我有一台 Windows 10 家庭版的电脑，无法访问 WD Mybookworld CIFS。具体症状是访问 \\wd_ip_address 就被拒绝，但该 IP 地址可以被 ping，也可以访问 WD Mybookworld 的 web UI。
为了找出问题所在，我进行了完整的交叉替换测试。我先试着用它借用一个 IP 访问 WD Mybookworld CIFS，被拒绝，该 IP 在其他电脑上使用正常；然后用它来访问同一网络内的另一台 NAS 下的 CIFS，这是一台自建的 NAS，装的系统是 FreeNAS，可以访问；接着用另一台 Windows 10 家庭版的电脑访问了 \\wd_ip_address，也能访问。所以问题仅限于一台特定的电脑访问特定的 NAS，查看了 WD Mybookworld 里的设置，没找到能拒绝特定 IP 访问的设置，即使有，似乎也不太可能做过这样的限制。
找啊找，最后发现是 Windows 10 “SMB 1.0/CIFS File sharing support” 被关闭了，需要在控制面版 >> 程序和功能 >> 启用或关闭 Windows 功能里重新启用。估计 WD Mybookworld CIFS 用的是 SMB 1.0，而 FreeNAS 用了更高版的 SMB，所以这个 Windows 共享文件夹的问题只影响了特定的机型。
我还是不懂怎么就把这一台 Windows 10 “SMB 1.0/CIFS File sharing support” 给关闭的，反正感觉 Windows 10 毛病挺多的。
It was my first time to see a hacker is close to me.
I was flooded with notification emails from Google Adsense subjected “Your AdSense Publisher Policy Violation Report” from yesterday afternoon. I immediately tried to visit either blog.goods-pro.com or goods-pro.com to see what was going on. I got a scary warning message saying either site contains malware by Chrome and Firefox (on desktop. Chrome for Android does not do safe browsing check. I don’t know if Firefox does so.)
It took me a while to find out which site contains malware. As blog.goods-pro.com was using AdSense but goods-pro.com wasn’t, at first I thought it was blog.goods-pro.com that were hacked. blog.goods-pro.com was powered by WordPress, so I went through all the plugins and compared with my other WordPress sites, I didn’t find a suspicious plugin.
Then I started to look into the main domain site goods-pro.com, which was installed with Magento. It took me quite a while for me to know there was a good tool from https://sitecheck.sucuri.net/ to check what malware was on the site.
Then it took me another while to find out how the hacker did it. Basically the hacker compromised one of admin’s (not mine) password, and add the following code in three places (design/footer/copyright, design/head/includes, design/footer/absolute_footer) in Magento System >> Configuration.
hersosx2sk.tk and mytokeasn2s.ru are malware sites. And if a site links to them, it is regarded as malware site as well.
When I disabled access of compromised admin accounts (without removing the injected code), I found Chrome and Firefox stopped giving that scary warnings, and visits to hersosx2sk.tk or mytokeasn2s.ru are redirected to Google. I don’t understand how Google can take control of these domains so quick, but anyway, it is not my business.
At last I removed all malware codes and requested AdSense a review of blog.goods-pro.com.
I have tried almost every VOIP soft phone app on Google Play. Before I found GS Wave, I reckoned Zoiper app was the best soft phone, thus I paid for its premium version to get its premium feature of video call.
However I never got this feature working. I wanted to see the video from my video door phone on my mobile with Zoiper. My video door phone supports H264 video codec but Zoiper supports VP8 unless I pay Zoiper again just for H264 codec . Unlike audio codec while a VOIP server can translate audio codec between clients, video codec is said to be P2P. (There may be a way of video codec translation, but I don’t know how.)
I had video calls working between my video door phone and desktop SIP phones which are “hard phones” with H264 built in. And I had audio calls working on all devices. So I was not desperate for video on Zoiper.
Zoiper has a major defect. It cannot stay online 24/7 on latest Android version (I tested on two Huawei Mate 8 and one P9) or iOS. Many times status bar shows it is online but actually it is not reachable. Zoiper was reliable on Android 4.x.x. I guess Zoiper “forgets” to re-register itself when OS goes into sleep. For above reasons I am reluctant to pay Zoiper any more money.
Recently I visited Fanvil website and discovered Fanvil had developed a soft phone called “Vdroid” for free download. To my surprise, Vdroid integrated G729 audio codec and H264 video codec. They are premium codec as on Zoiper. (Later on I learnt G729 patent expired on 1st Jan, 2017 but Zoiper is still selling G729 for money. I knew nothing about H264.) However Vdroid has too many bugs and is not a mature software.
Then I thought other VOIP device manufacturers might have their own soft phones for public. I checked Grandstream, Yealink and Cisco but only found Grandstream generously offering GS Wave. GS Wave has both Android and iOS version, and both works reliably, and both has G729 and H264 built in for free! I cannot wait any longer to recommend GS Wave to everyone. Google Play is overwhelmed by other apps for search results of “sip” or “voip”, and GS Wave is nowhere in the ranking. But trust me, it is the best one.
但是我还是决定换点什么看看。我有几个超级强悍的放大器，去年 Wickes clearance 时预存的货，但是由于新放大器采用更可靠的 F type 接口，而老放大器用的是普通 TV 插头，换放大器意味着全部线头要重做。我想放大器失效的可能性较小，同时也想偷懒，所以这次先换天线。我认为当初电视天线安装公司装的天线不够灵敏，才造成这信号时好时不好的问题。经过一番挑选，买了一款高增益、体积也是巨无霸型的天线。
Why DrayTek SmartVPN does not work in Windows 10? Well, it will work, but it does not work out of box.
After installing SmartVPN in Windows 10, I set SmartVPN client to use remote gateway and DNS, then I can see VPN connection is green (as usual), and I can get public IP of remote gateway. However, the traffic is not fully routed to remote gateway. From the symptom I guess DNS is not routed to remote.
To fix this problem, I have to disable “Automatic metric” for TCP/IPv4 property of VPN connection, and manually set “Interface metric” to a figure that is smaller than the one of Local connection or Wi-Fi connection, whichever I am using to connect to the Internet.
The theory behind is simple – the smaller metric is, the higher priority of the route. By default settings Windows 10 cannot work out a suitable metric for VPN connection, but Windows 7 can. This is another proof of Windows is getting more stupid.