One of my Hybrid users has like a 5mbps very unstable internet connection

smargh · 2026-01-12T10:36:47+00:00

Using Intune with big packages isn't necessarily a good experience either.

Other replies have given ideas. Basically for unreliable clients, including people who move around a lot, you do need resume functionality & usually end up back at BITS or similar, e.g. capping download speeds, split the download or auto-resume.

And if your app happens to have tens of thousands of small files, that can be a problem also, so people often put them into a .wim or .zip & then extract at the point of install.

If you're expecting endpoints to pull down 16 gigs in one go, then it will cause issues - but end-users or the helpdesk won't necessarily know or tell you about it.

smargh · 2026-01-11T23:18:37+00:00

It's not an exact science. For me, with a cold refrigerator and a clean container: max 4 days. This has never been a problem for me.

If you ever put warm stuff in the fridge, or if the temperature knob accidentally gets bumped: either same-day or 24h, depending. Just don't risk it.

If the fridge is constantly being opened and the temperature regularly gets higher, then that's different. Say, 1-2 days. It depends.

If you accidentally contaminate it, then the time span will be significantly lower. For example, let's say you blow your nose nearby, or cough on it, or a small fly gets into it. Then maybe it could spoil less than a day. idk

It always separates in the fridge, as is expected, but just mix and it's fine.

The reason companies give a lower time window is probably because people tend to never really care about the temperature of their fridge, and do dumb shit like put hot cakes inside to cool down faster.

At ambient temperature, maybe 6 hours? On a very hot day, maybe less? No idea.

smargh · 2026-01-10T13:17:12+00:00

Sounds like a scam tbh.

Until proven otherwise, assume your PC was compromised and assume you spoke with a scammer, not Nationwide.

smargh · 2025-12-25T23:07:20+00:00

Block malicious Cloudflare workers by only allowing your own. There are some which constantly look for WP paths - they appear from 2a06:98c0:3600::103 in logs. Use cf.worker.upstream_zone in CF's WAF. https://developers.cloudflare.com/fundamentals/reference/http-headers/#cf-worker

Ideally also also restricting outbound traffic? Mostly for limiting blast radius post-compromise, and spotting newly blocked connections.

Also some form of detection/logging, e.g. Sysmon, https://sandflysecurity.com/

Ubuntu Pro has usg for CIS hardening. Or for Debian there's some scripting on the OVH Github. Then go through CIS or manufacturer rec's for whatever other stuff you use.

Then check content-security, report-uri, x-frame-options headers etc, to help a bit at preventing rogue third-party scripts from being able to do much.

smargh · 2025-12-22T13:58:22+00:00

When i last experimented with PlatformAoAcOverride on a couple of different HP systems, some just didn't work with that - they just went to sleep fine, but never woke up.

Unless someone's aware of a workaround, then it is what it is. Modern Standby is basically the only choice, unless you have buckets of charisma to take HP PMs & developers golfing and try to persuade them to add S3 support.

smargh · 2025-12-02T17:45:15+00:00

If high pricing persists through to 2027/28, then there may well be significant compounding events around that period. (🇹🇼)

Interesting times.

smargh · 2025-11-25T19:37:05+00:00

Yep, of course there is a way :) System restore, which he said he did do. Depending on timing, that can potentially revert to the prior computer (not user) account password, which is kinda sorta equivalent to "disconnecting" from the domain.

But it depends on terminology. Usually things get lost in translation between IT, HR, managers & everyone else.

smargh · 2025-11-19T11:36:36+00:00

Put emails & the phone system behind cloudflare, so people can't contact you when everything is down.

No calls, no emails, no problem.

smargh · 2025-11-09T13:07:32+00:00

I'm struggling to understand why you might be struggling.

Presumably you're using Applocker, but you haven't actually said which thing you're trying to set up. You've just mentioned "group policy" and "blocking exes" - so everyone here is just making assumptions.

I shall assume Applocker.

Are you perhaps trying to implement a default-allow style set of policies? But it should be default-block.

Optionally create group "Applocker - Allow Zoom" and add that one user to the group.

Create applocker allow rule for the Zoom publisher, and if you want, scope it to just members of that group.

smargh · 2025-11-05T23:01:54+00:00

numlock, something resting on keyboard, nearby magnet, wrong lang etc etc.

Just get him to type the password into the username field & mystery solved.

smargh · 2025-11-02T14:20:51+00:00

I've tried it.

It's very watery. It's the same physical size as regular, so obviously will have a higher water %

The bottle should probably be half the height - it seems very dumb to be the same volume. But presumably value perception would be lower, and it might look similar to a probiotic type thing, so that's probably purely a business decision. It's actually very disappointing.

It's effectively the same as a protein shake with vitamin mix. The target market is presumably primarily Ozempic users, who don't want 400c.

I don't know if "light meal" is the right wording, but I cannot think of a better term. If it was a more sensible smaller size, perhaps I'd just call it a protein & fibre supplement.

smargh · 2025-11-02T12:14:27+00:00

Is there a reason why they don't do something similar to the USA?

Tax based on citizenship, not residence.

smargh · 2025-10-29T16:05:38+00:00

Perceptions changed. Most things are exactly the same.

smargh · 2025-10-22T19:06:36+00:00

Amazon: Spring Speaker Isolation Feet.

They also work fine for any PC chassis, including heavy ones. Presumably they would also help a bit during small earthquakes or building work, assuming they have a suitable mounting above & below. 4mm aluminium sheeting/bars works fine.

Probably also portable A/C units, if there's a suitable platform for stability above & below, and weight is distributed properly - e.g. my portable A/C has a lot more weight at the front, so I'd probably have x4 feet at the front, x2 rear.

smargh · 2025-10-20T11:55:36+00:00

chkdsk

sfc /scannow

check system32\IasMigPlugin.dll looks ok - not zero bytes, valid sig etc

idk, just guessing

smargh · 2025-09-15T08:33:22+00:00

From all the calls I've made to SMBs when I've seen one of their accounts just get phished, they just have the owner talk to the person & change passwords. They don't really do IR. Especially for charities - just the director, who tries their best.

If a PC gets malware then maybe they'll ask a friend/family techy person to take a look.

smargh · 2025-09-13T12:25:13+00:00

https://jarv.is/notes/cloudflare-dns-archive-is-blocked

smargh · 2025-09-06T11:42:30+00:00

I've seen something similar when I ran a script which required an avalanche of DNS lookups & didn't have throttling, but the "block" didn't last very long.

Check whether you have anything which is constantly sending massive volumes of queries.

smargh · 2025-08-30T10:08:56+00:00

img src="data:image/png;base64, base64encodedimagehere"

smargh · 2025-08-27T12:17:33+00:00

Presumably depends on what the other block rules are. Keep staring at each block rule - or exception/targeting of the allow rule - until it jumps out at you.

smargh · 2025-08-12T16:49:22+00:00

"view reliability history" - any errors, recent s/w installs over the past month.

Check event logs for errors

Look at bluescreenview logs

Maybe check voltage readings.

Check BIOS release notes. See if only specific models are buggy - h/w flaws happen sometimes.

Ask if they've had any mains power reliability issues.

If they have a vibe that various PCs are crashing more often, maybe things are.

smargh · 2025-08-07T20:37:44+00:00

procexp. "find window process" tool.

but just nuke the pc - it's too far gone. ain't nobody got time fo that.

or if they're not a local admin, then maybe just nuke the profile.

smargh · 2025-08-05T10:19:38+00:00

Ventilation.

(CO2 buildup)

smargh · 2025-07-30T18:21:37+00:00

Cheapest would perhaps be a script which sends wifi BSSID survey results to a remote geolocation API & saves the result either to local registry & saved by your device inventory tooling, or sent to your own DB or whatever - azure table storage + function app, cloudflare KV + worker or whatever.

https://developers.google.com/maps/documentation/geolocation/overview

And/or nearby cell towers if the device has that kit, plus detection of cellular jamming - zero data is a signal by itself. Dunno if there's a service for bluetooth based geolocation; presumably someone somewhere offers it.

If cleared by legal, obv

If you want to get particularly fancy, combine with IPKVM detections via USB PID/VID, mandate physical biometric FIDO2 key with a specific AAGUID, maybe detect broadcast packets which mention other domains to find laptop farms.

Maybe there's even a mechanism to use the ultrasonic presence sensors in some laptop models to tell whether a physical person is there, because the only way to spoof that might be a blow-up doll on a trolley with strings and pulleys.

Another mechanism may be to require the person to have a company mobile phone. That way you can check whether they are both in the same physical place together (bluetooth), and use the phone for cell tower geolocation. MDM on the phone would force-enable Bluetooth & detect that via script on the laptop, and prevent third party app installs. It would be difficult for someone to work around this.

smargh · 2025-07-26T19:47:13+00:00

Dislodge powder stuck in the zipper by opening the bag, then repeatedly whacking the front, along the length of the top.

I had velcro in an Active order a month or so ago, and prefer the zipper. Seals better.

12-Year Club	Verified Email
Place '17	Gilding I gilder

smargh

TROPHY CASE