Windows 10 – CURL Protocol "’https" not supported or disabled in libcurl Error

August 6, 2019

Lately I had to use the CURL command line tool to debug a Web Service Endpoint connection.

But every time I ran this I got this Error message ?

Note: Unnecessary use of -X or –request, GET is already inferred.
* Protocol “‘https” not supported or disabled in libcurl
* Closing connection -1
curl: (1) Protocol “‘https” not supported or disabled in libcurl

image

Actually this Error is putting you on the wrong leg !

It’s nothing to do with unsupported protocol but rather with wrong command line formatting.

In the windows version of CURL, you need to enclose the command with double quotes, instead of single quotes.

This will not work !

curl -v -u your.name@mysite.com:password -X GET 'https://webservices.com/api/?query="priority:3"'


SOLUTION :

So you need to start and end with double quotes !

But this will give an other issue where the query string needs double quotes as well ? Sad smile

This is how it should look :

curl -v -u your.name@mysite.com:password -X GET "https://webservices.com/api/?query=%22priority:3%22"

Where you replace the double quotes in the Query string with the URL encode version being %22 Smile

Enjoy!

Advertisements

Windows Server 2016 – Blacklist Mobile devices on WIFI network

June 21, 2019

Let’s assume you have 2 WIFI networks. 1 for the Office users and 1 for the Guests on a separate VLAN.

Now you don’t want to have all the Office users using there mobile device to log on to the local LAN.

Most challenging is that if you apply MAC address filtering on the Access Point.

It will block the device on both WIFI networks Sad smile

PREQUISITES :

On your DHCP server you need to activate the BLOCK MAC address filtering

Open the DHCP console and enable the DENY LIST using the FILTERS Tab

image

Now you can add the BLOCKED Mac ADDRESSES in the DENY section

image

Tip :

You can also use WILDCARDS like this :

image

Solution :

Windows 2008r2 :

You can use the NETSH command to block MAC addresses on your local LAN.

netsh dhcp server v4 add filter deny 00-0c-29-fe-dd-60 "Mary's PC"

If you need to automate this on a Windows 2008r2 server you need to apply some regular expressions to grab the  MAC address ,-)

Took me more then a day to figure that out how to make it work Sad smile

Windows 2012r2 and higher :

You can use the DHCP Powershell cmdlets

Get-DhcpServerv4Scope -cn YourServer

Set-DhcpServerv4FilterList -ComputerName "YourServer" -Allow $False -Deny $True

Get-DhcpServerv4FilterList

Add-DhcpServerv4Filter -List Allow -MacAddress "F0-DE-F1-7A-00-5E" -Description "Laptop 09"

Remove-DhcpServerv4Filter -MacAddress "F0-DE-F1-7A-00-5E","F0-DE-F1-7A-00-5E"

See also here how to build a Blacklist for PUBLIC IP addresses.

Enjoy !


Windows Server 2016 – How to Blacklist Public IP Addresses, Alert Event ID 20271

June 21, 2019

If you notice unauthorised attacks on you network in your event viewer Event ID 20271 Remote Access

image

image

 

SOLUTION :

Create a BLACKLIST rule using Windows Firewall

Open Windows Firewall with Advanced Security by running wf.msc

On the left, select Inbound Rules, then under the Action menu, choose New Rule

On the Rule Type page, choose Custom.

image
On Program, choose “All programs”

image
On Protocol and Ports, leave the default of Any

image
On Scope, select “These IP addresses” in the remote addresses section and add the problematic IP address in the Add dialog

image
On Action, choose “Block the connection”

image

On Profile, leave the defaults of everything checked.

image

Finally, on Name give the rule a name like “Blacklisting”, and optionally a description.

image

 

See here on how to automate this using PowerShell Event Viewer Scanning & Firewall rules

1. First check if the DENY property is set on your DHCP server

Get-DhcpServerv4FilterList

image

If not you can activate it like this

Set-DhcpServerv4FilterList -ComputerName "YourDHCPServer" -Allow $False -Deny $True

Next you can list all IP’s

Get-DhcpServerv4Filter

And check if they exist as blocked.

image

If you need to add extra you can use this Cmd

Add-DhcpServerv4Filter -List Deny -MacAddress "F0-DE-F1-7A-00-5E" -Description "iphone 09"

 

See here on how to Blacklist based on MAC Address

 

Safety First …

Done !


Write cache enabled Event ID 32 Error

March 11, 2019

After physical to Virtual conversion, we get this event ID 32 Error on a regular basis..

image

The driver detected that the device \Device\Harddisk0\DR0 has its write cache enabled. Data corruption may occur.

Solution :

See here : https://support.microsoft.com/en-ca/help/324805/how-to-manually-turn-disk-write-caching-on-or-off
Turn Disk Write Caching On or Off
  1. Right-click My Computer, and then click Properties.
  2. Click the Hardware tab, and then click Device Manager.
  3. Expand Disk Drives.
  4. Right-click the drive on which you want to turn disk write caching on or off, and then click Properties.
  5. Click the Policies tab.
  6. Click to select or clear the Enable write caching on the disk check box as appropriate.
  7. Click OK.
For Windows Server 2008
  1. Right-click Computer, and then click Properties.
  2. Click the Device Manager link under Tasks.
  3. Expand Disk Drives.
  4. Right-click the drive on which you want to turn disk write caching on or off, and then click Properties.
  5. Click the Policies tab.
  6. Click to select or clear the Enable write caching on the disk check box as appropriate.
  7. Click OK.

To find out the DISK number relation use this SysInternal tool, diskext.exe :

image

\Device\Harddisk0\DR0 = C drive

If you see the yellow exclamation mark saying you are not allowed to change the caching …

image

See here for more Information :

http://techgenix.com/hyper-v-optimization-tips-part1/

Enjoy!


Windows Server 2016 – Windows Update Center closes immediately

March 10, 2019

Opening the Windows Update Center closes immediately … ?

image

The main reason is that the Windows 2016 Software Distribution has become corrupted.

SOLUTION :

Clean the C:\Wndows\SoftwareDistribution folder…

See here for the procedure

https://www.windowscentral.com/how-clear-softwaredistribution-folder-windows-10

After this cleanup everything was back to normal

image


Windows 10 – Reinstall Windows OS using HP Cloud Recovery Tool

February 22, 2019

First check here if your device is listed for a Cloud Recovery of your OS

https://ftp.hp.com/pub/caps-softpaq/CloudRecovery/crsupportedplatform.html

What you need is a USB drive of minimum 16Gb, and the serial number of the HP device.

Download the tool :

Download Cloud Recovery Client


Solution :

Follow these steps, to create the W10 USB bootable flash drive installer.

Select Download tool now, and select Run.
If you agree to the license terms, select Accept.
On the What do you want to do? page, select Create installation media for another PC, and then select Next.
Select the language, edition, and architecture (64-bit or 32-bit) for Windows 10. You want 64 bit.

Select which media you want to use:
USB flash drive.  Plug in a blank USB flash drive with at least 8GB of space. Any content on the flash drive will be deleted.

image

Once Finished you see that OS installation and drivers (Optional) on the bootable pen drive.

IMPORTANT :

1. Delete WIM’s

After completion it leave a copy of the WIM files on your %localappdata% Directory.

image

So best delete it afterwards, because it is a lot of GB’s waste…

Now that you have the bootable USB drive you can install the OS on your device.

2. BIOS Changes

It might be necessary to disable SECURE BOOT in the BIOS,

in order to start the computer using recovery media.

1. Go to System configuration / Boot Options

image

2. Use the down arrow key to select Secure Boot, press Enter,

and then use the down arrow key to modify the setting to Disable and press Enter.

3. Use the arrow keys to select Legacy Support and press Enter,

and then use the arrow keys to modify the setting to Enable and press Enter.

4. Press F10 to accept the changes and exit or use the left arrow key to select the Exit,

use the down arrow key to select Exit Saving Changes and then press Enter to select Yes.

5. The Computer Setup Utility closes and the Operating System Boot Mode Change screen displays,

prompting you to confirm the Boot Options change. Type the code shown on the screen,

and then press Enter to confirm the change.

6. The Computer Setup Utility closes and the computer restarts.
7. Turn the computer off and try to boot from the Recovery media.

Enjoy!


Windows – Using osQuery Tool

February 1, 2019

The osQuery Tool is a cross-platform tool to query your devices like a database for Windows, Linux and iOS.

Osquery uses basic SQL commands to leverage a relational data-model to describe a device.

You can dowload it here

osQuery installation on Windows is running the MSI to get it running.

After the installation you will see the binaries in C:\ProgramData\osquery

image

As you can see it has a few PowerShell scripts as well.

But most importantly is the osQuery Shell called osqueryi.exe

If you run the shell command you can see all features like this :

osqueryi .help

image

in the background it uses SQLite Smile

image

You can list all the tables that can be queried like this

image

image

Since you now have the list of the tables you can start using it in a Query.

How to use it :

Example :

osqueryi -line "select * from video_info"

image

osqueryi -line "select * from cpu_info"

image

PowerShell :

You can use osqueryi.exe in PowerShell like this

image

Enjoy !