB version 1.
Integrate Windows Defender with WSUS and Windows Update
Posted by Jarrod Farncomb
on April 14, 2017
1 comment
It’s important for Windows Defender to stay up to date so that new known variants of malware can be detected. This can be achieved if we integrate Windows Defender with WSUS and Windows update, which we’ll show you how to do here in Windows Server 2016.
11 rm Command Examples For Linux
Posted by Jarrod Farncomb
on April 12, 2017
No comments
The ‘rm’ command is used to delete files and directories, rm comes from the GNU Coreutils package and should be available by default in Unix/Linux based operating systems.
By the end of this guide you should know how to use rm to remove files and directories in Linux by following these practical examples.