ITGuyLevi @ ITGuyLevi @programming.dev

Posts

0

Comments

271

Joined

2 yr. ago

Just tossing this out there, if your son hasn't seen it yet, show him Portal. I showed it to my son when he was starting to get into computers and its still one of his favorites in college.

Welcome to today's 10,000 (totally not trying to be offensive, learning is great).

TrustedInstaller is actually a service that was introduced with Windows Vista with the intention of preventing modification of system files. It typically is the "owner" of damn near everything in default Windows directories.

A fun way I typically show off the limitations of the system account is by telling people to try to delete a protected resource, like Windows Defender's directories. Then try it again when running with TrustedInstaller's rights and you'll possibly find yourself just staring at your screen thinking about how useful that could be.

That looks like it would only grant a system level cmd prompt. TrustedInstaller has a bit more access.

Edit: I was scrolling back up and realized I responded to the wrong person about the psexec thing. I apologize for any misunderstanding (I'm gonna leave it because its still kind of good info in there and I suck at typing on mobile).

I'm not a fan of psexec anymore, in a lot of environments is blocked or gets picked up by overzealous AV. Might I suggest using using something like NTObjectManager to just spawn a child process of TrustedInstaller?

It works really well, I've never seen it flagged by AV, and it's nice being able to remove shit that system can't. One thing I had a hard time getting away from PSExec for was remote sessions when remote management was turned off. Thankfully you can just invoke-command to call cmd and enable WinRM remotely... Goddamn I hate Windows but love the simplicity to utilized it's "under documented" features.

Had one in a house I rented in the UK, don't recommend, when they break they are not fun to inspect.

I bought my wife a cheap Lenovo laptop when she needed something that supported the "Lockdown" browser (no Linux support). Didn't realize when I bought it what "S" meant (and I've been an IT guy for over 20 years). Got it home and realized what was up, it couldn't even run that browser because it had to be the preconfigured browser from her school and not one from the MS store. An evening of fiddling and a $3 grey market key and she was back onto a normal Windows install.

On the plus side the laptop was only like $299 or $399 and really isn't too bad on the hardware side.

Have you given LMDE a go? All the benefits of Mint, the stability of Debian, all without having to deal with snaps sneaking in.

That's always been my go to, rock solid OS that will just chug along. My son (Arch user) likes to joke that mine is always out of date, but I like to joke that he's the beta tester.

When LMDE was dropped I started recommending that to the Windows Expats I meet because its UI is familiar to them and Debian just runs.

MS support has been known to use that same script when normal activations fail so I guess its approved by someone at MS.

I'm 100% with you. Beyond making coffee and integrating systems I don't have much else (family aside). Sure, I can throw up databases and virtual servers for days, reroute packets and secure connections like its second nature (been doing it for decades), but I feel kind of done with it.

Maybe one day I can sell my house and open a feed store or lawn mower repair shop in the middle of nowhere, but I don't see a career change that doesn't involve a complete reset.

Umm... Not sure if you are serious but knowledge is meant to be shared so... A reverse proxy isn't really for convenience, it sits between two networks and proxies traffic according to specific rules. It also has the benefit of masking the origin server a bit (like its IP) and in a lot of cases can be used as a way to ensure traffic going to a server or service that doesn't support transport encryption actually transverses the internet within a secure tunnel.

At least we are more likely to hear about them than we would for PMS. Quickest way to find vulnerabilities is to have as many eyes as possible on it, if you only let the 20 devs you employ look a lot can be missed. Just my opinion though.

Can't tell from the screenshot (need moar pixels), but that reminds me of the old software that would give Windows XP, 6 workspaces... It was so amazing but would utterly kill my old PIII with 192MB of RAM.

My wife bought an upright dyson back in 2014, 11 years later and it still has great suction with only minor maintenance. I think the hardest repair I had to do was replacing a hard plastic part I broke, the replacement part was pretty cheap on Amazon and it was simple to install.

Definitely made me think about the number of cheap vacuums I went through before it.

I don't know, I've been in some hot places but massive cooling towers tend to radiate a bit more (now I know what I'm reading about today) and a data center without the ability to pump heat outside isn't going to make it a whole day before it's toast.

Not necessarily disagreeing, just curious about how much heat is dispersed by the ones here.

More like a GW of heat... Thankfully I'm sure that will counteract whatever has caused it to be over 80 degrees on my way to work before 0700.

The only air conditioned room at my first duty station was a closet they called a server room... No one wanted to do the computer stuff when the cool toys were on the airstrip.

As for advice... Don't be scared, every adult you meet is faking it to some extent and it took me a long time to realize it. Also, be wary of random advice on the internet lol.

I've been using Jerboa since I signed up, I do have occasions where it can't connect or won't load my subscriptions but not too often. I'm not that heavy of a user though.

Which is reason enough to go with Debian (I have an unreasonable issue with snaps).