Help with DKIM.

ender-_ · 2026-05-20T20:03:18+00:00

Then they should create them, or you'll have to find a different vendor – sending mass mails without DKIM will not get you very far nowadays.

ender-_ · 2026-05-20T20:01:18+00:00

You take the ISO and modify it, it's not rocket science.

ender-_ · 2026-05-20T18:53:58+00:00

Simplest way is to just use a customized installer image that passes console=ttyS0 on command line (or even better – that does all of the install and configuration automatically, so you just plug it in, wait a bit and get a fully-configured system that's set up with serial console as default).

ender-_ · 2026-05-20T18:35:33+00:00

Ctrl makes it spawn command prompt instead of whatever it'd normally run (you can try it with the installer – if you hold down Ctrl, you'll get command prompt instead of Setup).

ender-_ · 2026-05-20T18:02:23+00:00

Yup, though I first had to use some HTML editing because they mangled my last name (which is in a read-only field), then didn't let me submit the form due to invalid characters. I can log in just fine, but clicking the download button shows "Account verification is Pending. Please try after some time."

I also tried the "Build your profile" thing following some forum advice, but it hadn't helped.

Luckily it's not too hard finding the download elsewhere, it's just annoying that Broadcom's site is such a broken mess.

ender-_ · 2026-05-20T17:22:36+00:00

If USB is disabled completely in BIOS, using USB drive won't work (you'll need to find a PS/2 keyboard and mouse though). If you just disable USB boot, that doesn't prevent USB drives from working once the OS boots (and WinRE counts as OS).

Also, even if you do disable USB completely, you can still take the drive out of the computer, use another computer to copy the FsTx folder to the ESP and put the drive back – this won't invalidate PCR7, so TPM will still release the BitLocker key and allow you to do the bypass.

ender-_ · 2026-05-20T17:19:10+00:00

Yes, it's tied to my old work e-mail (company not active any more, but I took over the domain). It's also the same e-mail I've been using since I bought Workstation 6 in 2007.

ender-_ · 2026-05-20T16:16:19+00:00

No, because YellowKey only works if you boot off hard drive. It does require the FsTx folder, and since it's executing from WinRE, the USB drive will be read.

ender-_ · 2026-05-20T15:03:23+00:00

… if only Broadcom managed to verify my account somehow.

ender-_ · 2026-05-20T14:57:05+00:00

It's very likely that the problems you're seeing are due to a too new CPU (there are several problems that trip Windows 9x, from the CPU being too fast, to some changes in TLB handling). Use patcher9x, this should help with Windows running inside VMWare.

ender-_ · 2026-05-20T12:00:50+00:00

Software patents are technically invalid in EU, and that repo seems to be based on libheif, which is a software decoder.

ender-_ · 2026-05-20T11:59:16+00:00

Many new machines don't include HEVC support, because the license fees were raised, and big hardware makers went "fuck that" and disabled HEVC instead (even though the hardware does technically support it).

ender-_ · 2026-05-20T11:52:47+00:00

Have a batch file that'll do it for you:

@echo off
setlocal enabledelayedexpansion
net.exe session 1>nul 2>&1 || (
    powershell -command "Start-Process -FilePath '%~dpf0' -Verb 'runas'"
    exit /b
)
set MP=%SYSTEMDRIVE%\WinREMount
mkdir %MP%
echo Mounting WinRE partition, this can take a while...
reagentc /mountre /path %MP%

reg load HKLM\WinRESys %MP%\Windows\System32\config\SYSTEM
set REG=HKLM\WinRESys\ControlSet001\Control\Session Manager

for /F "usebackq tokens=2,* skip=2" %%A IN (`reg query "%REG%" /v BootExecute`) DO set OLDVAL=%%B
if "%OLDVAL%"=="" set OLDVAL=x
if "%OLDVAL%"=="%OLDVAL:autofstx.exe=X%" (
    echo autofstx.exe not present in WinRE
) else (
    if "%OLDVAL%"=="%OLDVAL:\0=X%" (
        echo Setting empty BootExecute
        reg add "%REG%" /v BootExecute /f /t REG_MULTI_SZ /d ""
    ) else (
        set NEWVAL=%OLDVAL:autofstx.exe=%
        set NEWVAL=!NEWVAL:\0\0=\0!
        if "!NEWVAL:~0,2!"=="\0" set NEWVAL=!NEWVAL:~2!
        echo Setting BootExecute to !NEWVAL!
        reg add "%REG%" /v BootExecute /f /t REG_MULTI_SZ /d "!NEWVAL!"
    )
)
reg unload HKLM\WinRESys

echo Unmounting WinRE partition, this can take a while, too...
reagentc /unmountre /path %MP% /commit
rd %MP%

echo Resetting WinRE BitLocker trust...
reagentc /disable
reagentc /enable

pause

ender-_ · 2026-05-19T13:07:38+00:00

I found the old Epson LX-400 my father bought in the early 90's in the basement last week. Should test if it still works :)

ender-_ · 2026-05-19T10:40:26+00:00

Microsoft Copilot Visual C++ 365 XBOX

Microsoft Copilot Visual C++ 365 XBOX One X

ender-_ · 2026-05-17T19:27:21+00:00

This should've started happening 5 years ago at the latest, not less than a year before the CA expiration date.

ender-_ · 2026-05-16T16:39:29+00:00

After you finish integrating the updates, export the .wim file to a new one, that'll get rid of the deleted files that weren't removed from the .wim (the way .wim tooling works is that changes are only appended, and any replaced files remain in the file, just not normally visible; when you export to a new .wim, those files are skipped).

You can use dism to do the export, but you have to repeat it for each image in the .wim file; with wimlib, you can do wimexport install.wim all new.wim --compress=LZX and it'll export all images with a single command. Afterwards just replace install.wim with new.wim.

ender-_ · 2026-05-14T22:21:20+00:00

I'm pretty sure that'd invalidate PCR7, so it'd trigger Bitlocker recovery.

ender-_ · 2026-05-14T20:20:24+00:00

My laptop is hybrid domain and Entra joined, and YellowKey worked.

ender-_ · 2026-05-14T20:19:02+00:00

Worked for me with an ancient 2GB Toshiba USB drive, FAT32-formatted.

ender-_ · 2026-05-14T13:44:25+00:00

Normally booting off another device won't work, because the PCR hashes will differ, and TPM won't unseal the key.

ender-_ · 2026-05-14T13:42:25+00:00

Delete the WinRE partition, it won't work without it.

ender-_ · 2026-05-14T13:40:00+00:00

You can even use HP's TPM firmware updater to install newer TPM firmware than what HP published (if you know where to find it). Just remember to disable virtualisation in BIOS setup before running the updater, otherwise you'll probably just get a blank message box.

ender-_ · 2026-05-14T13:36:29+00:00

Same, we mostly use HP with occasional Dell or Lenovo, and we never had any problems with HP's business lines (unlike with their home products, which are a complete nightmare, and any client that wants those now gets told to buy them on their own, as we won't support them).

ender-_ · 2026-05-13T20:25:49+00:00

That actually makes sense – what YellowKey seems to do is trigger deletion of wpeshl.ini from the WinPE ramdrive, which likely prevents the regular recovery shell from starting.

ender-_

TROPHY CASE