expose_php = Off
早早計劃中
20241118
nginx security header - CSP
# Add Security Headers
add_header Strict-Transport-Security "max-age=31536000; includeSubDomains" always;
add_header X-Content-Type-Options nosniff always;
add_header X-Frame-Options "SAMEORIGIN" always;
add_header X-XSS-Protection "1; mode=block" always;
add_header Set-Cookie "Path=/; Secure; HttpOnly; SameSite=Lax" always;
# end
20240523
Standard preset security policy & Strict preset security policy
M365 Exchange online:
Connect-ExchangeOnline -UserPrincipalName <UPN> [-ExchangeEnvironmentName <Value>] [-ShowBanner:$false] [-DelegatedOrganization <String>] [-SkipLoadingFormatData]
# Connect-ExchangeOnline -UserPrincipalName xxx@xxx.onmicrosoft.com
View quarantine policies in PowerShell
# Get-QuarantinePolicy | Format-Table Name
# Get-QuarantinePolicy -QuarantinePolicyType GlobalQuarantinePolicy
# Get-QuarantinePolicy -QuarantinePolicyType QuarantinePolicy
# Get-QuarantinePolicy -Identity DefaultFullAccessPolicy
# Get-QuarantinePolicy -Identity AdminOnlyAccessPolicy
# Get-QuarantinePolicy -Identity DefaultFullAccessWithNotificationPolicy
<Standard preset security policy:>
# Write-Output -InputObject ("`r`n"*3),"Standard anti-malware policy",("-"*79);Get-MalwareFilterPolicy | Where-Object -Property RecommendedPolicyType -eq -Value "Standard"; Write-Output -InputObject ("`r`n"*3),"Standard anti-spam policy",("-"*79);Get-HostedContentFilterPolicy | Where-Object -Property RecommendedPolicyType -eq -Value "Standard"; Write-Output -InputObject ("`r`n"*3),"Standard anti-phishing policy",("-"*79);Get-AntiPhishPolicy | Where-Object -Property RecommendedPolicyType -eq -Value "Standard"
<Strict preset security policy:>
Write-Output -InputObject ("`r`n"*3),"Strict anti-malware policy",("-"*79);Get-MalwareFilterPolicy | Where-Object -Property RecommendedPolicyType -eq -Value "Strict"; Write-Output -InputObject ("`r`n"*3),"Strict anti-spam policy",("-"*79);Get-HostedContentFilterPolicy | Where-Object -Property RecommendedPolicyType -eq -Value "Strict"; Write-Output -InputObject ("`r`n"*3),"Strict anti-phishing policy",("-"*79);Get-AntiPhishPolicy | Where-Object -Property RecommendedPolicyType -eq -Value "Strict"
20240520
VMware Customer Connect portal for vSphere downloads - OEM Custom Images and Addons (After May 2024)
new instruction after Broadcom (vmware custom download)
ESXi Downloads
Full ISOs:
- Under the Products Tab, choose the user entitlement for VMware vSphere (e.g. click on VMware vSphere - Enterprise).
- Select the major version of vSphere required.
- Click View Group on the right side of the VMware vSphere Hypervisor (ESXi) item.
- Use the drop-down in the upper-right to choose the desired version.
Patch Builds:
- Under the Solutions Tab, choose the user entitlement for VMware vSphere (e.g. click on VMware vSphere - Enterprise).
- Select the major version of vSphere required.
- Find the desired version of ESXi in the list.
Custom ISOs & OEM Addons:
- Under the Products Tab, choose the user entitlement for VMware vSphere (e.g. click on VMware vSphere - Enterprise).
- Select the major version of vSphere required.
- Select the Custom ISOs or OEM Addons tab.
- Click on the desired Custom ISO or Addon by OEM name and ESXi version.
- Download the desired deliverable and readme file for links to any OEM documentation.
- Accept the Broadcom EULA by marking the checkbox, if required.
- Address any legal, export/trade or other verification, as required.
Notes:
- All Custom ISO and OEM Content visible in any given tab for any given version of vSphere is identical and can be used on the given OEM server and ESXi version, e.g. the “Dell Custom Image for ESXi 8.0U2 Install CD” is the same download wherever it is seen. Another way of stating this is that there is only one OEM Custom ISO and Addon download for any given OEM server and any given ESXi version, regardless of the various entitlements of vSphere.
- You can also find the Custom ISOs and OEM Addons tabs from the VMware vSphere Hypervisor (ESXi) group under VMware vSphere - Enterprise. Here, you can filter the release specific Custom ISO or addon.
- Click on View Group against vSphere Hypervisor (ESXi).
- Select the desired ESXi release from the drop down under the Primary Downloads tab.
- Go to Custom ISOs or OEM Addons tab.
- Click on the desired Custom ISO or Addon by OEM name or ESXi version.
- Download the desired deliverable and readme file for links to any OEM documentation.
- Accept the Broadcom EULA by marking the checkbox, if required.