A customer wanted to write a process that could detect that it is nearing its job memory limit.

Now, if you were asking about system memory limits rather than job memory limits, you would use the Create­Memory­Resource­Notification to create a “low memory” notification. As noted in the documentation, this notification is delivered to all programs simultaneously. It talks about the system-wide memory situation, ignoring any additional memory limits imposed by your process being in a job.

They asked a large language model for help, and the model provided some very nice code that was based on wishful thinking: It produced a window procedure that responded to the WM_LOW­MEMORY message. Too bad there is no such message.

I mean, if we’re going to allow code based on wishful thinking, then everybody should just replace their program with a single function call to Do­My­Work­For­Me().

For the case of a process discovering that it is nearing or has reached its memory limit, the news is not promising.

If you have JOB_OBJECT_SET_ATTRIBUTES access to a job (which you get automatically when you call Create­Job­Object), you can set its Job­Object­Notification­Limit­Information and Job­Object­Notification­Limit­Information2 to specify the points at which the job will generate a limit violation notification. (A job that exceeds these limits continues to run. This is just the point at which the system will generate a notification.) When the limit is reached, the job object delivers a JOB_OBJECT_MSG_NOTIFICATION_LIMIT completion to its associated completion port.

The first catch is that for a process to monitor notifications for itself, it needs a handle to the job object that contains it. And with the introduction of nested jobs, it’s possible that there is more than one such job object, so you have to get the one whose limit you are interested in.

The second catch is that the notification is delivered to the job object’s completion port, and a job object can be associated with only one completion port at a time. And the code that created the job object has probably already attached the job to its own completion port so that it can receive these very notifications from it.¹

The system does not have a way for a process to retrieve a handle to its enclosing job. This would be like providing a way for a prisoner to get the keys to their own cell. If you want a process to get a handle to its own job, you’ll have to arrange for it yourself. For example, the job creator could mark the job object handle as inheritable and allow it to be inherited by the child process. Or it could duplicate the job object handle into the child process directly. But it has to be your idea to give the prisoner the keys to their own cell.

Still, even with the job object handle, the child process can’t listen to the job creator’s completion port.² The job creator would have to forward the notifications to the child process by some custom mechanism.

The original philosophy of job objects was that the processes inside a job have been placed by the job creator on a type of double secret probation. They don’t know that their actions are being monitored or that they are operating under any unusual constraints. They just go about their usual business, but if they step out of line, then boom, the job object banhammer comes down. Giving a process the ability to access the job that constrains it would negate the whole “double-secret” nature of job objects.³

¹ Completion ports cannot be shared between processes because I/O completions contain pointers, and pointers are not valid across processes.

² The child process could reassociate the job object with a new completion port that belongs to the child process, though this would be a rather rude thing to do to somebody you are presumably cooperating with, since that means that the job creator no longer receives notifications about the job.

³ Over time, a few small places have been created by which a process can respond to being placed in a job object. The CREATE_BREAKAWAY_FROM_JOB flag for the Create­Process function lets a process say, “If I am running in a job, then this process that I’m creating should be placed outside the job.” Whether that request is honored is another story, but the existence of the flag itself betrays the possibility.⁴

And a process can use Is­Process­In­Job to detect whether it is on probation, so it’s not double-secret any more, though the only question you can ask is “Am I on probation?” You don’t find out what the terms of the probation are.

⁴ It’s like if you hear rumors about a Silver Star Pass, but everybody you ask just says, “Sorry, I don’t know what you’re talking about.” But then you find deep in the fine print or some document a sentence like “This restriction does not apply to Silver Star Passes.” You don’t know what a Silver Star Pass is, but at least now you know that it exists, or at least existed at the time that text was written.

The post How can I detect that the system is running low on memory? Or that my job is running low on memory? appeared first on The Old New Thing.

Looking to give your .NET MAUI apps a modern, premium look? Syncfusion .NET MAUI Liquid Glass UI brings glassmorphism to cross-platform applications, helping you build sleek, immersive interfaces for iOS and Mac Catalyst.

What is Liquid Glass UI?

Liquid Glass leverages Apple’s UIVisualEffectView to deliver high-performance blur effects on iOS and macOS. Syncfusion brings this capability to all .NET MAUI controls, offering:

• Blurred backgrounds for depth and elegance.
• Adaptive color tinting that blends with your app theme.
• Light refraction effects for a polished, modern appearance.

These features create a visually rich interface while maintaining readability and accessibility across platforms.

Why does it matter?

Today’s users expect apps that feel premium and intuitive. Glassmorphism, with its transparency, depth, and subtle shadows, meets that expectation. Syncfusion’s .NET MAUI Liquid Glass effect lets you design layered, elegant UIs for cross-platform apps without compromising performance.

Key benefits of Liquid Glass UI

• Native performance: Built on Apple’s UIVisualEffectView.
• Cross control support: Works with DataGrid, Charts, Editors, and more
• Customizable: Adjust blur style, corner radius, and shadow effects
• Modern design: Adds a sleek, glass-like finish.
• Accessibility friendly: Honors system theme settings.

How to apply the Liquid Glass effect in .NET MAUI?

Applying the .NET MAUI Liquid Glass effect is simple and requires minimal code changes. Here’s how to enable and configure it in the Image Editor control:

Prerequisites

Before you begin, ensure that you have the following:

• .NET 10
• macOS 26 or later
• iOS 26 or later

These requirements guarantee compatibility and optimal performance for your development environment.

Step 1: Wrap the control

Start by using SfGlassEffectView from Syncfusion.Maui.Core to apply blur and translucency to your UI.

Step 2: Enable the Liquid Glass effect

Next, set the EnableLiquidGlassEffect property to true on the control to activate the effect.

Step 3: Customize the background

For a consistent look, make the control and toolbar backgrounds transparent.

Here are the key properties you can configure:

• EffectType: Choose Regular (blurred) or Clear.
• CornerRadius: Round the corners for a softer design.
• EnableShadowEffect: Add depth to the UI.
• BackgroundColor: Apply a tint for visual appeal.

Refer to the XML code example below.

<Grid>
    <core:SfGlassEffectView EffectType="Regular" CornerRadius="20" Background="#007AFF">
        <imageEditor:SfImageEditor x:Name="imageEditor"
                                   Background="Transparent"
                                   SelectionStroke="#007AFF"
                                   Source="editorimage.png"
                                   EnableLiquidGlassEffect="True">
            <imageEditor:SfImageEditor.ToolbarSettings>
                <imageEditor:ImageEditorToolbarSettings Background="Transparent"
                                                        Stroke="Transparent"/>
            </imageEditor:SfImageEditor.ToolbarSettings>
        </imageEditor:SfImageEditor>
    </core:SfGlassEffectView>
</Grid>

Note: Combine Liquid Glass effect with gradients and shadows for a modern UI. Experiment with EffectType and CornerRadius to create unique designs. For more details, check the official documentation.

After executing the above code example, you’ll see the transformation: previously, the UI was flat and static, but with the Liquid Glass effect applied, it becomes an elegant, frosted glass design with depth, as shown in the following image.

GitHub reference

Explore demos on GitHub and start using the .NET MAUI Liquid Glass effect today.

Supercharge your cross-platform apps with Syncfusion's robust .NET MAUI controls.

Try It Free

Conclusion

Thanks for reading! In this blog, we’ve explored the new Liquid Glass UI effect in Syncfusion .NET MAUI controls introduced in the Essential Studio 2025 volume 4 release. Check out our Release Notes and What’s New pages to see the other updates in this release, and leave your feedback in the comments section below.

If you’re a Syncfusion user, you can download the latest setup from the license and downloads page. Otherwise, you can download a free 30-day trial.

You can contact us through our support forums, support portal, or feedback portal. We are always happy to assist you!

Is it bald faced lie, or bold faced lie? Coming down the pike? Or pipe? Coleslaw, or cold slaw?

Google's AI is now even smarter, and more versatile.

From Donald Trump to DOGE to Chinese hackers, this year the internet's chaos caused outsized real-world harm.

Understanding Windows Settings URIs and How to Use Them in Enterprise Environments

Windows provides a powerful and flexible management framework that enables organizations to configure, restrict, or simplify the Settings experience for their users. One of the key mechanisms behind this framework is the ms-settings: URI scheme — a consistent, internal navigation system that defines how each Settings page in Windows is accessed.

If you have ever opened Windows Settings and navigated to Privacy → Camera, you were effectively visiting a page identified by a specific internal URI:

ms-settings:privacy-webcam

These URIs exist for virtually every part of the modern Settings interface — from Windows Update to Bluetooth, Accounts, and Accessibility. Administrators and automation tools can call these URIs directly to open pages, but they can also use them for more advanced purposes, such as controlling which pages are available to users through Group Policy or MDM.

What Are ms-settings URIs?

Each page within Windows Settings has an internal URI (Uniform Resource Identifier) that begins with the prefix ms-settings: followed by a descriptive identifier. For example:

• ms-settings:windowsupdate – Windows Update
• ms-settings:bluetooth – Bluetooth settings
• ms-settings:privacy-microphone – Microphone permissions
• ms-settings:network-wifi – Wi-Fi configuration

Typing any of these URIs into Win + R or a command prompt immediately opens the corresponding Settings page. To open the camera settings, for example:

The corresponding Powershell command would be:

Start-Process "ms-settings:privacy-webcam"

These same URIs are also what Group Policy and Intune use when defining visibility rules for Settings. Over time, new pages and features are added to Windows, and therefore new URIs are introduced. Most of the available URIs are documented here:

https://learn.microsoft.com/en-us/windows/apps/develop/launch/launch-settings#ms-settings-uri-scheme-reference

Having a reliable way to extract these URIs directly from Windows helps administrators maintain accurate and consistent configuration policies across versions.

Why ms-settings URIs Matter to Enterprises

In enterprise environments, Windows devices are rarely unmanaged. Organizations typically enforce baseline configurations to meet security, usability, and compliance requirements. Control over the Settings experience can be a crucial part of that strategy. Common scenarios include:

• Kiosk and shared PCs – where users should not modify system or network settings.
• Education or classroom devices – limiting what students can access or change.
• Corporate desktops – ensuring consistent, compliant configurations across all departments.
• Call center terminals or point-of-sale systems – providing only task-relevant options.
• High-security workstations – preventing changes to privacy, update, or device settings.

By controlling access to specific Settings pages, IT administrators can:

• Reduce accidental misconfiguration.
• Lower support costs.
• Improve compliance posture.
• Simplify user experience for task-focused roles.
• Prevent exposure of system areas that are centrally managed or locked down.

Managing Settings Visibility with Group Policy

Windows includes a built-in Group Policy setting that allows administrators to control which pages in the Settings app are visible to users.
Policy location:

Computer/User Configuration → Administrative Templates → Control Panel → Settings Page Visibility

This policy uses a semicolon-separated list of rules that reference Settings pages by their ms-settings identifiers. The part after the colon is what the policy recognizes. For example:

Hide selected pages

hide:privacy-webcam;bluetooth;display

Show only selected pages

showonly:windowsupdate;about

Administrators can combine these directives to tailor the Settings experience precisely to the needs of their organization. This approach is particularly useful in locked-down environments where users have a limited set of configuration options, or where privacy and security policies mandate restricted access to certain features. Find more information about managing Settings URIs here: https://learn.microsoft.com/en-us/windows/client-management/client-tools/manage-settings-app-with-group-policy

The Challenge: Keeping Visibility Rules Current

The Windows Settings app evolves continuously. With each new feature update or release, new categories, pages, and URIs may appear. For administrators maintaining long-term device configurations, that means GPO lists need to be reviewed and updated regularly.

While Microsoft provides extensive documentation for the most common pages, enterprise administrators often need a complete and current list of all URIs available on the system they are managing. This ensures that policies remain accurate and compatible, even when upgrading from one Windows build to another.

Introducing Get-MSSettingsURIs.ps1

To simplify this process, I created a small PowerShell script called Get-MSSettingsURIs.ps1.

This script scans the system’s SystemSettings.dll file — the core component behind the modern Settings interface — and extracts every ms-settings: URI it contains. Because it reads directly from the operating system, it always reflects exactly what that Windows build supports.

You can use the script to:

• Discover all current Settings URIs on any Windows device.
• Compare differences between Windows versions (e.g., 23H2 → 25H2).
• Build or update your Group Policy “Settings Page Visibility” configuration.
• Validate that newly introduced Settings pages are correctly managed.

param( [string]$Path = "C:\Windows\ImmersiveControlPanel\SystemSettings.dll", [string]$OutFile, [switch]$GpoKeysOnly ) Set-StrictMode -Version Latest $ErrorActionPreference = 'Stop' if (-not (Test-Path -LiteralPath $Path)) { throw "Datei nicht gefunden: $Path" } # --- High-performance Scanner in C# (compiled on-the-fly) --- $cs = @" using System; using System.Collections.Generic; using System.IO; using System.Text; public static class MsSettingsScanner { static readonly byte[] AsciiPrefix = Encoding.ASCII.GetBytes("ms-settings:"); static readonly byte[] Utf16Prefix = Encoding.Unicode.GetBytes("ms-settings:"); public static List<string> ExtractAll(string filePath) { byte[] data = File.ReadAllBytes(filePath); // fast read var set = new HashSet<string>(StringComparer.OrdinalIgnoreCase); foreach (var s in FindAscii(data)) set.Add(s); foreach (var s in FindUtf16(data)) set.Add(s); var list = new List<string>(set); list.Sort(StringComparer.OrdinalIgnoreCase); return list; } // ---- ASCII ---- static IEnumerable<string> FindAscii(byte[] data) { foreach (int idx in FindAll(data, AsciiPrefix)) { int i = idx + AsciiPrefix.Length; var sb = new StringBuilder("ms-settings:"); while (i < data.Length) { char c = (char)data[i]; if (!IsValidUriChar(c)) break; sb.Append(c); i++; } yield return sb.ToString(); } } // ---- UTF-16LE ---- static IEnumerable<string> FindUtf16(byte[] data) { foreach (int idx in FindAll(data, Utf16Prefix)) { int pos = idx + Utf16Prefix.Length; var sb = new StringBuilder("ms-settings:"); // 2-Byte-Steps after the prefix (LE). Accept only ASCII (hi=0). while (pos + 1 < data.Length) { byte lo = data[pos]; byte hi = data[pos + 1]; if (hi != 0) break; // only ASCII characters char c = (char)lo; if (!IsValidUriChar(c)) break; sb.Append(c); pos += 2; } yield return sb.ToString(); } } // Boyer–Moore–Horspool over Bytes (fast) static IEnumerable<int> FindAll(byte[] haystack, byte[] needle) { int n = haystack.Length, m = needle.Length; if (m == 0 || n < m) yield break; int[] skip = new int[256]; for (int i = 0; i < skip.Length; i++) skip[i] = m; for (int i = 0; i < m - 1; i++) skip[needle[i]] = m - 1 - i; int pos = 0; int last = m - 1; while (pos <= n - m) { int j = last; while (j >= 0 && haystack[pos + j] == needle[j]) j--; if (j < 0) { yield return pos; pos += m; // next possible start } else { pos += skip[haystack[pos + last]]; } } } // valid characters after "ms-settings:" static bool IsValidUriChar(char c) { if ((c >= 'a' && c <= 'z') || (c >= 'A' && c <= 'Z') || (c >= '0' && c <= '9')) return true; switch (c) { case '-': case '_': case '.': case ':': case '/': case ';': case '?': case '&': case '=': case '#': case '%': case '+': case ',': case '@': return true; default: return false; } } } "@ # Make sure to only compile once per session $loaded = [AppDomain]::CurrentDomain.GetAssemblies() | Where-Object { $_.GetTypes() -as [type] } | Where-Object { $_.GetType("MsSettingsScanner") } if (-not $loaded) { Add-Type -TypeDefinition $cs -Language CSharp -IgnoreWarnings } $uris = [MsSettingsScanner]::ExtractAll($Path) if ($GpoKeysOnly) { $uris = $uris | ForEach-Object { if ($_ -like 'ms-settings:*') { $_.Substring(12) } else { $_ } } | Where-Object { $_ } } if ($OutFile) { $uris | Set-Content -LiteralPath $OutFile -Encoding UTF8 Write-Host ("Fertig. {0} Einträge → {1}" -f $uris.Count, $OutFile) } else { $uris Write-Host ("`nTotal: {0}" -f $uris.Count) }

How the Script Works

At a high level, Get-MSSettingsURIs.ps1 reads binary data from C:\Windows\ImmersiveControlPanel\SystemSettings.dll and searches for all strings that match the ms-settings: pattern. It supports both ASCII and Unicode encodings to ensure no identifiers are missed.

It then sorts and outputs the unique list of URIs. You can optionally format the results to make them directly usable in a Group Policy setting. Because the script runs locally and reads system files, it does not require any administrative privileges beyond read access to the Windows directory.

Example Usage

To run the script with default settings:

.\Get-MSSettingsURIs.ps1

This outputs a complete list of all ms-settings: URIs found in the current Windows installation. If you want the results formatted for direct use in Group Policy (without the ms-settings: prefix):

.\Get-MSSettingsURIs.ps1 -GpoStyle

To scan a copy of SystemSettings.dll from another Windows build (for testing or preparation):

.\Get-MSSettingsURIs.ps1 -Binary "C:\Temp\SystemSettings.dll"

Example Output

Standard output might look like this:

ms-settings:privacy-webcam ms-settings:privacy-microphone ms-settings:windowsupdate ms-settings:network-proxy ms-settings:bluetooth ms-settings:display ...

When using the -GpoStyle parameter, the output is trimmed for direct use in Group Policy:

privacy-webcam privacy-microphone windowsupdate network-proxy bluetooth display ...

Integrating the Script Into IT Operations

Once you have the list of Settings URIs, you can automate several key tasks:

• Baseline validation – Ensure the same visibility configuration applies across device groups.
• Upgrade preparation – Before deploying a new Windows release, compare URI lists to identify new or renamed pages.
• Compliance auditing – Verify that restricted settings remain hidden as expected.
• Kiosk image building – Generate a minimal set of allowed pages for kiosk or shared devices.
• Automation – Integrate the PowerShell output into configuration pipelines, Intune scripts, or Group Policy templates.

Because the script runs without external dependencies, it can easily be distributed as part of enterprise configuration management or imaging workflows.

Example Workflow for Administrators:

1. Run the PowerShell script on a reference Windows build.
2. Save the resulting URI list to a text file, such as MSSettings_URIs_23H2.txt.
3. Use the -GpoStyle option to generate a GPO-ready list.
4. Configure the Settings Page Visibility policy in Group Policy or Intune.
5. Optionally rerun the script after major OS updates to check for new entries.

By incorporating this simple step into your management process, you ensure that every system in your environment reflects the intended configuration and that new Settings pages introduced by future Windows versions are quickly identified.

Conclusion

The ms-settings: URI system is one of Windows’ most useful yet under-appreciated administrative capabilities. For enterprises that depend on configuration consistency, compliance, or controlled user experiences, understanding and managing these URIs is key.
The Get-MSSettingsURIs.ps1 script gives administrators an easy way to extract, review, and apply these identifiers directly from any Windows installation. Combined with Group Policy or MDM, it provides a fast and reliable method to shape the Settings experience for users — ensuring that each system remains secure, focused, and predictable.

Disclaimer

This Sample Code is provided for the purpose of illustration only
and is not intended to be used in a production environment.  THIS
SAMPLE CODE AND ANY RELATED INFORMATION ARE PROVIDED "AS IS" WITHOUT
WARRANTY OF ANY KIND, EITHER EXPRESSED OR IMPLIED, INCLUDING BUT NOT
LIMITED TO THE IMPLIED WARRANTIES OF MERCHANTABILITY AND/OR FITNESS
FOR A PARTICULAR PURPOSE.  We grant You a nonexclusive, royalty-free
right to use and modify the Sample Code and to reproduce and distribute
the object code form of the Sample Code, provided that You agree:
(i) to not use Our name, logo, or trademarks to market Your software
product in which the Sample Code is embedded; (ii) to include a valid
copyright notice on Your software product in which the Sample Code is
embedded; and (iii) to indemnify, hold harmless, and defend Us and
Our suppliers from and against any claims or lawsuits, including
attorneys' fees, that arise or result from the use or distribution
of the Sample Code.

This sample script is not supported under any Microsoft standard
support program or service. The sample script is provided AS IS
without warranty of any kind. Microsoft further disclaims all implied
warranties including, without limitation, any implied warranties of
merchantability or of fitness for a particular purpose. The entire
risk arising out of the use or performance of the sample scripts and
documentation remains with you. In no event shall Microsoft, its
authors, or anyone else involved in the creation, production, or
delivery of the scripts be liable for any damages whatsoever
(including, without limitation, damages for loss of business
profits, business interruption, loss of business information, or
other pecuniary loss) arising out of the use of or inability to
use the sample scripts or documentation, even if Microsoft has
been advised of the possibility of such damages.