tinyapps.org / blog

Decrypt EFS-encytped files without a cert backup #

posted to the docs section.

/windows | Oct 18, 2019

Site design changes #

• Replaced retina-searing white background and black text with Mine Shaft (#222222) (updated to the yet sabler #121416, Woodsmoke) background and Silver Chalice (#AAAAAA) text (discover your own fancy hex color names with Chirag Mehta's open source Name that Color). There is some more work to be done cleaning up code blocks and the like, but please let me know if you find any glaring problems.
• Replaced the download, screenshot, website, and Green Award GIF icons with similar Unicode emoji characters. SSL changes have blocked ancient browsers anyway and I've always wanted to provide users an easy way to search pages for locally-cached downloads, Green Award recipients, etc.

/misc | Oct 09, 2019

Google Drive File Stream cache bug fills up drive #

Despite the sunny promise of version 26.1's July 24, 2018 release note ("Drive File Stream now guarantees that it won't use more than 20% of the free local disk space when caching files."), Google Drive File Stream cache continues to fill up virtually all available space on many drives.

Heinzelmann's solution of setting ContentCacheMaxKbytes to 100MB is excellent but incomplete; these are the steps I needed to follow in order to resolve the issue:

1. Uninstall:
   1. Sign out and quit Google Drive File Stream
   2. Uninstall Google Drive File Stream
   3. Delete %LOCALAPPDATA%\Google\DriveFS (which generally corresponds to \Users\username\AppData\Local\Google\DriveFS)
   4. Reboot
2. Apply the registry patch:
   Windows Registry Editor Version 5.00
   [HKEY_LOCAL_MACHINE\SOFTWARE\Google\DriveFS]
   "ContentCacheMaxKbytes"=hex(b):a0,86,01,00,00,00,00,00
3. Reinstall Google Drive File Stream and sign in

/misc | Sep 29, 2019

G Suite asks user for phone number when signing in #

When a G Suite user attempts to sign in to a new device, they may be greeted with:

Verify it's you
This device isn't recognized. For your security, Google wants to make sure it's really you.
Enter a phone number to get a text message with a verification code.

This seems less like additional security and more like phone number harvesting, especially since the user has no preregistered number.

Clicking "Try another way" leads to:

Get a verification code sent to your phone.
Get help

Clicking "Get help" results in:

Account recovery
Enter the last password you remember using with this Google Account

which isn't very helpful, as this user has had the same password since creation.

Entering the password dumps to a dead end:

Couldn't sign you in
Contact your domain admin for help. Learn more

Clicking "Learn more" brings us to a singularly unhelpful page:

Signing in to your work, school, or other group account

Happily, Mario R. linked to the actually relevant G Suite documentation.

In a nutshell, domain admins can disable the phone number requirement, but only for 10 minutes:

Google Admin Console > Users > click username > Security > Login challenge ("Turn off identity questions for 10 minutes after a suspicious attempt to sign in.") > TURN OFF FOR 10 MINS ("Turn off identity questions for 10 minutes after a suspicious attempt to sign in.")

/misc | Sep 26, 2019

Drive File Stream: Can't reach Google Drive #

Solution to the vexing "Drive File Stream: Can't reach Google Drive" error when attempting to login:

In HKEY_LOCAL_MACHINE\Software\Google\DriveFS, create two new DWORD values, DisableCRLCheck and DirectConnection, assigning value data as 1.

Additional settings and details (including macOS instructions) can be found in Configure Drive File Stream.

(Mad props to Ashley Rowbury for her Job-like patience in securing this veritable Holy Grail.)

/windows | Sep 12, 2019

Yahoo! Pipes replacements #

Yahoo! Pipes "was a web application from Yahoo! that provided a graphical user interface for building data mashups that aggregate web feeds, web pages, and other services, creating Web-based apps from various sources, and publishing those apps."

• 6 reasons killing off Yahoo Pipes was a bad idea

• HN thread on Yahoo Pipes End-Of-life Announcement

Replacements:

• Huginn "is a system for building agents that perform automated tasks for you online. They can read the web, watch for events, and take actions on your behalf. Huginn's Agents create and consume events, propagating them along a directed graph. Think of it as a hackable version of IFTTT or Zapier on your own server."

• IFTTT (IF This Then That) "is the free way to do more with hundreds of the apps and devices you love, including Twitter, Dropbox, Evernote, Nest, Fitbit, Amazon Alexa, and Google Assistant."

• Microsoft Flow - "Create automated workflows between your favorite apps and services to get notifications, synchronize files, collect data, and more"

• Pipes - "Re-live Yahoo Pipes. Get and manipulate data from the open web by connecting blocks."

• Zapier - "Connect the apps you use everyday to automate your work and be more productive. 1500+ apps and easy integrations - get started in minutes."

/misc | Aug 15, 2019

Rare addition to the app catalog... #

/mac | Aug 01, 2019

Microsoft Office: wrong default printer #

Microsoft Office apps like Word and Excel may suddenly stop defaulting to the user-specified default printer:

• Office 2016 does not use Win 10 default printer
• Office 2019 Default Printer issue
• Office 365 won’t let me change the default printer
• Default Printer in Outlook 2016 is different than Windows 10 Default Printer

Its_Garth's lonely (and locked) November 29, 2018 post (Office 365 on Windows 10 not using Windows default printer) held the unlikely solution:

1. Start > Settings > Devices > Printers & scanners > enable "Let Windows manage my default printer"
2. Launch a Microsoft Office app (say, Word), print a file to the desired printer, then close Word.
3. Disable "Let Windows manage my default printer"
4. Reopen Word and open the print dialog; the desired default printer should be automatically selected.

/windows | Jul 30, 2019

iOS 'firewall' apps for non-jailbroken devices #

• Guardian Firewall - "The first real firewall for iOS. Take back control of your digital life and privacy."
  • New Smart Firewall App by iPhone Jailbreaker Aims to Be like a Junk Email Filter for Your Web Traffic: Will Strafach a.k.a @Chronic, former iPhone jailbreaker and security researcher, is working on a mobile firewall app called Guardian Mobile Firewall which aims to prevent apps from secretly and silently stealing a user’s private data without their knowledge.
• Lockdown "is the simple, powerful on-device firewall for your phone. Free and open source."
  • New 'Lockdown' Firewall App Lets You Block Any Connection to Any Domain for Privacy Protection: Lockdown is free to download and use, and because it operates on device, it collects no user data. Lockdown uses Apple's VPN setup to function, though it is not a VPN and will not obscure your own IP address.

/misc | Jul 24, 2019

Hot cloning a live/running Windows 95 instance #

In a 2016 reddit thread entitled Clone a Win95 machine while still running?, the consensus was that it could not be done (though rasfert mentioned using xcopy).

Kan Yabumoto's XXCOPY includes a purpose-built clone operation (as described in his Cloning the Win9x system disk using XXCOPY) which can image a running Windows 95 system as simply as:

XXCOPY C:\ D:\ /CLONE

Before booting the clone, set its primary partition as active/bootable. The usual method (also outlined by Kan) is to start the computer via a bootable floppy or CD and run FDISK from there, as Microsoft's FDISK does not allow marking a partition active on any drive other than 1 ("Only partitions on Drive 1 can be made active."). However, Ranish Parition Manager does not suffer from this artificial limitation, and can thus be used to mark the primary partition as active from within Windows.

The last version of XXCOPY compatible with Windows 95, 2.96.7, can be downloaded from http://www.xxcopy.com/download/xxfw2967.zip.

/windows | Jul 21, 2019

Subscribe or visit the archives.