Category Archives: Letters from the Ed

Letters from the Ed, Tips, Tricks and Tweaks, Windows OS Musings

Goodbye Gadgets, Goodbye!

1 Comment

Since the introduction of Windows Vista in 2006, Windows Gadgets have made colorful and useful additions to Windows desktops everywhere. At this moment, Windows Gadgets work on Windows 8 as well as on Windows 7 and Windows Vista. But a planned discussion of profound security vulnerabilities in the Gadget architecture at the upcoming Black Hat DEFCON Conference(July 21-26, Caesars Palace) appears to spell doom for these desktop denizens.

Gadgets from a Windows 8 Release Preview desktop
Win8 Gadgets

What you see in the screen capture to the left comes from one of my Windows 8 test machines running the Release Preview: my Lenovo X220 Tablet with touchscreen. I’ve found the CPU Usage and Network Meter gadgets from AddGadgets.com to be particularly useful over the years. I also use the analog clock that’s built into the Windows base gadget set, and a handy little gadget called Shutdown as well. That last item is useful because I tend to remote into my test (and other family member) PCs over the network, and it gives me the ability to shut down or restart those machines quickly and easily through a remote desktop session.

But as security researchers Mickey Shkatov and Toby Kohlenberg have discovered (as reported by Ryan Naraine “Security flaws signal early death of Windows Gadgets,” ZDNet), the gadget interface is rife with points of vulnerability that could lead to attack. Hackers could, in fact, take over a system through a malicious gadget foisted on unsuspecting users, or by direct attack on gadgets already running on a Windows desktop. From there, a successful exploit could lead to the attacker obtaining the same level of system privileges and access that attaches to the current logged-in user account. Because so many users routinely log in with system admin privileges, this effectively transfers complete system control to the attacker.

The details aren’t completely clear yet — I guess we’ll have to wait for the presentation and demonstration at DEFCON — but Microsoft has already issued a security advisory (Vulnerabilities in Gadgets could allow remote code execution). This web page includes two “Fix It” tools numbered 50906 and 50907. Because MS fails to describe what these tools do, I learned by experimentation that 50906 disables gadgets (and the Windows Sidebar in Vista), while 50907 turns them back on again.

It might be simpler for users with admin privileges who manage their own systems to simply remove all gadgets from their desktops, and not to add any new ones. I’m not sure it’s necessary to disable underlying support for gadgets if none are running. Apocalyptic warnings aside, I’m going to leave my gadgets up and running until more information emerges from the upcoming DEFCON conference. I need to better my understanding of the nature of the vulnerabilities that already-installed gadgets can pose before I do anything more. Frankly, I’m not sure that a gadget I’ve been using for years actually poses a security risk on my heavily firewalled home network, so I’m willing to wait and learn more about the potential risks of ongoing exposure before I wipe my desktops clean of these helpful bits of software.

It is interesting to understand that Microsoft will do away with the gadget interface, rather than attempting to repair its security issues. The company had already indicated it was deprecating gadgets in Windows 8 (though I discovered to my relief that they still worked on the Developer Preview release late last year, and have continued to use them anyway). However, it now seems likely that they will disable the Gadget interface in the upcoming RTM and GA releases for Windows 8. Thus, production versions of the new OS cannot fall prey to whatever security vulnerabilities gadgets might pose. It should be interesting to mull over what these researchers have learned, and what they’ll reveal, to decide if even trusted gadgets must go on Windows Vista and 7.

I am sorry to see this happen to gadgets. If it turns out they must be removed from my desktops, I’ll also be sorry to see them go. I’ll report back again later this month after the word on gadget vulnerabilities comes out in more detail.

[Note added on 11/18/2013: Thanks to an article I read recently by Deb Shinder, as recounted in a recent post to my Windows Enterprise Desktop blog entitled “Say! You CAN user Gadgets in Windows 8…” I’m very pleased to report that, thanks to 8GadgetPack, you can restore and use Gadgets in the Windows 8 and 8.1 environments. Whoopee! You may do this at your pleasure; I am doing it on several of my Windows 8 and 8.1 machines already.]

Facebooklinkedin
Facebooklinkedin
Letters from the Ed, Tips, Tricks and Tweaks

Use SP Cleanup Tool to Pare Down Winsxs folder, Reduce Windows Footprint

Leave a comment

If your Windows 7 install has been around long enough, it will pick up various bits and pieces of leftover install information. The Windows Deployment Image Servicing and Management (DISM) tool includes a plethora of command line options that work on a running operating system (in addition to its more common use in setting up images for automated Windows deployments). For use on an active OS, however, your best reference is to start up cmd.exe using “Run as administrator” then type dism /online /? at the command line for a complete listing of commands and options.

In particular the command DISM /online /cleanup-image /spsuperseded is a handy one to know, because it gets rid of superseded install packages left in the wake of a service pack or other major update. It was designed as a post-SP-install cleanup tool, but I’ve run it on several systems that were built from the Windows SP1 slipstream install media, and it still found elements to remove from the installed image, as shown in this screen capture:

DISM removed two packages from my post-SP1 slipstreamed Windows 7 Ultimate installation
DISM removed two packages from my post-SP1 slipstreamed Windows 7 Ultimate installation

This recovered about 3 GB of disk space on my primary production machine — a welcome capability on the 120 GB SSD drive that I’m watching carefully to make sure it maintains at least 25% free disk space, to give the OS and applications room to breathe. On the other hand, if you run it on some systems, you’re more likely to see a result like this one, when DISM finds nothing to clean up on your behalf:

Nothing to clean up on my Lenovo T520 running Win7
Nothing to clean up on my Lenovo T520 running Win7

Still, it’s a useful post-SP-install trick to keep up your sleeve. Another SP for Windows 7 is pretty likely to appear around the same time that Microsoft ships Windows 8 (late October is when that should happen, say most pundits). If this doesn’t do your system any good now, it will surely come in handy after you install the next SP!

Facebooklinkedin
Facebooklinkedin
Letters from the Ed

Veeeery Interesting! Meet the MYSOD

Leave a comment

In this case, MYSOD stands for “Mustard-yellow screen of death” and it just hit me this morning on a new-ish production machine on which I’m having video driver problems. It’s got an Nvidia GeForce GTX 460 graphics card in an Asus P6X58D-E socket 1366 motherboard with 24 GB of RAM, an OCZ Vertex 2 SSD, and various other odd’n’ends. The driver version is  the latest WHQL (301.42, aka 8.17.13.142) and there are a dazzling number of potential causes for my recent but not so-very-welcome experience. My only other tangible symptom is  from Event Viewer, which reports Error code 4101 “Display driver nvlddmkm stopped and has successfully recovered.” This turns out to be a distressingly long-standing and popular problem for Vista and Windows 7, with a long and distressingly ominous list of potential causes and fixes.

Event viewer details for the 4101 video driver error
Event viewer details for the 4101 video driver error

My searches for enlightenment have turned up some incredibly humorous stuff, however. Thus for example, I found the unwittingly hilarious “Screen of death” page on Wikipedia. It lists many colors of the rainbow for this symptom of hard and irremediable system crash, not all of which are for Windows, but when taken altogether create a lovely rainbow of hues for failure and distress. In addition to the Blue Screen of Death (BSOD) and the Black Screen of Death, both of which I’ve experienced in my days mangling and messing with Windows, I also found a Green Screen of Death (Xbox), Red Screen of Death (Game consoles and early Vista versions), the Purple Screen of Death (signals a fatal kernel error in the VMware ESX server). There’s even a white screen of death (Apple iPhones and iPads, among other systems) and — wait for it — a yellow screen of death that “… occurs when an ASP.NET web application encounters a problems and crashes.” I was surfing the Web, with a boatload of open IE Windows when the MYSOD hit me this morning, so maybe it’s involved. But I don’t really think so…

It was clearly something with my graphics driver. My researches so far have turned up the following possible causes, which in turn suggest various fixes:

  • Bad graphics drivers: but alas, this problem has plagued me for the past four WHQL updates to the Nvidia drivers, and I’m not sure if I want to roll back into 2010 to fix a problem that fixes itself (it does recover automatically, except for my MYSOD today).
  • Bad memory module: I’ve run memtest86 and gotten a clean bill of health on all six of my brand-new G.Skill 4 GB modules, and the system will run Prime95 with all cores maxed indefinitely at reasonable temps (under 70°C). I know memory controllers sometimes freak when all slots are occupied, and I’ve maxed memory on this motherboard to be sure, but I don’t see a lot of traffic about memory issues for this motherboard, so I’m going to leave the RAM in for the time being.
  • I’ve tinkered with the Registry, and added a long time-out (10 seconds) to the Timeout Detection and Recovery (TDR) issue that is often associated with the 4101 error code in combination with the nvlddmkm.sys fail and recover error message (see this great discussion on SevenForums “Help me configure registry correctly to solve TDR issue” for more info). Hasn’t made a lick of difference in my case, though…

I’ve asked the TweakTown guys for any insight they might care to contribute, and continue noodling around with my system as I have time and energy for such things. This is one of the things about Windows that truly drives me bananas, but that also helps to keep me busy and to guarantee full employment to legions of Windows support staff and technicians. Go Microsoft!

Facebooklinkedin
Facebooklinkedin
Hardware Reviews, Letters from the Ed, Tips, Tricks and Tweaks, Win7View

Great Product for Recycling 2.5″ Notebook Drives

1 Comment

In the past quarter, I’ve replaced the boot drives on my three primary notebook PCs with el-cheapo ($149) OCZ-3 Agility 120 GB SSD drives. In turn, that has left me with three 500 GB 2.5″ drives that I can still use, but no longer want for primary notebook HDs. That left me casting about for a solution to put these babies back to work at minimal expense with maximum results. Here’s what I found to meet my needs: a 5.25″ drive bay that accommodates four 2.5″ drives in the standard form factor, and supports both SAS (Serial-Attached SCSI) and SATA drives in a single, heavy-duty brushed aluminum enclosure. It’s available on Newegg for a modest $55, and on Amazon for $60. Here’s an introductory photo of the device, straight from the manufacturer’s Website:

Each of the drive sleds holds a standard 11mm 2.5" HD, or larger if you remove the sled top
Each of the drive sleds holds a standard 11mm 2.5" HD, or larger if you remove the sled top

Continue reading Great Product for Recycling 2.5″ Notebook Drives

Facebooklinkedin
Facebooklinkedin
Hardware Reviews, Letters from the Ed, Tips, Tricks and Tweaks, Win7View

A Tale of Three Notebook SSD Upgrades

1 Comment

OK, so I finally got my three production notebooks upgraded from conventional spinning hard disks to SSDs. All three of the source drives were 7,200 RPM SATA II drives: two from Seagate (one a Momentus plain-vanilla, the other a Momentus XT), along with a Hitachi 7K500 model. Of the three, the Momentus XT was far and away the fastest, but it couldn’t begin to match the OCZ Agility 3 SATA III 120GB drive that replaced it. I took advantage of a special sale to pick mine up for about $150 each on Newegg. Right now they’re priced at $155 with a $30 rebate to bring the price down to $125.

It took me a while to whittle these machines’ drives down to an acceptable level of disk space for the transfer. I recount this exercise in a couple of upcoming articles (one for InformIT.com, the other for InputCreatesOutput.com; no links yet but I’ll plug them in as they become available). Here’s a quick before-and-after snapshot:

Table 1: Notebook System Disk Holdings (Before & After)
Laptop Before Clean-up After Clean-up
HP dv6t 72.9 GB 52.8 GB
Dell M11X 48.2 GB 33.1 GB
Dell D620 35.4 GB 27.7 GB

I used the “Clone Disk” tool in Acronis True Image Home 2012 to transfer the contents of each conventional HD to its SSD replacement. Although the HP dv6t has the faster processor, the Dell M11X supports SATA 3 and outperforms the HP on I/O. All in all, the real proof for the value of the exercise comes from some before and after system timings, as shown in Table 2.

Table 2: Notebook System Timings (Before & After)
Timing Point Dell D620
(Before/After)		 Dell M11X
(Before/After)		 HP dv6t
(Before/After)
BIOS alert 00:03 / 00:03 00:03 / 00:03 00:08 / 00:07
Windows 7 Starting 00:11 / 00:07 00:32 / 00:19 00:12 / 00:09
Login Prompt 00:53 / 00:23 01:07 / 00:32 00:40 / 00:12
Desktop appears 01:20 / 00:35 01:44 / 00:42 01:13 / 00:19
Soluto value 01:49 / 00:42 02:26 / 00:42 02:22 / 01:02
Shutdown 00:20 / 00:07 00:18 / 00:06 00:22 / 00:10

Here’s what I take away from this recent adventure. First and foremost, you get the biggest win in performance after Windows starts loading and the systems start banging their drives for all they’re worth. Second, there’s a clear correlation between the I/O interface hardware and overall disk subsystem performance: the Dell D620 which has the oldest SATA controller, saw a jump from 5.9 to 6.9 in the Windows Experience value for the disk data transfer rate. The HP dv6t has a faster SATA II controller and leaped from 5.9 to 7.4, but the MX11 with its SATA III support surged from 5.9 to 7.9 (which is as high as Windows Experience values currently go). Third, some of the best benefits from SSD use come after the OS has booted: applications open and close much more quickly, and shutdown takes no more than half as long as it once did. I like it!

Facebooklinkedin
Facebooklinkedin
Hardware Reviews, Letters from the Ed, Win7View

LensPen LapTop Pro Ultra Cleaning Kit

Leave a comment

Every now and then I’ll get a request from a vendor to take a look at their products and report on my experiences. Over three weeks ago, a package from Canada showed up at my door, including the LensPen LapTop Pro Ultra Notebook Cleaning Kit. As the following photo from Amazon (where you can pick this item up for $9.95 plus S&H) shows, it includes a microfiber cleaning cloth, 10 moist wipes for cleaning an LCD screen, a big multi-brush and screen cleaner holder, and an itty-bitty screen cleaner for cellphones (lower right in photo).

Continue reading LensPen LapTop Pro Ultra Cleaning Kit

Facebooklinkedin
Facebooklinkedin
Letters from the Ed, Tips, Tricks and Tweaks, Win7View

Interesting tips and tweaks for PST file cleanup & optimization

4 Comments

OK, I admit it. I’m a little bit obsessive about maintaining maximum free space on the 80 GB putative (74.5 GB actual size) Intel X25-M SSD I use as the system drive for my production PC. In my never-ending quest to keep things pared down to the absolute minimum, I will occasionally resort to cleaning up and compressing the PST files associated with Outlook on that machine. To that end, I’ve already moved my Archive.pst file to another drive. But today, I got into compacting my PST files (and completely cleared out the default Archive.pst that Outlook manages to create on my C: system drive, whether I want it to or not), and learned some interesting stuff along the way.

Continue reading Interesting tips and tweaks for PST file cleanup & optimization

Facebooklinkedin
Facebooklinkedin
Letters from the Ed

Sometimes, When Things Look Broken, They’re Merely Discombobulated

Leave a comment

If you read my last blog post “Booted Off Twitter! No Due Process, Either…” you’ll get a chance to review my recent tale of woe that recounts how, upon having my @EdTittel twitter account suspended, I initially begged and pleaded to have that suspension reversed, to no avail. This morning, while I was chatting on the phone with social media maven Allen Mireles (@allenmireles), when we reviewed the situation once again, she volunteered to contact the leader of the Twitter Safety & Trust team, Del Harvey (@delbius) to see if she could look into matters and consider some kind of possible account restoration maneuver.

Continue reading Sometimes, When Things Look Broken, They’re Merely Discombobulated

Facebooklinkedin
Facebooklinkedin
Letters from the Ed

Growing and Returning Interest in IT Certification

3 Comments

It’s often said that everything in the IT industry comes and goes in cycles. I have to agree with this notion: after working in the industry for over 30 years now, I’ve seen several waves of client/server, thin client/fat client, remote, and distributed technologies and APIs come and go (remember “diskless workstations?” “set-top boxes?” “videotex?”).

The same ebb and flow also applies to IT certification, which I got involved with initially as a temporary member of the training department at Excelan back in 1988, and then again almost ten years later in 1996 as the Windows NT 4.0 wave crested and ran. In the heady days from 1997 to 2000, it seemed like certification was an unbeatable and guaranteed ticket to IT success. But I was also there when the bottom fell out after 9/11 and have watched that same wave pull back further and further until IT certification seemed no more important or relevant to finding work than any other checkbox sorts of attributes (degree, experience, and technical expertise).

In the last year, however, I’ve noticed that the wave seems to have hit its trough, and is now starting to come back in. What makes me say this? Several things:

Continue reading Growing and Returning Interest in IT Certification

Facebooklinkedin
Facebooklinkedin