Extra IT #Office Of Cards

Oggi vorrei segnalare questo libro "Office of Cards" che ho avuto la fortuna di ricevere come regalo ( e leggere)
E' un libro che spiega le dinamiche aziendali, il come muoversi proficuamente senza scendere a patti con la coscienza e con tutto quello che e' giusto che sia (anche se alle volte e' un po' "borderline")

ll testo disassembla la vita in ufficio, trattandola non come un luogo di produttività, ma come un tabellone da gioco strategico (da qui il richiamo a House of Cards)

Ma soprattutto e' un "knowledge sharing" tout court su tantissimi argomenti. (e questo e' decisamente ammirevole)

Davide Cervellini e' una persona brillante, sicuramente curiosa, che ti mostra, in maniera disincantata, i vari giochi di potere nelle aziende, che nemmeno uno sapeva che esistessero.

Analizzando il tutto, sotto l'aspetto strategico, con il giusto pragmatismo (senza troppi fronzoli) ed infine utilizzando l'arma dell'ironia.

Si puo' essere non d'accordo con tutte le dinamiche aziendali, ma sicuramente la consapevolezza, e' il primo passo necessario in tutti gli ambiti, compreso quello aziendale, per non rimanere schiacciato da un sistema e fare, come si dice in IT, il decrypting/reverse engineering di tutto (compreso le dinamiche aziendali)

Questo e' il libro.

https://www.amazon.it/Office-Cards-raggiungere-successo-felicit%C3%A0/dp/1916445659

Questo e' il sito web.

https://officeofcards.com/

Questi sono podcasts, molto interessanti, nonche' tre episodi di Giampaolo Grossi (a suo tempo CEO di Starbucks Italia molto interessanti)

Questo e' un'interessante Video Youtube che mostra, da una parte le capacita' di Davide, ed allo stesso tempo mette in evidenza come il successo e la felicita' sono inter/scon(nessi)


La relazione circolare tra successo e felicità | Davide Cervellin | TEDxVerona

da cui si evince il messaggio finale e' che:

"non so se il successo porta alla felicita' ma posso dire che con i tre pilastri di disciplina, relazioni e gratitudine la felicita' porta alla successo"

 
 PODCAST #1 PODCAST #2 PODCAST #3 PODCAST #4 PODCAST #5
Posted by
Labels: ,

Security #AI applied to create fake articles, videos, and interviews, presented by well-known faces or political and institutional figures

 This italian article well explain on how AI techniques (deepfake) are used to create fake articles, videos, and interviews, presented by well-known faces or political and institutional figures to increase their credbility

Here it is full article in English and in italian 

Posted by
Labels: ,

Windows 10/11 #Hardware & Cpu requirements

Microsoft indicate Hardware and CPU requirements related to Windows 10 (EOL & EOS)  and Windows 11.

Here it is full article

https://learn.microsoft.com/en-us/windows-hardware/design/minimum/windows-processor-requirements


[other articles ]

https://www.devadmin.it/2026/02/14/processori-supportati-in-windows-11/

Posted by
Labels: ,

Security #Windows Server Secure Boot playbook for certificates expiring in 2026

 

Windows Server Secure Boot playbook for certificates expiring in 2026

Learn about tools and options available to organizations to update Secure Boot certificates on Windows Server. Certificates begin expiring in June 2026. You must update them before that date to help keep your security posture. Many recent platforms already include the supported 2023 certificates in firmware. However, for the ones that need to be updated, you need to manage this process manually.

 

When will this happen: 

·     The tools are already available to help you to proactively inventory, monitor, and apply updated certificates to your Windows Server devices.

·     June 2026: The 2011 Secure Boot certificate authorities (CAs) begin expiring.

 

How this will affect your organization: 

Systems on the 2011 CAs after June 2026 are at risk of running on degraded security posture. To update these systems, please be proactive and follow our recommended approach.

 

What you need to do to prepare: 

Read complete guidance in Additional information for details on how to: 

1.  Inventory and prepare your environment.  

2.  Monitor and check your devices for Secure Boot status.  

3.  Apply any needed OEM firmware updates before updating certificates.  

4.  Plan and pilot Secure Boot certificate deployments.  

5.  Troubleshoot issues. 

 

here it is an interesting article with very detailed information

https://4sysops.com/archives/update-expiring-windows-secure-boot-certificates-now/

Windows Server Secure Boot playbook for certificates expiring in 2026
Update Secure Boot certificates on Windows Server and VMs before June 2026
Posted by
Labels: , , , , , ,

Security #DoH (DNS over https) ** Windows 11/2025 **

DNS over https (DoH) is a protocol that permit to encrypt DNS queries and sending them over Https.

This protocol has been developed to override security concerns of DNS traffic.

Windows has supported DoH on the client side since Windows 11. While Windows 10 includes the underlying client support in later builds

The encryption operates at the Application Layer (Layer 7) of the OSI model and integrates directly into applications such as web browsers. This approach differs from traditional DNS, which transmits queries over UDP or TCP on port 53 without encryption, leaving them visible to ISPs, network operators, and potential attackers.

be aware about DNS over HTTPS (DoH) (better privacy)  (operate at 443 port more difficult to be detected vs DNS over TLS ( DoT) ( operates at the Transport Layer, using a dedicated port 853 and it is easily to be identified.

DoH verifies DNS server's identity and prevents impersonation attacks. The other advantage is DNS queries and not interceptable.

Microsoft introduced DoH resolver support for Windows DNS Server in the February 10, 2026, cumulative update for Windows Server 2025.

When you enable DoH resolver functionality on a Windows DNS Server, all queries received from clients and responses sent on port 443 are encrypted. However, this implementation has a significant limitation: queries sent by the Windows DNS Server to upstream DNS servers, such as conditional forwarders or authoritative servers, remain unencrypted on port 53.

The traditional DNS service on port 53 continues to operate alongside DoH, ensuring backward compatibility with clients that do not support the encrypted protocol.

So, on Windows 2025 you must install this cumulative update, and doH can be enabled through powershell

I would suggest to read fullo/original article about more interesting and useful details.

[Original/other articles

Enable DoH (DNS over HTTPS) in Windows Server 2025 DNS server, configure Windows 11 DNS clients




Posted by
Labels: , ,

Sophos #How to override ACS compatibility problem

If you try to install Sophos on O.S. that not support Azure Code Signing this will not receive Sophos updates and/or install it

KB5022661—Windows support for the Trusted Signing (formerly Azure Code Signing) program

In the past there was a build that fixed problem but is is no longer supported

October 12, 2021—KB5006669 (OS Build 14393.4704) - EXPIRED

to override problem you might arrange to download new Trusted CA Certificate ( Microsoft Identity Verification Root Certificate Authority 2020) that it is related to ACS from this repository:

PKI Repository - Microsoft PKI Services

start --> certmgr.msc --> local computer --> Trusted Root Certification Authorities --> Certificates

In this way Sophos installation works properly.



Posted by
Labels: ,
Subscribe to: Posts (Atom)