‘Visual Studio Community 2013 with Update 4′ is released


Download Visual Studio Community 2013.

The Visual Studio Express products have been a huge success – hundreds of millions of downloads – MSDN team has brought the Express SKUs together into one product that can do everything from desktop development to Store development to Azure and ASP.NET development. Plus, it includes full extensibility, so you can use all your favorite extensions from the VS Gallery and elsewhere. Built off of the Visual Studio 2013 Update 4 release, VS Community enables you to develop everything from Windows Forms and WPF and MFC to Windows Phone and Store to Azure and ASP.NET – it’s basically a superset of the existing VS Express products. More than that, it includes support for the ecosystem of over 5,000 Visual Studio extensions. Read the Visual Studio Community 2013 release notes and watch the Visual Studio Community 2013 video to learn all about what you can do with this release. Visual Studio Community 2013 is meant for use by open source developers, startups, students, and hobbyists, rather than enterprises. To try it out you could use an Azure VM image.


Microsoft Visual Studio Community 2013 with Update 4 – English Install now

Microsoft Visual Studio Community 2013 with Update 4 – English DVD5 ISO image

Microsoft Visual Studio 2013 Language Pack – English Install now

WordPress 4.0.1 is a Critical Security Release that Fixes a Cross-Site Scripting Vulnerability

WordPress core contributors released a security update today. All users who have not yet received the automatic update are encouraged to update as soon as possible. WordPress 4.0.1 is a critical security release that provides a fix for a critical cross-site scripting vulnerability, originally reported by Jouko Pynnonen on September 26th.


Errors running tests via TCM as part of a Release Management pipeline

Whilst getting integration tests running as part of a Release Management  pipeline within Lab Management I hit a problem that TCM triggered tests failed as the tool claimed it could not access the TFS build drops location, and that no .TRX (test results) were being produced. This was strange as it used to work (the RM system had worked when it was 2013.2, seems to have started to be issue with 2013.3 and 2013.4, but this might be a coincidence)

The issue was two fold..

Permissions/Path Problems accessing the build drops location

The build drops location passed is passed into the component using the argument $(PackageLocation). This is pulled from the component properties, it is the TFS provided build drop with a appended on the end.


Note that the in the text box is there as the textbox cannot be empty. It tells the component to uses the root of the drops location. This is the issue, as when you are in a network isolated environment and had to use NET USE to authenticate with a the TFS drops share the trailing causes a permissions error (might occur in other scenarios too I have not tested it).

Removing the slash or adding a . (period) after the fixes the path issue, so..

  • serverDropsServices.ReleaseServices.Release_1.0.227.19779        –  works
  • serverDropsServices.ReleaseServices.Release_1.0.227.19779      – fails 
  • serverDropsServices.ReleaseServices.Release_1.0.227.19779.     – works 

So the answer is add a . (period) in the pipeline workflow component so the build location is $(PackageLocation). as opposed to $(PackageLocation) or to edit the PS1 file that is run to do some validation to strip out any trailing characters. I chose the later, making the edit

if ([string]::IsNullOrEmpty($BuildDirectory))
        $buildDirectoryParameter = [string]::Empty
    } else
        # make sure we remove any trailing slashes as the cause permission issues
        $BuildDirectory = $BuildDirectory.Trim()
        while ($BuildDirectory.EndsWith(""))
            $BuildDirectory = $BuildDirectory.Substring(0,$BuildDirectory.Length-1)
        $buildDirectoryParameter = "/builddir:""$BuildDirectory"""

Cannot find the TRX file even though it is present

Once the tests were running I still had an issue that even though TCM had run the tests, produced a .TRX file and published it’s contents back to TFS, the script claimed the file did not exist and so could not pass the test results back to Release Management.

The issue was the call being used to check for the file existence.


As soon as I swapped to the recommended PowerShell way to check for files


it all worked.

Source: Rfennell

Removal instructions for GoSave

What is GoSave?

The Malwarebytes research team has determined that GoSave is a browser hijacker. These so-called “hijackers” manipulate your browser(s), for example to change your startpage or searchscopes, so that the affected browser visits their site or one of their choice. This one also displays advertisements.


Removal instructions for Zorton Win 7 Protection 2014

What is Zorton Win 7 Protection 2014?

The Malwarebytes research team has determined that Zorton Win 7 Protection 2014 is a fake anti-malware application. These so-called “rogues” use intentional false positives to convince users that their systems have been compromised. Then they try to sell you their software, claiming it will remove these threats. In extreme cases the false threats are actually the very trojans that advertise or even directly install the rogue.


Azure IaaS für IT Pros Online Event

Vom 1. bis 4. Dezember gibt es jeden Abend (deutscher Zeit) ein kostenfreies Online Event von Microsoft zu Azure IaaS. Das Training ist auch ideal zur Vorbereitung auf die Microsoft PrĂŒfung 70-533 “Implementing Microsoft Azure Infrastructure Solutions”. Als Belohnung fĂŒr die regelmĂ€ĂŸige Teilnahme gibt es einen 50% Voucher fĂŒr die PrĂŒfungsgebĂŒhr.

Die “Keynote” hĂ€lt Mark Russinovich (Microsoft Chief Technology Officer Azure), durch das Programm fĂŒhren Rick Claus (Senior Technical Evangelist) und Mitglieder aus dem Azure Team.

Weitere Informationen:

Viel Spaß!

Viele GrĂŒĂŸe

Dieter Rauscher
MVP Enterprise Security

How to Create a Charms Bar Shortcut in Windows 10

Windows 10 has the Settings, Devices, Start, Share, and Search charms available. Charms are context sensitive to the location (desktop vs Start screen) and application that is running when opened.

This tutorial provides a download for a charms bar shortcut that always opens directly on your desktop or Start screen and also showing the clock in Windows 10.

Read more…

How to Open and Use Disk Cleanup in Windows 10

You can use Disk Cleanup to reduce the number of unnecessary files on your drives, which can help your PC run faster. It can delete temporary files and system files, empty the Recycle Bin, and remove a variety of other items that you might no longer need.

This tutorial will show you how to open and use Disk Cleanup to help free up space by removing unneeded files in Windows 10.

Read more…

Linking VSO to your Azure Subscription and Azure Active Directory

I have a few old Visual Studio Online (VSO) accounts (dating back to TFSPreview.com days). We use them to collaborate with third parties, it was long overdue that I tidied them up; as a problem historically has been that all access to VSO has been using a Microsoft Accounts (LiveID, MSA), these are hard to police, especially if users mix personal and business ones.

The solution is to link your VSO instance to an Azure Active Directory (AAD). This means that only users listed in the AAD can connect to the VSO instance. As this AAD can be federated to an on-prem company AD it means that the VSO users can be either

  • Company domain users
  • MSA accounts specifically added to AAD

Either way it gives the AAD administrator an easy way to manage access to VSO. A user with a MSA, even if an administrator in VSO cannot add any unknown users to VSO. For details see MSDN. All straight forward you would think, but it I had a few issues.

The problem was I had setup my VSO accounts using a MSA in the form user@mycompany.co.uk, this was also linked to my MSDN subscription.  As part of the VSO/AAD linking process I needed to add the MSA user@mycompany.co.uk to our AAD, but I could not. The AAD was setup for federation of accounts in the mycompany.com domain, so you would have thought I would be OK, but back in our on-prem AD (the one it was federated to) I had  user@mycompany.co.uk as an email alias for user@mycompany.com. Thus blocked the adding of the user to AAD, hence I could got link VSO to Azure.

The answer was to

  1. Add another MSA account to the VSO instance, one unknown to our AD even as an alias e.g. user@live.co.uk 
  2. Make this user the owner of the VSO instance.
  3. Add the user@live.co.uk MSA to the AAD directory
  4. Make them an Azure Subscription administrator.
  5. Login to the Azure portal as this MSA, once this was done the VSO could be linked to the AAD directory.
  6. I could then make an AAD user (user@mycompany.com) a VSO user and then the VSO owner
  7. The user@live.co.uk MSA could then be deleted from VSO and AAD
  8. I could then login to VSO as  my user@mycompany.com AAD account, as opposed to the old user@mycompany.co.uk MSA account

Simple wasn’t it!

We still had one problem, and that was user@mycompany.com was showing as a basic user in VSO, if you tried to set it to MSDN eligible flipped back to basic.

The problem here was we had not associated the AAD account user@mycompany.com with the MSA account user@mycompany.co.uk in the MSDN portal (see MSDN).

Once this was done it all worked as expected, VSO picking up that my AAD account had a full MSDN subscription.

Source: Rfennell

Installing AirServer on Windows

It’s no secret that I’m a fan of AirServer over AppleTVs for classrooms. The ability to mirror a faculty iPad to a large projector screen turns it into a power educational tool. I even have AirServer installed on an HTPC at home. My extensive use of this software means that I need to be able to install and activate the software in a reproducible way for our classroom computers. What you may not know is that installing AirServer on Windows is not as straightforward as we’d like.

This isn’t entirely AirServer’s fault. The AirPlay protocol (and processing power limitations of your iOS device) mandate that the video streams sent from  your device keep the original encoding of whatever that current random app is showing. AirServer depends on the operating system’s ability to decode these video streams. The variety of video types used in various iOS apps far exceeds what codecs are included out of the box with Windows.

I expect that AirServer could, of course, package the most-used of these codecs with their software (and I expect they do this to some extent already), but there are way too many to get them all in one place, and doing so would add licensing costs to the product that I’m happy to avoid. In order to reliably mirror your device there are still some common and uncommon codecs that you’ll want to be able to handle at the operating system level, as well as an additional networking standard you’ll need to support. In short, there are prerequisites that’s you’ll need to get the most out of AirServer that are not included in the software’s installer. I think AirServer could do more with their Windows installer to make these easy to acquire, but until then I’ve got your back.

While I do need to install AirServer more than most, it’s still not all that often. To avoid mistakes, I keep copies of the prerequisites in the same network folder where I keep the AirServer installer itself, and arrange things in a way that encourages success. Here’s what that folder looks like:


Note how I’ve renamed files so that there is an intuitive flow for the installation process. We’ll go through the steps indicated one by one. AirServer itself has an automatic update mechanism, but most of the other items do not. I want to make sure I’m not pushing obsolete (and possibly insecure) software to my classrooms, and so the first step (Step 0) is to make sure that each of the items I’m using is the most recent (read: fully-patched) version available. I’m considering replacing several of the actual download packages with shortcut files to the download page for the project, to ensure I always get the latest version.

This brings us (at last) to the prereq’s themselves. The full list is available here. The first is Bonjour Print Services for Windows. The documentation says that iTunes is enough, but I’ve had better results when I ensure that the Print Services package is installed. Note that I don’t deploy iTunes to my classroom computers. For home machines, that would be an okay addition. Print Services is a free download from Apple, and it allows your Windows computer to support the multi-cast DNS protocol. I have strong feelings about this protocol that are not fit for public print, but for better or worse you need this for anything Apple, including AirPlay mirroring. This is the most important prerequisite. Without it, AirPlay just won’t work. Next up is QuickTime, also from Apple. You may even already have this one installed, but you’ll need it for the basic compression/decompression used for video rendered and compressed by iOS itself, as well as some app content.

The remainder are various open codec packages for use with Windows DirectShow. The packages combined allow you to play almost anything. Be sure to pick the correct x86 or x64 installer, depending on your operating system type. I also need to mention here that there is a current bug in the iOS YouTube app (YouTube videos still play through iOS Safari) and that some apps use copyright protection for their content and just will not mirror, even on a real AppleTV.

Now at last we come to installing AirServer itself. As you run through the installer, I need to call out a few of the options. The first is that you should NOT activate AirServer during the install process. This is especially important for my classrooms, where I need to support many users, but even on your home computer, if you have more than one user account that may want to use AirServer, do not activate at this time. The other option is whether you want to have AirServer run in the background automatically. For my classrooms, where many users log in and out throughout the day, I’ve found this option can cause problems. If you are the only (or primary) user on the machine, where it’s less common to be logging others in and out of the computer, it’s probably safe to let it run in the background.

Now at last AirServer is installed. However, it’s not activated yet, and won’t let you mirror. So let’s take care of that. To do this, you’ll need your license key. You’ll also need to start a command prompt. When the command prompt is open, enter the following commands:
"%ProgramFiles%App DynamicAirServerAirServerConsole.exe" activate <<License Key>>
"%ProgramFiles%App DynamicAirServerAirServerConsole.exe" set name <<MirrorName>>

Replace “<<License Key>>” with your license key, and “<<Mirror Name>>” with the name you want to show on your iPad or iPhone when you open up the AirPlay control panel to start mirroring. If you don’t activate and set the name in the console, it will only activate for the current user. When other users try to use the software, they’ll have to reactivate it and set their own name. The key will be saved, and they’ll be successful… at first. But it’s a step they shouldn’t have to take, and soon you’ll run out of activations for your license. The console method activates it once for every user on that PC.

Learn to Code in Swift – New iBook special price Nov 19-21, 2014


My latest book, “Learn to Code in Swift” is now available in the iBooks Store! It’s an enhanced iBook that contains 20 instructional videos. To celebrate, we’re running a special between Nov 19-21 at $14.99 (reg. $24.99). If you want to learn to create apps for the iPhone using best practices with Apple’s new and powerful language, this is the place to start! https://itunes.apple.com/us/book/learn-to-code-in-swift/id942956811?mt=11

All the best!
Kevin McNeish
Author: iOS App Development for Non-Programmers book series
Twitter: @kjmcneish

WatchKit is Here! Creating Apps for the Apple Watch

Apple delivers its first version of WatchKit. Check out the highlights!


All the best! 
Kevin McNeish 
Author: iOS App Development for Non-Programmers book series 
Twitter: @kjmcneish 

New Remote Desktop Connection Manager 2.7 Released

Microsoft released a new version of Remote Desktop Connection Manager (RDCMan) 2.7 to the public today.

RDCMan is a central place where you can organize, group, and manage your various Remote Desktop connections. This is particularly useful for system administrators, developers, testers, and lab managers who maintain groups of computers and connect to them frequently. I probably spend more time in RDC Manager than any other application during the day.

The previous version 2.2 was last released in May 2010, so this is a very welcome update. Previous versions lacked some functions and caused excessive CPU utilization on some computers, especially those with Nvidia GPUs. RDCMan was written by Julian Burger, one of the principal developers on the Windows Live Experiences team.

RDCMan 2.7 version is a major feature release. New features include:

  • Virtual machine connect-to-console support.
  • Smart groups.
  • Support for credential encryption with certificates.
  • Windows 8 remote action support (charms, app commands, switch tasks, etc).
  • Support for Windows 8, Windows 8.1 / Windows Server 2012, Windows Server 2012 R2.
  • Log Off Server now works properly on all versions.

Important Upgrade Notes: You should know that when you upgrade, RDCMan will be unable to read any saved encrypted passwords. You will need to re-enter your saved encrypted passwords after installation.

The workaround is to set the “Store password as clear text” checkbox in RDCMan 2.2 for preexisting groups and/or servers. When you upgrade to version 2.7, RDCMan will read the existing passwords and will encrypt them. “Store passwords as plain text” is no longer an option in version 2.7.

Source: Expta

Video card issues during install of Windows 8.1 causes very strange issues

Whilst repaving my Lenovo W520 I had some issues with video cards. During the initial setup of Windows the PC hung. I rebooted, re-enabled in the BIOS the problematic video card and I thought all was OK. The installation appeared to pickup where it left off. However, I started to get some very strange problems.

  • My LiveID settings did not sync from my other Windows 8.1 devices
  • I could not change my profile picture
  • I could not change my desktop background
  • I could not change my screen saver
  • And most importantly Windows Update would not run

I found a few posts that said all of these problems could be seen when Windows was activated, but that was not the issue for me. It showed as being activated, changing the product key had no effect.

In the end I re-paved my PC again, making sure my video cards were correctly enabled so there was no handing, and this time I seem to have a good Windows installation

Source: Rfennell

Spybot Search & Destroy Weekly Update – November 19, 2014


++ Ad.PayPerInstallBox + Firseria
++ DrBoan
+ myPCBackup + OutBrowse
+ AdRotator
+ Win32.Agent.ekyu ++ Win32.Bladabindi.aj + Win32.Downloader.HicrazykA ++ Win32.Injector.bcc + Win32.Ramnit.B ++ Win32.Silly
Total: 2601707 fingerprints in 812513 rules for 7372 products.


Just when you think it is safe..

Azure fails..

Oops. So this is why I couldn’t get to some websites. It is just one more sign pointing to the fragility of new ways. Nothing is ever 100% reliable and that applies to the cloud as much as anything else. You can read more about it here.


Being an old-timer, I am bound to be sceptical, but the laws governing systems and devices haven’t changed since the old days and never will.

That is not to say that I would want to return to the old days because I don’t, but at the same time, my faith level in systems runs low just like it always did.


Update Tuesday – part two.

So, yesterday there was a large update of some 724mb waiting in the wings. It was KB3000850 which is apparently the November 2014 rollup.. See here,,


Not surprisingly, some are claiming doom and gloom and a system which no longer works. I can’t say the same for mine as it is working perfectly at this moment in time

The update took a while to download, and the initial installation seemed to take forever, clicking over 1% every minute and a half. It was getting late and I was in two minds to NOT WATCH because a watched ‘updating computer’ never updates. I think that once beyond maybe 30%, it seemed to fly and I was able to ascertain reliability before turning in for the night.


Out-of-band release for Security Bulletin MS14-068

On Tuesday, November 18, 2014, at approximately 10 a.m. PST, we will release an out-of-band security update to address a vulnerability in Windows.

We strongly encourage customers to apply this update as soon as possible, following the directions in the security bulletin.

More information about this bulletin can be found at Microsoft’s Bulletin Summary page.

Tracey Pretorius, Director Response Communications


Microsoft Security Bulletin Releases Issued: November 18, 2014

The following bulletin has been released.

* MS14-068 – Critical

The following bulletins have undergone a major revision increment.

* MS14-066 – Critical
* MS14-NOV

Bulletin Information:

MS14-068 – Critical

– Reason for Revision: V1.0 (November 18, 2014): Bulletin
– Originally posted: November 18, 2014
– Updated: November 18, 2014
– Bulletin Severity Rating: Critical
– Version: 1.0

MS14-066 – Critical

– Reason for Revision: V2.0 (November 18, 2014): Bulletin revised
to announce the reoffering of the 2992611 update to systems
running Windows Server 2008 R2 and Windows Server 2012. The
reoffering addresses known issues that a small number of
customers experienced with the new TLS cipher suites that were
included in the original release. Customers running Windows
Server 2008 R2 or Windows Server 2012 who installed the 2992611
update prior to the November 18 reoffering should reapply the
update. See Microsoft Knowledge Base Article 2992611 for more
– Originally posted: November 11, 2014
– Updated: November 18, 2014
– Bulletin Severity Rating: Critical
– Version: 2.0


– Reason for Revision: V2.0 (November 18, 2014): Bulletin Summary
revised to document the out-of-band release of MS14-068 and,
for MS14-066, to announce the reoffering of the 2992611 update
to systems running Windows Server 2008 R2 and Windows Server
2012. See the respective bulletins for more information.
– Originally posted: November 11, 2014
– Updated: November 18, 2014
– Version: 2.0

Return of the Netbook..

HP will slap my hands for the title, but it looks like a Netbook, is the same size as a traditional Netbook, is low powered by comparison to a regular notebook, and in my world, that constitutes a NETBOOK.

The HP Stream 11 is not a Netbook (yeah right). Officially, it is a Happy Place, a rather bright happy place that will make you stand out from the crowd.. even in almost total darkness. See below..

HP NetbookApart from the colour, you might be forgiven for thinking that this is just a very bright HP Mini 210, but you would be wrong. Where the old one had an Intel Atom processor, this one has a Celeron.

The Mini 210 had a 10.1” screen , but this one is 11.6” capable of HD, and you get a 32gb SSD + free cloud storage which is not quite the deal of the original 320gb SATA drives in the Mini 210.

I am not knocking the Stream 11, by the way, just the fact that it is not officially a Netbook.

The Happy Place also features ports much as the Mini 210 did, but this time you get USB 3.0 and HDMI, a reputed battery time of around 8 hours, and Bluetooth.

It’s all good, way better than a tablet or Chromebook, and if pink puts you off, there is a baby blue option. Sorry, there is no black model as that would look almost identical to the late Mini 210, and we can’t let that happen, can we.

What does all of this improvement over earlier Netbooks cost? More good news as it comes in at $199, considerably less than its ancestors.


Apparently we now have third Tuesday patching day

Out today is

1. a rerelease of MS14-066 to Server 2012 and Server 2008 R2 to fix a cipher problem that was causing performance issues with Access/SQL, problems with Amazon load balancers.

2. and out of band patch for Kerberos – critical to domain controllers and especially 2008R2 and lower.  Attacker would have to have credentials on the domain first in order to exploit and gain admin rights.

3.  A large Windows 8.1/server 2012 r2 update that (my understanding) is backporting some of the Windows 10 security enhancements back to Windows 8.1.  http://support.microsoft.com/kb/3000850

I would install number 1, wait on 2 and 3.


Recent Comments