Tech Tips From a NYC System Administrator
Was playing around with Microsoft 365, got an E3 account for myself. I had set up MFA for obvious reasons. I set up my Exchange mailbox and was trying to add the account to my Thunderbird client. First step was to create an “app” password. You need an app password because Thunderbird doesn’t play nice…
Read More “O365 Account with MFA on Thunderbird Can’t Send Email” »
Photo by Brady Rogers on Unsplash Here is another “PayPal” email. This one purports to be “looking out” for me. All the links in the email (including the “change your password” and “Help & Contact” lead to https://vk.cc/azxnUK. Also note the actual email address (“closerdesign.co”), that has nothing to do with PayPal. Notice how they…
Just a followup to my Medium “Don’t Click On That Link!” Post, here’s an example of a “PayPal” email recently received that is clearly bogus: At first glance, the email looks legitimate. It comes with the official PayPal logo, has the same format as a typical email from PayPal. Also cites a legitimate…
Severe/Critical vulnerability in Windows DNS. Severe enough that DHS CISA is classifying it a level 10 (out of 10). A quick workaround is mentioned in the Microsoft link below: To work around this vulnerability, make the following registry change to restrict the size of the largest inbound TCP-based DNS response packet that’s allowed: Subkey: HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\DNS\Parameters Value: TcpReceivePacketSize Type: DWORD Value data: 0xFF00…
Read More “Windows DNS Server Remote Code Execution Vulnerability” »
Be careful about clicking on links in emails that purport to be from your company helpdesk, CDC, Microsoft, your bank, the IRS, or another company that you deal with. With this COVID19 running rampant, and more people working from home, your work IT support folks may not be readily available to answer your technical questions….
Read More “Don’t Click On That Link! | Avoid Becoming a Phishing Victim” »
I use Linux Mint on Windows using Virtual Box, mainly to use as a sandboxed OS for security testing email attachments, links, and websites. Easy to take a snapshot and revert if I fubar it. I wanted to create a shared folder between host Operating System and Guest Operating system so i can pass along…
Read More “Share a Folder between Host OS and Guest OS in Virtual Box (Windows > Linux Mint)” »
WordPress comes bundled with jQuery and there are themes and plugins that call it. Unfortunately, WordPress does not have a good way to manage the version of jQuery being used, but using the plugin jQuery Manager for WordPress helps. The security folks ran a scan of our website and found it to be using jQuery…
So with all this coronavirus stay-the-heck-home lockdowns, being cooped up at home all day, I decided to come back to my blog… I figured now would be a good time to do and document a nice project that I’ve been wanting to do for some time. I’d like to be able to run an…
Since I’ve been stuck at home with everyone else because of this dang COVID19 crap, I figured I would get back into some blogging. Came back here to WordPress, did an update, and got greeted by this horrendous post editor. All I wanted to do was post and add pictures, and it was giving me…
This blog is a selfhosted WordPress instance. When I initially set it up, I had used the default settings of the permalinks section: After some time, I wanted the post urls to refer to the post title, so I selected “Post name” instead. That’s when all heck broke loose. When clicking on a post from…
