Sunday, November 18, 2018

Snip and Sketch

Since at least Windows 7, Windows has had a Snipping Tool. I've always accessed it by pressing the Windows key and typing "snipping". Or you can press Windows key + Shift + S, then drag your cursor over a portion of the screen to capture it. The Snipping Tool had some simple mark-up tools.

In Windows 10 1809 the Snipping Tool is still there but there's a new Snip & Sketch UWP app. Pressing Windows key + Shift + S brings up a small toolbar with icons let you capture a rectangular portion of the screen, the entire screen, or a freehand-drawn portion of the screen.


If you click on the notification you'll see the UWP app with the editing tools.


These are much more capable than those in the pre-1809 Snipping Tool.


It's simple but certainly a nice improvement.

Sunday, November 11, 2018

Windows 10 October 2018 Anyway

As I wrote back in October, I had hastily installed Windows 10 1809 just before Microsoft pulled it. I still haven't had any problems with it.

However I came across this post that pointed out that those PCs that had installed Windows 10 1809 hadn't gotten ANY updates since the October Cumulative Update.

This is significant as Microsoft has merrily been fixing the numerous problems discovered in Windows 10 1809 and pushing out new builds to Windows 10 19H1 through the Windows Insider Program.

So I wanted to get updated. But not jump into the fire with Windows 10 19H1.

In the above mentioned howtogeek.com post, a thread in the comments pointed me to a windowsupdate.com URL that contained the CAB file for Windows 10 1809 build 17763.107. Search the comment thread for KB4464455v2.

Microsoft has apparently had problems even with that as there are 2 versions of KB4464455.

To save you some trouble, here's the URL:
download.windowsupdate.com/c/msdownload/update/software/updt/2018/11/windows10.0-kb4464455-x64_de985f6d38215b316470dbecabb453c762a217af.cab
Now, what to do with a CAB file?

As has become typical with Windows 10 1809, nothing is easy. You have to use Microsoft's DISM to install the CAB. Here are the instructions.


It took a while and then I had to reboot.

Sunday, November 04, 2018

Windows Defender Sandbox

You're going to have to think about this one some.

Think about how any anti-virus program has to parse all the files on a system. A parser could inadvertently enable arbitrary code execution if that parser has any vulnerabilities.

So what to do?

Run the parser in a sandboxed environment where malicious actions are limited to the sandbox thereby protecting the rest of the system.

Microsoft's Windows Defender does this.
In other words, the Windows Defender antivirus process that analyzes downloaded files and other content will run with very few permissions.
How-To Geek
But it's not turned on by default.

To enable this feature click on the Start button, type "CMD", right click on "Command Prompt", and select "Run as administrator". Enter the following command:
setx /M MP_FORCE_USE_SANDBOX 1
Then restart your PC by holding SHIFT while you select Shutdown or Restart on the Start menu.