From:Petri
Introduction
Trying to locate a specific event in the Windows Event Viewer is kind of looking for the proverbial needle in the haystack. Individual processes can fire off dozens of events in a minute’s time, effectively burying the events that you are looking for.
This isn’t a huge problem if you know exactly what it is that you are looking for. For instance, Microsoft has always made it pretty easy to locate specific event IDs in the Event Viewer. If you don’t have a specific piece of information to search on though, finding the event that you are looking for can be a little tough.
阅读全文
西瓜注:最近在研究Windows Server 2008的安全检查和加固,今天刚装了R2的系统,发现在2008里面已经不使用boot.ini文件了,而改为bcdedit.exe了,从网上找了一篇文章学习一下,不过是介绍easybcd这个软件的。
From:Arlindo’s Blog
I am reinstalling one of my work machines which is a small server with Dual Core CPU and 4GB of RAM. I have divided my 160GB SATA disk in 5 partitions, one for the Windows Server Core, one for Windows Home Server, one for Windows Server 2008 and one for the Windows Server Virtualization environment. My fifth partition is for storing data.
Now after installing the second Windows Server 2008 OS I get the same description into the bootloader. Because we are not using any boot.ini file anymore I need to change the boot order, description through a tool called bcdedit.exe.
阅读全文
