-
-
Thank you for your quick helpful replies.
I was successful in creating the image for the laptop pre-OOBE.I followed @bbearren ‘s tutorials and adjusted the settings accordingly, especially on the PHYlock/VSS tab. I still got the same error on PHYLock but clicked on the dialog to use aggressive locking and was successful.
I used much larger partitions, in Gigabytes, instead of Megabytes. The Image for the pre-OOBE laptop is using 34 Gigabytes. Going forward, my image partitions will be 200 Gigabytes at least as I will be installing applications and their data, and we have documents and other items on our current hard drive.
Thank you again,
1 user thanked author for this post.
-
optimize your files go poof ask me how I know
By David Gerwitz
“Optimize Mac Storage has a dark side. Here’s what you need to know if you rely on it.
It recently became clear to me that there is a serious architectural problem with how Apple manages files on the Mac with iCloud, and that design flaw can lead to extensive data loss.
If you have more data in your iCloud Drive storage than you have space on your Mac’s internal SSD, you stand a good chance of losing files, even if you back up with Time Machine.”
Recommendation:
“So, to be safe, I’m now recommending that you have at least one machine with enough local storage to contain full copies of all your files, which you can then back up using a mechanism other than Time Machine (I use ChronoSync to the Synology NAS). This machine needs to be equipped with at least 2TB internal storage and have Optimize Mac Storage turned off.
It’s an expensive option, but losing your data to Optimize Mac Storage’s completely non-optimal storage architecture can be far more expensive.”
-
Win 10 Pro 22H2 19045.2364
I had the problem with shortcuts and programs disappearing with Security intellingence for Microsoft Defender version 1.381.2140.0.
Restored my C drive Image using Image for Windows.
MS has released a new Microsoft Defender 1.381.2152.0.
I am using Configure Defender. Changed Block Win 32 API calls from Office Macros to Audit.
Now all is good.
B -
-
With Windows 22H2, Windows introduces Continous Feature Releases. Only Enterprise, Education, and domain joined Pro can stop them
See PC world article and Microsoft support article linked and quoted below.
Windows 11 will add new features whenever Microsoft wants
What were formerly called Windows 11’s “Moments” can take place at any time.John Cable, vice president of program management for Windows Servicing and Delivery, said that the next step will be early adopters; once CFRs are ready for general release, they’ll first be deployed in the optional non-security update you’ll sometimes see in Windows Update. The next step in what Cable called a “phased and measured approach” will be to push the new features as “feature experience packs.” They’ll be pushed to your PC automatically, like patches, and are designed with minimal bandwidth and storage requirements.
In a briefing with reporters, Microsoft executives didn’t say if you’ll be able to halt and manage the new CFR updates like you can currently pause feature updates. (Here’s how to pause Windows updates.) Businesses, however, will: the new CFRs will be off by default. (Typically, however, consumers can pause updates for a week or sometimes more.)
Cable said that this technique has been used previously for feature updates on Windows 10, rolling out updates to the user base at large when everything looks good.
What will be in these CFRs? Cable said Microsoft will use everything from blogs to email inbox notification emails to alert you how these new updates will affect your Windows experience. However, “for most [users], they’ll discover the features through natural discoverability within the OS,” he said.
Can the new CFRs reduce Windows bugs?
As every Windows user knows, however, new code means new bugs. Microsoft, however, believes the new CFRs offer in just the opposite: better reliability.It’s not clear that the CFRs are themselves responsible for the improvements in reliability. Microsoft chief executive Satya Nadella allegedly made an infamous blunder in 2014 when he decided to cut a portion of the company’s quality-assurance team, placing the responsibility of finding and fixing bugs on the developers. Coincidentally (or not) Microsoft launched the Windows Insider program that same year, allowing the company to test its beta software with the public.
John Cable, vice president of program management for Windows Servicing and Delivery, said that the next step will be early adopters; once CFRs are ready for general release, they’ll first be deployed in the optional non-security update you’ll sometimes see in Windows Update. The next step in what Cable called a “phased and measured approach” will be to push the new features as “feature experience packs.” They’ll be pushed to your PC automatically, like patches, and are designed with minimal bandwidth and storage requirements.
In a briefing with reporters, Microsoft executives didn’t say if you’ll be able to halt and manage the new CFR updates like you can currently pause feature updates. (Here’s how to pause Windows updates.) Businesses, however, will: the new CFRs will be off by default. (Typically, however, consumers can pause updates for a week or sometimes more.)
Cable said that this technique has been used previously for feature updates on Windows 10, rolling out updates to the user base at large when everything looks good.
What will be in these CFRs? Cable said Microsoft will use everything from blogs to email inbox notification emails to alert you how these new updates will affect your Windows experience. However, “for most [users], they’ll discover the features through natural discoverability within the OS,” he said.
Choice and control for enterprise and education customers¹
Windows innovations are designed to deliver value to everyone. We recognize that enterprise and education customers might have different requirements for when they install updates based on planning and process requirements in their organizations. To provide the choice and control, Microsoft will:
- Ship features off by default and create a single policy (GP/MDM) that allows enterprise customers to turn on these features. This will be done as a set, and not for individual features or individual releases.²
- Offer documentation on these features and how to optionally turn them on (via the single policy or their own dedicated GP/MDM policy).
- Deliver features and enhancements ON by default in the next annual feature update. Enterprise and education customers can continue to choose when to deploy new annual feature updates based on their schedule needs.
¹Organization-managed devices using Windows 11 Enterprise and Education editions and domain-joined Pro editions.
²This policy will control features introduced after November 2022.
2 users thanked author for this post.
-
-
-
I have switched from using Norton 360 Deluxe to using Windows Security with Malwarebytes premium, based on Susan’s recommendation. I think Windows Security provides deeper protection than third party tools can. It also has 100% rating from AV-Test:
I have added additional folders for Windows ransomware protection and turned on Core Isolation (after updating software and removing drivers that interfered). I also use ConfigureDefender https://github.com/AndyFul/ConfigureDefender per Susan’s recommendation in ComputerWorld to allow for Attack Surface Reduction. For Windows security, what we have is a failure to communicate
“One option is to use third-party GitHub tools such as “Configure Defender” to download a zip file, extract it and run ConfigureDefender.exe. Once it’s launched, scroll down to the Exploit Guard section. In a recent blog post, Palantir details the settings it deems helpful for protection without slowing your system:
- Block untrusted and unsigned processes that run from USB.
- Block Adobe Reader from creating child processes.
- Block executable content from email client and webmail.
- Block JavaScript or VBScript from launching downloaded executable content.
- Block persistence through WMI event subscription.
- Block credential stealing from the Windows local security authority subsystem (lsass.exe).
- Block Office applications from creating executable content.”
The Security Suites have good firewall interfaces, and automatically decide what to block outgoing and incoming. Windows Firewall will automatically be active when not using Norton or third party firewall, however the Windows Firewall interface does not help you set up rules as needed and is not a good user interface.
Through the AskWoody Lounge, I learned about the free MalwareBytes Windows Firewall Control interface Windows Firewall Conrol which allowed me to have good firewall control without Norton me to switch from Norton.
-
I enabled Application guard for Edge. I have Win 10 Pro, no Office applications.
I found that when you use Edge with Application Guard, you cannot use your VPN, so we stopped using Application Guard. You can have more security with Application Guard, or privacy with VPN but not both.1 user thanked author for this post.
-
Viewing 11 replies - 1 through 11 (of 11 total)
Author
Viewing 11 replies - 1 through 11 (of 11 total)
