file system Archives

Tech Optimizer

March 28, 2025

Why SQL Server Is Still Worth It — Redmondmag.com

SQL Server Enterprise Edition costs approximately ,000 per CPU core, with an additional 23 percent for Software Assurance. SQL Server provides a mature solution for high availability and backups, integrating seamlessly with Windows Server Failover Clustering. PostgreSQL offers three primary backup methods: SQL dump, file system-level backup (requiring database shutdown), and continuous archiving, with the latter being complex to implement. SQL Server typically offers more integrated features out of the box, such as temporal tables and graph databases, while PostgreSQL requires extensions. SQL Server caches execution plans, which can reduce CPU usage but may lead to suboptimal plans. SQL Server Management Studio (SSMS) provides a superior user experience compared to PGAdmin. SQLPackage for SQL Server is considered better than available options for PostgreSQL, and the SQL Server community is noted for its support and engagement.

Winsage

March 28, 2025

Microsoft’s ReFS file system resurfaces in latest Windows 11 build

Microsoft's Resilient File System (ReFS) was introduced in 2012 with Windows Server 2012 and has been relatively obscure compared to NTFS. It has recently emerged as an optional feature in a preview build of Windows 11 (Build 27823), allowing users to format partitions with a "Flexible Storage" option, offering a choice between NTFS and ReFS. ReFS is designed for larger storage capacities, can format partitions up to 35 petabytes, and supports single files as large as the entire volume. It includes advanced features like block cloning and file-level snapshots but lacks support for certain NTFS functionalities such as bootable volumes and file compression. Currently, ReFS is primarily aimed at enterprise and server environments, but its inclusion in Windows 11 may indicate plans for broader consumer access. The open-source community is developing unofficial documentation for ReFS, and Paragon Software has created a closed-source ReFS driver.

Winsage

March 19, 2025

How to transfer your Windows 11 setup to a new hard drive — no extra app required

Users of Windows 11 may need to upgrade their hard drive due to space constraints or the drive nearing the end of its lifespan, typically within three to five years. They can create a system image backup using the Backup and Restore feature in Windows 11. To create a system image, users must access the Control Panel, navigate to System and Security, and select "Create a system image." The backup can be saved on a hard disk, and users can choose to include additional drives. To create a USB bootable media for recovery, users should visit the Windows 11 download page, download the Media Creation Tool, and follow the prompts to create a USB flash drive. Replacing the hard drive involves powering down the computer, removing the cover, disconnecting cables, and installing the new drive. After installation, users can restore the previous Windows 11 installation from the system image backup by booting from the USB drive and selecting "System Image Recovery." If the new drive has unallocated space, users can create a new partition or expand the existing setup partition. To create a data partition, users can access Settings, navigate to Storage, and create a new volume from unallocated space. To expand the setup partition, users must delete the recovery partition, extend the installation drive, and recreate the recovery partition using Command Prompt and Disk Management. Finally, users should re-enable BitLocker after completing these processes.

Winsage

March 13, 2025

Microsoft Patches a Whopping Seven Zero-Days in March

Microsoft's March Patch Tuesday revealed over 50 new vulnerabilities, including seven zero-day vulnerabilities, six of which are currently being exploited. Key vulnerabilities include: - CVE-2025-26633: Security feature bypass in Microsoft Management Console, CVSS score 7.0. - CVE-2025-24993: Remote code execution (RCE) vulnerability in Windows NTFS, CVSS score 7.8. - CVE-2025-24991: Information disclosure vulnerability in Windows NTFS, CVSS score 5.5. - CVE-2025-24985: RCE vulnerability in Windows Fast FAT File System Driver, CVSS score 7.8. - CVE-2025-24984: Information disclosure vulnerability in Windows NTFS, CVSS score 4.6. - CVE-2025-24983: Elevation of privilege (EoP) vulnerability in Windows Win32 Kernel Subsystem, CVSS score 7.0. - CVE-2025-26630: RCE vulnerability in Microsoft Access, CVSS score 7.8. This month's patch list includes 23 EoP and 23 RCE vulnerabilities, with all six critical vulnerabilities being RCEs. Notably, CVE-2025-24084 affects the Windows Subsystem for Linux (WSL2) kernel, and CVE-2025-26645 impacts the remote desktop client (RDP), allowing attackers to achieve remote code execution on vulnerable clients.

Winsage

March 12, 2025

CISA Warns of Exploitable Fast FAT Vulnerability in Microsoft Windows

The Cybersecurity and Infrastructure Security Agency (CISA) has issued an alert regarding a critical vulnerability in the Microsoft Windows Fast FAT File System Driver, identified as CVE-2025-24985. This vulnerability involves an integer overflow issue that could allow unauthorized attackers to execute malicious code on compromised systems, particularly requiring physical access to exploit it. It falls under the Common Weakness Enumeration (CWE) category 190, which pertains to integer overflows. CISA recommends users apply patches from Microsoft, follow Binding Operational Directive (BOD) 22-01 guidance for cloud services, and consider discontinuing use of the affected product if no mitigations are available. There is currently no evidence linking this vulnerability to active ransomware campaigns, but users are urged to remain vigilant.

Winsage

March 12, 2025

Critical Windows Warning As 6 Zero-Day Attacks Confirmed—Update Now

In March, Microsoft confirmed six zero-day vulnerabilities in its Patch Tuesday security announcement, marking an increase from five reported in January and February combined. The March update includes a total of 57 Common Vulnerabilities and Exposures (CVEs), with all six zero-days classified as critical. These vulnerabilities can be addressed with a single cumulative update, requiring no additional configuration steps post-patch. The zero-days affect critical components such as the Microsoft Management Console, NTFS, Fast FAT, and the Win32 Kernel Subsystem. The specific vulnerabilities are: 1. CVE-2025-26633: Security feature bypass in the Microsoft Management Console, requiring social engineering to exploit. 2. CVE-2024-24993: Heap-based buffer overflow in Windows NTFS, allowing unauthorized code execution through a specially crafted virtual hard disk. 3. CVE-2025-24991: Information disclosure vulnerability affecting Windows 10 to 11 and Server 2008 to 2025, deemed critical. 4. CVE-2025-24985: Vulnerability in the Windows fast FAT file system driver, posing a risk of remote code execution via a specially crafted virtual hard disk. 5. CVE-2025-24983: Elevation of privilege vulnerability in the Windows Win32 kernel subsystem, potentially granting unauthorized access to sensitive data. 6. CVE-2025-24984: Another information disclosure vulnerability in Windows NTFS, also affecting the same range of Windows editions and considered critical.

Winsage

March 12, 2025

Microsoft patches Windows Kernel zero-day exploited since 2023

ESET has identified a zero-day vulnerability in the Windows Win32 Kernel Subsystem, designated as CVE-2025-24983, which has been exploited since March 2023. This vulnerability, stemming from a use-after-free weakness, allows low-privileged attackers to escalate access to SYSTEM privileges without user interaction. It primarily affects older Windows versions, including Windows Server 2012 R2 and Windows 8.1, but also poses risks to newer versions like Windows Server 2016 and Windows 10 (build 1809 and earlier). The exploit was first seen in the wild in March 2023, targeting systems compromised by the PipeMagic malware. Microsoft has addressed this vulnerability in the recent Patch Tuesday updates. Additionally, five other zero-day vulnerabilities were also patched, and CISA has mandated that Federal Civilian Executive Branch agencies secure their systems by April 1st.

Winsage

March 12, 2025

March Patch Tuesday fixes 6 Windows zero-day exploits

A total of 57 unique vulnerabilities have been addressed in Microsoft's latest security updates, including six zero-day exploits that require immediate attention. The Windows operating system accounts for the majority of these vulnerabilities. Among them is a critical security feature bypass (CVE-2025-26633) with a CVSS rating of 7.0, which requires user interaction for exploitation. Three additional zero-day vulnerabilities are found in the Windows NTFS, including two information disclosure vulnerabilities (CVE-2025-24984 and CVE-2025-24991) and a critical remote-code execution vulnerability (CVE-2025-24993). Another zero-day vulnerability (CVE-2025-24985) affects the Windows Fast FAT driver with a CVSS score of 7.8 and also requires user interaction. The final zero-day vulnerability (CVE-2025-24983) is an elevation-of-privilege flaw with a CVSS score of 7.0. Additionally, a notable public disclosure involves a remote-code execution vulnerability in Microsoft Access (CVE-2025-26630) with a CVSS score of 7.8. Microsoft has also republished four older vulnerabilities with updates. Furthermore, Microsoft is preparing to implement stricter authentication measures for Windows machines, transitioning to mandatory "Enforcement" mode for certain vulnerabilities next month.

Winsage

March 11, 2025

Microsoft March 2025 Patch Tuesday fixes 7 zero-days, 57 flaws

Microsoft released security updates on March 2025 Patch Tuesday, addressing 57 vulnerabilities, including six classified as critical related to remote code execution. The vulnerabilities are categorized as follows: 23 Elevation of Privilege, 3 Security Feature Bypass, 23 Remote Code Execution, 4 Information Disclosure, 1 Denial of Service, and 3 Spoofing. The updates specifically address six actively exploited zero-day vulnerabilities and one publicly disclosed zero-day vulnerability. The zero-day vulnerabilities include: 1. CVE-2025-24983 - Elevation of Privilege in Windows Win32 Kernel Subsystem. 2. CVE-2025-24984 - Information Disclosure in Windows NTFS. 3. CVE-2025-24985 - Remote Code Execution in Windows Fast FAT File System Driver. 4. CVE-2025-24991 - Information Disclosure in Windows NTFS. 5. CVE-2025-24993 - Remote Code Execution in Windows NTFS. 6. CVE-2025-26633 - Security Feature Bypass in Microsoft Management Console. The publicly disclosed zero-day is: - CVE-2025-26630 - Remote Code Execution in Microsoft Access. A comprehensive list of resolved vulnerabilities includes various CVE IDs and their respective titles and severities, with several vulnerabilities affecting Microsoft Office products, Windows components, and Azure services.

Winsage

March 10, 2025

How to Improve Game Data Loading Times in Windows

Most modern games rely on real-time asset loading, making storage choice crucial for optimal gaming. A slow SSD or HDD can lead to long loading times and performance issues. 1. Disabling NTFS Last Access Time can improve loading speeds by reducing disk overhead. This can be done via Command Prompt with the command: fsutil behavior set disablelastaccess 1. 2. Enabling Large System Cache can enhance performance for games with substantial assets, requiring at least 16 GB of RAM and editing the Windows Registry. 3. Disabling antivirus scanning for the game folder can reduce loading times by preventing real-time scans. This can be done through Windows Security settings. 4. Using an exFAT drive can efficiently process large files, which may benefit games with sizable assets. This involves creating a new volume in Disk Management. 5. Disabling Full-Screen Optimizations can reduce input lag and improve performance by changing settings in the game's executable properties. 6. Increasing Shader Cache Size can improve loading times, with Nvidia users advised to set it to 10 GB or Unlimited in the Nvidia Control Panel. 7. Using a third-party cache management program like PrimoCache can enhance loading times by reserving RAM for caching frequently used programs.